CN211481277U - Parameter configuration PCB board card and system of SM algorithm - Google Patents
Parameter configuration PCB board card and system of SM algorithm Download PDFInfo
- Publication number
- CN211481277U CN211481277U CN202020648787.3U CN202020648787U CN211481277U CN 211481277 U CN211481277 U CN 211481277U CN 202020648787 U CN202020648787 U CN 202020648787U CN 211481277 U CN211481277 U CN 211481277U
- Authority
- CN
- China
- Prior art keywords
- parameter
- algorithm
- card
- parameters
- pcb board
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The application discloses parameter configuration PCB integrated circuit board and system of SM algorithm, wherein equipment includes: the parameter memory is connected with an external card reader and used for storing the parameters read by the external card reader; a bifurcation factor generator for generating parameter selection factors corresponding to the SM algorithm; the parameter selector is connected with the parameter memory and the bifurcation factor generator and is used for acquiring the target parameters corresponding to the parameter selection factors from the parameters stored in the parameter memory, so that the technical problems that the encryption/decryption result is constant when data plaintext/ciphertext and a key are determined by adopting default algorithm parameters, the flexible configuration of the algorithm parameters cannot be realized, and the flexible control of the encryption/decryption operation result in a multi-object and multi-service scene under the same key system cannot be met are solved.
Description
Technical Field
The application relates to the technical field of information security, in particular to a parameter configuration PCB board card and a system of an SM algorithm.
Background
With the development of information technology, information security has received a great deal of attention. Among them, the encryption and decryption technology is a common security measure used in information security.
At present, a parameter configuration PCB supporting a domestic SM series cryptographic algorithm is comprehensively applied to the fields of electric power, finance, traffic and the like so as to realize safety functions of data encryption and decryption, identity authentication, legality, integrity verification and the like. When the traditional parameter configuration PCB board card uses the SM algorithm to perform data encryption and decryption operation, the default parameters of the algorithm are mostly adopted, and under the condition that a data plaintext/ciphertext and a key are determined, the encryption/decryption result is constant, the flexible configuration of the parameters cannot be realized, and the flexible control of the encryption/decryption operation result in a multi-object and multi-service scene under the same key system cannot be met.
SUMMERY OF THE UTILITY MODEL
The application provides a parameter configuration PCB board card and a system of an SM algorithm, which solve the technical problems that the encryption/decryption result is constant, the flexible configuration of the parameter cannot be realized, and the flexible control of the encryption/decryption operation result in a multi-object and multi-service scene under the same key system cannot be met by adopting the default parameters of the algorithm in the prior art under the condition that a data plaintext/ciphertext and a key are determined.
In view of this, the first aspect of the present application provides a parameter configuration PCB board for SM algorithm, including:
the parameter memory is connected with an external card reader and used for storing the parameters read by the external card reader;
a bifurcation factor generator for generating parameter selection factors corresponding to the SM algorithm;
and the parameter selector is connected with the parameter memory and the bifurcation factor generator and is used for acquiring the target parameters corresponding to the parameter selection factors from the parameters stored in the parameter memory.
Optionally, the method further comprises:
and the password operation unit is connected with the parameter memory.
Optionally, the cryptographic operation unit is specifically: SJK1557 PCI-E password card.
Optionally, the parameter memory further stores preset curing parameters.
Optionally, the parameter memory is specifically: SSX1924 cryptographic memory chip.
Optionally, the bifurcating factor generator is specifically: an FPGA chip with the model number of EP4CGX75F23I 7N.
Optionally, the parameter selector specifically is: an FPGA chip model 5CGTFD5C5F27C 7N.
A second aspect of the present application provides a parameter configuration system for an SM algorithm, including: a parameter card, a card reader and a parameter configuration PCB card of the SM algorithm according to the first aspect;
the parameter card is used for storing parameters of the SM algorithm;
the card reader is connected with the parameter card;
the parameter configuration PCB board card is connected with the card reader.
Optionally, the parameter card is specifically: SJK1569 Smart IC card.
Optionally, the card reader specifically includes: a contact IC card reader.
