KR20090072717A - New data storage usb disc, computer interface usb device and method by flash memory's bad patten - Google Patents

Abstract

A USB disk, a USB connection device and a method thereof for using bad information of a flash memory as an encryption key for automatically performing an encryption and forming an encryption key are provided to minimize the loss and the reverse effect of loss/theft by restricting an access available range. An encryption key value forming logic(6) searches bad area information of a USB(Universal Serial Bus) disc. The encryption key value formation logic forms the intrinsic value. A decryption and encryption logic(7) automatically performs decryption with the bad area encryption key value to the soft encryption key value. A USB interface unit(1) connects to the external device including the computer.

Description

  USB disk using USB memory as encryption key, USB connected device and method thereof {New data storage USB disc, computer interface USB device and method by Flash memory's bad patten}

      In the case of flash memory, the price is sharply reduced due to the development of production process technology and the increase of demand, and the memory capacity is also increasing year by year. Various types of memory cards such as USB / SD / CF have been developed, It is widely used as a storage means for cameras, PDAs, mobile phones, and the like.

      Floppy disks, which were widely used in computers in the past, have been officially disappeared recently. Currently, most companies and government agencies store files and data on CDs or DVDs for data storage and transfer. When used, USB memory cards or removable hard disks are used as secondary portable storage devices.

      Or, information is stored on the web hard via the Internet, but most companies prohibit it for information security and data leakage prevention. In addition, the product life cycle is shortened due to the development of technology, and most companies, research institutes, government agencies, etc. have to maintain the security of developed technology, policy data, accounting data, etc., and in some special cases The USB memory card is equipped with a fingerprint sensor or various enhanced password authentication means. However, when storing it on a CD or DVD, there is no special security measure except software password when it is leaked.

      In addition, large corporations block and search e-mails to prevent the leakage of important corporate confidential data to the outside, but information may be intentionally leaked to the outside through general USB memory cards or CDs. When the back is lost, the stored data and files are exposed as they are. In any case, the recorded information should not be disclosed in response to the manager's request. At present, no solution has been proposed except for an active method such as mounting a fingerprint sensor.

      USB memory, widely used by the government since 2008, has been certified by the NIS as a government agency equipped with user identification / authentication, encryption / decryption of designated data, prevention of random copying of stored data, and deletion to protect data in case of loss. Only mandatory use.

      Accordingly, the so-called "USB disk" filed by the present inventors is a new content and data storage medium based on low-cost flash memory, while recording content data, data data, files, etc., which are made in various compression formats, safely and impossible to copy. Because it is non-volatile memory, it is not erased, and it can safely restore encrypted data with a reader device and a computer USB connection device, and is configured to support both complex compressed data types such as voice and video data.

      That is, a credit card size memory card (aka “USB disk”) that is optimized to be competitive with existing media in terms of copy protection function and price due to physical characteristics occurring during the semiconductor production process patented by the present inventor. In the case of applying a technique of forming a unique encryption key value using the characteristics (address) of the bad area generated during the flash memory manufacturing process, the present invention reads the information of this bad area of the USB disk to form an encryption key value. Security, which encrypts and decrypts automatically, makes it impossible to duplicate the copy, and encrypts and stores the unique key values of the playable computer connection device in the encryption process. Or "private security storage device" will be.

      That is, the present invention connects to the USB disk that records the encrypted data, extracts the characteristic value of the bad area, decrypts the data based on this, and retrieves the unique key value information of the computer connection device. Access is not allowed if the header file of the selected file is not authorized and registered, so data storage devices, computer-connected devices, and other devices that contain important security data or users who do not want the recorder to use the USB disk are not allowed. It's about how. The computer connection device can be configured by connecting with a computer USB port or a cable, or provided as a built-in floppy disk driver of the computer. In this case, the computer can have a unique key value of the computer connection device that cannot be duplicated. It can be used as. In order to actively respond to SW piracy, which is a serious social problem at present, it is possible to prevent piracy if SW is provided for sale on a USB disk instead of CD for sale or CD.

      This enhanced security feature is inconvenient for users, for example, when a computer connection device is lost, such as a USB disk not being accessible to the computer. Can be solved. If you add a log function that records the unique key value, date, time of use, etc. of the computer connected device that accesses the file, it is possible to manage the history and provide more security.

      Because of these structures, characteristics and advantages, it is also possible to call the present invention "USB secure disk". In the case of the existing USB memory, the memory capacity is fixed, so there is an economic burden to purchase a new one whenever a new capacity is required, and if the data is lost, all data is lost. 16G), the damage is large, the conventional type of USB memory is difficult to manage the data systematically, and it is difficult to carry a plurality of USB memory to solve the above problems by separating the USB disk and USB connection device as the present invention Can be.

      The USB disk has unique unique value when it reads the bad area information uniquely generated for each memory like a human fingerprint by the random wafer property and manufacturing process environment during the flash memory manufacturing process and calculates it by a predetermined method. Has the big advantage that illegal copying is physically impossible because it uses this as encryption key value.

      As a technique for encrypting data using these encryption key values, various methods (operation, logic, conversion, substitution, rotation, etc.) can be applied by the USB disk encryption programmer, and soft encryption key values can be added. Data can be protected from piracy.

      Since the encryption method is based on the physical encryption key value due to the characteristics of the bad area, it is possible to copy a disk from one USB disk to another USB disk, but since the physical encryption key values are different, restoration is completely different from the computer connection device. Even if a pattern for decrypting one physical encryption key value is found, it does not apply equally to other physical encryption key values, so it is meaningless.

      Of course, it is no exception that any encryption method can be decrypted when the principle of formation of all encryption key values and various methods of key values and encryption are disclosed. In this respect, the encryption methods applied as the present invention are provided to be made by an on-demand semiconductor (ASIC) to be automatically processed to provide protection against possible hacking and internal leakage.

