TWI826077B - Method of locking and unlocking a storage device and related system thereof - Google Patents

Method of locking and unlocking a storage device and related system thereof Download PDF

Info

Publication number
TWI826077B
TWI826077B TW111140989A TW111140989A TWI826077B TW I826077 B TWI826077 B TW I826077B TW 111140989 A TW111140989 A TW 111140989A TW 111140989 A TW111140989 A TW 111140989A TW I826077 B TWI826077 B TW I826077B
Authority
TW
Taiwan
Prior art keywords
storage device
host
password
message
server
Prior art date
Application number
TW111140989A
Other languages
Chinese (zh)
Other versions
TW202418783A (en
Inventor
吳承陽
王柏傑
Original Assignee
創見資訊股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 創見資訊股份有限公司 filed Critical 創見資訊股份有限公司
Priority to TW111140989A priority Critical patent/TWI826077B/en
Application granted granted Critical
Publication of TWI826077B publication Critical patent/TWI826077B/en
Publication of TW202418783A publication Critical patent/TW202418783A/en

Links

Abstract

A method of locking a storage device includes connecting the storage device to a host; inputting a communication number to the host; the host sending a unique machine code of the storage device and the communication number to a server; the server encrypting the unique machine code to form an encrypted text message and sending the encrypted text message to a personal mobile communication device corresponding to the communication number; activating the encrypted text message and generating an activation notification through an authentication program of the personal mobile communication device confirming an identity of user; after the server receives the activation notification, the server generating and transmitting a password information to the host and storing the password information and the communication number in a database in a corresponding table form; and the host locking the storage device according to the password information and storing the communication number to the storage device.

Description

上鎖與解鎖儲存裝置的方法和其相關的系統 Methods for locking and unlocking storage devices and related systems

本發明是有關於一種上鎖與解鎖儲存裝置的方法和其相關的系統,尤指一種可使使用者不必擔心忘記密碼也能解鎖已上鎖的儲存裝置的方法和其相關的系統。 The present invention relates to a method of locking and unlocking a storage device and a related system, and in particular, to a method and a related system that enable a user to unlock a locked storage device without worrying about forgetting the password.

在現有技術中,使用者可將儲存裝置上鎖以防止該儲存裝置內所儲存的資料外洩。日後當該使用者想存取該儲存裝置內所儲存的資料時,該使用者可輸入對應的密碼以解鎖該儲存裝置並存取該儲存裝置內所儲存的資料。然而,該使用者所常使用的電子設備可能很多(例如桌上型電腦、筆記型電腦、手機等)加上該使用者所常使用的銀行帳戶、社群網站等,所以該使用者必須記下不同的密碼。如此,也許有一天當該使用者忘記該儲存裝置對應的密碼時,該使用者將無法存取上鎖的該儲存裝置。 In the prior art, users can lock the storage device to prevent the data stored in the storage device from being leaked. When the user wants to access the data stored in the storage device in the future, the user can enter the corresponding password to unlock the storage device and access the data stored in the storage device. However, the user may often use many electronic devices (such as desktop computers, laptops, mobile phones, etc.) plus bank accounts, social networking sites, etc. that the user often uses, so the user must remember Enter a different password. In this way, perhaps one day when the user forgets the password corresponding to the storage device, the user will not be able to access the locked storage device.

然而,對於忘記密碼,現行的方式是當該使用者想繼續使用上鎖的該儲存裝置時,該使用者必須將上鎖的該儲存裝置格式化,如此將導致該儲存裝置內所儲存的資料被抹除。如果該儲存裝置內所儲存的資料對於該使用者而言是重要的,則該使用者將蒙受實質(或心理)上的巨大損失。因此,如何解決上 述現有技術出現的問題將是該儲存裝置的設計者的一項重要課題。 However, for forgetting the password, the current method is that when the user wants to continue to use the locked storage device, the user must format the locked storage device, which will result in the data stored in the storage device being lost. erased. If the data stored in the storage device is important to the user, the user will suffer substantial (or psychological) losses. Therefore, how to solve the The above-mentioned problems in the prior art will be an important issue for designers of the storage device.

本發明的一實施例提供一種上鎖儲存裝置的方法。該方法至少包含下列步驟連接該儲存裝置至一主機;輸入一通訊號碼至該主機;該主機傳送該儲存裝置之一唯一裝置碼和該通訊號碼至一伺服器;該伺服器加密該唯一裝置碼形成一加密簡訊並傳送該加密簡訊至對應該通訊號碼的一個人行動通訊裝置;透過該個人行動通訊裝置的一身份認證程式確認使用者身份激活該加密簡訊並產生一啟用通知;該伺服器接收到該啟用通知後,產生一密碼訊息並傳送至該主機且將該密碼訊息與該通訊號碼以一對應表單之形式儲存至一資料庫;及該主機基於該密碼訊息上鎖該儲存裝置並將該通訊號碼儲存至該儲存裝置。 An embodiment of the present invention provides a method for locking a storage device. The method at least includes the following steps: connecting the storage device to a host; inputting a communication number to the host; the host transmitting a unique device code of the storage device and the communication number to a server; and the server encrypting the unique device code Form an encrypted message and send the encrypted message to a personal mobile communication device corresponding to the communication number; confirm the user's identity through an identity authentication program of the personal mobile communication device to activate the encrypted message and generate an activation notification; the server receives After the activation notification, a password message is generated and sent to the host, and the password message and the communication number are stored in a database in the form of a corresponding form; and the host locks the storage device based on the password message and locks the storage device. The communication number is stored in the storage device.

在本發明的一實施例中,該密碼訊息係為一密碼使用確認訊息,當該主機接收該密碼訊息後,透過一明碼上鎖該儲存裝置,其中該明碼係為當連接該儲存裝置至該主機時,透過該主機所輸入並儲存於該主機中。 In one embodiment of the present invention, the password message is a password usage confirmation message. After receiving the password message, the host locks the storage device through a clear code, wherein the clear code is when connecting the storage device to the When the host is used, it is input through the host and stored in the host.

在本發明的一實施例中,該密碼訊息包含一暗碼,該暗碼係當該伺服器接收到該啟用通知後,由該伺服器基於該裝置碼所產生。 In one embodiment of the present invention, the password message includes a password, which is generated by the server based on the device code after the server receives the activation notification.

在本發明的一實施例中,該暗碼係當該伺服器接收到該啟用通知後,由該伺服器基於該唯一裝置碼以及當下紀錄之一時間戳記所產生。 In an embodiment of the present invention, the password is generated by the server based on the unique device code and a timestamp of the current record after the server receives the activation notification.

在本發明的一實施例中,當透過該身份認證程式確認使用者身份後,產生對應使用者之一身份資訊並連同該啟用通知一併傳回該伺服器,且對 應該通訊號碼將該身份資訊儲存於該對應表單中。 In one embodiment of the present invention, after the user's identity is confirmed through the identity authentication program, identity information corresponding to the user is generated and sent back to the server together with the activation notification, and the The identity information should be stored in the corresponding form according to the communication number.