According to the technical scheme, the embodiment of the application has the following advantages:
the application provides a parameter configuration PCB integrated circuit board of SM algorithm includes: the parameter memory is connected with an external card reader and used for storing the parameters read by the external card reader; a bifurcation factor generator for generating parameter selection factors corresponding to the SM algorithm; and the parameter selector is connected with the parameter memory and the bifurcation factor generator and is used for acquiring the target parameters corresponding to the parameter selection factors from the parameters stored in the parameter memory. In the application, a parameter memory stores a plurality of parameters for running the SM algorithm, a bifurcation factor generator generates parameter selection factors corresponding to the SM algorithm, then the parameter selector determines the target parameter corresponding to the SM algorithm from a plurality of parameters stored in a parameter memory according to the parameter selection factor, according to the above, the cryptographic parameters of the SM algorithm in the present application can be set as required during cryptographic operation, and are not fixed, so that encryption and decryption operations can be performed on multiple objects and multiple service scenes under the same key system, thereby solving the problem of using the default parameters of the algorithm in the prior art, under the condition that a data plaintext/ciphertext and a key are determined, an encryption/decryption result is constant, flexible configuration of parameters cannot be realized, and the technical problem of flexible control of encryption/decryption operation results in a multi-object and multi-service scene under the same key system cannot be met.
Drawings
Fig. 1 is a schematic structural diagram of an embodiment of a parameter configuration PCB board of an SM algorithm in the embodiment of the present application;
fig. 2 is a schematic structural diagram of an embodiment of a parameter configuration system of an SM algorithm in the embodiment of the present application.
Detailed Description
The embodiment of the application provides a parameter configuration PCB board card and a system of an SM algorithm, and solves the technical problems that an encryption/decryption result is constant under the condition that a data plaintext/ciphertext and a secret key are determined by adopting default algorithm parameters, flexible configuration of the algorithm parameters cannot be realized, and flexible control of an encryption/decryption operation result in a multi-object and multi-service scene under the same secret key system cannot be met.
In order to make the technical solutions of the present application better understood, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the drawings in the embodiments of the present application, and it is obvious that the described embodiments are only a part of the embodiments of the present application, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present application.
Referring to fig. 1, a schematic structural diagram of a first embodiment of a parameter configuration PCB board of an SM algorithm in the embodiment of the present application includes:
a parameter memory 101 connected to an external card reader for storing parameters read by the external card reader;
a bifurcation factor generator 102 for generating a parameter selection factor corresponding to the SM algorithm;
and a parameter selector 103 connected to the parameter memory 101 and the bifurcation factor generator 102, and configured to obtain a target parameter corresponding to the parameter selection factor from the parameters stored in the parameter memory 101.
In this embodiment, the parameter memory 101 stores a plurality of parameters for running the SM algorithm, the bifurcating factor generator 102 generates parameter selection factors corresponding to the SM algorithm, then the parameter selector 103 determines the target parameter corresponding to the SM algorithm from the parameters stored in the parameter memory 101 according to the parameter selection factor, according to the above, the cryptographic parameters of the SM algorithm in the present application can be set as required during cryptographic operation, and are not fixed, so that encryption and decryption operations can be performed on multiple objects and multiple service scenes under the same key system, thereby solving the problem of using the default parameters of the algorithm in the prior art, under the condition that a data plaintext/ciphertext and a key are determined, an encryption/decryption result is constant, flexible configuration of parameters cannot be realized, and the technical problem of flexible control of encryption/decryption operation results in a multi-object and multi-service scene under the same key system cannot be met.
The above is a first embodiment of the parameter configuration PCB board of the SM algorithm provided in the embodiment of the present application, and the following is a second embodiment of the parameter configuration PCB board of the SM algorithm provided in the embodiment of the present application.
Referring to fig. 1, a schematic structural diagram of a second embodiment of a parameter configuration PCB board of an SM algorithm in the embodiment of the present application includes:
a parameter memory 101 connected to an external card reader for storing parameters read by the external card reader;
a bifurcation factor generator 102 for generating a parameter selection factor corresponding to the SM algorithm;
and a parameter selector 103 connected to the parameter memory 101 and the bifurcation factor generator 102, for obtaining the target parameter corresponding to the parameter selection factor from the parameters stored in the parameter memory 101.
The parameter memory 101 supports storage of curing parameters, and the curing parameters can be permanently stored in the parameter memory 101 when the parameter configuration PCB board card leaves a factory and are directly called by the parameter selector 103.
