WO2012022078A1 - Data card and using method thereof - Google Patents

Data card and using method thereof Download PDF

Info

Publication number
WO2012022078A1
WO2012022078A1 PCT/CN2010/078792 CN2010078792W WO2012022078A1 WO 2012022078 A1 WO2012022078 A1 WO 2012022078A1 CN 2010078792 W CN2010078792 W CN 2010078792W WO 2012022078 A1 WO2012022078 A1 WO 2012022078A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
data card
data
terminal device
module
Prior art date
Application number
PCT/CN2010/078792
Other languages
French (fr)
Chinese (zh)
Inventor
肖龙安
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2012022078A1 publication Critical patent/WO2012022078A1/en

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4093Monitoring of device authentication
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/12Card verification
    • G07F7/122Online card verification

Landscapes

  • Business, Economics & Management (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Storage Device Security (AREA)

Abstract

A method for using a data card is provided in this invention, and the data card is connected with a terminal device. The method includes the following steps: a user starts a security application of the data card, and the terminal device determines whether the user has passed the logon authentication or not according to whether a user identification in an activated state exists in the data card; if the user identification in the activated state exists, it means that the user has passed the logon authentication, then the security application of the data card is accomplished. Otherwise, after the user realizing the logon authentication, the security application of the data card is accomplished. A data card is also provided in this invention. The data card of this invention not only has the function of radio network access, but also has the function of security application.

Description

一种数据卡及其使用方法 技术领域  Data card and method of using same
本发明涉及无线终端接入设备, 尤其涉及一种数据卡及其使用方法。 背景技术  The present invention relates to a wireless terminal access device, and in particular, to a data card and a method for using the same. Background technique
计算机技术和网络技术的迅速普及大大改变了人们的生活和生产方 式, 人们在享受计算机和互联网带来的便利的同时, 也面临着大量有关电 子数据的安全问题, 如用户的个人电子数据遭窃取或中病毒等等。 电子数 据的安全问题日益突出。  The rapid spread of computer technology and network technology has greatly changed people's life and production methods. While enjoying the convenience brought by computers and the Internet, people also face a large number of security issues related to electronic data, such as theft of personal electronic data of users. Or medium virus and so on. The security of electronic data is becoming increasingly prominent.
另外, 由于数据卡具有高速的无线网络接入功能且便于携带, 因此其 越来越受到用户的青睐。 但是, 现有数据卡的功能比较单一: 一般仅具有 无线网络接入功能, 因此其应用很有限。 发明内容  In addition, since the data card has high-speed wireless network access and is easy to carry, it is increasingly favored by users. However, the existing data card has a relatively simple function: generally only has wireless network access, so its application is limited. Summary of the invention
有鉴于此, 本发明的主要目的在于提供一种具有安全应用功能的数据 卡及其使用方法。  In view of this, it is a primary object of the present invention to provide a data card having a secure application function and a method of using the same.
为达到上述目的, 本发明的技术方案是这样实现的:  In order to achieve the above object, the technical solution of the present invention is achieved as follows:
一种数据卡的使用方法, 所述数据卡连接终端设备, 所述数据卡接 收终端设备发来的用户预置的用户身份认证信息, 并存储该用户预置的 用户身份认证信息以及与该预置的用户身份认证信息对应的用户标识; 所述使用方法包括:  A method for using a data card, the data card is connected to a terminal device, and the data card receives user identity authentication information preset by a user sent by the terminal device, and stores the user identity authentication information preset by the user and the pre- The user identifier corresponding to the user identity authentication information; the usage method includes:
用户启用所述数据卡的安全应用, 所述终端设备根据所述数据卡中 是否存在处于激活状态的用户标识判断所述用户是否已经通过登录认 证, 如果存在处于激活状态的用户标识,表明所述用户已通过登录认证, 则完成数据卡的安全应用; 否则, 所述用户实现登录认证后, 再完成数 据卡的安全应用。 The user enables the security application of the data card, and the terminal device determines, according to whether the user identifier in the activated state exists in the data card, whether the user has passed the login authentication, and if there is a user identifier in the activated state, indicating that the user The user has passed the login authentication. Then, the security application of the data card is completed; otherwise, after the user implements the login authentication, the security application of the data card is completed.