本發明的另一實施例提供一種解鎖儲存裝置的方法。該方法包含連接該儲存裝置至一主機並且該主機自該儲存裝置中取得一通訊號碼;該主機傳送該儲存裝置之一唯一裝置碼及該通訊號碼至一伺服器;該伺服器加密該唯一裝置碼以形成一加密簡訊並傳送該加密簡訊至對應該通訊號碼之一個人行動通訊裝置;透過該個人行動通訊裝置之一身份認證程式確認使用者身份,以激活該加密簡訊並產生一啟用通知;該伺服器接收到該啟用通知後,自該伺服器之一資料庫中之一對應表單提取對應該通訊號碼之一密碼訊息,並傳送該密碼訊息至該主機;該主機基於該密碼訊息解鎖該儲存裝置,並刪除該儲存裝置中之該通訊號碼。 Another embodiment of the present invention provides a method for unlocking a storage device. The method includes connecting the storage device to a host and the host obtaining a communication number from the storage device; the host transmits a unique device code of the storage device and the communication number to a server; the server encrypts the unique device code to form an encrypted message and send the encrypted message to a personal mobile communication device corresponding to the communication number; confirm the user's identity through the identity authentication program of the personal mobile communication device to activate the encrypted message and generate an activation notification; the After the server receives the activation notification, it extracts a password message corresponding to the communication number from a corresponding form in a database of the server, and sends the password message to the host; the host unlocks the storage based on the password message device, and delete the communication number in the storage device.

在本發明的一實施例中,該方法更包含下列步驟當透過該身份認證程式確認使用者身份後,產生對應使用者之一身份資訊並連同該啟用通知一併傳回該伺服器;以及該伺服器透過該對應表單將該身份資訊與該通訊號碼所對應之一原有身份資訊比對,以判斷是否相符,若是則提取對應該通訊號碼之該密碼訊息。 In one embodiment of the present invention, the method further includes the following steps: after confirming the user's identity through the identity authentication program, generate identity information corresponding to the user and transmit it back to the server together with the activation notification; and The server compares the identity information with the original identity information corresponding to the communication number through the corresponding form to determine whether they match, and if so, extracts the password information corresponding to the communication number.

本發明的另一實施例提供一種上鎖與解鎖儲存裝置的系統。該系統包含該儲存裝置、一個人行動通訊裝置、一主機和一伺服器。該儲存裝置具有對應該儲存裝置之一唯一裝置碼,且更具有用以儲存一通訊號碼之一隱藏區;該個人行動通訊裝置具有身份辨識功能之一身份認證程式,以確認使用者身份後激活一加密簡訊,其中該個人行動通訊裝置對應該通訊號碼;該主機是用以連接該儲存裝置,並用以傳送或接收該儲存裝置之該唯一裝置碼以及該通訊號 碼,且可透過接收一密碼訊息對該儲存裝置上鎖與解鎖;該伺服器,用以接收該唯一裝置碼和該通訊號碼,以及加密該唯一裝置碼形成該加密簡訊後基於該通訊號碼傳送至該個人行動通訊裝置,並且用以接收一啟用通知後,將對應之該密碼訊息自一資料庫中儲存或提取;該個人行動通訊裝置接收到該加密簡訊後,該個人行動通訊裝置透過一身份認證程式確認使用者身份以激活該加密簡訊,該伺服器接收到對應該加密簡訊被激活之該啟用通知後傳送對應該唯一裝置碼之該密碼訊息至該主機,該主機基於該密碼訊息來對該儲存裝置上鎖或解鎖,並將該通訊號碼選擇性地儲存於該儲存裝置中或自該儲存裝置中刪除。 Another embodiment of the present invention provides a system for locking and unlocking a storage device. The system includes the storage device, a personal mobile communication device, a host and a server. The storage device has a unique device code corresponding to the storage device, and is further used to store a hidden area of a communication number; the personal mobile communication device has an identity authentication program with an identity recognition function to confirm the user's identity and then activate it. An encrypted message, in which the personal mobile communication device corresponds to the communication number; the host is used to connect to the storage device and transmit or receive the unique device code and the communication number of the storage device code, and can lock and unlock the storage device by receiving a password message; the server is used to receive the unique device code and the communication number, and encrypt the unique device code to form the encrypted message and then send it based on the communication number to the personal mobile communication device, and is used to store or retrieve the corresponding password message from a database after receiving an activation notification; after the personal mobile communication device receives the encrypted message, the personal mobile communication device uses an The identity authentication program confirms the user's identity to activate the encrypted message. After receiving the activation notification corresponding to the activation of the encrypted message, the server sends the password message corresponding to the unique device code to the host. The host uses the password message to Lock or unlock the storage device, and selectively store or delete the communication number in the storage device.

在本發明的一實施例中,該密碼訊息係為一密碼使用確認訊息,當該主機接收該密碼訊息後,透過一明碼上鎖該儲存裝置,其中該明碼係為當連接該儲存裝置至該主機時,透過該主機所輸入並儲存於該主機中。 In one embodiment of the present invention, the password message is a password usage confirmation message. After receiving the password message, the host locks the storage device through a clear code, wherein the clear code is when connecting the storage device to the When the host is used, it is input through the host and stored in the host.

在本發明的一實施例中,該密碼訊息包含一暗碼,該暗碼係當該伺服器接收到該啟用通知後,由該伺服器基於該唯一裝置碼所產生。 In one embodiment of the present invention, the password message includes a password, which is generated by the server based on the unique device code after the server receives the activation notification.

10:儲存裝置 10:Storage device

100、400:上鎖與解鎖儲存裝置之系統 100, 400: System for locking and unlocking storage devices

102:個人行動通訊裝置 102:Personal mobile communication device

104:主機 104:Host

106:伺服器 106:Server

200~216、300~316、500~512、600~612:步驟 200~216, 300~316, 500~512, 600~612: steps

第1圖是本發明的第一實施例所公開的一種上鎖與解鎖儲存裝置的系統的示意圖。 Figure 1 is a schematic diagram of a system for locking and unlocking a storage device disclosed in the first embodiment of the present invention.

第2圖是說明系統上鎖儲存裝置的方法的流程圖。 Figure 2 is a flow chart illustrating a method of locking a storage device in the system.

第3圖是說明系統解鎖儲存裝置的方法的流程圖。 Figure 3 is a flow chart illustrating a method for the system to unlock a storage device.

第4圖是本發明的第二實施例所公開的一種上鎖與解鎖儲存裝置的系統的示意圖。 Figure 4 is a schematic diagram of a system for locking and unlocking a storage device disclosed in the second embodiment of the present invention.