Before storing the parameters stored in the parameter memory 101, the parameters are encrypted and protected by the local master key of the parameter configuration PCB card and stored in the parameter memory 101 in a ciphertext form.
The bifurcating factor generator 102 is directly connected to the parameter selector 103 for generating a parameter selection signal based on the parameter selection factor. The bifurcation factor generator 102 in this embodiment supports the identification of mandatory order factors, device order factors, curing parameter factors, default factor class 4 parameter selection factors.
1) Forcing an instruction factor
The mandatory instruction factor is generated according to the special parameter mandatory switching instruction, and the parameter mandatory switching instruction information comprises the index number of the parameter set to be switched. In practical use, when the forking factor generator 102 identifies the identifier of the parameter forced switching instruction and the parameter set index number in the instruction, the generated forced instruction forking factor is transmitted to the parameter selector 103, the parameter selector 103 identifies the forced instruction factor, the parameter set index number is analyzed, the parameter set corresponding to the index number is called from the parameter memory 101, and the forced accurate calling of the SM algorithm parameter is realized. After the call is completed, the parameter selector 103 returns status information such as parameter set call success/failure, validation parameter set index, and the like.
2) Device instruction factor
The equipment instruction factor is realized by customizing parameter identification information in an original instruction parameter domain of the parameter configuration PCB board card, and the parameter identification information comprises an index number of a parameter set to be switched. When the parameter configuration PCB board card executes an instruction, when pre-customized parameter identification information appears in an instruction parameter domain, the bifurcating factor generator 102 automatically identifies the information and analyzes a parameter set index, generates an equipment instruction bifurcating factor and transmits the equipment instruction bifurcating factor into the parameter selector 103, the parameter selector 103 identifies and inputs the equipment instruction bifurcating factor, the parameter set index number is analyzed, a parameter set corresponding to an index number is called from the parameter memory 101 to be used by the cryptographic operation unit 104, and instruction-level accurate calling of SM algorithm parameters is achieved. After the call is completed, the parameter selector 103 returns status information such as parameter set call success/failure, validation parameter set index, and the like.
3) Curing parameter factor
The curing parameter factor is used to enable identification of curing parameters within the parameter storage 101. The curing factor may be identified by a parameter field in a dedicated parameter force switch command or by customized information in a device command parameter field. When the parameter configuration PCB board executes the parameter forced switching instruction and the device customizing instruction, and when the pre-customized curing parameter identification information appears in the instruction parameter domain, the bifurcating factor generator 102 automatically identifies the curing information and then transmits the curing information to the parameter selector 103. The parameter selector 103 calls the curing parameters written in the parameter configuration PCB board when the board leaves the factory from the parameter memory 101 and transmits the curing parameters to the cryptographic operation unit 104, so as to call the curing parameter set. After the calling is completed, the parameter selector 103 returns status information such as success/failure of calling the curing parameter set, identifier of the curing parameter set, and the like.
4) Default parameter factor
When the fork factor generator 102 does not recognize the mandatory, device, and curing factors, default parameter factors are automatically generated.
Further, the parameter configuration PCB board card in this embodiment further includes: and a cryptographic operation unit 104 connected to the parameter memory 101.
The cryptographic operation unit 104 is a cryptographic module authenticated by a national secret number, is directly connected with the parameter memory 101, and is internally integrated with various algorithm chips capable of realizing an SM algorithm. When the cryptographic operation unit 104 performs cryptographic operation, the instruction service program acquires the algorithm parameter set from the parameter memory 101, classifies the parameter set under the specific index according to the SM algorithm identifier, and transmits the classified parameter set to the corresponding cryptographic chip in the cryptographic operation unit 104 for cryptographic operation.
Further, the cryptographic operation unit 104 is specifically: SJK1557 PCI-E password card, which can be understood to have a national commercial password product model number.
Further, the parameter memory 101 also stores therein preset curing parameters.
Further, the parameter memory 101 is specifically: the SSX1924 password storage chip comprises a national commercial password product model number.
The number of the parameter memories may be set according to the needs, for example, 10, 20, 30, or 64, and the like, and is not particularly limited herein.
Further, the bifurcation factor generator 102 is specifically: an FPGA chip with the model number of EP4CGX75F23I 7N.
Further, the parameter selector 103 is specifically: an FPGA chip model 5CGTFD5C5F27C 7N.
