200924479 九、發明說明: 【發明所屬之技術領域】 本發明係關於-種絲裝置觀機制,尤絲於記憶體介面 的保密裝置通訊機制。 【先前技術】 目前騎職㈣安全性最彳编枝,賴是智慧卡的應 用。相較於市面上所廣泛使用的一般塑膠卡片,智慧卡具有許多 良好的特性’例如記憶容量大、具邏輯運算與資料控管的能力、 高安全性與降低成本等,其中又以高安全性為智慧卡優於其他塑 膠磁條封駐要原因之—。智慧相為具備了包括鑑別卡片真 偽、持卡者身分鑑別、資料存取控管以及資料加密等多層安全保 護措施,使得高安全性為其重要的特點。 知在智慧卡論壇崎彙解射,對於智慧讨—個正式的定義 曰慧卡為具核策能力記憶體的频電路卡。在智慧卡内部有 —個微電腦mi以及作業系統,使得它具有執行運算的能力及儲 ^己隐的魏。智慧卡的外型和_般的朗卡大小—樣,只不過 小塊ic晶片’使得原本普通的—小張卡片具有邏輯運算、 :工&的月匕力所有對智慧卡的讀取與寫入動作都必須透過專 門的智慧卡讀取機(Smart Card Reader)。 200924479 在智慧卡内部,可以預先儲存如、RSA、Hash等演算法的 加密軟體或是具杨密舰的概電路鋪。频贿在卡内的 軟硬體設射㈣鱗讀卡顺錢权㈣爾目互認證的功 能,即可達到鑑別卡片真偽的目的。 在目前已被提出的整合智慧卡與快閃記憶卡的方案中,舉例 來說,中華民國專利公告號第__「可辨識使用者身份之 可攜式儲存襄置」、中華民國專利公告號第_64號「多功能辨 識卡」大厂、疋彻智慧卡所提供的驗證魏,進祕護快閃記 憶卡的資料。 另外,雖然智慧卡有著上述優越之處,但是相對於快閃記憶 卡來說,在财電子裝置巾仍批有少數具有智計的讀取介 面,以至於智針的魏翻上受到了些雜礙。為了解決這個 問題,在铸關專利公告號第M28_號「1智 片 媒體記憶卡」中,制翻透過記憶卡介面來啊閃記憶 卡以及智慧⑻的架構。只是,在這個習知架射,為了檢查所 接收到的寫入命令到是屬於快閃記憶模組16或保密装置模組14 的’通常需要檢查寫入命令的格式本身到底屬於何種命令,以至 於在實作上會顯得過於複雜。 200924479 【發明内容】 本發明之主要目的在提供一種基於記憶體介面的保密裝置通 訊機制,其利用判斷資料封包的封包頭中是否額外包含有特殊的 預定資料,以便決定資料封包轉送給保密裝置模組或快閃記憶體 模組’進而達到整合的目的。 基於上述目的,本發明基於記憶體介面的保密裝置通訊機制 主要包含雜體介面、保錄置模組、快閃記紐漁、以及電 性連接至域齡®、縣裝齡之控麵 组。由於來自記憶體介面的資料封包,在其封包頭中額外包含有 特殊的預定餅,這使得控麵組得以在發覺㈣封包的封包頭 中含有預定資料’將資料封包轉送給健裝置齡。若來自記 憶體介面的賴封包在其封包射沒有㈣包含有預定資料時, 控制模組將:祕封包槪給快閃記憶雜組。 、,關於本發日狀伽觸神可崎由町的發明魏及所附圖 式得到進一步的瞭解。 【實施方式】 、月 > 閱第1圖’第1圖為本發明基於記憶體介面的保密裝置 機制之讀”第丨騎示’在本發日月基於記憶體介面的 :、缝置觀_巾,主要包含有記鐘介面丨。、保密裝置模組 陕閃δ己憶體板組16、以及電性連接至記憶體介面1〇、保密裝 200924479 置模組14、以及快閃記憶體模組16之控制模組12。這其中,記 憶體介面ίο可電性連接至主機端相對介面,例如SDI〇(SD卡的1/〇 介面),並接受來自主機端的資料封包。保密裝置模組14為智慧 卡模組或晶片卡模組或爪哇卡(java card)、用戶識別卡、生物護 肊及生物身分證。控制模組12與保密裝置模組μ之間的介面可 為串列周面(Serial peripherai interfaee,spi)、通用串 列匯流排(Universal Serial Bus,USB)或 ISO 7816。 為特殊字φ或魏),飾:丨_臟_。鱗取意的是 為了讓資料封包2〇能热^ . 請參閱第2圖’第2圖為本發明資料封包之示意圖。如第2 圖所不’本發明貧料封包2〇主要包含了資料頭施與封包本體 2:。封包本體2〇b中則進一步包含了(命令組(c〇删d她)、 貝料負何(data payl〇ad))。資料頭施可能會含有預定資料(可200924479 IX. Description of the invention: [Technical field to which the invention pertains] The present invention relates to a mechanism for viewing a seed device, and a communication mechanism for a security device, particularly in a memory interface. [Prior Art] At present, the safety of riding (4) security is the most appropriate, and it is the application of smart cards. Compared with the general plastic cards widely used in the market, smart cards have many good characteristics, such as large memory capacity, logical computing and data control capabilities, high security and low cost, among which high security. For smart cards, it is better than other plastic magnetic strips. Wisdom has a multi-layered security protection including identification card authenticity, cardholder identification, data access control and data encryption, making high security an important feature. Knowing that in the smart card forum, the remittance of the remittance, for the wisdom to discuss - a formal definition of the Hui Hui card is a frequency circuit card with a power of ability. Inside the smart card is a microcomputer mi and operating system, which makes it have the ability to perform operations and save the hidden Wei. The appearance of the smart card and the size of the lang-like card - just a small piece of ic chip 'make the original ordinary - small card with logical operation,: work & the power of all the reading and writing of the smart card The entry must be through a dedicated Smart Card Reader. 