      The present invention has been proposed to solve the above problems, such as a USB disk, USB disk and computer, digital cameras, mobile phones, etc. containing data encrypted on the basis of flash memory bad information similar to credit cards Computer USB connection device that automatically encrypts / decrypts, retrieves, executes, and manages the encryption process by connecting in the middle of a device with a memory device installed, and when moving and storing data from a computer, digital camera, mobile phone, etc. to a USB disk. Storage Wizard ”relates to a method for controlling accessor unique value, log file type, network access function selection and the like through a program.

      Currently, in order for various devices to read and play encrypted data on the USB disk, it is necessary to know all the encryption key values and encryption methods determined by the memory bad area of the USB disk and soft encryption key values if necessary, and then connect and program the hardware. If you go to an open platform to diversify your terminal and computer peripherals that support USB disks, all of these encryption methods should be disclosed.

      As public passwords are no longer passwords, the encryption method for USB disks that are physically unique like fingerprints is no exception. In this respect, developers of various terminals and computer peripherals can access the encryption system, method, and key value of the USB disk, and connect the computer according to the semiconductor and security management method of the present invention using a known general interface method (for example, USB communication). Only the device should decrypt and access the encrypted data on the USB disk automatically.

      Conversely, a computer interface device that converts normal computer data into an encrypted format, and a computer connection device with a security management method receives original data to be stored in a predetermined interface method, and checks the state of the USB disk and erases it if it is not formatted. Etc. may be initialized, the bad area information may be retrieved to calculate an encryption key value, and the original data may be encrypted and written to the USB disk.

      At this time, additional control information data such as accessor, log file type, network access permission etc. are received by “Storage Wizard” program on the computer screen and encrypted along with the original file and recorded in the format and order on USB disk. If most crypto devices are useless, they may be due to incomplete cryptographic systems, developers' back doors, or the recognition of formalization patterns when creating numbers in all cases through sequence processing. In the case of the present invention, by providing a semiconductor, security management method that operates like a black box, if the computer blocks only the backdoor, the computer cannot determine the formalization pattern of the encrypted data and physically encrypts the information of the bad area. USB disks used as key values can be completely protected from hacking because the key values are all determined differently.

That is, even if the encryption pattern of one USB disk is figured out, this means that the USB disk information has the same bad space information. 1 / (64k) ²⁰ , which is close to 0), and does not apply equally to other USB disks, and this encryption makes USB disk-to-USB disk copying insignificant.

      In addition, the unique values of computer-accessible devices that can be accessed can be conveniently selected (name and unique value matching table) through the “Storage Wizard” program, encrypted with the files and data to be stored, and recorded on the USB disk. Memory devices capable of preventing and controlling accessors are made. Of course, the computer connection device is configured to decrypt the USB device so that only the files whose connection device inherent values are set to be accessible can be displayed and executed.

      In this way, even if sensitive data of corporations, government agencies, and research institutes are leaked or lost, they cannot be used without a password-connected computer connection.

      Assuming that the computer connection device is also lost and stolen, the contents of the USB disk are checked if the computer is connected to the Internet and if it is illegally attempted to decrypt the USB disk and if it is reported as a unique value by connecting to a specific server. Can be automatically deleted and tracked.

      Conversely, if a normal holder loses or breaks a computer connection device, a method of restoring the computer connection device is to set up a master computer connection device owned by the computer security officer in an enterprise and connect it to a USB disk used in the company by default. If you configure the device intrinsic value or insert a separate computer connection to your computer, you can always write this inherent value to the USB disk (fixed + mobile device).

      In addition, installing a log file that records the access history information of the file can further enhance security. Therefore, the file format stored in the USB disk is composed of the header file recorded with the accessor's own value + the access history log file + the file to be saved.

      The memory used in the present invention, a so-called USB disk, which is patented by the present inventors, the flash memory is the most common since the recorded contents must be maintained even if power is lost among various memory systems (DRAM, flash, SRAM, etc.).

      There are many different types of flash memory, but in the case of commonly sold semiconductor packages, 48 pins are standard for NAND flash types, and NOR flash is packaged with 48 to 88 pins.

      When changing this to SD, MMC, CF, or memory stick type, which is a general memory card interface type, additional parts such as a flash card controller are added, so that the unit price increases. NAND flash memory can be at least 14 pins (I / O 8-pin, CLE, ALE, RE, WE, Power, GND) even if you do not use a separate flash card controller. Smart media cards made by Toshiba, Japan, are the same in that they do not use a separate controller. However, since they must be supported for both reading and writing, there are as many as 18 pin contacts.

      Using non-inexpensive flash memory, disposable memory such as EEPROM or OTP memory, and various other non-erasable memory, pins are read-only and provided as a memory card. It can be said that it is included in the scope of the present invention.

      As flash memory replaces most recording media, production is increasing rapidly. In the case of flash memory, the memory cell size is gradually decreasing with increasing memory capacity, and a bad area (bit, byte, or block) inevitably occurs. If more than a certain standard (1G bit class, 20 bad blocks are allowed in the total of 1024 blocks-Samsung Electronics Data Book), it is classified as a single product defect.

      In a standard memory card or the like, important data or files are recorded, so the bad block is fatal and defective parts cannot be used. In addition, unlike current flash memory, which does not use all 128K byte blocks (small block type, 64 Kbyte is one block in case of large block type) even if there is more than one bit, USB disk is partially read-only (rewritable). Because it can be used after formatting, it can be configured to use only the bad part and not to use the rest of the normal area in the block, so that the USB disk can be used as a bad flash memory that is discarded. have.

      Other objects and advantages of the present invention can be understood by the following description, and will be more clearly understood by the embodiments of the present invention. Also, it will be readily appreciated that the objects and advantages of the present invention may be realized by the means and combinations thereof indicated in the claims.