第5圖是說明系統上鎖儲存裝置的方法的流程圖。 Figure 5 is a flow chart illustrating a method of locking a storage device in the system.

第6圖是說明系統解鎖儲存裝置的方法的流程圖。 Figure 6 is a flow chart illustrating a method for the system to unlock a storage device.

請參照第1圖和第2圖,第1圖是本發明的第一實施例所公開的一種上鎖與解鎖儲存裝置10的系統100的示意圖,以及第2圖是說明系統100上鎖儲存裝置10的方法的流程圖,其中如第1圖所示,系統100包含儲存裝置10、一個人行動通訊裝置102、一主機104和一伺服器106,且在本發明的一實施例中,儲存裝置10可為但不受限於具有快閃記憶體(flash memory)的隨身碟、硬碟(hard disk drive,HDD)或固態硬碟(solid-state drive,SSD),以及個人行動通訊裝置102可為但不受限具有行動數據功能或其他聯網功能以及生物特徵輸入介面(影像擷取、指紋輸入等)之手機或平板電腦。另外,第2圖的詳細步驟如下:步驟200:開始;步驟202:連接儲存裝置10至主機104;步驟204:輸入個人行動通訊裝置102的通訊號碼至主機104;步驟206:主機104傳送儲存裝置10之一唯一裝置碼和該通訊號碼至伺服器106;步驟208:伺服器106加密該唯一裝置碼形成一加密簡訊並傳送該加密簡訊至個人行動通訊裝置102;步驟210:透過個人行動通訊裝置102之一身份認證程式確認使用者身份以激活該加密簡訊並產生一啟用通知;步驟212:伺服器106接收到該啟用通知後,產生一密碼訊息並傳送至主機104; 步驟214:主機104根據該密碼訊息上鎖儲存裝置10並將該通訊號碼儲存至儲存裝置10;步驟216:結束。 Please refer to Figures 1 and 2. Figure 1 is a schematic diagram of a system 100 for locking and unlocking a storage device 10 disclosed in the first embodiment of the present invention, and Figure 2 is an illustration of the system 100 for locking a storage device. A flow chart of the method 10, wherein as shown in Figure 1, the system 100 includes a storage device 10, a personal mobile communication device 102, a host 104 and a server 106, and in an embodiment of the present invention, the storage device 10 It can be, but is not limited to, a pen drive, a hard disk drive (HDD), or a solid-state drive (SSD) with flash memory, and the personal mobile communication device 102 can be However, mobile phones or tablets with mobile data functions or other networking functions and biometric input interfaces (image capture, fingerprint input, etc.) are not restricted. In addition, the detailed steps in Figure 2 are as follows: Step 200: Start; Step 202: Connect the storage device 10 to the host 104; Step 204: Enter the communication number of the personal mobile communication device 102 to the host 104; Step 206: The host 104 transmits the storage device 10 unique device code and the communication number to the server 106; Step 208: The server 106 encrypts the unique device code to form an encrypted message and sends the encrypted message to the personal mobile communication device 102; Step 210: Through the personal mobile communication device An identity authentication program in 102 confirms the user's identity to activate the encrypted SMS and generates an activation notification; Step 212: After receiving the activation notification, the server 106 generates a password message and sends it to the host 104; Step 214: The host 104 locks the storage device 10 according to the password message and stores the communication number in the storage device 10; Step 216: End.

在步驟202中,在本發明的一實施例中,儲存裝置10可透過包含但不限於一通用序列匯流排(Universal Serial Bus,USB)的B型(type B)或C型(type C)接頭連接主機104。在其他實施例中,儲存裝置10可透過其他類型的連接埠(包含但不限於Lightning、HDMI等類型)或是以無線方式(包含但不限於Wi-Fi、藍芽等手段)與主機104連接。 In step 202, in an embodiment of the present invention, the storage device 10 can connect through a type B (type B) or type C (type C) connector including but not limited to a Universal Serial Bus (USB). Connect to host 104. In other embodiments, the storage device 10 can be connected to the host 104 through other types of connection ports (including but not limited to Lightning, HDMI, etc.) or wirelessly (including but not limited to Wi-Fi, Bluetooth, etc.) .

在步驟204中,個人行動通訊裝置102的使用者可透過主機104上之一輸入介面輸入(未繪示於第1圖中)個人行動通訊裝置102的通訊號碼至主機104。其中,該輸入介面包含但不限於鍵盤、觸控螢幕配合數字圖像介面等方式。 In step 204, the user of the personal mobile communication device 102 can input the communication number of the personal mobile communication device 102 to the host 104 through an input interface on the host 104 (not shown in Figure 1). Among them, the input interface includes but is not limited to keyboard, touch screen and digital image interface.

在步驟206中,主機104可透過一有線方式或一無線方式傳送該唯一裝置碼和該通訊號碼至位於網際網路上的伺服器106。其中,該儲存裝置10的唯一裝置碼可儲存於儲存裝置中之控制器(如ROM)或是快閃記憶體之一特定區域中。當在步驟202連接儲存裝置10至主機104時,主機104即可接收儲存裝置10之該唯一裝置碼,但取得時機並不限於此。 In step 206, the host 104 may transmit the unique device code and the communication number to the server 106 located on the Internet through a wired method or a wireless method. The unique device code of the storage device 10 may be stored in a specific area of a controller (such as ROM) or flash memory in the storage device. When the storage device 10 is connected to the host 104 in step 202, the host 104 can receive the unique device code of the storage device 10, but the acquisition time is not limited to this.

在步驟208中,伺服器106可透過(但不受限)一進階加密標準(Advanced Encryption Standard,AES),或一橢圓曲線密碼學(Elliptic Curve Cryptography,ECC),或一哈希(hash)演算法加密該唯一裝置碼形成該加密簡訊並傳送該加密簡訊至個人行動通訊裝置102。 In step 208, the server 106 may use (but is not limited to) an Advanced Encryption Standard (AES), an Elliptic Curve Cryptography (ECC), or a hash. The algorithm encrypts the unique device code to form the encrypted message and transmits the encrypted message to the personal mobile communication device 102 .

在步驟210中,該身份認證程式可為一生物辨識(包含但不限於指紋、視網膜、靜脈等)認證程式來確認該個人行動通訊裝置102所屬之使用者的身份,以激活該加密簡訊並產生啟用通知並傳送回伺服器106。在其他實施例中,個人行動通訊裝置102更進一步可透過認證程式產生對應該使用者之一身份資訊,而個人行動通訊裝置102可將該身份資訊連同該啟用通知一併傳送回伺服器106,用以進行將來解鎖時做為進一步比對的依據。 In step 210, the identity authentication program can be a biometric (including but not limited to fingerprint, retina, vein, etc.) authentication program to confirm the identity of the user to whom the personal mobile communication device 102 belongs, so as to activate the encrypted text message and generate Enable notifications and send back to server 106. In other embodiments, the personal mobile communication device 102 can further generate identity information corresponding to the user through an authentication program, and the personal mobile communication device 102 can send the identity information together with the activation notification back to the server 106. It will be used as a basis for further comparison when unlocking in the future.

