KR20100002712A - Terminal and method for ristricting access to data - Google Patents
Terminal and method for ristricting access to data Download PDFInfo
- Publication number
- KR20100002712A KR20100002712A KR1020080062709A KR20080062709A KR20100002712A KR 20100002712 A KR20100002712 A KR 20100002712A KR 1020080062709 A KR1020080062709 A KR 1020080062709A KR 20080062709 A KR20080062709 A KR 20080062709A KR 20100002712 A KR20100002712 A KR 20100002712A
- Authority
- KR
- South Korea
- Prior art keywords
- data
- identification information
- user identification
- stored
- page
- Prior art date
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
- G06F21/34—User authentication involving the use of external additional devices, e.g. dongles or smart cards
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/604—Tools and structures for managing or administering access control systems
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- General Health & Medical Sciences (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Automation & Control Theory (AREA)
- Mobile Radio Communication Systems (AREA)
- Telephone Function (AREA)
Abstract
A redundancy of each page, a flash memory storing user identification information of a Universal Subscriber Identification Module (USIM) card, and a file allocation (FAT) storing the physical and logical addresses of the pages. Table), and when a request for data stored in the pages occurs, reads user identification information stored in an extra area corresponding to the page in which the requested data is stored, and the user identification information of the currently loaded USIM card. And a page manager for controlling access to the data according to the comparison result, and configuring a method for restricting data access. Therefore, when multiple users with different USIM cards are used in one mobile communication terminal, only their own data can be accessed for each user.
Description
The present invention relates to a terminal employing a flash memory, and more particularly, to a terminal and a method for restricting access to data in a flash memory.
At present, WCDMA mobile communication services are being provided to users. WCDMA (Wideband Code Division Multiple Access) mobile communication service refers to a third generation mobile communication service that provides a high-quality video call, a high-speed data service, etc. based on a WCDMA system.
The Universal Subscriber Identification Module (USIM) card, which is basically installed in the mobile communication terminal to which the WCDMA system is applied, is an essential component for subscriber authentication in the WCDMA mobile communication service. This USIM card includes ESN (Eletronic Serial Number) which is a unique number of mobile communication terminal, carrier, user password, roaming information, user related information (personal phone number, phone book, shortcut key, restriction key), carrier and content provider. The service information of the (Content Provider) is stored.
1 is a diagram schematically illustrating a case where several USIM cards are used in one mobile communication terminal.
Referring to FIG. 1, one
For example, when the user 1 mounts his or her USIM card A 31 on the
That is, data generated in relation to one user among several users in the mobile communication terminal can be viewed by other users. Therefore, if the user does not delete the data generated by the user using the mobile communication terminal, there is a problem that is disclosed to other users.
An object of the present invention for solving the above problems is a device and method for preventing the rest of the users can view the data generated for each user when a plurality of USIM cards are alternately mounted to one mobile communication terminal To provide.
An embodiment of the present invention for achieving the above object is composed of pages, the flash memory in which an extra area of each of the pages stores user identification information of a Universal Subscriber Identification Module (USIM) card, and the page FAT (File Allocation Table) that stores their physical and logical addresses,
When a request for data stored in the pages occurs, the user identification information stored in the spare area corresponding to the page in which the requested data is stored is read, compared with the user identification information of the currently loaded USIM card, and compared. According to a result, there is provided a terminal for limiting data access, comprising a page manager for controlling access to the data.
Here, when the user identification information stored in the redundant area and the user identification information of the currently mounted USIM card match, the page manager reads data from the page where the requested data is stored and transmits the data to the requesting place. Can be.
Here, if the user identification information stored in the redundant area and the user identification information of the currently mounted USIM card do not match, the page manager may not read data from the page in which the requested data is stored.
Here, the page manager may transmit garbage data to the place where the data is requested.
Here, the user identification information may be a USIM ID.
Another embodiment of the present invention for achieving the above object is a flash memory consisting of pages, the spare area of each of the pages stores the user identification information of the Universal Subscriber Identification Module (USIM) card, and the page In a terminal having a file allocation table (FAT) that stores physical addresses and logical addresses thereof, when a request for data stored in the pages is generated, the terminal is stored in an extra area corresponding to the page in which the requested data is stored. Reading the stored user identification information, comparing the user identification information of the currently loaded USIM card, and controlling access to the data according to the comparison result. Provide a way to.
Here, in the controlling of the access, if the user identification information stored in the redundant area and the user identification information of the currently mounted USIM card match, the data is read from a page in which the requested data is stored to request data. It may be a step of transmitting to.