 The present invention provides an encryption process by connecting a USB disk containing data encrypted based on flash memory bad information similar to a credit card in the middle of a USB disk and a device having a memory means such as a computer, a digital camera, a mobile phone, and the like. Intrinsic values, logs accessible by computer connection devices that automatically encrypt / decrypt, search, execute, and manage, and programs such as “storage wizards” when moving and storing data from a computer, digital camera, or mobile phone to a USB disk. The present invention relates to a new memory card (USB secure disk) which is configured to control file types, network access function selection, and the like to prevent illegal copying and guarantee privacy. This minimizes the adverse effects and losses in case of loss / theft by limiting the vulnerable security issues and accessibility of CDs and DVDs used by companies, government agencies, research institutes for managing huge projects and accounting data, or for external transmission. In case of storage device, it is divided into USB connection device and USB disk (“USB Secure Disk”) and using bad area information as encryption key, which contributes to the spread of spread through security and privacy, cost reduction and size USB. There is.

The present invention can provide a privacy function uniquely by preventing the strong illegal copy and the USB disk access range to the unique value of the connection device through the USB disk using the bad area information of the flash memory as an encryption method. As a USB disk, it can be applied to computers using existing memory cards and devices such as MP3 / PMP / PDA / UMPC / Navigation / Digital Cameras / Digital Frames / Mobile Phones. It is also used as a replacement for CDs and DVDs for protection, and can actively control the most vulnerable security features, such as CDs and DVDs used to store, store and transmit relevant data for computers used by businesses and government agencies. Uses to replace it and various advanced ID cards, student ID card, ID card, financial institution card, micropayment and Here it can also be used in commerce for.

As described above, the method of the present invention may be implemented as a program and stored in a recording medium (CD-ROM, ROM, RAM, floppy disk, hard disk, magneto-optical disk, etc.) in a computer-readable form. Since this process can be easily implemented by those skilled in the art will not be described in more detail.

The present invention described above is capable of various substitutions, modifications, and changes without departing from the technical spirit of the present invention for those skilled in the art to which the present invention pertains. It is not limited by the drawings.

     In order to achieve the above object, the initial USB disk, which is the object of the present invention, records content data in an internal flash memory and is used only for playback such as a single recording, so that the user can arbitrarily delete and write the contents of the USB disk externally. In order to prevent the flash memory type, the WP (write protect) signal, which is a terminal that prohibits writing / erasing to the memory, is pulled down internally to be active to prevent writing and erasing. In order to develop a "secure disk", the WP terminal is set to be externally controllable, and the I / O and control signal terminals for reading data from the memory are connected to an external contact terminal and reconfigured to provide a credit card-like form.

      In the "USB secure disk" and the connection device, security management method of the present invention, if the USB disk and the connection device is configured to connect through the socket, respectively, it is possible to inspect, read, write, erase, and check the flash memory inside the USB disk. Therefore, the bad area of the flash memory is first examined and a specific encryption key value is formed by the method (password # 1) set based on this. Based on the encryption key value, the header file in which the accessor intrinsic value is stored is read and compared with the inherent value of the connection device in which the USB disk is inserted to determine the usability.

      When the unique values are available and the computer user selects a file, the data is read by specifying the corresponding address on the USB disk, and the decryption method (password # 2) and optionally soft password if necessary. It is designed to decrypt the original data by applying the key value (password # 3) and deliver it to external devices such as a computer (digital picture frame, mobile phone, PDA, etc.).

      As such, it basically provides a read function that restricts accessors, but conversely, the original saved file and data are received from a separate external device (computer, digital frame, mobile phone, PDA, PMP, etc.) and encrypted (encrypted). The ability to write to is provided by default.

      In other words, if the hardware is configured to connect with each contact terminal of the USB disk, the flash memory inside the USB disk can be inspected, read, written, erased, and status checked. A specific encryption key value is formed by (password # 1).

      Based on the encryption key value, the header file containing the accessible user's unique value is read (any connection device can be used in case of a blank USB disk), and it can be compared with the unique value of the connected device to which the USB disk is currently inserted. . When the unique values are matched and the computer user selects the file to be saved and various security options through the “Storage Wizard” program provided, the saved file, header file, and log file are configured and entered in a predetermined format and order. , Write the encrypted data to the flash memory of the USB disk by assigning an address to the USB disk, encrypting the data by applying the encryption method (password # 2) and optionally a soft encryption key value (password # 3) if necessary. It is configured to. The semiconductor and security management method of the present invention provides an interface type semiconductor that automatically processes the encryption process so that various CPUs, CODECs, and DSPs that connect the NAND flash memory can use the USB disk in the same way as the general NAND flash memory. It is a module that embodies the logic and method that performs these functions. It can be designed together with a semiconductor when designing a wafer such as CPU, CODEC, DSP, etc., or provide the logic and methods that perform these functions to a recording medium such as a program. It is provided in the form of installation on CPU, CODEC, DSP, etc.

      For reference, if a large number of external contact terminals are provided in the USB disk to which the present invention is applied, the number of terminals must be minimized because reliability is lowered and costs are increased. When the most widely used and low-cost flash memory is applied to the present invention, at least 14 It is sufficient to configure the pins (I / O 8 pin, ALE, CLE, RE, WE, Power, GND), but if additional functions are to be supported later, R / B terminal and flash memory indicating the operation status of flash memory When not in use, a CE terminal may be included in the external contact connector to enter standby mode to reduce current consumption.

      Although the names of each pin have been defined based on the NAND flash memory as described above, most memory means have similar functions, and the scope of the present invention is that the minor operation differences on the timing chart provided by the name and the memory means are bad. When creating an encryption value with the information of the realm, all can be said to be restricted.

      The above objects, features and advantages will become more apparent from the following detailed description taken in conjunction with the accompanying drawings, whereby those skilled in the art may easily implement the technical idea of the present invention. There will be. In addition, in describing the present invention, when it is determined that the detailed description of the known technology related to the present invention may unnecessarily obscure the gist of the present invention, the detailed description thereof will be omitted. Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.