进一步地, 所述用户标识由所述数据卡预先分配、 或根据预置的用 户身份认证信息生成。  Further, the user identifier is pre-allocated by the data card or generated according to preset user identity authentication information.
进一步地, 所述用户启用所述数据卡的安全应用为: 用户选择所述 终端设备上的电子数据进行加密;  Further, the security application of the data card is enabled by the user: the user selects the electronic data on the terminal device for encryption;
所述完成数据卡的安全应用的过程包括:  The process of completing the security application of the data card includes:
所述终端设备将需要加密的电子数据传输给所述数据卡;  Transmitting, by the terminal device, electronic data that needs to be encrypted to the data card;
所述数据卡根据所述处于激活状态的用户标识以及与所述处于激活 状态的用户标识对应的用户身份认证信息, 生成用户加密密钥, 并利用 生成的用户加密密钥对收到的电子数据进行加密, 且在加密的电子数据 中添加所述处于激活状态的用户标识; 所述数据卡将携带有所述处于激 活状态的用户标识的加密的电子数据回传至所述终端设备。  The data card generates a user encryption key according to the user identity in the activated state and the user identity authentication information corresponding to the user identity in the activated state, and uses the generated user encryption key to receive the received electronic data. Encrypting is performed, and the activated user identifier is added to the encrypted electronic data; the data card transmits back the encrypted electronic data carrying the activated user identifier to the terminal device.
进一步地, 所述用户启用所述数据卡的安全应用为: 用户选择对所 述终端设备上已加密的电子数据进行解密;  Further, the security application of the user to enable the data card is: the user selects to decrypt the encrypted electronic data on the terminal device;
所述完成数据卡的安全应用的过程包括: 所述终端设备将所述已加 密的电子数据传输给所述数据卡;  The process of completing the security application of the data card includes: the terminal device transmitting the encrypted electronic data to the data card;
当所述数据卡确定所述已加密的电子数据中携带的用户标识与所述 处于激活状态的用户标识匹配时, 根据所述处于激活状态的用户标识以 及与所述处于激活状态的用户标识对应的用户身份认证信息, 生成用户 解密密钥, 并利用生成的用户解密密钥对所述已加密的电子数据进行解 密, 将已解密的电子数据回传至所述终端设备。  When the data card determines that the user identifier carried in the encrypted electronic data matches the user identifier in the activated state, according to the user identifier in the activated state and the user identifier in the activated state The user identity authentication information generates a user decryption key, and decrypts the encrypted electronic data by using the generated user decryption key, and transmits the decrypted electronic data back to the terminal device.
进一步地, 所述登录认证的过程包括:  Further, the process of login authentication includes:
所述终端设备提示所述用户输入用户身份认证信息; 在所述用户输 入用户身份认证信息后, 所述终端设备将输入的用户身份认证信息传输 给所述数据卡; The terminal device prompts the user to input user identity authentication information; after the user inputs the user identity authentication information, the terminal device transmits the input user identity authentication information Giving the data card;
所述数据卡将所述输入的用户身份认证信息与所述用户预置的用户 身份认证信息进行匹配, 如果匹配成功, 则所述数据卡将所述预置的用 户身份认证信息对应的用户标识置为激活状态, 且所述终端设备提示所 述用户登录认证成功; 否则, 所述终端设备提示所述用户登录认证失败。  The data card matches the input user identity authentication information with the user identity authentication information preset by the user. If the matching is successful, the data card uses the user identifier corresponding to the preset user identity authentication information. And the terminal device prompts that the user login authentication succeeds; otherwise, the terminal device prompts the user that the login authentication fails.
所述使用方法进一步包括:  The method of using further comprises:
用户退出所述数据卡的安全应用时, 所述终端设备向所述数据卡发 送退出命令, 所述数据卡根据收到的退出命令将所述处于激活状态的用 户标识去激活, 并删除所述用户加密密钥。  When the user quits the security application of the data card, the terminal device sends an exit command to the data card, and the data card deactivates the activated user identifier according to the received exit command, and deletes the User encryption key.