在步驟212中,伺服器106更將該密碼訊息、該通訊號碼及該身份資訊(若有產生的話)以一對應表單之形式儲存至伺服器106內之一資料庫。在本發明的一實施例中,伺服器106所產生、回傳之該密碼訊息可為一密碼使用確認訊息,當該主機104接收該密碼訊息後,透過一明碼上鎖該儲存裝置10,其中該明碼係為當連接該儲存裝置10至該主機104時,使用者可透過該主機104所輸入並儲存於該主機104中,其中輸入方式可透過前述之輸入介面進行,於此不再贅述。然而在本發明的另一實施例中,該密碼訊息包含一暗碼,其中該暗碼係當伺服器106接收到該啟用通知後,由伺服器106可基於該唯一裝置碼加密(包含但不限於一進階加密標準(Advanced Encryption Standard,AES),或一橢圓曲線密碼學(Elliptic Curve Cryptography,ECC),或一哈希(hash)演算法)所產生。另外,在本發明的又一實施例中,該暗碼係當伺服器106接收到該啟用通知後,伺服器106可基於該唯一裝置碼以及當下紀錄之一時間戳記加密所產生,以強化暗碼被破解的難度,這是防止若第三方透過其他手段取得該唯一裝置碼並且知悉本系統加密方式,進而取得上鎖之密碼。 In step 212, the server 106 further stores the password message, the communication number and the identity information (if generated) in a corresponding form to a database in the server 106. In one embodiment of the present invention, the password message generated and returned by the server 106 can be a password usage confirmation message. After receiving the password message, the host 104 locks the storage device 10 through a clear code, wherein The clear code can be input by the user through the host 104 and stored in the host 104 when the storage device 10 is connected to the host 104. The input method can be performed through the aforementioned input interface, which will not be described again. However, in another embodiment of the present invention, the password message includes a password, wherein the password is encrypted by the server 106 based on the unique device code (including but not limited to a Generated by Advanced Encryption Standard (AES), or an Elliptic Curve Cryptography (ECC), or a hash algorithm). In addition, in another embodiment of the present invention, after the server 106 receives the activation notification, the server 106 can encrypt and generate the password based on the unique device code and a timestamp of the current record to strengthen the password. The difficulty of cracking is to prevent a third party from obtaining the unique device code through other means and knowing the system encryption method, and then obtaining the locked password.

在步驟214中,在主機104收到該密碼訊息後,主機104可透過前述之 明碼或暗碼來上鎖儲存裝置10,以限制儲存裝置10之存取權限,並將該通訊號碼儲存至儲存裝置10之一隱藏區中或特定儲存空間位址上,如此也不會影響到儲存裝置10普通使用之區域。因此,後續當該使用者欲解鎖儲存裝置10而將儲存裝置10連接上主機104時,主機104即可判斷儲存裝置10之隱藏區或特定儲存空間位址是否具有通訊號碼,若有則取得該通訊號碼來進行後續解鎖流程。 In step 214, after the host 104 receives the password message, the host 104 can use the aforementioned Lock the storage device 10 with a clear code or password to limit the access rights of the storage device 10, and store the communication number in a hidden area of the storage device 10 or at a specific storage space address, which will not affect the storage The area where the device 10 is normally used. Therefore, when the user subsequently wants to unlock the storage device 10 and connects the storage device 10 to the host 104, the host 104 can determine whether the hidden area or specific storage space address of the storage device 10 has a communication number, and if so, obtain the communication number. Communication number to carry out subsequent unlocking process.

請參照第3圖,第3圖是說明系統100解鎖儲存裝置10的方法的流程圖,其中第3圖的詳細步驟如下:步驟300:開始;步驟302:連接儲存裝置10至主機104;步驟304:主機104讀取儲存裝置10所儲存之對應個人行動通訊裝置102的通訊號碼;步驟306:主機104傳送儲存裝置10之該唯一裝置碼和該通訊號碼至伺服器106;步驟308:伺服器106加密該唯一裝置碼形成一加密簡訊並傳送該加密簡訊至個人行動通訊裝置102;步驟310:透過個人行動通訊裝置102的身份認證程式確認該使用者身份,以激活該加密簡訊並產生一啟用通知;步驟312:伺服器106接收到該啟用通知後,從該對應表單提取對應該通訊號碼之一密碼訊息,並傳送該密碼訊息至主機104;步驟314:主機104根據該密碼訊息解鎖儲存裝置10並刪除所儲存之該通訊號碼;步驟316:結束。 Please refer to Figure 3. Figure 3 is a flow chart illustrating a method for the system 100 to unlock the storage device 10. The detailed steps in Figure 3 are as follows: Step 300: Start; Step 302: Connect the storage device 10 to the host 104; Step 304 : The host 104 reads the communication number corresponding to the personal mobile communication device 102 stored in the storage device 10; Step 306: The host 104 sends the unique device code and the communication number of the storage device 10 to the server 106; Step 308: Server 106 Encrypt the unique device code to form an encrypted message and send the encrypted message to the personal mobile communication device 102; Step 310: Confirm the identity of the user through the identity authentication program of the personal mobile communication device 102 to activate the encrypted message and generate an activation notification. ; Step 312: After receiving the activation notification, the server 106 extracts a password message corresponding to the communication number from the corresponding form, and sends the password message to the host 104; Step 314: The host 104 unlocks the storage device 10 according to the password message And delete the stored communication number; Step 316: End.

第3圖的解鎖流程和第2圖的上鎖流程兩者有部分步驟相同,不再贅述,因此以下僅針對第3圖和第2圖之差異處進行說明。在步驟304中,因為主機104已儲存該通訊號碼至儲存裝置10,所以主機104可直接讀取已儲存於儲存裝置10中對應該個人行動通訊裝置102的通訊號碼。在另外一實施例中,當儲存裝置10連接主機104時,主機可主動地或被動地識別、讀取並提取儲存裝置10中隱藏區或特定儲存空間位址上之通訊號碼,以執行第3圖之解鎖流程。 The unlocking process in Figure 3 and the locking process in Figure 2 have some steps that are the same and will not be repeated. Therefore, only the differences between Figure 3 and Figure 2 will be explained below. In step 304, since the host 104 has stored the communication number in the storage device 10, the host 104 can directly read the communication number corresponding to the personal mobile communication device 102 that has been stored in the storage device 10. In another embodiment, when the storage device 10 is connected to the host 104, the host can actively or passively identify, read and extract the communication number in the hidden area or specific storage space address in the storage device 10 to perform the third step. Picture of the unlocking process.