      1 is a structural diagram and application example of a data storage card ("USB security disk"), a computer connection device and a method using the bad information of a flash memory to which the present invention is applied as an encryption key. As shown in FIG. 1, the semiconductor, module, or security management method of a computer connection device to which the present invention is applied encrypts the encryption key value forming logic 6 that searches for bad area information of the USB disk 3 to form a unique unique value. A decryption and encryption logic that automatically performs decryption using a bad area encryption key value and optionally a soft encryption key value. The file security management means (2) is composed of the USB interface means (1) for connecting with external devices and the address and data bus processing logic (9) for connecting addresses, data, and commands between the USB devices. The memory format for storing the serial number by the eigenvalue generating means 10 or the flash memory for using a random eigenvalue as It is provided in the form of a random number generating semiconductor that provides the same code value.

      In this semiconductor, module or security management method, the terminals connecting to the USB disk 3 are 16-pin (I / O 8-pin, ALE, CLE, RE, WE, Power, GND, WP, CE) standard NAND flash memory interface. On the basis of the internal decryption or encryption (7), encryption key value forming logic (6, 8), etc., even when configured on the same wafer as the USB interface means 1, an external device such as a computer can understand the encryption process. It is configured to read and write the USB disk 3 like a standard NAND flash memory without the need.

      As an interface method for connecting to an external device, USB interface means (1) can additionally provide a variety of methods. If such communication method is selected, a standard communication method such as USB, serial communication, parallel communication, SDIO method, CF method is selected. It is possible to make it by application. In consideration of the type of external devices, general purpose, communication speed, price and applicability, USB interface method is the most powerful.

      For reference, NAND flash memory, which is mainly used for USB disks, has various capacities and a structure that can be inexpensively designed and produced. The structure of flash memory is a cell of bits, and these bits gather to form a page, and the pages gather to form a block.

      In the case of a large block type flash memory, a page is composed of a total of (2048 + 64) bytes of 2048 bytes of main area and 64 bytes of free area (recording of the data state of the main area and the code area for error correction recovery). Is composed of 64 such pages, so the capacity of one block is (2048 + 64) x64 = (128K + 4K) bytes.

      In the case of small-block flash memory, the page consists of 512 bytes of main area and 16 bytes of free area, which is composed of a total of (512 + 16) bytes. 16) x32 = (16K + 512) bytes. If the word is composed of 16-bit words instead of 8-bit units, each half is formed.

      In the case of NAND flash memory, the read / write mode is possible only in the unit of page because of the cell structure characteristics, and the erase function that needs to be performed before writing is only possible in the unit of block. <128K + 4K> bytes).

      In case of 1G bit large block, 1024 blocks are provided.Because of this characteristic, up to 20 bad blocks are allowed in Samsung Electronics and Hynix, even more than 2% of the total blocks. do. In the flash memory, a spare area composed of the main area in page units includes bad block information, a logical sector number, a power failure status flag generated during writing, an error correction code value of the main area, and a logical sector number. Etc. are stored to ensure a certain degree of reliability and recover from the bit broken phenomenon occurring during use.

      That is, NAND flash memory may contain invalid blocks, but it should not store information in these blocks, the initial invalid blocks mean the original bad blocks tested before shipping and the invalid block markings By writing 00H in each first page free area of the block, and writing and erasing within the useful life (at least 10 years), additional bad blocks can occur, resulting in about 10% of the total capacity to prevent data loss. Set to the reserved area.

      If a bad block occurs during writing or erasing (very unlikely during reading), the original data is transferred to this storage area and recorded, but of course, if no additional bad block occurs during use, the storage area is not used and the area is discarded. Current devices that use flash memory to respond to user claims due to loss are mandatory.

      In other words, if an error occurs during writing or erasing, the block is marked as a bad block and replaced with a block in the storage area. However, when an error occurs during reading, the error correction code is reconfirmed and corrected.

      Compared to existing devices that use all of these read / write / erase functions, if content data is written to the flash memory once and then used as read-only, the block unit mode such as the erase function is used only in page unit mode. Even if a bad bit occurs, the memory space can be operated in bad page units rather than a bad block.In the case of a large block, if a bad bit occurs, the current bit (128K + 4K) cannot be used, but the read for the same purpose as a USB disk In dedicated mode, there is a big advantage (validating 98.5%) that only discards (2K + 64) bytes.

      Devices that use both read / write / erase functions allocate about 10% of the total capacity to the reserved area to cope with bad bits that may occur during use. Extremely small, there is no need to allocate a separate storage area, which allows you to use all of the given memory capacity.

      In addition, the read-only mode does not require a separate flash memory file management program (FAT) at the device (device) level. If one happens, we can use only one byte and validate the 1999 byte.) A method and flow chart can be presented as follows.

      In the case of a USB disk patented by the present inventors, if a bad bit occurs during initialization, all the blocks to which the bit belongs are bad-blocked, and when a bad block is made in the process of erasing and writing, the USB disk is replaced with a set reserved block area. As described above, the flash memory and the memory card used for content recording are recorded only once at the time of manufacture, so a block having bad bits is determined as a bad block by bad bit information found during initialization (formatting). It is designed to write data sequentially to the next normal block, so that there is no storage block area that is not needed if a bad block does not occur during use, and utilizes a given memory space. Applicability is presented as the first advantage.

      In addition, since the flash memory and the memory card used for content recording in the USB disk are only written once at the time of manufacture and are configured as read-only so as not to use the basic function of erasing by block of flash memory, the initialization (formatting) is performed. Pages with bad bits are marked as bad pages or written in the header file area that stores the bed page addresses and write data sequentially to the next normal page. The second advantage is that the flash memory control method can be applied, which utilizes all the space except the bad page.

      In addition, the addresses of the bad areas (1 bit, 4 bits, 8 bits, 16 bits, etc.) found during the initial inspection are recorded in the header file area for recording the characteristics of the flash memory in the USB disk, and the data of the flash memory is stored. When recording the data in the area and reaching the location where the bad area is found based on the header file data, the area is skipped and the data to be recorded in the bad area is subsequently recorded at the next position. When reading the memory, it is configured to skip when the address of the bad area is reached and to read the data of the later area, so that all the normal areas except the bad area are used even in the bad block. The third advantage is presented in that the method can be applied.

