SUMMERY OF THE UTILITY MODEL
This specification proposes a pluggable device, which comprises:
a housing;
a circuit board disposed inside the housing;
a pluggable interface mounted on the circuit board; and an SE security element electrically connected to the pluggable interface;
the pluggable interface is used for performing plug-in butt joint with the terminal equipment; the SE secure element is used for providing a secure computing environment for data uplink calculation of the terminal equipment on a block chain.
Optionally, the pluggable device further includes:
an indicator light mounted on the circuit board;
the indicator light is used for prompting the current working state of the pluggable equipment to a user.
Optionally, the indicator light is an LED indicator light.
Optionally, the indicator light is electrically connected to the SE safety element.
Optionally, a light-transmitting opening is formed in a position, corresponding to the indicator light, on the outer surface of the housing.
Optionally, a transparent or translucent protective layer is attached to the outer surface of the light-transmitting opening.
Optionally, the protective layer is a PVC protective layer.
Optionally, the pluggable interface is a USB interface.
Optionally, the circuit board is a PCB circuit board.
Optionally, the SE security element is an SE security computing chip.
In the embodiment of the present description, on the basis of not performing hardware modification on the terminal device, by performing plug-in and plug-out docking on the terminal device and the pluggable device, a secure operating environment can be provided for data uplink calculation of the terminal device on the blockchain by using the SE secure element carried by the pluggable device.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present specification. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the specification, as detailed in the appended claims.
The terminology used in the description herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the description. As used in this specification and the appended claims, the singular forms "a", "an", and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and encompasses any and all possible combinations of one or more of the associated listed items.
It should be understood that although the terms first, second, third, etc. may be used herein to describe various information, these information should not be limited to these terms. These terms are only used to distinguish one type of information from another. For example, the first information may also be referred to as second information, and similarly, the second information may also be referred to as first information, without departing from the scope of the present specification. The word "if" as used herein may be interpreted as "at … …" or "when … …" or "in response to a determination", depending on the context.
When the terminal device stores the acquired data on the blockchain (i.e. uplink of the acquired data), it is usually required to perform some related uplink data calculation in a secure computing environment; for example, a private key used for signature computation on data needs to be stored and maintained in a secure computing environment, and signature computation on data needs to be performed in the secure computing environment based on the private key. When a secure operation environment is established for the terminal device, the hardware environment of the terminal device is generally required to be modified.
Based on this, this specification proposes a pluggable device, which can provide a secure operation environment for data chaining calculation of a terminal device by plugging and docking the terminal device and the pluggable device without hardware modification of the terminal device, using an SE security element carried by the pluggable device.
Referring to fig. 1, fig. 1 is a hardware structure diagram of a pluggable device 100 shown in this specification.
As shown in fig. 1, the hardware structure of the pluggable device 100 may specifically include a housing 110, a circuit board 120 disposed inside the housing 110, and a pluggable interface 130 installed on the circuit board 120; and a se (secure element) security element 140 mounted on the circuit board 120 and electrically connected to the pluggable interface 130.
The specific type of the circuit board 120 is not particularly limited in this specification, and can be flexibly selected by a person skilled in the art;
for example, in one implementation, the Circuit board 120 may be a relatively general pcb (printed Circuit board) Circuit board 120.
The pluggable interface 130 is specifically configured to perform a plug-in docking with a terminal device.
The specific interface type of the pluggable interface 130 is not particularly limited in this specification, and depends on the specific type of the terminal device to which the pluggable device is docked. Therefore, in practical applications, a universal hardware interface type may be selected, so as to ensure that the pluggable device 100 can interface with different types of terminal devices;
for example, in one embodiment, the pluggable interface 130 may be a USB interface.
Referring to fig. 2 and 3, taking the terminal device as a portable recording device and the pluggable interface 130 as a USB interface as an example, a USB socket may be provided on the portable recording device, and a USB interface may be provided on the pluggable device 100. The user can realize hardware docking with the portable recording device by inserting the USB interface on the pluggable device 100 into the USB socket of the portable recording device.
It should be noted that, the USB interface described in this specification refers to one end of the USB device serving as a USB Slave; the USB socket described in this specification refers to one end of the USB device as a USB host.
Of course, in practical applications, the pluggable interface 130 may be other types of general hardware interfaces besides the USB interface, and those skilled in the art can flexibly select the pluggable interface based on actual requirements, which are not listed in this specification.
The SE security element 140 may be electrically connected to the pluggable interface 130, and is configured to provide a secure computing environment for uplink data calculation of the terminal device on the blockchain.
In practical applications, the pluggable device 100 may be added to the blockchain (also referred to as the "equipment chain") as a node device, and the private key corresponding to the pluggable device 100 is stored and maintained in the SE secure element 140.
When the data collected by the terminal device needs to be stored in the blockchain, the data communication with the pluggable device 100 can be performed through the pluggable interface 130 of the pluggable device 100, the collected data is transmitted to the SE secure element 140 carried by the pluggable device 100, and signature calculation is performed on the data collected by the terminal device in the SE secure element 140 based on the private key stored and maintained in the SE secure element 140.
After the signature calculation is completed, the pluggable device 100 may return the signed data to the terminal device, and the terminal device issues the signed data in the block chain; alternatively, the signed data is published directly in the blockchain by the pluggable device 100.
After receiving the published signed data, the node device in the block chain can acquire a public key corresponding to a private key stored in a secure operation environment, and then verify the signature of the data based on the acquired public key; if the signature of the data passes the verification, the node device may initiate a consensus process on the data in the blockchain, and package the data into blocks to be stored in the blockchain after the data consensus process passes, so as to complete the data storage certification for the data.