Here, the controlling of the access may include not reading data from a page in which the requested data is stored if the user identification information stored in the redundant area and the user identification information of the currently mounted USIM card do not match. Can be.
Here, the controlling of the access may further include transmitting garbage data to the place where the data is requested.
Here, the user identification information may be a USIM ID.
According to the present invention as described above, when a plurality of users having different USIM cards using one mobile communication terminal can access only their own data for each user.
As the invention allows for various changes and numerous embodiments, particular embodiments will be illustrated in the drawings and described in detail in the written description. However, this is not intended to limit the present invention to specific embodiments, it should be understood to include all modifications, equivalents, and substitutes included in the spirit and scope of the present invention. In describing the drawings, similar reference numerals are used for similar elements.
Terms such as first, second, A, and B may be used to describe various components, but the components should not be limited by the terms. The terms are used only for the purpose of distinguishing one component from another. For example, without departing from the scope of the present invention, the first component may be referred to as the second component, and similarly, the second component may also be referred to as the first component. The term and / or includes a combination of a plurality of related items or any item of a plurality of related items.
When a component is referred to as being "connected" or "connected" to another component, it may be directly connected to or connected to that other component, but it may be understood that other components may be present in between. Should be. On the other hand, when a component is said to be "directly connected" or "directly connected" to another component, it should be understood that there is no other component in between.
The terminology used herein is for the purpose of describing particular example embodiments only and is not intended to be limiting of the present invention. Singular expressions include plural expressions unless the context clearly indicates otherwise. In this application, the terms "comprise" or "have" are intended to indicate that there is a feature, number, step, operation, component, part, or combination thereof described in the specification, and one or more other features. It is to be understood that the present invention does not exclude the possibility of the presence or the addition of numbers, steps, operations, components, components, or a combination thereof.
Unless defined otherwise, all terms used herein, including technical or scientific terms, have the same meaning as commonly understood by one of ordinary skill in the art. Terms such as those defined in the commonly used dictionaries should be construed as having meanings consistent with the meanings in the context of the related art and shall not be construed in ideal or excessively formal meanings unless expressly defined in this application. Do not.
Hereinafter, exemplary embodiments of the present invention will be described in detail with reference to the accompanying drawings.
First, the present invention can be applied to a mobile communication terminal having a flash memory. The flash memory is divided into pages and configured to read and write in units of pages.
In addition, a mobile communication terminal having a flash memory typically employs a FAT (File Allocation Table) file system. Here, the FAT (File Allocation Table) is a kind of file arrangement table maintained by the terminal employing the flash memory in the flash memory, and provides a location of pages in which files are stored. Specifically, when a new file is stored in a page of flash memory, the file is stored in at least one or more pages, where the pages do not always have to be nearby when stored in multiple pages, rather than in flash memory. Often scattered here and there. In other words, the physical and logical addresses of the file are different, and the FAT has mapping information for these addresses, so that the memory area can be managed efficiently.
The terminal creates a FAT entry that records the position and order of each page for the new file, and when reading the file, the contents of the file read from several pages are reordered in order to show the entire contents together.
Such a FAT file system will be described with reference to FIG.
2 shows a configuration of a FAT file system of a terminal employing a flash memory.
Referring to FIG. 2, the FAT file system includes an
The FAT API 50 provides the upper application with an application programming interface for the FAT core.
The structure of the
According to the present invention, the mobile communication terminal uses the page spare area of the flash memory to prevent other users from viewing the data generated for each user.
4 is a block diagram of a mobile communication terminal according to an embodiment of the present invention.
Referring to FIG. 4, the
The flash memory 250 is divided into pages, as shown in FIG. 3. Further, according to the present invention, user identification information, for example, a USIM ID, is stored in the redundant area corresponding to each page. The user identification information stored in the spare area is user identification information read from the currently mounted USIM card when data is stored in the data area corresponding to the spare area. Alternatively, the user identification information stored in the redundant area is user identification information recognized in relation to the USIM card currently mounted by the mobile communication terminal when data is stored in the page area corresponding to the redundant area.
The
Although the USIM ID is used as the user identification information in the present embodiment, the present invention is not limited thereto, and any information capable of identifying the subscriber of the communication service can be used. For example, UICCID or the like can be used. Therefore, in this case, the mobile communication terminal may have a UICCID reading unit.
The
In detail, when predetermined data is requested, the
Alternatively,
Subsequently, the
If the user identification information of the currently loaded USIM card and the user identification information stored in the redundant area do not match, the
As described above, the present invention can protect personal information even when multiple users share the same terminal by accessing data in the flash memory through a USIM card having access authority without modification of the
In addition, since the present invention uses the spare area of the page of the flash memory without modifying the
The operation of the
5 is a flowchart illustrating a data access restriction method in a page manager according to the present invention.
