CN206773715U - A kind of kvm system for supporting IC-card encryption certification - Google Patents
A kind of kvm system for supporting IC-card encryption certification Download PDFInfo
- Publication number
- CN206773715U CN206773715U CN201720140610.0U CN201720140610U CN206773715U CN 206773715 U CN206773715 U CN 206773715U CN 201720140610 U CN201720140610 U CN 201720140610U CN 206773715 U CN206773715 U CN 206773715U
- Authority
- CN
- China
- Prior art keywords
- card
- kvm
- module
- main control
- encryption certification
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 230000005540 biological transmission Effects 0.000 claims abstract description 17
- 238000004891 communication Methods 0.000 claims abstract description 5
- 230000001939 inductive effect Effects 0.000 claims abstract description 4
- 230000005055 memory storage Effects 0.000 claims abstract description 3
- 238000005516 engineering process Methods 0.000 abstract description 3
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000032258 transport Effects 0.000 description 1
Abstract
The utility model belongs to Computer Applied Technology field, specifically a kind of kvm system for supporting IC-card encryption certification.The kvm system of the support IC-card encryption certification of the utility model includes main KVM, also include IC-card, IC-card card reader, USB transmission module, main control module and computing module, the IC-card passes through inductive communication with IC-card card reader, IC-card memory storage secret key certificate, for being docked with KVM bodies, user's identity is verified;IC-card card reader is connected with USB transmission module, and USB transmission module is connected with main control module, and main control module is connected respectively with main KVM, computing module.The kvm system of support IC-card encryption certification of the present utility model is reasonable in design, and KVM can ensure data center information safety, have good application value while system of realizing and network are managed concentratedly.
Description
Technical field
Computer Applied Technology field is the utility model is related to, a kind of KVM systems for supporting IC-card encryption certification are specifically provided
System.
Background technology
KVM is Keyboard(Keyboard)、Video(Display)、Mouse(Mouse)Abbreviation, be multi-computer switch, be
Management equipment in computer network, it is possible to achieve access and control multiple devices by a set of KVM.KVM provides really main
Plate level access, and support multi-platform server and serial device.KVM directly to the servers of multiple remote locations and can be set
It is standby to conduct interviews and control, turn into a kind of indispensable management means of modern data center computer room.With in modern data
The development in scheming room, using the more mian engine changeover systems of KVM, system manager can be by a set of keyboard, mouse, display more
Switched between the main frame and server of individual different operating system and implement to manage.System and the concentration of network are realized in KVM
While management, the information security of data center turns into the subject matter to be faced, and needs that KVM is further improved.
The content of the invention
In order to solve the problem present on, the utility model offer is a kind of reasonable in design, and KVM is realizing system and network
While centralized management, the kvm system of the support IC-card encryption certification of data center information safety can be ensured.
To achieve the above object, the utility model provides following technical scheme:
A kind of kvm system for supporting IC-card encryption certification, including main KVM, in addition to IC-card, IC-card card reader, USB transmission
Module, main control module and computing module, the IC-card and IC-card card reader are by inductive communication, IC-card memory storage secret key certificate,
For being docked with KVM bodies, user's identity is verified;IC-card card reader is connected with USB transmission module, USB transmission module with
Main control module is connected, and main control module is connected respectively with main KVM, computing module.
The secret key certificate that the IC-card storage authorizes through secret key manager, for being docked with main KVM, verifies user's body
Part.
The IC-card card reader uses USB interface, for reading IC-card internal information.
The information transfer that the USB transmission module is used between IC-card card reader and main control module, support full speed and low speed
Usb data transmitting-receiving.IC-card card reader reads IC-card internal information, and makes master to main control module by USB transmission module transfer
Module is controlled to judge user's authority.
The computing module is using the private spoon stored in main control module built-in RAM, the public spoon stored in IC-card, to KVM texts
The indispensable partial document of part system operation carries out encryption and decryption operation.
The main control module reads the data by USB transmission module transfer, the secret key needed for encryption and decryption is stored, with computing
Module keeps communication, ensures the encryption and decryption operation of computing module, while controls whether KVM normally transports according to the result of encryption and decryption
OK.
The main KVM can be KVM types common on the market, IC-card encrypt certification by and be connected to main control module and permit
Perhaps can normal operation after the instruction run.
