EP3935914A1 - Tragbarer, autonomer und sicherer mikroserver zur kollaboration zwischen verschiedenen benutzern - Google Patents
Tragbarer, autonomer und sicherer mikroserver zur kollaboration zwischen verschiedenen benutzernInfo
- Publication number
- EP3935914A1 EP3935914A1 EP20719678.3A EP20719678A EP3935914A1 EP 3935914 A1 EP3935914 A1 EP 3935914A1 EP 20719678 A EP20719678 A EP 20719678A EP 3935914 A1 EP3935914 A1 EP 3935914A1
- Authority
- EP
- European Patent Office
- Prior art keywords
- micro
- server
- network
- storage space
- controller
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000013475 authorization Methods 0.000 claims description 9
- 230000006870 function Effects 0.000 description 2
- 238000009434 installation Methods 0.000 description 2
- 238000007726 management method Methods 0.000 description 2
- 239000000463 material Substances 0.000 description 2
- 238000005259 measurement Methods 0.000 description 2
- 238000012550 audit Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000018109 developmental process Effects 0.000 description 1
- 239000006185 dispersion Substances 0.000 description 1
- 238000005538 encapsulation Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012800 visualization Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/02—Terminal devices
- H04W88/04—Terminal devices adapted for relaying to or from another terminal or user
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/10—Integrity
- H04W12/102—Route integrity, e.g. using trusted paths
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
Definitions
- the invention relates to a portable, autonomous and secure micro-server intended to facilitate the exchange of computer files between different users.
- the invention relates more particularly to a portable micro-server intended for mobile professionals.
- a remote server for example an email server, a file server or in general, to all types of company servers
- a secure network when a public network, such as a WiFi network, is available.
- VPN Virtual Private Network
- Another difficulty frequently encountered by a mobile professional concerns the incompatibility between the equipment used by the professional and those of his interlocutors, making collaborative developments difficult, if not impossible. For example, it is often the case that the equipment used by the various participants in a meeting is not compatible so that the files exchanged cannot be correctly read and interpreted by all the users and / or projected with the technical means available, except at that the professional takes with him a battery of connectors or connecting devices dedicated to the interoperability of the equipment and operating systems installed on this equipment.
- a computer equipment designates a machine configured to read computer files, that is to say files formed of a set of digital codes adapted to be able to be directly interpreted by a machine, such as a computer , mobile phone, digital tablet, etc.
- Such computer files are, for example, textual documents, images, audio tapes, video content, compressed documents, three-dimensional visualization documents, executable programs, machine files, historical files, databases, etc.
- data is also used to designate a computer file.
- the invention aims to provide a portable micro-server which overcomes the problems of interoperability of computer equipment encountered by professionals on the move.
- the invention also aims to provide, in at least one embodiment of the invention, a portable micro-server which facilitates collaboration between users.
- the invention also aims to provide, in at least one embodiment of the invention, a portable micro-server which makes it possible to guarantee the security of file exchanges between users.
- the invention also aims to provide, in at least one embodiment of the invention, a portable micro-server which makes it possible to guarantee the security and integrity of the computer files exchanged.
- the invention also aims to provide, in at least one embodiment of the invention, a portable micro-server which has an autonomy compatible with the mobility needs of the users.
- the invention also aims to provide, in at least one embodiment of the invention, a portable micro-server which can operate even in the absence of an Internet access network.
- the invention relates to a portable, autonomous and secure micro-server for collaboration between different users comprising:
- an operating system configured to be able to control said central processor, said random access memory and said centralized storage space.
- a first wireless access controller to said micro-server called a sharing network controller, configured to create a wireless local sharing network and to allow, upon authorization, a connection of a computer equipment of a user to said audit micro-server via the local wireless sharing network
- a second wireless access controller to said micro-server called a configuration network controller, configured to create a wireless local configuration network and to allow, on authorization, a connection of a computer equipment of a privileged user said micro-server via the wireless local configuration network, to automatically synchronize predetermined files of equipment of said privileged user on said centralized storage space of said micro-server via said random access memory
- a packet management module of an IP network layer embedded in said operating system and configured to allow the use of a network service from a layer higher than said IP network layer making it possible to provide files from the storage space to said network service hosted by a user's device connected to said micro-server by said sharing controller,
- a data encryption module configured to be able to encrypt all the data passing through said random access memory before saving in said storage space, from a predetermined encryption key.