4 and 5, the
The
The
If the user identification information of the currently mounted USIM card and the user identification information stored in the redundant area match, the
If the user identification information of the currently loaded USIM card and the user identification information stored in the redundant area do not match, the
This garbage data transmission step may be omitted, and is illustrated by a dotted line in FIG. 5 to indicate this.
6 shows a structure of a flash memory according to the present invention.
Referring to FIG. 6, a flash memory includes a plurality of pages 121-12N, and each page 121-12N includes a
As described above, the user identification information stored in the redundant area may be read and stored from the currently mounted USIM card when data is stored in the data area corresponding to the redundant area. Alternatively, the user identification information stored in the redundant area may be recognized and stored in relation to the USIM card currently mounted by the mobile communication terminal when data is stored in the page area corresponding to the redundant area.
Meanwhile, pages of the flash memory may be managed as block segments. That is, pages can be grouped and managed to fit logical addresses. In this case, user identification information of the USIM card may be stored in an extra area of a predetermined page among pages constituting one block segment. In this case, when the corresponding block segment is requested, the
Although described above with reference to a preferred embodiment of the present invention, those skilled in the art will be variously modified and changed within the scope of the invention without departing from the spirit and scope of the invention described in the claims below I can understand that you can.
1 is a diagram schematically illustrating a case where several USIM cards are used in one mobile communication terminal.
2 shows a configuration of a FAT file system of a terminal employing a flash memory.
3 is a diagram illustrating the structure of a flash memory.
4 is a block diagram of a mobile communication terminal according to an embodiment of the present invention.
5 is a flowchart illustrating a file access restriction method in a page manager according to the present invention.
6 shows a structure of a flash memory according to the present invention.
<Explanation of symbols for the main parts of the drawings>
210: USIM card
240: page manager
250: flash memory
260: FAT
270: application
Claims (10)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020080062709A KR20100002712A (en) | 2008-06-30 | 2008-06-30 | Terminal and method for ristricting access to data |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020080062709A KR20100002712A (en) | 2008-06-30 | 2008-06-30 | Terminal and method for ristricting access to data |
Publications (1)
Publication Number | Publication Date |
---|---|
KR20100002712A true KR20100002712A (en) | 2010-01-07 |
Family
ID=41812712
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020080062709A KR20100002712A (en) | 2008-06-30 | 2008-06-30 | Terminal and method for ristricting access to data |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR20100002712A (en) |
-
2008
- 2008-06-30 KR KR1020080062709A patent/KR20100002712A/en not_active Application Discontinuation
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US9198025B2 (en) | High-capacity SIM storage control | |
US8868929B2 (en) | Method of mass storage memory management for large capacity universal integrated circuit cards | |
US8452934B2 (en) | Controlled data access to non-volatile memory | |
KR100735341B1 (en) | Apparatus and method for improving speed of data reading from subscriber identity module | |
JP4807683B2 (en) | Data storage | |
US20060236026A1 (en) | Method and system for allocating, accessing and de-allocating storage space of a memory card | |
CN101430700A (en) | File management device and storage device | |
EP2727384B1 (en) | Method for accessing at least one service and corresponding system | |
US20140310824A1 (en) | Method for managing external portable storage device and related machine readable medium | |
CN104462893A (en) | Method and device for managing multiple SE modules | |
JP3663058B2 (en) | Terminal equipment for mobile communication | |
EP1650690B1 (en) | Improvements in personal data security of mobile communication device | |
JP2015043231A (en) | Data protection method, circuit card, and mobile radio communications device | |
JP2010160646A (en) | Storage device | |
KR100943779B1 (en) | Accessing contact cards of a mobile terminal from another mobile terminal | |
KR20100002712A (en) | Terminal and method for ristricting access to data | |
CN112084524B (en) | USB flash disk access method and USB flash disk | |
US20170094502A1 (en) | Management method, management device and terminal for contacts in terminal | |
US9015491B2 (en) | Method and apparatus for managing private data in multifunction peripheral | |
US9235544B2 (en) | Portable data carrier having additional functionality | |
KR101307054B1 (en) | A image data sharing system using app | |
KR20190078198A (en) | Secure memory device based on cloud storage and Method for controlling verifying the same | |
EP2575036A1 (en) | Method for processing application data and corresponding first device | |
KR101471250B1 (en) | Method for Utilizing USIM Application by Connecting Common Application with Separate ADF and SE using the same | |
JP5489947B2 (en) | Terminal device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WITN | Withdrawal due to no request for examination |