所述使用方法进一步包括:  The method of using further comprises:
用户退出所述数据卡的安全应用时, 所述终端设备向所述数据卡发 送退出命令, 所述数据卡根据收到的退出命令将所述处于激活状态的用 户标识去激活, 并删除所述用户解密密钥。  When the user quits the security application of the data card, the terminal device sends an exit command to the data card, and the data card deactivates the activated user identifier according to the received exit command, and deletes the The user decrypts the key.
进一步地, 所述用户身份认证信息为用户设置的密码、 用户的指紋 信息、 用户的瞳孔信息、 用户的脸部信息或用户的声音信息。  Further, the user identity authentication information is a password set by the user, fingerprint information of the user, pupil information of the user, facial information of the user, or voice information of the user.
一种数据卡, 连接终端设备, 其特征在于, 所述数据卡包括: 安全 存储模块、 安全认证模块、 数据加解密模块以及通信接口模块; 其中, 安全存储模块, 用于接收终端设备经由通信接口模块发来的用户预 置的用户身份认证信息, 并存储该用户预置的用户身份认证信息以及与 该预置的用户身份认证信息对应的用户标识;  A data card, connected to a terminal device, wherein the data card comprises: a security storage module, a security authentication module, a data encryption and decryption module, and a communication interface module; wherein, the security storage module is configured to receive the terminal device via the communication interface User preset information sent by the module, and storing the user identity authentication information preset by the user and the user identifier corresponding to the preset user identity authentication information;
数据加解密模块, 用于当安全认证模块中存在处于激活状态的用户 标识时, 接收终端设备经由通信接口模块传来的需要加密的电子数据, 并通知安全认证模块生成用户加密密钥; 还根据生成的用户加密密钥对 需要加密的电子数据进行加密, 且在加密的电子数据中添加所述处于激 活状态的用户标识, 并将携带有所述处于激活状态的用户标识的加密的 电子数据经由通信接口模块回传至所述终端设备; a data encryption/decryption module, configured to: when the user identifier in the activated state exists in the security authentication module, receive the electronic data that needs to be encrypted transmitted by the terminal device via the communication interface module, and notify the security authentication module to generate a user encryption key; The generated user encryption key encrypts the electronic data that needs to be encrypted, and adds the activated user identifier to the encrypted electronic data, and carries the encrypted identifier of the activated user identifier. Electronic data is transmitted back to the terminal device via the communication interface module;
安全认证模块, 用于实现用户的登录认证, 并根据所述处于激活状 态的用户标识以及与所述处于激活状态的用户标识对应的用户身份认证 信息, 生成用户加密密钥并传输给数据加解密模块。  a security authentication module, configured to implement login authentication of the user, and generate a user encryption key and transmit the data to the data encryption and decryption according to the user identity in the activated state and the user identity authentication information corresponding to the activated user identity. Module.
进一步地, 所述数据加解密模块还用于: 当安全认证模块中存在处 于激活状态的用户标识时, 接收终端设备经由通信接口模块传来的已加 密的电子数据, 并当所述已加密的电子数据中携带的用户标识与所述处 于激活状态的用户标识匹配时, 通知安全认证模块生成用户解密密钥; 还根据生成的用户解密密钥对所述已加密的电子数据进行解密, 将已解 密的电子数据经由通信接口模块回传至所述终端设备;  Further, the data encryption and decryption module is further configured to: when the user identifier in the activated state exists in the security authentication module, receive the encrypted electronic data sent by the terminal device via the communication interface module, and when the encrypted When the user identifier carried in the electronic data matches the activated user identifier, the security authentication module is notified to generate a user decryption key; and the encrypted electronic data is also decrypted according to the generated user decryption key. Decrypting electronic data is transmitted back to the terminal device via the communication interface module;
所述安全认证模块还用于: 根据所述处于激活状态的用户标识以及 与所述处于激活状态的用户标识对应的用户身份认证信息, 生成用户解 密密钥并传输给数据加解密模块。  The security authentication module is further configured to: generate a user decryption key according to the user identity in the activated state and user identity authentication information corresponding to the activated user identity, and transmit the data to the data encryption and decryption module.
进一步地, 所述安全认证模块在实现用户的登录认证时, 用于: 接收 终端设备经由通信接口模块传来的用户输入的用户身份认证信息, 并当确 定输入的用户身份认证信息与所述用户预置的用户身份认证信息匹配时, 将所述预置的用户身份认证信息对应的用户标识置为激活状态。  Further, when implementing the login authentication of the user, the security authentication module is configured to: receive user identity authentication information input by the terminal device via the communication interface module, and determine the input user identity authentication information and the user When the preset user identity authentication information is matched, the user identifier corresponding to the preset user identity authentication information is set to an active state.