In this embodiment, the parameter memory 101 stores a plurality of parameters for running the SM algorithm, the bifurcating factor generator 102 generates parameter selection factors corresponding to the SM algorithm, then the parameter selector 103 determines the target parameter corresponding to the SM algorithm from the parameters stored in the parameter memory 101 according to the parameter selection factor, according to the above, the cryptographic parameters of the SM algorithm in the present application can be set as required during cryptographic operation, and are not fixed, so that encryption and decryption operations can be performed on multiple objects and multiple service scenes under the same key system, thereby solving the problem of using the default parameters of the algorithm in the prior art, under the condition that a data plaintext/ciphertext and a key are determined, an encryption/decryption result is constant, flexible configuration of parameters cannot be realized, and the technical problem of flexible control of encryption/decryption operation results in a multi-object and multi-service scene under the same key system cannot be met.
The above is a second embodiment of the parameter configuration PCB board of the SM algorithm provided in the embodiment of the present application, and the following is an embodiment of a parameter configuration system of the SM algorithm provided in the embodiment of the present application, please refer to fig. 2.
The parameter configuration system for the SM algorithm provided in the embodiment of the present application includes:
a parameter card 201, a card reader 202 and a parameter configuration PCB card 203 of the SM algorithm in any of the embodiments;
the parameter card 201 is used for storing parameters of the SM algorithm;
the card reader 202 is connected with the parameter card 201;
the parameter configuration PCB board 203 is connected with the card reader 202.
The parameter card 201 is an encrypted storage card with a national password model, is connected with the card reader 202, and is an external storage device for the SM algorithm parameters, and the parameter card 201 has the following characteristics in actual use:
1) the parameter card 201 has a partition mechanism, which supports the parameter set by the parameter configuration server to be partitioned and stored in the plurality of parameter cards 201, the number of partitions can be freely set by the parameter configuration server, and when the parameter card is used, the parameter cards 201 need to read a plurality of pieces of data respectively to synthesize a complete parameter set.
2) The parameter card 201 has a password protection mechanism, and the operations such as backup, erasure, writing, password change and the like can be performed on the parameter card 201 only after password verification.
3) The parameter card 201 has a backup function, and can backup a certain set parameter card 201 to the blank parameter card 201 through the parameter configuration server.
4) When the parameter card 201 stores the parameters, the parameter set index is first allocated, and then the parameter sets are classified and stored according to the parameter set index.
5) The parameters in the parameter card 201 are all stored in a form of ciphertext, and the stored parameters can be erased and destroyed by the parameter configuration server.
When in use, the card reader 202 is connected to the parameter configuration server or the parameter configuration PCB board 203 through a data line, and a communication bridge is established between the parameter configuration server, the parameter configuration PCB board 203 and the parameter card. The parameters of the SM algorithm are encrypted and protected by using a preset transmission key in the data line transmission process, so that the safety in the parameter transmission process is improved.
Further, the parameter card 201 specifically includes: SJK1569 Smart IC card. The parameter card is provided with a national commercial password product model.
Further, the card reader 202 is specifically: a contact IC card reader.
In the embodiment, the parameter memory stores a plurality of parameters for running the SM algorithm, the bifurcation factor generator generates parameter selection factors corresponding to the SM algorithm, then the parameter selector determines the target parameter corresponding to the SM algorithm from a plurality of parameters stored in a parameter memory according to the parameter selection factor, according to the above, the cryptographic parameters of the SM algorithm in the present application can be set as required during cryptographic operation, and are not fixed, so that encryption and decryption operations can be performed on multiple objects and multiple service scenes under the same key system, thereby solving the problem of using the default parameters of the algorithm in the prior art, under the condition that a data plaintext/ciphertext and a key are determined, an encryption/decryption result is constant, flexible configuration of parameters cannot be realized, and the technical problem of flexible control of encryption/decryption operation results in a multi-object and multi-service scene under the same key system cannot be met.
The above embodiments are only used for illustrating the technical solutions of the present application, and not for limiting the same; although the present application has been described in detail with reference to the foregoing embodiments, it should be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions in the embodiments of the present application.