在步驟310中,當個人行動通訊裝置102透過該身份認證程式確認該使用者身份後,個人行動通訊裝置102會產生啟用通知並傳送至伺服器106。在其他實施例中,若於先前上鎖流程中有產生對應該使用者之一身份資訊,則本次同樣也會產生一次身份資訊並連同該啟用通知一併傳送至伺服器106,以進行後續的比對。 In step 310, after the personal mobile communication device 102 confirms the user's identity through the identity authentication program, the personal mobile communication device 102 generates an activation notification and sends it to the server 106. In other embodiments, if identity information corresponding to the user was generated in the previous locking process, the identity information will also be generated this time and sent to the server 106 together with the activation notification for subsequent processing. comparison.

在步驟312中,當伺服器106接收到該啟用通知後,即從其資料庫中之該對應表單中提取對應該通訊號碼之密碼訊息,並傳將該密碼訊息傳送回主機。在其他實施例中,若伺服器106接收到該啟用通知以及其身份資訊,則將該身份資訊與原先儲存於對應表單中的原有身份資訊進行比對,以判斷是否相符,若相符則提取對應之該通訊號碼所對應之該密碼訊息,並傳送該密碼訊息至主機104。 In step 312, after receiving the activation notification, the server 106 extracts the password information corresponding to the communication number from the corresponding form in its database, and transmits the password information back to the host. In other embodiments, if the server 106 receives the activation notification and its identity information, it will compare the identity information with the original identity information originally stored in the corresponding form to determine whether it matches, and if it matches, extract it. Corresponding to the password message corresponding to the communication number, and sending the password message to the host 104.

在步驟314中,當主機104收到該密碼訊息後,主機104可基於該密碼訊息來解鎖儲存裝置10,以開啟儲存裝置10之存取權限,並將該儲存裝置10中的隱藏區或特定儲存空間位址上原本儲存的通訊號碼刪除,避免下次重複進行 上鎖時造成誤讀取。在其他實施例中,儲存裝置10中的隱藏區或特定儲存空間位址可以儲存不同筆通訊號碼,此方式可針對不同使用者使用同一個儲存裝置的狀況去主動選擇對應之通訊號碼,並進行身份資料的確認(換句話說,伺服器106之資料庫中的對應表單可儲存數筆各自獨立的相對應之身份資訊、通訊號碼與密碼訊息),以開啟不同存取權限。 In step 314, after the host 104 receives the password message, the host 104 can unlock the storage device 10 based on the password message to open the access authority of the storage device 10, and store the hidden area or specific area in the storage device 10. Delete the communication number originally stored in the storage space address to avoid repeating it next time Misreading caused when locking. In other embodiments, the hidden area or specific storage space address in the storage device 10 can store different communication numbers. This method can actively select the corresponding communication numbers according to the situation of different users using the same storage device, and perform Confirmation of identity information (in other words, the corresponding form in the database of the server 106 can store several independent corresponding pieces of identity information, communication number and password information) to open different access rights.

要注意的是,原先於步驟212中的密碼訊息區分為明碼與暗碼,其中暗碼可讓使用者完全不需主動輸入任何密碼,僅透過第2圖與第3圖的方式以伺服器基於唯一裝置碼加密的方式所產生的密碼來進行儲存裝置10之上鎖與解鎖,而明碼的部分僅需於使用者欲解鎖儲存裝置10卻忘記密碼的情況下,再循第3圖的解鎖流程來解鎖儲存裝置10即可(因正常狀況下,使用者可透過明碼直接於主機104裝輸入正確密碼進行解鎖)。 It should be noted that the password information in step 212 was originally divided into clear code and password. The password allows the user to not need to actively enter any password at all, and only uses the server-based unique device through the methods in Figures 2 and 3. The password generated by code encryption is used to lock and unlock the storage device 10, and the plain code part only needs to be unlocked by following the unlocking process in Figure 3 when the user wants to unlock the storage device 10 but forgets the password. The storage device 10 is sufficient (because under normal circumstances, the user can directly enter the correct password on the host 104 to unlock it through a clear password).

請參照第4圖和第5圖,第4圖是本發明的第二實施例所公開的一種上鎖儲存裝置10的系統400的示意圖,以及第5圖是說明系統400上鎖儲存裝置10的方法流程圖,其中如第4圖所示,系統400包含儲存裝置10、個人行動通訊裝置102和主機104。另外,第5圖的詳細步驟如下:步驟500:開始;步驟502:連接儲存裝置10至主機104;步驟504:輸入個人行動通訊裝置102之通訊號碼至主機104;步驟506:主機104加密儲存裝置10之一唯一裝置碼以形成一加密簡訊並傳送該加密簡訊至個人行動通訊裝置102;步驟508:透過個人行動通訊裝置102之一身份認證程式激活該加 密簡訊;步驟510:主機104接收到對應該加密簡訊被激活之一啟用通知後,根據對應該唯一裝置碼產生至少一密碼上鎖儲存裝置10,並將該至少一密碼與該通訊號碼以一對應表單之形式儲存於主機104中,且將該通訊號碼儲存至儲存裝置10中;步驟512:結束。 Please refer to Figures 4 and 5. Figure 4 is a schematic diagram of a system 400 for locking the storage device 10 disclosed in the second embodiment of the present invention, and Figure 5 is an illustration of the system 400 for locking the storage device 10. Method flow chart, as shown in Figure 4, the system 400 includes the storage device 10, the personal mobile communication device 102 and the host 104. In addition, the detailed steps in Figure 5 are as follows: Step 500: Start; Step 502: Connect the storage device 10 to the host 104; Step 504: Enter the communication number of the personal mobile communication device 102 to the host 104; Step 506: The host 104 encrypts the storage device 10 unique device codes to form an encrypted message and send the encrypted message to the personal mobile communication device 102; Step 508: Activate the encrypted message through an identity authentication program of the personal mobile communication device 102 Encrypted SMS; Step 510: After receiving an activation notification corresponding to the activation of the encrypted SMS, the host 104 generates at least one password to lock the storage device 10 based on the corresponding unique device code, and combines the at least one password and the communication number with a The form of the corresponding form is stored in the host 104, and the communication number is stored in the storage device 10; Step 512: End.