由以上技术方案可以看出, 本发明将现有数据卡进行改进, 使其能够 对电子数据进行加密或解密, 从而使数据卡不仅具有无线网络接入功能, 还具有安全应用功能。 本发明数据卡的安全应用功能实现简单、 使用灵活, 因此有利于扩展数据卡的应用。 附图说明  As can be seen from the above technical solution, the present invention improves the existing data card to enable it to encrypt or decrypt the electronic data, so that the data card not only has the wireless network access function but also has the security application function. The security application function of the data card of the invention is simple to implement and flexible to use, and thus is advantageous for expanding the application of the data card. DRAWINGS
图 1为本发明数据卡的结构示意图;  1 is a schematic structural view of a data card of the present invention;
图 2为本发明利用数据卡对电子数据加密的流程示意图;  2 is a schematic flow chart of encrypting electronic data by using a data card according to the present invention;
图 3为本发明利用数据卡对电子数据解密的流程示意图; 图 4为本发明使用数据卡的安全应用功能中用户登录认证的流程示意 图。 具体实施方式 3 is a schematic flow chart of decrypting electronic data by using a data card according to the present invention; FIG. 4 is a schematic flowchart of user login authentication in a security application function of a data card according to the present invention. detailed description
下面结合附图对本发明的技术方案作进一步详细描述。  The technical solution of the present invention will be further described in detail below with reference to the accompanying drawings.
本发明的基本思想是: 扩展现有数据卡的功能, 使其不仅具有无线 网络接入功能, 还具有安全应用功能, 从而使数据卡不仅成为无线终端 接入设备, 还成为个人信息安全终端。  The basic idea of the present invention is to: expand the function of the existing data card to have not only the wireless network access function, but also the security application function, so that the data card not only becomes a wireless terminal access device, but also becomes a personal information security terminal.
本发明的数据卡与外部的终端设备连接使用, 应当理解, 所连接的 终端设备中安装有数据卡对应的软件, 如图 1所示, 该软件中包含有数 据卡安全应用模块。  The data card of the present invention is used in connection with an external terminal device. It should be understood that the connected terminal device is equipped with software corresponding to the data card. As shown in FIG. 1, the software includes a data card security application module.
该终端设备包括但不限于台式机、 笔记本、 上网本、 掌上电脑或智 能终端。  The terminal device includes, but is not limited to, a desktop, a notebook, a netbook, a palmtop, or a smart terminal.
如图 1所示, 本发明的数据卡包括: 安全存储模块、 安全认证模块、 数据加解密模块以及通信接口模块; 其中,  As shown in FIG. 1, the data card of the present invention includes: a security storage module, a security authentication module, a data encryption and decryption module, and a communication interface module;
安全存储模块, 用于接收终端设备经由通信接口模块发来的用户预 置的用户身份认证信息, 并存储该用户预置的用户身份认证信息以及与 该预置的用户身份认证信息对应的用户标识, 该用户标识由所述数据卡 预先分配、 或根据预置的用户身份认证信息生成;  a security storage module, configured to receive user preset authentication information sent by the terminal device via the communication interface module, and store the user identity authentication information preset by the user and the user identifier corresponding to the preset user identity authentication information The user identifier is pre-allocated by the data card or generated according to preset user identity authentication information;
数据加解密模块, 用于当安全认证模块中存在处于激活状态的用户 标识时, 接收终端设备经由通信接口模块传来的需要加密的电子数据, 并通知安全认证模块生成用户加密密钥; 还根据生成的用户加密密钥对 需要加密的电子数据进行加密, 且在加密的电子数据中添加所述处于激 活状态的用户标识, 并将携带有所述处于激活状态的用户标识的加密的 电子数据经由通信接口模块回传至所述终端设备;  a data encryption/decryption module, configured to: when the user identifier in the activated state exists in the security authentication module, receive the electronic data that needs to be encrypted transmitted by the terminal device via the communication interface module, and notify the security authentication module to generate a user encryption key; Generating the user encryption key to encrypt the electronic data to be encrypted, and adding the activated user identifier to the encrypted electronic data, and transmitting the encrypted electronic data carrying the activated user identifier Transmitting the communication interface module to the terminal device;
安全认证模块, 用于实现用户的登录认证, 并根据所述处于激活状 态的用户标识以及与所述处于激活状态的用户标识对应的用户身份认证 信息, 生成用户加密密钥并传输给数据加解密模块。 a security authentication module, configured to implement login authentication of the user, and is activated according to the The user identifier and the user identity authentication information corresponding to the activated user identifier generate a user encryption key and transmit the data to the data encryption and decryption module.