200924479 In the smart card, you can pre-store the encryption software such as RSA, Hash, etc. or the circuit board with Yang Mi Ship. Frequent bribery in the card's soft and hard body set (four) scale reading card Shun Qianquan (four) Er Mu mutual authentication function, you can achieve the purpose of authenticating the card. In the current scheme of integrating smart cards and flash memory cards, for example, the Republic of China Patent Notice No. __ "Portable Storage Device for Identifying User Identity", Republic of China Patent Notice No. No. _64 "Multi-Function Identification Card" Dachang, Weichao Smart Card provided verification Wei, into the secret protection flash memory card information. In addition, although the smart card has the above advantages, compared with the flash memory card, there are still a few smart reading interfaces in the electronic electronic device, so that the wisdom of the wisdom pin has been affected. . In order to solve this problem, in the "Patent Patent No. M28_" "1 Wisdom Media Memory Card", the structure of the flash memory card and the smart (8) is turned over through the memory card interface. However, in this conventional projection, in order to check the received write command to the flash memory module 16 or the security device module 14, it is usually necessary to check the format of the write command itself. So that it will be too complicated in practice. The main purpose of the present invention is to provide a security device communication mechanism based on a memory interface, which uses the packet header of the judgment data packet to additionally include special predetermined data, so as to determine that the data packet is forwarded to the security device module. Group or flash memory module' for integration purposes. Based on the above object, the communication mechanism of the security device based on the memory interface of the present invention mainly comprises a miscellaneous interface, a security recording module, a flash memory, and a control panel that is electrically connected to the domain age® and the county age. Due to the data packet from the memory interface, a special predetermined cake is additionally included in the packet header, which enables the control panel to include the predetermined data in the (4) packet header to transmit the data packet to the health device. If the packet from the memory interface does not contain (4) the predetermined data, the control module will: the secret packet to the flash memory group. Further, we will learn more about the invention and the model of the Japanese-style ginseng. [Embodiment], Month> Read Fig. 1 'The first picture is the memory device based on the memory interface mechanism of the present invention. "The first 丨 示" is based on the memory interface in the present day and month: _ towel, mainly including a clock interface 丨., security device module Shaanxi flash δ 忆 recall plate group 16, and electrical connection to the memory interface 1 保密, security device 200924479 set module 