第4圖的系統400和第1圖的系統100的差別在於系統400不包含伺服器106。換句話說,本實施例係將原本伺服器106之功能整合至主機104中,與第1~3圖之實施例最大的差異在於,本實施例精簡設備需求,犧牲了第1圖伺服器106之管理,雖僅由主機104(或個人行動通訊裝置102)負責管理之風險相較於第1~3圖之實施例較高,但可節省廠商維護成本來達到相同之目的。另外,第5圖的方法和第2圖的方法的差別在於在步驟506,主機104可透過一有線方式或一無線方式傳送該加密簡訊至個人行動通訊裝置102以及可透過(但不受限)一進階加密標準(Advanced Encryption Standard,AES),或一橢圓曲線密碼學(Elliptic Curve Cryptography,ECC),或一哈希(hash)演算法加密該唯一裝置碼形成該加密簡訊並傳送該加密簡訊至個人行動通訊裝置102;在步驟510中,該至少一密碼包含該使用者透過個人行動通訊裝置102之輸入介面或應用程式輸入之一密碼(也就是該使用者可知曉的一明碼),然後個人行動通訊裝置102可一併傳送對應該加密簡訊被激活的啟用通知和該密碼至主機104。在另一個實施例中,主機104在接收到對應該加密簡訊被激活的啟用通知後,該至少一密碼係根據該唯一裝置碼,或另外再結合時間戳記所加密產生之一暗碼形式(該使用者並不知曉)。在另一個實施例中,主機104並未基於該唯一裝置碼產生該至少一密碼,而是直接使用最初由該使用者透過主機104之輸入介面所輸入之密碼(也就是該使用者可知曉的 一明碼);最後,主機104基於該至少一密碼對儲存裝置10上鎖,並將該至少一密碼與該通訊號碼以一對應表單形式儲存於主機104中,且將該通訊號碼儲存至儲存裝置10中。在另一個實施例中,對應表單係可儲存於個人行動通訊裝置102中。 The difference between the system 400 of FIG. 4 and the system 100 of FIG. 1 is that the system 400 does not include the server 106 . In other words, this embodiment integrates the functions of the original server 106 into the host 104. The biggest difference from the embodiments in Figures 1 to 3 is that this embodiment simplifies equipment requirements and sacrifices the server 106 in Figure 1 Although the risk of management by only the host 104 (or personal mobile communication device 102) is higher than that of the embodiments in Figures 1 to 3, the manufacturer can save maintenance costs to achieve the same purpose. In addition, the difference between the method in Figure 5 and the method in Figure 2 is that in step 506, the host 104 can send the encrypted message to the personal mobile communication device 102 through a wired method or a wireless method and can (but is not limited to) An Advanced Encryption Standard (AES), or an Elliptic Curve Cryptography (ECC), or a hash algorithm encrypts the unique device code to form the encrypted message and transmits the encrypted message to the personal mobile communication device 102; in step 510, the at least one password includes a password input by the user through the input interface or application of the personal mobile communication device 102 (that is, a clear code that the user can know), and then The personal mobile communication device 102 may send an activation notification corresponding to the activation of the encrypted SMS and the password to the host 104 . In another embodiment, after the host 104 receives the activation notification corresponding to the activation of the encrypted text message, the at least one password is a password form encrypted based on the unique device code or combined with a time stamp (the use The person does not know). In another embodiment, the host 104 does not generate the at least one password based on the unique device code, but directly uses the password initially input by the user through the input interface of the host 104 (that is, the password that the user can know. a clear code); finally, the host 104 locks the storage device 10 based on the at least one password, stores the at least one password and the communication number in the host 104 in a corresponding form, and stores the communication number in the storage device 10 in. In another embodiment, the corresponding form may be stored in the personal mobile communication device 102 .

另外,請參照第6圖,第6圖是說明第4圖中系統400解鎖儲存裝置10的方法的流程圖,其中第6圖的詳細步驟如下:步驟600:開始;步驟602:連接儲存裝置10至主機104;步驟604:主機104讀取儲存裝置10所儲存的個人行動通訊裝置102的通訊號碼;步驟606:主機104加密該唯一裝置碼形成一加密簡訊並傳送該加密簡訊至個人行動通訊裝置102;步驟608:透過個人行動通訊裝置102的身份認證程式激活該加密簡訊;步驟610:主機104接收到對應該加密簡訊被激活之一啟用通知後,根據一對應表單中對應該通訊號碼之該至少一密碼解鎖儲存裝置10並刪除儲存裝置10中所儲存之該通訊號碼;步驟612:結束。 In addition, please refer to Figure 6. Figure 6 is a flow chart illustrating the method of unlocking the storage device 10 by the system 400 in Figure 4. The detailed steps in Figure 6 are as follows: Step 600: Start; Step 602: Connect the storage device 10 to the host 104; step 604: the host 104 reads the communication number of the personal mobile communication device 102 stored in the storage device 10; step 606: the host 104 encrypts the unique device code to form an encrypted message and sends the encrypted message to the personal mobile communication device 102; Step 608: Activate the encrypted text message through the identity authentication program of the personal mobile communication device 102; Step 610: After receiving an activation notification corresponding to the activation of the encrypted text message, the host 104 activates the encrypted text message according to the corresponding communication number in a corresponding form. At least one password unlocks the storage device 10 and deletes the communication number stored in the storage device 10; Step 612: End.

第6圖的方法和第3圖方法的差別在於在步驟606中,由於系統400中之主機104已整合了系統100中伺服器106之功能,因此係由主機104加密該唯一裝置碼形成該加密簡訊並傳送該加密簡訊至個人行動通訊裝置102;在步驟610中,當主機104接收到對應該加密簡訊被激活的啟用通知,且在接收到對應該加 密簡訊被激活的通知後,根據該至少一密碼解鎖儲存裝置10並刪除儲存裝置10所儲存之該通訊號碼。其他包含之實施手段、替代方式已於第2圖、第3圖以及對應之段落說明,於此不再贅述。在另一實施例中,若對應表單係儲存於個人行動通訊裝置102中,則當透過個人行動通訊裝置102的身份認證程式激活該加密簡訊時(通過使用者身份比對),一併將個人行動通訊裝置102中之對應表單裡對應之密碼傳回主機104,以利主機104基於該密碼來解鎖該儲存裝置10。 The difference between the method in Figure 6 and the method in Figure 3 is that in step 606, since the host 104 in the system 400 has integrated the function of the server 106 in the system 100, the host 104 encrypts the unique device code to form the encryption SMS and transmits the encrypted SMS to the personal mobile communication device 102; in step 610, when the host 104 receives the activation notification corresponding to the activation of the encrypted SMS, and after receiving the activation notification corresponding to the activation of the encrypted SMS, After receiving the notification that the secret message is activated, the storage device 10 is unlocked according to the at least one password and the communication number stored in the storage device 10 is deleted. Other included implementation means and alternative methods have been explained in Figures 2 and 3 and corresponding paragraphs, and will not be described again here. In another embodiment, if the corresponding form is stored in the personal mobile communication device 102, when the encrypted message is activated through the identity authentication program of the personal mobile communication device 102 (through user identity comparison), the personal The corresponding password in the corresponding form in the mobile communication device 102 is sent back to the host 104 so that the host 104 can unlock the storage device 10 based on the password.