进一步地, 所述数据加解密模块还用于: 当安全认证模块中存在处 于激活状态的用户标识时, 接收终端设备经由通信接口模块传来的已加 密的电子数据, 并当所述已加密的电子数据中携带的用户标识与所述处 于激活状态的用户标识匹配时, 通知安全认证模块生成用户解密密钥; 还根据生成的用户解密密钥对所述已加密的电子数据进行解密, 将已解 密的电子数据经由通信接口模块回传至所述终端设备;  Further, the data encryption and decryption module is further configured to: when the user identifier in the activated state exists in the security authentication module, receive the encrypted electronic data sent by the terminal device via the communication interface module, and when the encrypted When the user identifier carried in the electronic data matches the activated user identifier, the security authentication module is notified to generate a user decryption key; and the encrypted electronic data is also decrypted according to the generated user decryption key. Decrypting electronic data is transmitted back to the terminal device via the communication interface module;
所述安全认证模块还用于: 根据所述处于激活状态的用户标识以及 与所述处于激活状态的用户标识对应的用户身份认证信息, 生成用户解 密密钥并传输给数据加解密模块。  The security authentication module is further configured to: generate a user decryption key according to the user identity in the activated state and user identity authentication information corresponding to the activated user identity, and transmit the data to the data encryption and decryption module.
进一步地, 所述安全认证模块在实现用户的登录认证时, 用于: 接 收终端设备经由通信接口模块传来的用户输入的用户身份认证信息, 并 当确定输入的用户身份认证信息与所述用户预置的用户身份认证信息匹 配时, 将所述预置的用户身份认证信息对应的用户标识置为激活状态。  Further, when implementing the login authentication of the user, the security authentication module is configured to: receive user identity authentication information input by the terminal device via the communication interface module, and determine the input user identity authentication information and the user When the preset user identity authentication information is matched, the user identifier corresponding to the preset user identity authentication information is set to an active state.
进一步地, 安全认证模块还用于: 在收到终端设备发来的退出命令 后, 将处于激活状态的用户标识去激活, 并删除用户加密密钥或用户解 密密钥。  Further, the security authentication module is further configured to: after receiving the exit command sent by the terminal device, deactivate the user ID in the activated state, and delete the user encryption key or the user decryption key.
其中, 通信接口模块用于连接数据卡与终端设备, 并供两者进行数 据传输和命令交互。该通信接口模块包括但不限于 USB接口、 IEEE1394 接口、 蓝牙接口、 红外接口、 有线广域 /局域网接口、 无线广域 /局域网 接口中的一种或多种。  The communication interface module is configured to connect the data card with the terminal device, and perform data transmission and command interaction between the two. The communication interface module includes but is not limited to one or more of a USB interface, an IEEE1394 interface, a Bluetooth interface, an infrared interface, a wired wide area/LAN interface, and a wireless wide area/local area network interface.
在使用数据卡的安全应用功能之前, 需要预置用户身份认证信息, 该预置用户身份认证信息的过程包括:  Before using the security application function of the data card, the user identity authentication information needs to be preset. The process of presetting the user identity authentication information includes:
在数据卡连接到外部的终端设备后, 用户初次启用数据卡的安全应 用功能时, 该终端设备上的数据卡安全应用模块提示用户预置用户身份 认证信息; After the data card is connected to the external terminal device, the user should first enable the security of the data card. When the function is used, the data card security application module on the terminal device prompts the user to preset the user identity authentication information;
用户通过该终端设备的输入模块将预置的用户身份认证信息输入该 终端设备; 其中, 输入模块包括但不限于键盘、 鼠标、 指紋釆集输入设 备、 图像釆集输入设备或声音输入设备; 用户身份认证信息可以为用户 设置的密码、 用户的指紋信息、 用户的瞳孔信息、 用户的脸部信息或用 户的声音信息等用户独有的信息。  The user inputs the preset user identity authentication information into the terminal device through the input module of the terminal device; wherein, the input module includes but is not limited to a keyboard, a mouse, a fingerprint collection input device, an image collection input device, or a voice input device; The identity authentication information may be user-specific information such as a password set by the user, fingerprint information of the user, pupil information of the user, facial information of the user, or voice information of the user.