      Also, in the header file area for recording the characteristics of the flash memory in the USB disk, addresses of the bad areas (1 bit, 4 bits, 8 bits, 16 bits, etc.) found during the initial inspection are recorded, and the data area of the flash memory. In order to ignore the bad area and write the data sequentially, at the location where the bad area is found, record the true data value corresponding to the corresponding address in the header file area.When reading the flash memory from the reader device, write to the address of the bad area. When it arrives, it skips and replaces it with the true data value corresponding to the corresponding address in the header file area, and uses the remaining normal area except the bad area in the bad block. The fourth advantage was presented.

      This new concept USB storage device consists of a USB disk with a flash memory that is similar in shape and thickness to a credit card and a USB connection device with a semiconductor that reads it and converts it into a USB method. When the capacity of the disk becomes full, a new blank USB disk can be inserted and used to provide many economic effects, data sorting efficiency, and minimizing loss in case of loss.

      These USB disks can be sold with computer SW, and can be provided with contents such as games, education, and recordings. In this case, when DRM using the bad area characteristics is applied, duplication of media can be blocked. . In addition to these areas, it can be applied to identification cards, student ID cards, and employee ID cards, which are provided with programs, data, and solutions suitable for the relevant fields. In case of embedding securities program, you can use any computer by inserting the corresponding USB disk. You can use any computer to install various financial transactions by installing financial program, certificate, and OTP encryption generator.

      In addition, if a smart card COB is installed in the financial sector, it can be used for electronic commerce and micropayment, and if a smart card COB for security authentication is installed, data storage can be provided in the form of dual security, thereby securing the security of companies and government agencies. Can contribute to reinforcement.

      Government agencies are having a lot of difficulties in introducing e-residential cards as a matter of privacy, and they can be provided by embedding and upgrading necessary information for health insurance / employment insurance / national pension / industrial insurance. In case of adding up by each dependent family, it is inconvenient to use, and it can be provided by individual USB disk, and the personal information (photo, name, work, address, etc.) is recorded on the front of the USB disk so that it is not used unfairly. It also allows the medical and prescribing agency computer and USB connection to be automatically delivered.

      Inserting a USB disk with a built-in VOIP program also provides the convenience of using an Internet phone with any computer.

      In order to fit the shape of the USB disk to the thickness and size of the credit card of 0.76mm, a method of mounting parts in the embossing area is also presented.It can be used as a USB hub by integrating a plurality of USB connection devices like a CD changer It is provided by installing USB standard port.

      If the semiconductor that reads the flash memory used for the USB connection device and converts it into a USB interface has a music (MP3) and video playback function, a separate external input / output connector is provided to listen to music through the remote control adapter. It has a built-in battery, operation keys, liquid crystal, and earphone jack to power USB connection devices.

      Battery and liquid crystal earphone jack can be built in the USB connector, but in this case, the thickness is too thick to use as a simple USB connector. With the current technology, the USB connection device can be made into 3mm by inserting a USB disk so that it can be carried in a wallet.

      FIG. 2 is a flowchart illustrating a data storage card, a computer connection device, and a method using the bad information of a flash memory to which the present invention is applied as an encryption key, respectively.

      In a data storage card, a computer connection device, and a method using the flash memory bad information of the present invention as an encryption key, in order to implement a read mode, the hardware is configured to connect a USB disk through a USB disk connection socket of the connection device. The flash memory inside the USB disk can be inspected, read, written, erased and checked, and the bad area of the flash memory in the USB disk can be inspected first. List the files that can be accessed by searching the header file where the connection device unique value of the accessible user is stored in each file of the USB disk based on the encryption key value. Informational message is displayed on the computer screen, warning message that no access rights without Displays.

      In case of an access user, inputting the desired file selection information from an external device such as a computer reads the corresponding address and corresponding data from the USB disk, and sets the decryption method (password # 2) and optionally the soft encryption key value ( By applying password # 3), it decrypts the original data, converts it into a predetermined format through the address and data processing logic unit, and outputs it for use in an external device.In this case, the file and data are moved to the computer by the set security level. And storage.

      This process is repeated by increasing the address until the read mode is completed in an external device such as a computer, and records data such as accessor information, usage time, and usage information type in the log file of the accessed file.

      In this way, the read function is basically provided. However, the method of encrypting and writing data to a USB disk is as follows. This means that current USB disks are prohibited from recording data by individuals, but once the verification of content and data protection is done, it is possible to download the data in connection with a computer and encrypt it and write it to the USB disk. Downloading data from an external device such as a computer, encrypting and recording it through the semiconductor, module, and security management method of the connection device of the present invention, and sending the bad area information of the USB disk to a separate authentication center, the content selected by the user. The encrypted data of the coming down and the connection device of the present invention is a method of simply writing sequentially to the USB disk, but for the purposes of the present invention is suitable because the former method can be used offline.

      In the write mode, the original file and data can be received from an external device such as a computer and encrypted (encrypted) and written to the USB disk. When the USB disk is inserted into the connected device, the flash memory inside the USB disk is examined. Read, write, erase, and check status are enabled. First, the bad area of the flash memory in the USB disk is examined, and a specific encryption key value is formed by the method (password # 1) set up based on this.

      At this time, it is optional to check whether the proper serial number (combined bad area information and serial number) is recorded on the USB disk and recorded only at the factory when manufacturing the USB disk. Display a message.

      If it passes, it searches the header file where the connection device unique value of the accessible device is stored in each file of the USB disk based on the previous encryption key value. The list information is displayed on the computer screen, and if there is no access message, a warning message is displayed.

      Of course, a blank USB disk that has never been used can be used freely with any connection device, but only the first user (master intrinsic value and backup connection device inherent value) is allowed to delete, add or change USB disks that have used some areas. Whether or not they can be accessed may be provided as an option in the "Storage Wizard" provided separately.