綜上所述,本發明所提供的上鎖、解鎖儲存裝置的方法和其相關的系統不論是上鎖該儲存裝置的過程和解鎖該儲存裝置的過程都是綁定該使用者的個人行動通訊裝置與對應的通訊號碼,更可進一步綁定個人行動通訊裝置所屬之使用者身份,且上鎖之密碼至少使用唯一裝置碼(或進一步導入時間戳記)進行加密,以確保其特殊性並提高破解難度。因此,相較於現有技術,本發明不僅可解決現有技術出現的問題,且具有以下優點:1)解決該使用者忘記用以上鎖該儲存裝置的密碼時帶來的風險;2)可在該伺服器(對應第1圖的系統)或在該個人行動通訊裝置(對應第4圖的系統)備份多組該儲存裝置的密碼;3)透過該個人行動通訊裝置上的身份認證程式(如指紋、視網膜、靜脈等生物辨識方法)認證程式來對使用者身份進行確認,因此更可保護用以上鎖該儲存裝置的密碼。 In summary, the method for locking and unlocking a storage device and the related system provided by the present invention are bound to the user's personal mobile communication in both the process of locking and unlocking the storage device. The device and the corresponding communication number can be further bound to the user identity of the personal mobile communication device, and the locked password is at least encrypted using a unique device code (or further importing a time stamp) to ensure its specificity and improve cracking. Difficulty. Therefore, compared with the prior art, the present invention can not only solve the problems of the prior art, but also has the following advantages: 1) solve the risk caused when the user forgets the password used to lock the storage device; 2) can The server (corresponding to the system in Figure 1) or the personal mobile communication device (corresponding to the system in Figure 4) backs up multiple sets of passwords for the storage device; 3) Through the identity authentication program (such as fingerprint) on the personal mobile communication device , retinal, vein and other biometric methods) authentication program to confirm the user's identity, so it can also protect the password used to lock the storage device.

以上所述僅為本發明之較佳實施例,凡依本發明申請專利範圍所做之均等變化與修飾,皆應屬本發明之涵蓋範圍。 The above are only preferred embodiments of the present invention, and all equivalent changes and modifications made in accordance with the patentable scope of the present invention shall fall within the scope of the present invention.

200~216:步驟 200~216: steps

Claims (10)

一種上鎖儲存裝置之方法,至少包含下列步驟:連接該儲存裝置至一主機;輸入一通訊號碼至該主機;該主機傳送該儲存裝置之一唯一裝置碼及該通訊號碼至一伺服器;該伺服器加密該唯一裝置碼形成一加密簡訊並傳送該加密簡訊至對應該通訊號碼之一個人行動通訊裝置;透過該個人行動通訊裝置之一身份認證程式確認使用者身份,以激活該加密簡訊並產生一啟用通知;該伺服器接收到該啟用通知後,產生一密碼訊息並傳送至該主機,且將該密碼訊息與該通訊號碼以一對應表單之形式儲存至一資料庫;以及該主機基於該密碼訊息上鎖該儲存裝置,並將該通訊號碼儲存至該儲存裝置。 A method of locking a storage device includes at least the following steps: connecting the storage device to a host; inputting a communication number to the host; the host transmits a unique device code of the storage device and the communication number to a server; The server encrypts the unique device code to form an encrypted message and sends the encrypted message to a personal mobile communication device corresponding to the communication number; the user's identity is confirmed through the identity authentication program of the personal mobile communication device to activate the encrypted message and generate An activation notification; after receiving the activation notification, the server generates a password message and sends it to the host, and stores the password message and the communication number in a database in the form of a corresponding form; and the host based on the The password message locks the storage device and stores the communication number to the storage device. 如請求項1所述之方法,其中該密碼訊息係為一密碼使用確認訊息,當該主機接收該密碼訊息後,透過一明碼上鎖該儲存裝置,其中該明碼係為當連接該儲存裝置至該主機時,透過該主機所輸入並儲存於該主機中。 The method described in claim 1, wherein the password message is a password usage confirmation message. After receiving the password message, the host locks the storage device through a clear code, wherein the clear code is when connecting the storage device to When the host is used, it is input through the host and stored in the host. 如請求項1所述之方法,其中該密碼訊息包含一暗碼,該暗碼係當該伺服器接收到該啟用通知後,由該伺服器基於該唯一裝置碼所產生。 The method of claim 1, wherein the password message includes a password generated by the server based on the unique device code after the server receives the activation notification. 如請求項3所述之方法,其中該暗碼係當該伺服器接收到該啟用 通知後,由該伺服器基於該唯一裝置碼以及當下紀錄之一時間戳記所產生。 A method as described in request 3, wherein the password is used when the server receives the activation After notification, generated by the server based on the unique device code and a timestamp of the current record. 如請求項1所述之方法,其中當透過該身份認證程式確認使用者身份後,產生對應使用者之一身份資訊並連同該啟用通知一併傳回該伺服器,且對應該通訊號碼將該身份資訊儲存於該對應表單中。 The method described in request item 1, wherein after the user's identity is confirmed through the identity authentication program, the identity information of the corresponding user is generated and sent back to the server together with the activation notification, and the corresponding communication number is Identity information is stored in the corresponding form. 一種解鎖儲存裝置之方法,至少包含下列步驟:連接該儲存裝置至一主機,並且該主機自該儲存裝置中取得一通訊號碼;該主機傳送該儲存裝置之一唯一裝置碼及該通訊號碼至一伺服器;該伺服器加密該唯一裝置碼以形成一加密簡訊並傳送該加密簡訊至對應該通訊號碼之一個人行動通訊裝置;透過該個人行動通訊裝置之一身份認證程式確認使用者身份,以激活該加密簡訊並產生一啟用通知;該伺服器接收到該啟用通知後,自該伺服器之一資料庫中之一對應表單提取對應該通訊號碼之一密碼訊息,並傳送該密碼訊息至該主機;以及該主機基於該密碼訊息解鎖該儲存裝置,並刪除該儲存裝置中之該通訊號碼。 A method of unlocking a storage device includes at least the following steps: connect the storage device to a host, and the host obtains a communication number from the storage device; the host sends a unique device code of the storage device and the communication number to a Server; the server encrypts the unique device code to form an encrypted message and sends the encrypted message to a personal mobile communication device corresponding to the communication number; confirms the user's identity through the identity authentication program of the personal mobile communication device to activate The encrypted message generates an activation notification; after receiving the activation notification, the server extracts the password message corresponding to the communication number from a corresponding form in a database of the server, and sends the password message to the host ; and the host unlocks the storage device based on the password message and deletes the communication number in the storage device. 如請求項6所述之方法,其中更包含下列步驟:當透過該身份認證程式確認使用者身份後,產生對應使用者之一身份資訊並連同該啟用通知一併傳回該伺服器;以及該伺服器透過該對應表單將該身份資訊與該通訊號碼所對應之一原有身份資訊比對,以判斷是否相符,若是則提取所對應之該通訊號碼對應之該密碼訊息。 The method described in request item 6, which further includes the following steps: after confirming the user's identity through the identity authentication program, generating identity information corresponding to the user and sending it back to the server together with the activation notification; and The server compares the identity information with the original identity information corresponding to the communication number through the corresponding form to determine whether they match, and if so, extracts the password information corresponding to the corresponding communication number. 一種上鎖與解鎖儲存裝置之系統,包含:該儲存裝置,具有對應該儲存裝置之一唯一裝置碼,該儲存裝置更具有用以儲存一通訊號碼之一隱藏區;一個人行動通訊裝置,具有身份辨識功能之一身份認證程式,以確認使用者身份後激活一加密簡訊,其中該個人行動通訊裝置對應該通訊號碼;一主機,用以連接該儲存裝置,並用以傳送或接收該儲存裝置之該唯一裝置碼以及該通訊號碼,且可透過接收一密碼訊息對該儲存裝置上鎖與解鎖;以及一伺服器,用以接收該唯一裝置碼和該通訊號碼,以及加密該唯一裝置碼形成該加密簡訊後基於該通訊號碼傳送至該個人行動通訊裝置,並且用以接收一啟用通知後,將對應之該密碼訊息自一資料庫中儲存或提取;其中,該個人行動通訊裝置接收到該加密簡訊後,該個人行動通訊裝置透過一身份認證程式確認使用者身份以激活該加密簡訊,該伺服器接收到對應該加密簡訊被激活之該啟用通知後傳送對應該唯一裝置碼之該密碼訊息至該主機,該主機基於該密碼訊息來對該儲存裝置上鎖或解鎖,並將該通訊號碼選擇性地儲存於該儲存裝置中或自該儲存裝置中刪除。 A system for locking and unlocking a storage device, including: the storage device has a unique device code corresponding to the storage device; the storage device further has a hidden area useful for storing a communication number; a personal mobile communication device has an identity An identity authentication program with an identification function to activate an encrypted text message after confirming the user's identity, in which the personal mobile communication device corresponds to the communication number; a host used to connect to the storage device and to send or receive the storage device The unique device code and the communication number, and can lock and unlock the storage device by receiving a password message; and a server for receiving the unique device code and the communication number, and encrypting the unique device code to form the encryption After the SMS is sent to the personal mobile communication device based on the communication number, and used to receive an activation notification, the corresponding password message is stored or retrieved from a database; wherein the personal mobile communication device receives the encrypted SMS Afterwards, the personal mobile communication device confirms the user's identity through an identity authentication program to activate the encrypted text message. After receiving the activation notification corresponding to the activation of the encrypted text message, the server sends the password message corresponding to the unique device code to the The host locks or unlocks the storage device based on the password message, and selectively stores or deletes the communication number in the storage device. 如請求項8所述之系統,其中該密碼訊息係為一密碼使用確認訊息,當該主機接收該密碼訊息後,透過一明碼上鎖該儲存裝置,其中該明碼係為當連接該儲存裝置至該主機時,透過該主機所輸入並儲存於該主機中。 The system as described in claim 8, wherein the password message is a password usage confirmation message. After receiving the password message, the host locks the storage device through a clear code, wherein the clear code is when connecting the storage device to When the host is used, it is input through the host and stored in the host. 如請求項8所述之系統,其中該密碼訊息包含一暗碼,該暗碼係當該伺服器接收到該啟用通知後,由該伺服器基於該唯一裝置碼所產生。 The system of claim 8, wherein the password message includes a password generated by the server based on the unique device code after the server receives the activation notification.
TW111140989A 2022-10-28 2022-10-28 Method of locking and unlocking a storage device and related system thereof TWI826077B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW111140989A TWI826077B (en) 2022-10-28 2022-10-28 Method of locking and unlocking a storage device and related system thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW111140989A TWI826077B (en) 2022-10-28 2022-10-28 Method of locking and unlocking a storage device and related system thereof