Claims (10)
1. A parameter configuration PCB board card of SM algorithm, characterized by includes:
the parameter memory is connected with an external card reader and used for storing the parameters read by the external card reader;
a bifurcation factor generator for generating parameter selection factors corresponding to the SM algorithm;
and the parameter selector is connected with the parameter memory and the bifurcation factor generator and is used for acquiring the target parameters corresponding to the parameter selection factors from the parameters stored in the parameter memory.
2. The parameter configuration PCB board of SM algorithm of claim 1, further comprising:
and the password operation unit is connected with the parameter memory.
3. The parameter configuration PCB board of the SM algorithm of claim 2, wherein the cryptographic operation unit is specifically: SJK1557 PCI-E password card.
4. The parameter configuration PCB board of SM algorithm of claim 1, wherein the parameter memory further stores preset curing parameters.
5. The parameter configuration PCB board of the SM algorithm of claim 1, wherein the parameter memory is specifically: SSX1924 cryptographic memory chip.
6. The parameter configuration PCB board of the SM algorithm of claim 1, wherein the bifurcating factor generator is specifically: an FPGA chip with the model number of EP4CGX75F23I 7N.
7. The parameter configuration PCB board of the SM algorithm of claim 1, wherein the parameter selector is specifically: an FPGA chip model 5CGTFD5C5F27C 7N.
8. A parameter configuration system of an SM algorithm, comprising: a parameter card, a card reader and a parameter configuration PCB card of the SM algorithm of any of claims 1 to 7;
the parameter card is used for storing parameters of the SM algorithm;
the card reader is connected with the parameter card;
the parameter configuration PCB board card is connected with the card reader.
9. The system for configuring parameters of an SM algorithm according to claim 8, wherein the parameter card is specifically: SJK1569 Smart IC card.
10. The system for configuring parameters of an SM algorithm according to claim 8, wherein the card reader specifically is: a contact IC card reader.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202020648787.3U CN211481277U (en) | 2020-04-26 | 2020-04-26 | Parameter configuration PCB board card and system of SM algorithm |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202020648787.3U CN211481277U (en) | 2020-04-26 | 2020-04-26 | Parameter configuration PCB board card and system of SM algorithm |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN211481277U true CN211481277U (en) | 2020-09-11 |
Family
ID=72380411
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202020648787.3U Active CN211481277U (en) | 2020-04-26 | 2020-04-26 | Parameter configuration PCB board card and system of SM algorithm |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN211481277U (en) |
-
2020
- 2020-04-26 CN CN202020648787.3U patent/CN211481277U/en active Active
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101923660B (en) | Dynamic password identity authorization system and method based on RFID | |
| US5225664A (en) | Mutual authentication system | |
| CN101339597B (en) | Method, system and equipment for upgrading read-write machine firmware | |
| CN107111728A (en) | Safe key export function | |
| CN102339498B (en) | There is the management method of the electronic installation as integrated circuit type that personal authentication's key inside generates | |
| US9867045B2 (en) | Method of managing communication between a secure element and a host device | |
| US11096042B2 (en) | Preprocessing method and device for configuring NFC smart card | |
| CN205091758U (en) | Card reader and CPU card transaction system | |
| CN107657199A (en) | Mobile device, verification device and verification method thereof | |
| CN211481277U (en) | Parameter configuration PCB board card and system of SM algorithm | |
| CN112100113A (en) | Smart card, card working method and terminal | |
| CN104598805A (en) | Password authentication method, password authentication system and controller | |
| CN101273369A (en) | Smartcard power management | |
| JP2009129413A (en) | Shared management method of portable storage device, and portable storage device | |
| EP0872081B1 (en) | Method and device for data communication | |
| CN105871840A (en) | Certificate management method and system | |
| CN110880965A (en) | Outgoing electronic document encryption method, system, terminal and storage medium | |
| CN109919603A (en) | Generation method, system, mobile device and the server of virtual radiofiequency card | |
| CN214175061U (en) | Binding system of terminal equipment and external password keyboard | |
| CN101227682A (en) | Method and apparatus for protecting data safety in terminal | |
| CN114239006A (en) | Social security card PIN resetting method, system and medium based on standard interface | |
| CN103248487A (en) | Near field communication authentication method, certificate authorization center and near field communication equipment | |
| CN112613872A (en) | Type 4NFC tag as protocol interface | |
| CN107645679B (en) | Production method and system of card-free condition receiving system of set top box | |
| EP2985724B1 (en) | Remote load and update card emulation support |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant |