TW595182B - Information verification device ensuring confidentiality and non-modifiability of remotely loaded data and method thereof - Google Patents

Abstract

The invention relates to an information verification device ensuring confidentiality and non-modifiability of remotely loaded data and method thereof, in particular, the method and device that deducts the partial original article contents, further proceeds the compression and reorganization regarding the original program sequence experienced with the partial data extraction, messes up the original program contents and significantly increases the decryption difficulty of hacker. The device comprises a calibrator, puncher, compressor, encoder, sewing unit, decompressor and decrypter. Local workstation intends to submit the program to the server. Divide the program into several subroutine sequences by going through the calibration program of calibrator and saving the calibration result. Proceed punching process in the unit of subroutine sequence and store the data where the hole is located in storage unit. The sequence blank space appears after compressing the punched subroutine sequence, making partial contents miss from the original sequence. Further encrypt the new sequence and then go through the network to be stored in the server. When downloading program from the remote site, the local workstation downloads program from the server. After decrypting and decompressing sequence, the stored hole value data is sequentially patched and restored to the original complete program sequence in accordance with the stored punched data in the storage data. Later, proceed equivalent calibration and compare the result with the original calibrated value in the storage unit to determine if the program is complete or modified. After passing the calibration, the local computer can then operate the program.

Description

595182 V. Description of the invention (1) [Technical field to which the invention belongs] The present invention relates to a kind of information verification device and method for ensuring the modification of data implanted at a remote site, in particular, a method for extracting and reassembling skin to make the said Some information is missing in the program sequence, and a small performance cost is exchanged for a larger security purpose. [Previous technology] Wei Ergeng has been using the resources on the feeder hard disk to replace the work on the hard disk to guide the work on the V-Taiwan network. The use of remote start technology has become increasingly widespread. No, the k reasons are because it is easy to manage and it is a J education occasion. This greatly reduces the overall cost of ownership of the system. The main technologies of this technology are county and field: startup programs, shore: ϋ: part of the client terminal's personal computer (enter) required parts; ^ 时 ==== 'When the client P_) sends to the server the request sent by the WBoot client on connection 4 on the connection \ he = \ got 1p. When the server receives the servo 35, ..., Ψ / έ. Send link response and IP address, user terminal ^ 〇M) Pt ^ ^ ^ ^, tY ^ ^ (B〇〇t program. 彳 Ί 服 ^ Download all necessary equipment to start the traditional remote manned ancient 4 'Even a relatively secure network environment produces a ^ local area network, which is considered to be' so communication security issues ^ ㈣ The trust between the parties to protect each other has not been fully taken into account, both parties are in the process of completion.

Page 5 595182 V. Description of the invention (2) Information is transmitted and exchanged in a fully open environment. Safety measures are also used for process safety. General block verification. So-called to a short algorithm and Hash ′ implementation difficulty is complete, so communication can be destroyed by the local workstation. But nowadays, network security issues are becoming increasingly prominent, and many of them are used in remote loading. Usually for remote loading measures include encryption and verification. The encryption method generally uses dense and stream encryption, and the verification method mainly uses Hash function calibration. Hash function verification is to compress the entire program sequence into a summary, which is used as the basis for future verification. However, the traditional encryption function verification method has a high degree of computational complexity and a large amount of data. ^ High requirements are placed on the performance of the device. At the same time, the registered process information is communicated on the Internet, and saved on the server and f. In the process, there are intercepted, cracked, and tamperable programs that can be tampered with, and are used in the local workstation, which will endanger the security and even cause serious damage to the resources of the local workstation. [Summary of the Invention] The main purpose is to provide one = and unmodifiable information = ^ content, and the original process of extracting part of the information 订 unsubscribe and shrink and reorganize 'confuse the original = the former rr small performance cost in exchange for the larger == —Kang Fan 'The information verification device of the present invention includes: Chuan, "Ding: =; is a program sequence for verification, ... on the program-punch hole cry" technical download, stitching program for verification.- 'It is the entire program sequence that the workstation intends to store on the server. Fifth, the description of the invention (3) The column is divided into a number of regularly extracted information; the location of the will be saved in a compressor, used to generate information mixed with an encryptor, a solution A decompressor, a decompressor hole position information, a program for dry vacancies, a patcher, back to each subroutine sequence, the subroutine sequence. The extracted local workstation is a new program that confuses the hole puncher. The "self-servo" is based on the locally decrypted pressure train. It will store the original position in a single train, and use certain hole value information in each subroutine sequence and its storage unit in the subroutine sequence. The processing results are compressed in blocks. , Sequence. The program sequence formed by § is encrypted. The program sequence downloaded by the device is decrypted. The shrinking program sequence stored in the workstation and stored in the early yuan is re-expanded to have the hole information stored by Ruoyuan one by one. The meaning of a complete program sequence is based on the statement 'The encryption and decryption of the present invention and the increase in the difficulty of cracking are based on the rules of the number of subroutine sequences divided and the number of samples for each subroutine sequence.' This part can be determined by the designer according to actual needs. _ Another purpose of this document is to meet the needs of high-speed communication. Mode operation, and the saved assets submitted to the server at the same time = some of the content is deducted, so that the submitted program is an incomplete program missing some inner valleys, and the transmission of this missing part will greatly increase the difficulty of attackers' cracking. In contrast, a simple encryption algorithm can be selected to implement encryption processing, thereby reducing the encryption strength and service cost of the system. The structure design and technical principle of the present invention will be described in detail below, and refer to the attached drawings , Will further the characteristics of the present invention