该终端设备上的数据卡安全应用模块将预置的用户身份认证信息经 由数据卡的通信接口模块传输到数据卡的安全存储模块, 安全存储模块 存储该预置的用户身份认证信息以及与其对应的用户标识。  The data card security application module on the terminal device transmits the preset user identity authentication information to the secure storage module of the data card via the communication interface module of the data card, and the security storage module stores the preset user identity authentication information and the corresponding User ID.
其中, 数据卡的安全存储模块可以存储多个用户的身份认证信息, 并可以用用户标识来区分不同用户的身份认证信息。 用户标识可以由数 据卡预先分配、 也可以根据预置的用户身份认证信息生成对应的用户标 识。  The secure storage module of the data card can store identity authentication information of multiple users, and can use the user identifier to distinguish identity authentication information of different users. The user identification may be pre-allocated by the data card, or may generate a corresponding user identification based on the preset user identity authentication information.
数据卡的安全应用功能主要包括两方面: 对电子数据加密存储和解 密使用。  The security application function of the data card mainly includes two aspects: encryption storage and decryption of electronic data.
下面结合图 2说明数据卡对电子数据进行加密存储的流程。 所述电 子数据位于与数据卡连接的外部终端设备上。  The flow of encrypting and storing electronic data by the data card will be described below with reference to FIG. The electronic data is located on an external terminal device connected to the data card.
步骤 201 , 用户选择终端设备上的电子数据进行加密;  Step 201: The user selects electronic data on the terminal device for encryption.
例如, 选择对文本、 图片、 音频或视频等文件进行加密。  For example, choose to encrypt files such as text, pictures, audio, or video.
步骤 202 , 根据安全认证模块中是否存在处于激活状态的用户标识, 数据卡安全应用模块判断该用户是否已经通过登录认证, 如果安全认证 模块中不存在处于激活状态的用户标识, 表明用户未通过登录认证, 则 执行步骤 203 ; 否则, 执行步骤 204;  Step 202: According to whether the user identity of the activated state exists in the security authentication module, the data card security application module determines whether the user has passed the login authentication. If the user identity of the activated state does not exist in the security authentication module, the user does not log in. If the authentication is performed, go to step 203; otherwise, go to step 204;
其中, 安全认证模块中处于激活状态的用户标识只有一个。 步骤 203 , 数据卡安全应用模块提示用户进行登录认证, 如果用户 登录认证成功, 则执行步骤 204; 否则, 流程结束。 There is only one user ID in the active authentication module. Step 203: The data card security application module prompts the user to perform login authentication. If the user login authentication succeeds, step 204 is performed; otherwise, the process ends.
步骤 204 , 数据卡安全应用模块将需要加密的电子数据经由数据卡 的通信接口模块传输到数据卡的数据加解密模块。  Step 204: The data card security application module transmits the encrypted electronic data to the data encryption/decryption module of the data card via the communication interface module of the data card.
步骤 205 , 数据加解密模块通知安全认证模块生成用户加密密钥。 步骤 206 , 安全认证模块根据处于激活状态的用户标识以及与该处 于激活状态的用户标识对应的用户身份认证信息, 生成用户加密密钥并 传输给数据加解密模块。  Step 205: The data encryption and decryption module notifies the security authentication module to generate a user encryption key. Step 206: The security authentication module generates a user encryption key according to the user identifier in the activated state and the user identity authentication information corresponding to the user identity in the activated state, and transmits the user encryption key to the data encryption and decryption module.
其中, 用户身份认证信息预置在安全存储模块中, 安全认证模块从 安全存储模块中读取与处于激活状态的用户标识对应用户身份认证信 息。  The user identity authentication information is preset in the security storage module, and the security authentication module reads the user identity authentication information corresponding to the activated user identity from the security storage module.