      These deletions, additions, and changes can be recorded in log files, and log files stored on the USB disk cannot be deleted. In case of accessor, if the file and data information selected to be saved from an external device such as a computer is input, the corresponding address is mapped from the USB disk, and the input data is set to the encryption method (password # 2) and optionally soft encryption key value. By applying (Password # 3), the data is encrypted to form encrypted data to be used in the flash memory of the USB disk, converted into a predetermined format through the address and data processing logic section 9, and transmitted to the USB disk for writing. In addition, it is designed to record the access range and security setting information specified by the search wizard in the header file and record the work in the log file.

      This process is repeated while increasing the address until the controller completes the write mode. Here, assuming that the connected device is lost or stolen, users can respond by taking two connected devices, one for mobile use and the other for backup (fixed). If present, for backup (fixed), it may be the unique value of the company security officer's connection device.

      The powerful security and personalization of USB disks can provide a variety of new applications that require advantages such as USB disk personalization and copy protection, but the software must first prevent piracy. The following section describes game software fields such as the Xbox and PlayStation.

      Computers and game software have made a lot of efforts over the past years to piracy, and Microsoft's recently released Windows Vista in the United States introduced a network authentication system that would never be copied, but it is being copied within a month after it was released. .

      Therefore, the software is installed on a USB disk that can provide various capacities (currently 128M ~ 4G) according to the flash memory capacity, and the unique value of the connected device where the software is installed can be judged when executing the program. Likewise, if a network certification system is introduced, piracy can be prevented.

      This is because the duplication of the USB disk in the USB disk is impossible because the possibility of physically having the same bad area pattern information is extremely small, and the connection device having the same unique value represented by the serial number is not duplicated. If you do not use the same computer (connected device), there is no duplicate disk, illegal use is impossible.

      Can you virtually create USB disks and unique values for the same connection as virtually simulated simulation in Windows Vista? This requires two authenticated values (must have a USB disk inserted into the connecting device) and an encrypted value that is returned from the USB disk at the time of use (for example, it records the current computer time on a USB disk, receives the encrypted value, It is judged impossible because it is used).

1 is a structural diagram and application example of a data storage card, a computer connection device and a method using the bad information of a flash memory as an encryption key to which the present invention is applied;

2 and 3 are flowcharts of a computer connection device and a method of a data storage card using bad information of a flash memory as an encryption key to which the present invention is applied.

* Explanation of symbols for the main parts of the drawings

1: USB interface means 2: File security management means

3: USB disk connection socket 4: Encryption data

5: decryption data 6: bad area encryption key formation logic

7: Decryption and Encryption Logic 8: Soft Encryption Key Formation Logic

9: address and data processing logic 10: unique key value generating means

Claims (49)