Page 7 595182

To understand. [Embodiment] The sound diagram shown as ΐf 'is the hardware architecture of the system according to the embodiment of the present invention. The method used in the embodiment is to punch a program sequence and integrate it into a hardware chip, which is completed by the hardware independently. The attack function 爿 b can also be performed by specific software. Burst: The hardware 1 is installed on the path of the local workstation eight in and out of CPU10. It includes: a checker 21, which performs program sequence 2: Hai school: Action 2 is generated in two cases, one of which is based on the program Sequence = before punching processing, another-for the program sequence, the program sequence is divided into a number of sub-processes, and the entire row saved by the server is extracted using a regular pattern. The aforementioned = disk "program sequence is determined by the designer according to actual needs. The number of samples that can be sequenced by the rules of JB ^ ^ ^ ^, and this is also: 歹" quantity and the difficulty of each program; τ, μ 疋 are later A compressor 23 for encryption, decryption, and cracking is a compression process of the processing result of the puncher 22 to generate a new program sequence for information confusion. ^ Sequence-encryptor 24 'encrypts the aforementioned new program sequence; -Decryptor 25, which decompresses the storage sequence carried by the server Bτ, a decompressor 2 6 according to the health of the storage unit 11 of the local workstation A

Page 8 595182

Save the hole location information, and decrypt the program sequence with several vacancies; the compressed program sequence is re-expanded into a stitching sequence, a stitcher 27, which returns to each subroutine and lists the hole value information stored in the storage unit 11 one by one. The original position, and combined into a complete program as shown in Figure 2, it is in the embodiment of the present invention '

The flow chart of the procedure for the server to store the program; Zaozuo Zuo Station # ^ 地 工作 A The sequence of the program to be sent by the station is transmitted to the checker 21 in the hardware chip 2. The first A selects a certain check method for the flow-through sequence. Check (step S1) (for example, 'the check method, such as the method of checking the spear, is to add the program sequence bit by bit to get a collapsing = such as the sequence GlGllGll' its checksum is υ. Coming soon after verification

The value is stored in the storage unit 11 (step S2) (as shown in FIG. 4 (A), described later in I).

The hole puncher 22 receives a verified program to register, and the program flows through the hardware chip 20 in the form of sequence =. The hole puncher 22 cuts a byte of a certain length into A plurality of subroutine sequences (step fS3), and using each subroutine sequence as a unit, a certain length of information is extracted from the certain sequence as hole value information (step S4), and the hole value information = content and its The position in the sub-program segment is stored in the storage unit 12 of the local workstation (step s 5), and the punching process is completed. Extracted

Page 9 595182 V. Description of the Invention (6) A number of vacancies have appeared in the program sequence of sub-contents, making part of the program sequence missing. The compressor 23 compresses the entire program sequence to remove all vacancies, and reorganizes and confuses the information of the original program sequence (step S6). The mixed light sequence is encrypted by the encryptor 24 to be converted into ciphertext (step S6), and the ciphertext information is transmitted to the server β via the network card 12 for storage (step S7). In addition, in the network communication process, the communication protocol between the workstation A and the server B also needs to be based. This is the same as the existing network and will not be repeated here. As shown in Figure 3, 'is a flowchart of the steps for remotely loading a program in the embodiment of the present invention; the local workstation A and the server ^: ^ through normal handshake agreement (handshaking) to achieve a positive ¥ contact between each other After that, the local workstation A starts to download the required program remotely from the server B (step D1). The downloaded program is decrypted and converted into plain text by the decryptor 25 (step D2). The decompressor 26 is based on the rules formulated by the compressor 23. , Divide the entire program sequence into several sub-program sequences, and save the sub-program sequence according to the location information of each sub-program sequence recorded in the local workstation a 3 to re-expand the program sequence, and restore the program sequence to a number of empty spaces. State (steps D3: D4), the stitcher 27 obtains information of each hole value from the storage unit u as the second inner valley, and sequentially stitches it back to the relative library of each subroutine sequence = spelling ΐΐ into a completed program sequence ( Steps D5, D4). This check ί, 70% of the private sequence is subjected to the same check to obtain a calibration result (step ', while simultaneously storing a single M m column check result (step D7), will be transmitted: formula order, if, 纟士 告 仏 人 0 Φ # Yi Nu, Guoguo into the lamp comparison C step D8) ° σ P means that the program is complete and has not been tampered with, you can

Page 10 595182 V. Description of the invention (7) ~ Normal use (step D9); otherwise, the local workstation a will treat it as an error procedure and refuse to use it (step D1 0). After that, the local workstation a can use the program that passed the verification to fulfill the work requirements of the local workstation A, such as starting the workstation. Regarding the cutting and punching process of the puncher, the following are shown in (A) ~ (C) of Figure 4 for an example, as follows: Figure (A) of Figure 4 shows the entire program sequence. Each address information corresponds to one byte of program information. In this embodiment, every 256 bytes are divided into a subroutine sequence (as shown in the subroutine sequence 1, 2) 'so that the entire program sequence is Split into several subroutine sequences. (B) of FIG. 4 shows the punching process. In this embodiment, the punching is performed at a random position of each subroutine sequence, and a content of a positioning group length is extracted, and then 1 byte is used to save the extraction. The output string is in the subroutine sequence = coincidence position. For example, the 4-byte inner valley information of the address 〇56H to 〇05911 is extracted. Therefore, the address information saved in the storage unit 丨 丨 is: 〇〇5 6 Alas, the saved content information is 10,000, 001, 100,000, 100,000, 100,000, and 100,000. Or, the burrowing hole 22 2 extracts 1 bit of information at any four random positions in the subroutine sequence, and uses the other 4 bytes to save the position of the 4 bytes in the private sequence. Therefore, the hole punching method of the present invention can be flexibly set. Different settings can achieve different security performances. ^ (C) in Fig. 4 shows the compression process of the program sequence with some information extracted. A number of slots appeared in the program sequence where some information was extracted. Push the content behind the slots forward to compress all the slots. In this embodiment, information with an address of 0 056H to 0 0 5 9H is extracted, and the original address

Page 11 595182 V. Description of the invention (8) The content of 0 05A is from the premise to address 0056H, and the length of the subroutine sequence 1 is reduced to 2 5 2 bytes. Since all information in the computer, including instructions and data, are binary codes, the binary code after extraction and reorganization also differs greatly in meaning due to the lack of content. Taking this embodiment as an example, the puncher 22 Randomly extracted 4 bytes of information from each 256-byte subroutine sequence, that is, 3 2 bits of information was extracted from it. When the cracker analyzed the intercepted information, every 2 56 bytes That is, there are 2 3 2 different possibilities, which brings great difficulty to the final crack. 5 According to the above description, the information verification device and method for ensuring the confidentiality and non-modification of remotely-loaded assets provided by the present invention adopt the content of the deduction and text, and compress the original program sequence after extracting some information: : Group, & The content of the original program is confusing. Even if all the information lost in the communication Γ: Γ is analyzed, it will be extremely difficult to analyze and crack the original text. "The more difficult" is for attackers to crack, the communication can achieve higher security performance, and the party can achieve this with a smaller investment, and can compile corresponding software, also; In the body chip, it is directly completed by the hardware. The connection process provides a more secure barrier. The modified information verification device fish ^ The special management of the breeding materials is kept secret, so that the user can obtain the keystrokes by using a 2 keyboard device, and use this as the basis for authentication. The simple comparison of the information about the forensic evidence, but the behavior of the :: 2 process, is not to identify the probability of statistical analysis.

5p5182 on page 12 5. Description of the invention (9) Authenticated features outside of this identity authentication was completed without a valid guarantee system and has been granted a patent granted by the invention patent, so that the above description is only the preferred scope of the invention All the productions made by the technology are still within the scope of the present invention, which limit the processing security of the indispensable method for implementing the present invention, and the application should benefit the equal implementation of the technical embodiments described by the people's livelihood. Must comply with some information, make this invention a piece, and urge the country, the people, illustrations, and so on; change or modify the distribution area defined by the right of interest. Debian program or control, according to the scope of the issue or capture part of the cover; occasional requirements; In addition, the safe keyboard alone method can be more designed, verified, and Kui 0 and other methods, only the same as the patent application function can not be based on this 595182 Brief description of the drawings [Simplified description of the drawings] Figure 1 is a schematic diagram of the hardware architecture of the system according to the embodiment of the present invention; Figure 2 is a flowchart of the steps for the local workstation to store the program to the server in the embodiment of the present invention; FIG. 3 is a flowchart of steps for loading a program from a remote station by a local workstation in an embodiment of the present invention; and FIG. 4 is an example of data processing for uploading and downloading a program sequence during startup in an embodiment of the present invention.

Description of drawing number 10 Central processing unit 11 Storage unit 12 Network card 20 Hardware chip 21 Checker 22 Hole puncher 23 Compressor 24 Encryptor 25 Decryptor 26 Decompressor 27 Stitcher 30 Network A Local workstation B Server 第 14 页

Claims (1)

6. Scope of patent application 1 · An information verification device to ensure and not be modified, including: and the confidentiality of the data: the checker 'checks the program sequence and stores it in a storage unit; The weight checker hole puncher is to divide a workstation to divide a program sequence into several subroutines. One sequence of the two subordinates extracts the information-based sequence with a regularity, and in each subroutine: the presser. It is a new flying sequence 压 j-Li Erqi, which is used to reduce the processing of the hole puncher to create information confusion. It is a sequence of the new program = dense; dense; Zaiyi is the one downloaded from the feeder. The program sequence is decompressed. According to the punching position stored in the storage unit, the compression program sequence is re-expanded into a seam with a number of empty spaces: = two-line, the hole value information stored in the storage unit is processed one by one; The original position in the subprogram sequence is combined into a complete calibration :::: The information verification device described in item 1, wherein the entered complete program sequence is verified. The two verification values will be compared, To determine the integrity of the program. . Material ί = "The information verification device described in item 1, wherein the system is a flash memory (Flash) or the workstation owns t 595182 Memory. 4 · An information verification method to ensure the confidentiality and unmodifiability of remotely loaded data, mainly by extracting, compressing, and reorganizing program sequence information, making the program sequence lack some information, including an upload program , For a workstation to upload a program to a server, and download a program for the workstation to download a program from the server, where "Uploading a program includes the following steps: a. Verify the program sequence; b. Program division, and randomly extract a positioning group length information for each divided subroutine sequence; c. Compress the subroutine sequence generated in step b and upload it to the server through the network; The download program includes The following steps: d. Re-deploy and sew the program to form a complete program sequence; e. Verify the startup program at step d to determine whether the program is complete and has been tampered with; f • If the verification is successful, Then the workstation can apply this program. 5 · The method for verifying the confidentiality of the remotely loaded data and the information that cannot be modified as described in item 4 of Shenyan's patent scope, wherein step 3 generates a check value, and the check value is Store in _ storage unit. 6 · The method of information verification for ensuring the post-warranty, sexuality, and non-modifiability of remotely-loaded data as described in item 4 of the patent scope of Shen Shen, where the extracted hole value information in step b is used in the subroutine Phase position storage in segments Page 16 is stored in 7 • If applying confidentiality and information sampling, use 8 • If applying confidentiality and information sampling is the same 9 • If applying confidentiality and including I 0 • If applying confidentiality and including decryption as II. If the application is confidential and described in accordance with the original 1 2 · If the application is confidential and 'to confirm the storage unit. The method described in item 4 of the patent scope is indeed not modified by the information verification method, which can be used to continuously extract a 1-bit group record to punch holes. The method described in item 4 of the patent scope that is not really modified by the verifier of information can be extracted by several bits and groups respectively. Each hole bit is indeed not modified as described in item 4 of the patent. The information verifier encryption step is to increase the decrypted information verifier decryption step described in item 4 of the deciphered patent item, which is used to make the servo plaintext program. Item 4 of the patent scope does not modify the information verifier according to the location where the records of I yuan are stored one by one. The information in item 4 of the patent scope is indeed not modified before verifying the information: check the value, whether it is stored in a storage program, whether the program is complete, and whether it is guaranteed to be stored remotely. Among them, the deaf is located Yuanyuan Baoyuan. End-loading / method, in which a single byte is set. Keep the remote load > method, which asks for difficulty. Keep the remote load / method, which is stored in the J family to save the remote load / method, which repairs each sister to repair the remote load Λ method, where the driving unit's firing is tampered. The data is saved in step b. The data is saved in step b. The data is saved in step b. The data is saved in step c. The data is saved in step d. The cipher text is saved in step d. The subroutine data is saved in step e. Compare