Publications (2)

Publication Number Publication Date
TWI826077B true TWI826077B (en) 2023-12-11
TW202418783A TW202418783A (en) 2024-05-01

Family

ID=90053262

Family Applications (1)

Application Number Title Priority Date Filing Date
TW111140989A TWI826077B (en) 2022-10-28 2022-10-28 Method of locking and unlocking a storage device and related system thereof

Country Status (1)

Country Link
TW (1) TWI826077B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070011724A1 (en) * 2005-07-08 2007-01-11 Gonzalez Carlos J Mass storage device with automated credentials loading
TWI454959B (en) * 2011-12-08 2014-10-01 Phison Electronics Corp Storage device proection system and methods for lock and unlock storage device thereof
TWI584151B (en) * 2016-06-02 2017-05-21 樹德科技大學 A flash drive with a safety mechanism and method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070011724A1 (en) * 2005-07-08 2007-01-11 Gonzalez Carlos J Mass storage device with automated credentials loading
TWI454959B (en) * 2011-12-08 2014-10-01 Phison Electronics Corp Storage device proection system and methods for lock and unlock storage device thereof
TWI584151B (en) * 2016-06-02 2017-05-21 樹德科技大學 A flash drive with a safety mechanism and method

Similar Documents

Publication Publication Date Title
CN110334503B (en) Method for unlocking one device by using the other device
EP2813961B1 (en) Biometric verification with improved privacy and network performance in client-server networks
TWI463349B (en) Method and system for secure data access among two devices
US8843760B2 (en) Biometric identification method
US9166796B2 (en) Secure biometric cloud storage system
US20130159699A1 (en) Password Recovery Service
US20060242423A1 (en) Isolated authentication device and associated methods
JP5710439B2 (en) Template delivery type cancelable biometric authentication system and method
US20070223685A1 (en) Secure system and method of providing same
KR102265788B1 (en) Multi-security authentication system and method between blockchain-based mobile terminals and IoT devices
KR20160048203A (en) System for accessing data from multiple devices
CN107864124B (en) Terminal information security protection method, terminal and Bluetooth lock
CN106575342A (en) Kernel program including relational data base, and method and device for executing said program
JP2006209697A (en) Individual authentication system, and authentication device and individual authentication method used for the individual authentication system
CN108900296B (en) Secret key storage method based on biological feature identification
EP2192513B1 (en) Authentication using stored biometric data
TWI476629B (en) Data security and security systems and methods
CN114730337A (en) Cryptographic key management
US20140250499A1 (en) Password based security method, systems and devices
TWI826077B (en) Method of locking and unlocking a storage device and related system thereof
TWI621029B (en) Personal identity authentication method and system using graphic lock
US20220417249A1 (en) Remote registration of a data storage device with biometric authentication
CN110111103B (en) Password resetting method and system for digital currency wallet
CN113792272A (en) Method and device for managing and controlling password library, storage medium and electronic equipment
KR20070092527A (en) Method of managing information for identification and recording media that saves program implementing the same