      In a USB storage device,      A USB disk is constructed by mounting a flash memory COB (package) to store digital data in a size and thickness similar to a credit card.       A semiconductor that converts data from flash memory to USB       Connect to a USB device (such as a computer) through a USB connection device with a built-in USB connection connector. USB disk and USB connecting device, characterized in that the configuration of the USB disk to the removable USB device       According to claim 1,      According to ISO7816 regulations, credit card size is defined as 85.5mm x 54mm x 0.76mm, and the area from the bottom to the top of 24mm is defined as the area for embossing card number, expiration date and name.      15.3mm from the top is the magnetic card encoding tolerance. The smart card COB is located 9mm from the left in the space between them, The space where the flash memory COB (package) will be located USB disk characterized by consisting of the space on the right side of the smart card COB among the space between the embossed area and the allowable range of encoding According to claim 1,       Flash memory COB (package) connection method considering wafer size       Memory interface, USB, SD, MMC, micro SD, XD, USIM, Memory stick USB disk, optionally applied According to claim 1,       The flash memory COB (package) is provided within 0.6mm of ULGA type in semiconductor packages.       It is provided in the form of a chip scale package (CSP) board, so that the pad surface of the board is in contact with the USB connector connector. USB disk in the form of a credit card, characterized by being mounted on a plastic card       According to claim 1,       The thickness of plastic credit cards is 0.76mm.      Since general flash memory packages (TSOP, TBGA, etc.) are around 1mm, it cannot be mounted with credit card thickness.      Place the flash memory at the bottom of the credit card (up to 24mm from the bottom of the card) with an embossed area (the total thickness is about 1.46mm since the embossing height is 0.6mm) to 1.46mm (all or part mounting surface).       USB disk, characterized in that the pad is installed on the other side in contact with the USB connector connector According to claim 1,       To replace employee ID, ID card, student ID card It is similar in size and thickness to existing employee ID card, ID card, student card (including RF card and IC card type). USB disk type employee ID, ID card, student card, characterized by mounting a flash memory COB (package) for storing digital data According to claim 6      The flash memory space is divided into the management subject (company, institution, school) area and the user area.      In the management area, personal authentication data (displayed on the LCD of face photo data-> USB connection device), management subject-related data (contact network, company rules, learning data, etc.), computer automatic login program (USB disk type ID card must be connected to the computer for management). Computer login, etc.) This area is not accessible to users, The user area consists of management data, music, movies, photos, documents, address book, and other folders to allow deletion, addition, and editing through USB connection devices and computers. To identify memory and flash memory space According to claim 6 USB disk type employee ID / ID card / Student ID card featuring RFID and smart card COB According to claim 1,       The information in the user area is displayed when connecting a USB disk to a computer via a USB connection device. Create a USB disk folder on your computer to automatically back up. USB disk with automatic computer backup, characterized in that the loss of personal information when USB disk is lost According to claim 1, USB disk and encryption device and encryption recording / restoration method, which are manufactured using flash memory, which comprises a bad area (block) pattern which is a physical characteristic generated during the production process of flash memory as an encryption key. According to claim 1,       Combination of serial number of USB disk with bad area (block) pattern,       Record it with encryption key and encryption method according to bad area pattern USB disk and security device and encryption recording / restoration method using flash memory, characterized in that it is searched by USB connection device and it is judged to be illegal USB disk if it does not meet the standard. According to claim 1,       With stored data and files       There is a header file that stores the unique values of the accessible USB connection. USB disk and security device and encryption record / restore method using flash memory, characterized in that it is not searched by USB connection device and it is not licensed if it does not match its own value. According to claim 1,       With stored data and files USB disk and security device and encryption recording / restore method using flash memory, characterized by a log file that records usage information (access value, time, type) of USB connection device The method of claim 13, Log files can not be deleted from an external device such as a computer. USB disks and security devices that use flash memory. According to claim 1, USB disk, characterized by the use of an external product such that the number of bad blocks of the flash memory is out of the normal value According to claim 1, VOIP program on a USB disk USB disk, which can be connected to computer by using USB connection device. According to claim 1,       Securities trading / inquiry program on the USB disk USB disk, which can be used when the USB connection device is connected to the computer to use the stock trading program According to claim 1,       Internet banking, certificate, OTP password generation program on the USB disk USB disks that can be used for financial transactions when the USB connection device is connected to a computer According to claim 1,       E-commerce, micro payment, certificate program USB disks and USB connectors that can be used for e-commerce and micropayment transactions when the USB connector is connected to a computer According to claim 1,       When a smart card COB issued by a financial institution is installed on a USB disk       USB connection device reads information from smart card COB USB connection device characterized in that it reads the USB disk and smart card COB, characterized in that the program is connected to the Internet e-commerce and micropayment server is embedded       According to claim 1,       Video data and related programs (education, advertising, content, public relations) are mounted on the USB disk. USB disk, which can be played by connecting the USB connector to the computer. According to claim 1,       Put a game program on a USB disk USB disk, which can be played by connecting USB connection device to computer According to claim 1,       Put a computer program (Windows, Word, business program, etc.) on the USB disk       When the USB connection device is connected to the computer, the computer program can be run and USB disk characterized in that the program can be installed on the computer According to claim 1,       The personal data and health (regular examination data, etc.) data held by national pension (national pension) and insurance (industrial, health and employment) institutions are stored on the USB disk. USB disk, which connects to the computer and executes automatic personal information page login and data upgrade program. According to claim 1,       In order to replace the health insurance card on the USB disk, medical information and health related data (examination data, prescriptions, prescription drugs, etc.) for each member are loaded.       When a USB connection device is connected to a computer at an individual or a medical / prescription institution, a personal health information page login and upgrade program is executed, and the USB disk and health information issued by each dependent or individual, which replaces the health insurance card, are treated. USB connection for automatic delivery to prescriber According to claim 1,       File security management means (2) encryption key value forming logic (6) to retrieve the bad area information of the USB disk (3) to form a unique unique value,       Encryption and Encryption Logic (7), which performs encryption automatically using bad area encryption key values       It consists of an address and data bus processing logic 9 which connects the address, data and command between the control device 1 and the USB disk, USB connection device and semiconductor, module or security management method that has an intrinsic value generating means (10) and automatically processes the encryption process, characterized in that connected to the external device and the USB interface means (1) According to claim 1,       File security management means (2) encryption key value forming logic (6) to retrieve the bad area information of the USB disk (3) to form a unique unique value,       Logic (8), optionally recording soft encryption key values,      Decryption and encryption logic (7) for automatically performing encryption using a bad area encryption key value and optionally a soft encryption key value, USB connection device and semiconductor, module or security management to automatically process the encryption process, characterized by consisting of address and data bus processing logic (9) connecting the address, data, command between the control device (1) and the USB disk Way In the USB disk, computer USB connection device and method using the bad information of the flash memory as an encryption key,       The hardware can be configured to connect the USB disk through the contact connector of the USB connector so that the flash memory inside the USB disk can be inspected, read, written, erased and checked.       Inspects the bad area of the flash memory and forms a specific encryption key value based on the method (password # 1) set up on the basis of this, and based on the encryption key value, the unique value of the USB connection device of the accessible user is stored in each file of the USB disk. Search the header file to see if there is a unique value for the USB connection device.       If present, the list of accessible files is displayed on the computer screen.       If no file is accessible, a warning message appears indicating that you do not have access rights. In case of an access user, inputting the desired file selection information from an external device such as a computer reads the data of the corresponding address from the USB disk, and sets the decryption method (password # 2) and optionally the soft encryption key value (password). The encryption file reading mode method of the USB disk, characterized by decrypting the original data by applying # 3), converting the data into a predetermined format through an address and data processing logic unit, and outputting the same to an external device. In the USB disk, computer USB connection device and method using the bad information of the flash memory as an encryption key,       Insert the USB disk into the USB connection device to check, read, write, erase and check the status of the flash memory inside the USB disk.       