The support IC-card encrypts the kvm system of certification, and every equipment has each independent certification secret key management system, mutually
Mutually can not cross-reference, further ensure that the security of equipment.
The kvm system of the present utility model for supporting IC-card encryption certification, is judged by the use of IC-card as a kind of access way
Whether user is had permission using KVM, when only user holds the IC-card authorized through manager, the IC by IC-card close to KVM
Card reader reads IC-card internal information, and is sent to main control module by USB transmission module, it is authenticated can be normal after
Run KVM.
Preferably, the kvm system also includes security module, the security module is connected with main control module.
The security module can prevent intention from illegally copying the behavior of private spoon from main control module built-in RAM, further
It ensure that the security of equipment.
Preferably, the computing module is RSA operation module.
Preferably, the USB transmission module, which is USB1T11A, transmits chip.
Preferably, the main control module is FPGA main control chips.
Preferably, the security module is DS28E01P security chips.
Compared with prior art, it is of the present utility model to support the kvm system of IC-card encryption certification to have following prominent to have
Beneficial effect:
(One)RSA operation module using the private spoon stored in FPGA main control chip built-in RAMs, the public spoon stored in IC-card,
The partial document indispensable to the operation of KVM file system carries out encryption and decryption operation, so that FPGA main control chips are according to encryption and decryption
Output control KVM whether normal operation;
(Two)DS28E01P security chips are connected with FPGA main control chips, can prevent from being intended to out of FPGA main control chips
The generation that private spoon behavior is illegally copied in RAM is put, further ensures the security of equipment.
Brief description of the drawings
Fig. 1 is the schematic diagram of the kvm system of support IC-card encryption certification described in the utility model.
Embodiment
Below in conjunction with drawings and examples, the kvm system of support IC-card encryption certification of the present utility model is made into one
Step describes in detail.
Embodiment
As shown in figure 1, the kvm system of the present utility model for supporting IC-card encryption certification is mainly by main KVM, IC-card, IC-card
Card reader, USB1T11A transmission chip, FPGA main control chips, RSA operation module and DS28E01P security chips are formed.IC-card with
IC-card card reader is by inductive communication, storage authorizes through secret key manager in IC-card secret key certificate, for being docked with main KVM,
Verify user's identity.IC-card card reader uses USB interface, is connected with USB1T11A transmission chips, for reading IC-card number
It is believed that cease and the data information transfer of the IC-card of reading is transmitted into chip to USB1T11A.USB1T11A transmits chip and FPGA master
Control chip is connected, and for the information transfer between IC-card card reader and FPGA main control chips, supports the USB numbers at full speed with low speed
According to transmitting-receiving.RSA operation module is connected by RSA KEY WRITE, RSA KEY READ with FPGA main control chips, RSA operation
Module, must to the operation of KVM file system using the private spoon stored in FPGA main control chip built-in RAMs, the public spoon stored in IC-card
Standby partial document carries out encryption and decryption operation, and FPGA main control chips read the data transmitted chip by USB1T11A and transmitted, deposited
The secret key needed for encryption and decryption is stored up, keeps communicating with RSA operation module, ensures the encryption and decryption operation of RSA operation module, while basis
The result of encryption and decryption come control KVM whether normal operation.DS28E01P security chips are connected by GPIO with FPGA main control chips
Connect, prevent from being intended to the generation for illegally copying private spoon behavior from main control module built-in RAM.
The kvm system of the present utility model for supporting IC-card encryption certification, every equipment have each independent certification secret key
Management system, mutually can not cross-reference, be capable of the security of at utmost true equipment.
IC-card as a kind of access way, only user it is hand-held authorized through manager IC-card when, user is by IC-card
The data message of IC-card is read close to IC-card card reader, and main control module is sent to by USB transmission module, is passed through by certification
After can normal operation KVM, the information security of data center can be ensured.
Embodiment described above, simply the utility model more preferably embodiment, those skilled in the art
The usual variations and alternatives carried out in the range of technical solutions of the utility model should all be included in the scope of protection of the utility model
It is interior.