- the invention relates to computer equipment of a new type, designated throughout the text by the terminology of “micro-server” which incorporates all the solutions necessary for the problem of the mobile user aiming at to free it from material and network conditions while guaranteeing data security and confidentiality of data exchanges in order to provide it with an autonomous collaboration solution, secure and compatible with the constraints of mobility.
- a micro-server according to the invention therefore makes it possible to overcome the problems of interoperability of computer equipment encountered by professionals on the move by the presence of a packet management module of the IP network layer embedded in the configured operating system. to allow use a higher layer network service, such as a web server or a remote network drive, or any equivalent network service, which allows content to be delivered, for example to a web browser or a file system of a equipment of a user connected to the micro-server, through the sharing network controller.
- the sharing network controller allows an authorized user to connect an item of equipment to the micro-server by creating a local wireless sharing network allowing the connection of said equipment.
- the micro-server can thus deliver content to any user connected to the micro-server, in particular web content accessible by a web browser thus ensuring perfect interoperability between the equipment connected to the micro-server without requiring additional equipment and without configuration or prior installation on user equipment.
- the sharing network controller advantageously uses the IEEE 802.11 wireless local area network protocol, commonly called Wi-Fi, thus forming a sharing wifi controller.
- the micro-server according to the invention allows collaboration between different equipment, even in the absence of an Internet network.
- the sharing network controller and the presence of data storage space allows access and sharing of documents between user equipment connected to the micro-server.
- the micro-server according to the invention generates its own wireless network allowing the connection of equipment.
- the computer files saved on the storage space of the micro-server are protected by the presence of a data encryption module configured to be able to encrypt all the data passing through the RAM of the micro-server, before saving to the space storage.
- a data encryption module configured to be able to encrypt all the data passing through the RAM of the micro-server, before saving to the space storage.
- any content which passes through the RAM of the micro-server is encrypted by the encryption module.
- all the documents saved on the storage space by a privileged user that is to say in practice by the mobile professional who owns the micro-server, are automatically encrypted by the encryption module, so that a possible loss of the micro-server does not jeopardize the data security of the mobile professional.
- module a software element, a subset of a software program, which can be compiled separately, either for independent use, or to be assembled with other modules of a program, or a hardware element, or a combination of a hardware element and a software routine.
- a hardware element can comprise an integrated circuit specific to an application (better known by the acronym ASIC for the English name Application-Specific Integrated Circuit) or a programmable logic circuit (better known by the acronym FPGA for the English name Field- Programmable Gâte Array) or a circuit of specialized microprocessors (better known by the acronym DSP for the English name Digital Signal Processor) or any equivalent material.
- ASIC application-Specific Integrated Circuit
- FPGA field- Programmable Gâte Array
- DSP Digital Signal Processor
- an encryption key is stored encrypted on the dedicated memory. This key is decrypted when the micro-server according to the invention is started by the user's identifiers and placed in RAM.
- said encryption module is formed of an electronic component of the TPM chip type.
- a micro-server according to the invention also makes it possible to automatically synchronize the storage of computer files (or data) of equipment of a privileged user on the micro-server by the presence of the configuration network controller which allows, on authorization , a connection of this computer equipment of this privileged user to said micro-server.
- This synchronization necessarily involves the encryption of the data which pass through the random access memory of the micro-server.
- the configuration network controller advantageously uses the IEEE 802.11 wireless local area network protocol, commonly called Wi-Fi, thus forming a configuration wifi controller.
- the invention therefore makes it possible to configure the micro-server by securely storing therein the data which can then be shared with user equipment which connects to the micro-server by means of the sharing controller.
- the micro-server further comprises a rechargeable battery for supplying said processor and said configuration and sharing network controllers.
- a micro-server is autonomous and allows secure collaboration between users, including in the absence of a nearby electrical network.
- the micro-server further comprises a charger component configured to allow the battery recharging control on the sector. The charge measurement allows the privileged user to know the remaining availability of the battery and therefore the autonomy of the micro server until the next charge cycle.
- the micro-server further comprises a time-stamping module of said micro-server.
- a micro-server makes it possible to equip it with crypto-graphic time-stamping functions, such as digital signatures, proof of existence and solutions based on digital certificates.
- the micro-server further comprises means for authenticating the connections of user equipment requesting said sharing network controller.
- authentication can be of all types. This is, for example, authentication by password, by serial number of the equipment seeking to connect to the micro-server, by user biometric information, etc.