14, and flash memory The control module 12 of the module 16. Among them, the memory interface ίο can be electrically connected to the host interface, such as SDI 〇 (SD card 1 / 〇 interface), and accept data packets from the host side. The group 14 is a smart card module or a chip card module or a java card, a user identification card, a bio-protective card and a biometric identity card. The interface between the control module 12 and the security device module μ can be a serial (Serial peripherai interfaee, spi), Universal Serial Bus (USB) or ISO 7816. For special words φ or Wei), decorated with: 丨_dirty _. The scale is intended to make the data packet 2〇能热^. Please refer to Figure 2 'Figure 2 is the invention Schematic diagram of the package. As shown in Fig. 2, the poor material package 2 of the present invention mainly includes the data head application and the package body 2: The package body 2〇b is further included (command group (c〇d) , data payl〇ad). The data head may contain predetermined information (can
預定資料或是含有特定的預定資料,就能簡;; 200924479 令的目的對象,進轉钱人 卜 模組14,但·須檢 △ &門疏模組16或保密裝置 組16顧錄賴的;;^式衫職私_記憶模 裝置模資;^轉送給輝 20a未含有預定資料時,控資:’其封包頭 億體模組16。 _ 將貝科封包20轉送給快間記 ,體:=咖被執行中的應用程式,若需要對快閃記 料時,資料封包20的格式只須相對於記憶體 勺即可,但疋需要對保密裝置模㈣寫入資料時,資料封 =输相對於記憶體介面10以外,還需額外在細 包20的封包頭施内寫人預定資料,以便讓控制模組12作辨識。 藉由以上健具體實施例之詳述,鱗望缺加清楚描述本 發明之特徵與精神,而並非以上述所揭露的較佳具體實施例來對 本發明之範細_。相反地,其目的是教能涵蓋各種改變 及具相等性的安排於本發騎欲申請之專利範_範如。 【圖式簡單說明】 圖 第1圖為本發明胁記㈣介面的保錄置通訊機制之示 意 200924479 第2圖為本發明資料封包之示意圖。 【主要元件符號說明】 10記憶體介面 12控制模組 14保密裝置模組 16快閃記憶體模組 20資料封包 20a封包頭 20b封包本體The scheduled information or the specific reservation information can be simplified;; the target object of the 200924479 order, into the money transfer module 14, but must be checked △ & door sparse module 16 or security device group 16 Gu Lui ;; ^ shirt shirt private _ memory model device model; ^ transferred to Hui 20a does not contain the scheduled information, control: 'its package head billion body module 16. _ Transfer the Becco packet 20 to the fast track, body: = the application being executed by the coffee. If you need to record the flash, the format of the data package 20 only needs to be relative to the memory spoon, but you need to When the security device module (4) writes data, the data seal=transmission is compared with the memory interface 10, and the predetermined data is additionally written in the packet header of the thin package 20 to allow the control module 12 to recognize. The features and spirit of the present invention are clearly described by the above detailed description of the preferred embodiments, and are not intended to be a limitation of the invention. On the contrary, the purpose is to teach a patent that can cover all kinds of changes and equivalence in the patent application. BRIEF DESCRIPTION OF THE DRAWINGS FIG. 1 is a schematic diagram of a security recording mechanism of a signature (four) interface of the present invention. 200924479 FIG. 2 is a schematic diagram of a data packet of the present invention. [Main component symbol description] 10 memory interface 12 control module 14 security device module 16 flash memory module 20 data packet 20a packet header 20b packet body