Claims (6)
1. a kind of kvm system for supporting IC-card encryption certification, including main KVM, it is characterised in that:Also include IC-card, IC-card Card Reader
Device, USB transmission module, main control module and computing module, the IC-card pass through inductive communication, IC-card memory storage with IC-card card reader
Secret key certificate, for being docked with KVM bodies, verify user's identity;IC-card card reader is connected with USB transmission module, and USB is passed
Defeated module is connected with main control module, and main control module is connected respectively with main KVM, computing module.
2. the kvm system according to claim 1 for supporting IC-card encryption certification, it is characterised in that:Also include security module,
The security module is connected with main control module.
3. the kvm system according to claim 2 for supporting IC-card encryption certification, it is characterised in that:The security module is
DS28E01P security chips.
4. the kvm system of the support IC-card encryption certification according to claim 1,2 or 3, it is characterised in that:The computing mould
Block is RSA operation module.
5. the kvm system according to claim 4 for supporting IC-card encryption certification, it is characterised in that:The USB transmission module
Chip is transmitted for USB1T11A.
6. the kvm system according to claim 5 for supporting IC-card encryption certification, it is characterised in that:The main control module is
FPGA main control chips.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201720140610.0U CN206773715U (en) | 2017-02-16 | 2017-02-16 | A kind of kvm system for supporting IC-card encryption certification |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201720140610.0U CN206773715U (en) | 2017-02-16 | 2017-02-16 | A kind of kvm system for supporting IC-card encryption certification |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN206773715U true CN206773715U (en) | 2017-12-19 |
Family
ID=60648258
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201720140610.0U Active CN206773715U (en) | 2017-02-16 | 2017-02-16 | A kind of kvm system for supporting IC-card encryption certification |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN206773715U (en) |
-
2017
- 2017-02-16 CN CN201720140610.0U patent/CN206773715U/en active Active
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP1579621B1 (en) | Domain-based digital-rights management system with easy and secure device enrollment | |
| CN100437618C (en) | Portable information safety device | |
| CN101587524B (en) | Method for encrypting data memory apparatus based on virtual system | |
| CN103763313B (en) | File protection method and system | |
| CN103748592B (en) | For controlling the system and method to the access of protected content | |
| JP2005228346A (en) | Method for associating content with user | |
| CN203746071U (en) | Security computer based on encrypted hard disc | |
| KR20110055510A (en) | Backing up digital content that is stored in a secured storage device | |
| CN104252375A (en) | Method and system for sharing USB (Universal Serial Bus) Key by multiple virtual machines positioned in different host computers | |
| CN101122942A (en) | Data safe reading method and its safe storage device | |
| WO2004044751A1 (en) | A method for realizing security storage and algorithm storage by means of semiconductor memory device | |
| US20170201550A1 (en) | Credential storage across multiple devices | |
| CN105373724A (en) | Wireless Authentication System and Method for USB Storage Device | |
| WO2006116931A1 (en) | A method for guaranteeing the safety of the storage network data and the system thereof | |
| CN107749862A (en) | A kind of data encryption centrally stored method, server, user terminal and system | |
| US20110023083A1 (en) | Method and apparatus for digital rights management for use in mobile communication terminal | |
| CN106992978A (en) | Network safety managing method and server | |
| CN114239015A (en) | Data security management method and device, data cloud platform and storage medium | |
| CN105279453A (en) | Separate storage management-supporting file partition hiding system and method thereof | |
| Chen et al. | A secure mobile DRM system based on cloud architecture | |
| CN206773715U (en) | A kind of kvm system for supporting IC-card encryption certification | |
| CN207458057U (en) | A kind of PKI system ID authentication devices based on fingerprint identification technology | |
| CN102761559A (en) | Private data-based network security sharing method and communication terminal | |
| CN205430299U (en) | Switch with USB encrypts authentication | |
| CN112149167B (en) | Data storage encryption method and device based on master-slave system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20211027 Address after: 250100 building S02, No. 1036, Langchao Road, high tech Zone, Jinan City, Shandong Province Patentee after: Shandong Inspur Scientific Research Institute Co.,Ltd. Address before: 250100 First Floor of R&D Building 2877 Kehang Road, Sun Village Town, Jinan High-tech Zone, Shandong Province Patentee before: JINAN INSPUR HIGH-TECH TECHNOLOGY DEVELOPMENT Co.,Ltd. |
|
| TR01 | Transfer of patent right |