- the micro-server has a centralized storage space with a capacity of 128 GB.
- the storage space dedicated to backing up files may be of a different capacity.
- This storage space can for example be formed by a micro-SD card or equivalent card housed in the micro-server.
- other types of storage means can be used without modifying the object of the invention.
- the operating system and the various modules of the micro server are saved on a dedicated memory, which is for example a memory. associated with an electronic card housed in the micro-server.
- the micro-server further comprises a secure box housing the components and modules of said micro-server having a volume of less than 100 cm3.
- a micro-server according to this variant is compact and takes up little space.
- such a micro-server can fit in a user's pocket, favoring the mobility of the latter.
- the micro-server has a weight of less than 120 g.
- the invention also relates to a micro-server characterized in combination by all or some of the characteristics mentioned above or below.
- FIG. 1 is a schematic view of the operating principle of a micro server according to the invention
- FIG. 2 is a schematic view of a micro-server according to one embodiment of the invention.
- FIG. 2 schematically illustrates a micro-server 10 according to the invention comprising a central processor 11, a random access memory 12, a storage space 13 for computer files and an operating system 32 configured to be able to control the central processor 11, the RAM 12 and storage space 13.
- the micro-server comprises an electronic card formed from an Artik® module equipped with a microprocessor, a random access memory and a wireless controller respectively forming the microprocessor 11, the random access memory 12 and the sharing network controller 14.
- the operating system 32 can be of any known type. According to a preferred embodiment, the system is a GNU / Linux system. The operating system allows the use of the functionalities of the various components of the micro-server and their interactions.
- Storage space can also be of all types.
- this storage space 13 is formed by a micro-sd card, for example with a capacity of 128 GB, it being understood that the storage capacity can be different in other modes of storage. realization of the invention.
- the micro-server 10 also includes a first wireless access controller to said micro-server, called a sharing network controller 14.
- This sharing controller 14 is configured to allow, upon authorization, a connection of computer equipment 21, 22. of a user to said micro-server 10.
- the sharing network controller creates a wireless local sharing network for the purpose of connecting said computer equipment 21, 22 of a user to said micro-server 10.
- the local wireless network is for example of type IEEE802.11 (Wi-Fi).
- This connection authorization results, for example, from an authentication by password of the user.
- a micro-server 10 according to the invention therefore allows the generation and distribution of a local wireless network.
- the micro-server 10 also includes a second wireless access controller, called the configuration controller 15.
- This configuration controller 15 is configured to allow, upon authorization, a connection of a computer equipment 25 of a privileged user to said microphone. - server, and to automatically synchronize predetermined files of this equipment 25 on the storage space 13 via the RAM 12.
- the sharing network controller creates a wireless local configuration network for the purpose of connecting said computer equipment 25 of a privileged user to said micro-server 10.
- the local wireless configuration network is for example of type IEEE802.il (Wi-Fi).
- the sharing local wireless network and the configuration local wireless network are two different networks and not connected to each other, in particular to avoid that a user other than the privileged user can synchronize files or data with the microphone -server.
- the authorization of connection of the equipment 25 to the micro-server by means of the configuration controller results, for example, from an authentication by password of the user.
- the micro-server therefore allows operation, including in the absence of an Internet access network due to the centralization of computer files on storage space 13 and the presence of the sharing network controller 14.
- the micro-server also includes a module 16 for managing packets of an IP network layer embedded in the operating system 32 and configured to allow the use of an embedded web server (or any equivalent network service).
- This web server (or equivalent network service) is configured to be able to provide files from the storage space 13 to a web browser (or file system or any suitable module or targeted network service) hosted by equipment 21, 22 of a user connected to the micro-server by the sharing controller 14.
- the network service is a web server
- the latter makes it possible to provide content on a web browser of an equipment of a user connected to micro-server 10 through wireless sharing controller 14 to micro-server 10.
- a micro-server 10 therefore allows the connection between different devices through the sharing network controller 14.
- the micro-server 10 can therefore deliver content to the different devices connected through the web browser, which allows horizontal interoperability between devices without requiring prior configuration and / or installation.
- the micro-server 10 also includes a data encryption module 17.
- This encryption module 17 is configured so as to be able to encrypt all the data passing through the random access memory 12 before saving in the storage space 13 from a predetermined encryption key.
- a master encryption key is determined by the user when the micro-server is initialized. It follows a series of several encryption keys generated as needed and not predetermined according to a Parent / Child relationship (such as the tree structure of a file system).