The hardware type of the SE secure element 140 is not particularly limited in this specification; for example, as shown in fig. 1, in an embodiment shown, the SE security element 140 may be specifically an SE security computing chip.
The specific manner of electrically connecting the SE secure element 140 and the pluggable interface 130 is not particularly limited in this specification;
for example, the SE secure element 140 is an SE secure computing chip, and the pluggable interface 130 is a USB interface, in which case the USB interface may be electrically connected to the SE secure computing chip through a USB adapter chip.
With continued reference to fig. 1, in one embodiment, the hardware structure of the pluggable device 100 may further include an indicator light 150 mounted on the circuit board 120;
the indicator light 150 may be electrically connected to the SE safety element 140 to indicate to a user the operational status of the pluggable device 100.
For example, in implementation, the processing capability of the SE secure element 140 itself may be utilized, and some control logic for controlling the indicator light 150 to indicate the operating state of the pluggable device 100 may be embedded in the SE secure element 140, and executed by the SE secure element 140 to indicate the operating state of the pluggable device 100 to the user.
In this specification, the operating state of the pluggable device 100 may specifically include an operating state in which operations are being executed in the secure operating environment; and a working state in which the operation is completed in the secure operation environment.
For example, in the secure computing environment, in the process of signing the target data collected by the terminal device based on the private key stored in the secure computing environment, it may be referred to as a working state in which the pluggable device 100 is executing operations in the secure computing environment; in the secure computing environment, after the signature processing of the target data collected by the terminal device is completed based on the private key stored in the secure budget environment, the pluggable device 100 may be referred to as a working state in which the operation is completed in the secure computing environment.
It should be noted that, by using the specific control logic for prompting the operating state of the pluggable device 100 to the user through the indicator light 150, when implementing the technical solution of the present specification, a person skilled in the art may define the operation logic based on actual requirements, which is not particularly limited in the present specification;
for example, in an implementation manner shown, the control logic may specifically be that, during the process that the pluggable device 100 executes an operation in the secure operation environment provided by the SE secure computing chip, the indicator light 150 may be controlled to be in a normally-on state to indicate that the pluggable device 100 is in an "operating state in operation"; after the pluggable device 100 completes the operation in the secure operation environment provided by the SE secure computing chip, the LED lamp may be controlled to be in an off state, so as to indicate that the pluggable device 100 is in the operation state of "operation end".
In another implementation shown, the control logic may specifically be that, during the process that the pluggable device 100 executes an operation in the secure operation environment provided by the SE secure computing chip, the indicator light 150 may be controlled to remain off to indicate that the pluggable device 100 is in the "operation" working state; after the pluggable device 100 completes the operation in the secure operation environment provided by the SE secure computing chip, the indicator light 150 may be controlled to flash multiple times according to the preset frequency, so as to indicate that the pluggable device 100 is in the operation state of "operation end".
The specific type of the indicator light 150 is not particularly limited in this specification; for example, in one embodiment, the indicator light 150 may be an LED indicator light 150.
The specific form of the electrical connection between the SE safety element 140 and the SE safety element is not particularly limited in this specification;
for example, in the case where the SE safety element 140 is an SE safety calculation chip and the indicator lamp 150 is an LED indicator lamp 150, the LED indicator lamp 150 may be electrically connected to the SE safety calculation chip through an LED adapter chip.
Referring to fig. 1, in an embodiment, a light-transmitting opening 160 may be further disposed on an outer surface of the housing 110 corresponding to the indicator 150.
In order to prevent impurities such as dust from entering the interior of the housing 110 through the light-transmitting opening 160, a transparent or translucent protective layer may be disposed on the light-transmitting opening 160.
The specific material of the protective layer is not particularly limited in this specification; for example, the protective layer may be made of PVC for cost reasons.
In this specification, in addition to the pluggable device 100 described above being capable of carrying various components shown in fig. 1, in practical applications, a person skilled in the art may also introduce new components based on actual requirements on the basis of the various components shown in fig. 1;
for example, in the hardware configuration shown in fig. 1, the pluggable device 100 does not carry a power supply component, and a terminal device that is docked with the pluggable device 100 supplies power to the pluggable device 100 through a USB interface; in practical applications, a person skilled in the art may further mount a power supply component inside the housing 110 on the basis of the components shown in fig. 1 to supply power to the circuit board 120 and the components mounted on the circuit board 120.
For another example, in addition to the above-mentioned description that the processing capability of the SE security element 140 itself can be utilized to control the indicator light 150 to indicate the operating status of the pluggable device 100 to the user, in practical applications, a person skilled in the art may also mount a dedicated processing chip for controlling the indicator light 150 on the circuit board 120, and control the indicator light 150 through the dedicated processing chip.
As can be seen from the above embodiments, based on the pluggable device 100 adopting the above hardware structure, on the basis of not performing hardware modification on the terminal device, by performing plug-in docking on the terminal device and the pluggable device 100, the SE secure element 140 carried by the pluggable device 100 can be utilized to provide a secure operating environment for data uplink calculation of the terminal device on the block chain.
Other embodiments of the present disclosure will be apparent to those skilled in the art from consideration of the specification and practice of the disclosure disclosed herein. This specification is intended to cover any variations, uses, or adaptations of the specification following, in general, the principles of the specification and including such departures from the present disclosure as come within known or customary practice within the art to which the specification pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the specification being indicated by the following claims.
It will be understood that the present description is not limited to the precise arrangements described above and shown in the drawings, and that various modifications and changes may be made without departing from the scope thereof. The scope of the present description is limited only by the appended claims.