Firstly, the bad area of the flash memory in the USB disk is examined, and a specific encryption key value is formed by the method (password # 1) set based on this.       Based on the previous encryption key value, the header file containing the unique value of the USB connection device of the user who can access each file on the USB disk is searched and searched for the unique value of the corresponding USB connection device.       If there is a list, the list of accessible files is displayed on the computer screen.       If not, a warning message appears indicating that you do not have access.      If you have never used a blank USB disk, you can use it freely with any USB connection device. The ability to delete, add, or change a USB disk using some areas can be provided for the first time user (master connection and its unique value) or whether access is possible. USB disk write mode The method of claim 29,      If the proper serial number (combined bad area information and serial number, recorded only at the factory when the USB disk is manufactured) is recorded on the USB disk, USB disk authentication method characterized by displaying a warning message that the illegal USB disk can not be used and does not allow use of the USB disk The method of claim 29, In the write mode, items such as deletion, addition, modification, and unique values of the USB connection device used in the USB disk can be recorded in the log file, and the log files stored in the USB disk can be deleted. USB disk with log files To install computer and game software using a USB disk, Save the software by encrypting it to the USB disk by the encryption key value according to the bad area pattern of the USB disk.       After installing the software on your computer,       Access the Certification Center over the network to get the program activation code      Alternatively, save the unique value of the USB connection device in the program installed on your computer and activate it only when the device is connected. Computer software storage USB disk and anti-piracy method, characterized in that configured to run the program The method of claim 32, Two unique values (must be a USB disk inserted into the USB connection) and Computer software storage USB disk that prevents illegal copying of programs by checking the encrypted value returned from the USB disk at the time of use (for example, recording the current computer time on the USB disk and receiving the encrypted value through the network). And anti-piracy methods According to claim 1,       Flash card COB (package) only, Alternatively, it is equipped with a socket including a plurality of connection terminals for simultaneously connecting a smart card COB (IC card COB to a credit card, ID card, etc.) and a flash memory COB (package).       Through the semiconductor that converts the information of the USB disk into the USB interface method, USB connection device, characterized in that configured to read the information of each COB of the smart card and flash memory selectively The method of claim 34,       The USB connection device       USB disk can be freely attached and detached like a computer floppy disk.       Read and write through the connection terminal of the flash memory, USB connection device, characterized in that to replace the USB disk used by connecting the computer and the USB cable with the USB disk inserted in the USB connection device The method of claim 34. USB connection device characterized in that the installation means 10 for generating a unique key value (serial number, etc.) The method of claim 34,       The USB connector comes with a USB connection cable       Equipped with an external extension socket (battery, earphone, liquid crystal interface, keypad, etc.)       Semiconductor which reads USB disk and changes to USB interface If you have a music and video playback function, you can listen to music through the remote control adapter equipped with a keypad / battery / earphone jack / liquid crystal, etc. adapter The method of claim 34,       Multiple USB connection devices can be configured in one piece (similar to the concept of a 6 to 10 CD changer)       When connected to a computer like a USB hub       Make sure your computer recognizes multiple USB connections, USB hub function with USB hub, which can be configured to use multiple USB disks, which can optionally provide additional standard USB port. According to claim 1,       If you insert a USB disk that replaces employee ID, ID, and student ID USB connection device using USB disk type employee ID, ID card, student ID, etc., characterized by zooming by installing a display device such as LCD on the USB connection device and displaying personal information (face photos, personal information) stored on the USB disk. The method of claim 39,       USB connector      The space of USB disk is divided into management subject (company, institution, school) area and user area.      In the management area, personal authentication data (face image data-> displayed on the LCD of the USB connection device), management subject-related data (contact network, private regulations, learning data, etc.), computer automatic login program (identification card must be connected to the computer) ) Etc. USB connection device, which provides a function that can be used by the computer automatic login program only when the computer is connected to the computer by inserting a USB disk to replace the identification card when using the computer within the management authority. According to claim 1, The USB connection device can create an encryption table with the unique number and location of the bad blocks, which are the physical characteristics of the flash memory, and encrypts and decrypts the encrypted information using the encryption table for the information that needs protection. Security method of the USB connection device characterized in that According to claim 1,       The operation of recording and reading information by the USB connection device,       In the case of information that does not require security of the information, the USB connection device is configured to be used as a general mass storage device by connecting a USB disk with a computer. USB connection device characterized in that the contents can be recorded or read from the USB disk through a general-purpose search program (eg Windows Explorer). According to claim 1,       The operation of recording and reading information by USB connection device       For information records that require the security of that information USB connection device records using its own DRM security program and logic According to claim 1,       The application of the USB connection device is USB connection device that reads unique information of the card from smart card COB (IC card COB) and delivers it to computer and financial network for electronic and financial transactions According to claim 1,       The application of the USB connection device is       Read unique information of USB disk and unique serial number of USB connection device.      After exchanging information about the accident by connecting to the service server (for example, the company's security server) that can determine the accident by using the unique information read through the Internet,       In the case of USB disks and connecting devices for which accident reports have not been received       Transfer the information to the USB connection, USB connection device is a USB connection device and a security providing method characterized in that the encrypted information recorded and read using the encryption table generated by the bad block characteristics of the mounted flash memory According to claim 1,       The application of the USB connection device is       Read unique information of USB disk and unique serial number of USB connection device.      After exchanging information about the accident by connecting to the service server (for example, the company's security server) that can determine the accident by using the unique information read through the Internet,       In the case of a USB disk and the connected device where an accident report is received       Transfer the information to the USB connection, USB connection device is a USB connection device and security method characterized in that to delete the data on the connected USB disk According to claim 1,       The application of the USB connection device is       Read unique information of USB disk and unique serial number of USB connection device.       When reading protected information from a flash memory on a USB disk,      Like when recording information that needs to be protected, you can connect to the Internet and exchange authorization-related information with a server that determines whether there is an accident or approval. Once we receive your authorization information USB connection device and security providing method characterized by generating a decryption table, decrypts the encrypted information and transmits it to the computer In a USB storage device,       Smart card COB (IC card COB) that provides secure authentication and memory COB (package) for storing digital information are separated or integrated (e.g. USIM) and mounted on a single card (USB disk).       Read unique information of the USB disk from smart card COB (IC card COB),       Optionally configured to read the unique information of the memory COB,       Approved via self-security verification (internal ASIC) of USB connection       Characterized in that configured to access the memory COB USB disk with two smart card COB and memory COB for security authentication, USB connection device and security authentication method In a USB storage device,       Smart card COB (IC card COB) that provides secure authentication and memory COB for storing digital information are separated or integrated (e.g. USIM) and mounted on a single card (USB disk).       Read unique information of the USB disk from smart card COB (IC card COB), Optionally configured to read the unique information of the memory COB,       After exchanging information about the accident by accessing the Internet to a security authentication server (for example, the company's authentication server) that can determine the accident using the unique information read,       If approved, configure the memory COB to be accessible       If it is not approved, the USB disk can be deleted and disabled. USB disk with two smart card COB and memory COB for security authentication, USB connection device and security authentication method

Images