- the micro-server 10 also comprises a battery 18, preferably rechargeable, for supplying the various elements of the micro-server, and in particular the processor 11 and the configuration 15 and sharing network controllers 14.
- the micro-server includes a battery charger component that controls the recharging of the battery on an electrical network. A charge measurement can allow the user to know the remaining availability of the battery.
- the micro-server 10 also preferably comprises a time-stamping module 19 of said micro-server.
- Such a time stamping module 19 enables the micro-server to be equipped with cryptographic time stamping functionalities, such as digital signatures, proof of existence and solutions based on digital certificates. This may for example be the use of security certificates required by communication protocols such as HTTPS. These protocols can thus be implemented for data exchanges between the devices and the micro-server 10.
- the micro-server further comprises a USB reader 31 making it possible to install the operating system 32 and the various software routines of the micro-server.
- the micro-server 10 comprises a secure box housing all of the components of the micro-server.
- a housing is for example formed so as to have a volume of less than 100 cm3.
- FIG. 1 very schematically illustrates the operating principle of the micro-server 10.
- Equipment 25 of a privileged user that is to say of the user on the move who owns the micro-server, can connect to the micro-server by means of the wireless configuration controller 15. This connection makes it possible to synchronize data from the equipment 25 with the storage space 13 and encrypt the data through the encryption module 17 and the passage of the data through the RAM 12.
- the devices 21, 22 can also connect to the micro-server through the wireless controller 14 to be able to access the data in the storage space.
- This connection of the equipment 21, 22 to the micro-server 10 does not require the presence of a local wifi network insofar as it is the micro server which generates the wireless network.
- the data in the storage space 13 is shared with the equipment 21, 22 through the server 16 on board the operating system 32.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Transfer Between Computers (AREA)
- Storage Device Security (AREA)
- Telephonic Communication Services (AREA)
- Mobile Radio Communication Systems (AREA)
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
FR1902295A FR3093572B1 (fr) | 2019-03-06 | 2019-03-06 | Micro serveur portatif, autonome et securisé de collaboration entre différents utilisateurs |
PCT/FR2020/050385 WO2020178503A1 (fr) | 2019-03-06 | 2020-02-27 | Micro-serveur portatif, autonome et securisé de collaboration entre différents utilisateurs |
Publications (1)
Publication Number | Publication Date |
---|---|
EP3935914A1 true EP3935914A1 (de) | 2022-01-12 |
Family
ID=67107832
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
EP20719678.3A Pending EP3935914A1 (de) | 2019-03-06 | 2020-02-27 | Tragbarer, autonomer und sicherer mikroserver zur kollaboration zwischen verschiedenen benutzern |
Country Status (4)
Country | Link |
---|---|
US (1) | US11863988B2 (de) |
EP (1) | EP3935914A1 (de) |
FR (1) | FR3093572B1 (de) |
WO (1) | WO2020178503A1 (de) |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2008005734A2 (en) | 2006-07-05 | 2008-01-10 | Agere Systems Inc. | Systems and methods for mobile data storage and acquisition |
US20140259182A1 (en) * | 2013-03-06 | 2014-09-11 | Sony Dadc Us Inc. | System and method for managing media content |
US8843178B1 (en) * | 2014-01-28 | 2014-09-23 | Gigastone America Corp | Wireless hotspot device capable of sharing video picture |
US20150358297A1 (en) * | 2014-06-06 | 2015-12-10 | Dropbox, Inc. | Secure peer-to-peer data sychronization |
US10140188B2 (en) * | 2014-11-26 | 2018-11-27 | ArcServe (USA) LLC | Snapshot management |
US20160254031A1 (en) * | 2015-02-26 | 2016-09-01 | Kabushiki Kaisha Toshiba | Semiconductor memory device |
US9886983B1 (en) * | 2015-06-26 | 2018-02-06 | Western Digital Technologies, Inc. | Storage drive with collapsible support |
-
2019
- 2019-03-06 FR FR1902295A patent/FR3093572B1/fr active Active
-
2020
- 2020-02-27 WO PCT/FR2020/050385 patent/WO2020178503A1/fr unknown
- 2020-02-27 US US17/437,029 patent/US11863988B2/en active Active
- 2020-02-27 EP EP20719678.3A patent/EP3935914A1/de active Pending
Also Published As
Publication number | Publication date |
---|---|
FR3093572A1 (fr) | 2020-09-11 |
US11863988B2 (en) | 2024-01-02 |
FR3093572B1 (fr) | 2021-02-19 |
US20220182834A1 (en) | 2022-06-09 |
WO2020178503A1 (fr) | 2020-09-10 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN111818032B (zh) | 基于云平台的数据处理方法、装置及计算机程序 | |
EP2820795B1 (de) | Verfahren zur verifizierung der identität eines benutzers eines kommunikationsterminal und dazugehörendes system | |
FR2825869A1 (fr) | Procede d'authentification entre un objet de telecommunication portable et une borne d'acces public | |
FR3030083A1 (fr) | Procede d'authentification d'un utilisateur, serveur, terminal de communication et programmes correspondants | |
WO2017149453A1 (fr) | Systeme ouvert et securise de signature electronique et procede associe | |
WO2020178503A1 (fr) | Micro-serveur portatif, autonome et securisé de collaboration entre différents utilisateurs | |
WO2020260136A1 (fr) | Procédé et système de génération de clés de chiffrement pour données de transaction ou de connexion | |
FR3095707A1 (fr) | Procédé de sécurisation d’une communication et dispositif correspondant. | |
FR3039909B1 (fr) | Cle de contact cryptographique (cik) incorporee dans une cartouche de donnees amovible | |
FR3039956B1 (fr) | Configuration de systemes cryptographiques | |
EP3528464B1 (de) | Verfahren zum koppeln von elektronischen terminals, koppelvorrichtungen, terminals und entsprechendes programm | |
EP3311531B1 (de) | Hardwarekomponente und verfahren für fernendgerät zum zugriff eines lokalen netzwerks, zugehöriges dienst-gateway, zugriffsautorisierungsverfahren und computerprogramm | |
WO2006092504A1 (fr) | Procede de transfert securise par carte securisee | |
FR3039949A1 (fr) | Chargeur de cles cryptographique incorpore dans une cartouche de donnees amovible | |
FR3039950A1 (fr) | Serveur de cles cryptographiques incorpore dans un systeme de transfert de donnees | |
EP3552136B1 (de) | Verfahren zur verwaltung einer zugangsberechtigung zu einem dienst für eine kommunikationsvorrichtung | |
WO2022152630A1 (fr) | Procédé pour sécuriser l'utilisation d'un module iot connecté à une chaîne de blocs | |
WO2023170186A1 (fr) | Dispositif portable et autonome de sécurisation de transfert de données et procédé correspondant | |
WO2024134038A1 (fr) | Procede pour la sauvegarde et la restauration d'un secret detenu par un portefeuille de cryptoactifs | |
WO2024134040A1 (fr) | Procédé pour la sauvegarde et la restauration sécurisée d'une graine détenue par un portefeuille de cryptoactifs | |
FR3051091A1 (fr) | Procede d'authentification pour autoriser l'acces a un site web ou l'acces a des donnees chiffrees | |
FR3125191A1 (fr) | Procédé d’établissement authentifié d’une connexion entre un équipement raccordé à au moins un réseau de communication et un serveur d’un fournisseur de services et dispositifs correspondants. | |
WO2007101941A1 (fr) | Procede pour l' appairage securise de deux systemes prealablement a leur mise en communication | |
FR3006136A1 (fr) | Appairage entre dispositifs dans un reseau de communication | |
FR3047625A1 (fr) | Systeme pour piloter un programme d'ordinateur mis en oeuvre par un dispositif electronique depuis un objet nomade, dispositif, objet et procede associes |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: UNKNOWN |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE INTERNATIONAL PUBLICATION HAS BEEN MADE |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: THE INTERNATIONAL PUBLICATION HAS BEEN MADE |
|
PUAI | Public reference made under article 153(3) epc to a published international application that has entered the european phase |
Free format text: ORIGINAL CODE: 0009012 |
|
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: REQUEST FOR EXAMINATION WAS MADE |
|
17P | Request for examination filed |
Effective date: 20211006 |
|
AK | Designated contracting states |
Kind code of ref document: A1 Designated state(s): AL AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HR HU IE IS IT LI LT LU LV MC MK MT NL NO PL PT RO RS SE SI SK SM TR |
|
DAV | Request for validation of the european patent (deleted) | ||
DAX | Request for extension of the european patent (deleted) | ||
STAA | Information on the status of an ep patent application or granted ep patent |
Free format text: STATUS: EXAMINATION IS IN PROGRESS |