步骤 207 , 数据加解密模块利用收到的用户加密密钥对电子数据进 行加密, 并在加密的电子数据中添加对应的用户标识。 该对应的用户标 识即是当前处于激活状态的用户标识。  Step 207: The data encryption and decryption module encrypts the electronic data by using the received user encryption key, and adds a corresponding user identifier to the encrypted electronic data. The corresponding user identifier is the currently identified user ID.
步骤 208 , 数据加解密模块将携带有用户标识的加密的电子数据经 由通信接口模块回传至与数据卡连接的终端设备进行存储。  Step 208: The data encryption/decryption module returns the encrypted electronic data carrying the user identifier to the terminal device connected to the data card for storage via the communication interface module.
下面结合图 3说明数据卡对电子数据进行解密使用的流程。 所述电 子数据位于与数据卡连接的外部终端设备上。  The flow of decrypting the electronic data by the data card will be described below with reference to FIG. The electronic data is located on an external terminal device connected to the data card.
步骤 301 , 用户选择对终端设备上已加密的电子数据进行解密; 例如, 选择对已加密的文本、 图片、 音频或视频等文件进行解密。 步骤 302 , 根据安全认证模块中是否存在处于激活状态的用户标识, 数据卡安全应用模块判断该用户是否已经通过登录认证, 如果安全认证 模块中不存在处于激活状态的用户标识, 表明用户未通过登录认证, 则 执行步骤 303 ; 否则, 执行步骤 304;  Step 301: The user selects to decrypt the encrypted electronic data on the terminal device; for example, selecting to decrypt the encrypted text, picture, audio or video file. Step 302: According to whether the user identifier of the active state exists in the security authentication module, the data card security application module determines whether the user has passed the login authentication. If the user identifier in the active authentication module does not exist, the user does not log in. If the authentication is performed, go to step 303; otherwise, go to step 304;
其中, 安全认证模块中处于激活状态的用户标识只有一个。 步骤 303 , 数据卡安全应用模块提示用户进行登录认证, 如果用户 登录认证成功, 则执行步骤 304; 否则, 流程结束。 There is only one user ID in the active authentication module. Step 303: The data card security application module prompts the user to perform login authentication. If the user login authentication succeeds, step 304 is performed; otherwise, the process ends.
步骤 304 , 数据卡安全应用模块将已加密的电子数据经由数据卡的 通信接口模块传输到数据卡的数据加解密模块。  Step 304: The data card security application module transmits the encrypted electronic data to the data encryption and decryption module of the data card via the communication interface module of the data card.
步骤 305 , 数据加解密模块从安全认证模块读取处于激活状态的用 户标识, 并将已加密的电子数据中携带的用户标识与该处于激活状态的 用户标识进行匹配, 如果匹配成功, 则执行步骤 306; 否则, 提示用户 解密失败, 流程结束。  Step 305: The data encryption/decryption module reads the user identifier in the activated state from the security authentication module, and matches the user identifier carried in the encrypted electronic data with the user identifier in the activated state. If the matching succeeds, the step is performed. 306; Otherwise, the user is prompted to decrypt and the process ends.
步骤 306 , 数据加解密模块通知安全认证模块生成用户解密密钥。 步骤 307 , 安全认证模块根据处于激活状态的用户标识以及与该处 于激活状态的用户标识对应的用户身份认证信息, 生成用户解密密钥并 传输给数据加解密模块;  Step 306: The data encryption and decryption module notifies the security authentication module to generate a user decryption key. Step 307: The security authentication module generates a user decryption key according to the user identifier in the activated state and the user identity authentication information corresponding to the user identity in the activated state, and transmits the user decryption key to the data encryption and decryption module.
其中, 用户身份认证信息预置在安全存储模块中, 安全认证模块从 安全存储模块中读取与处于激活状态的用户标识对应用户身份认证信 息;  The user identity authentication information is preset in the security storage module, and the security authentication module reads the user identity authentication information corresponding to the activated user identity from the security storage module.
可以理解, 该用户解密密钥与用于加密该电子数据的用户加密密钥 相同。  It will be appreciated that the user decryption key is the same as the user encryption key used to encrypt the electronic data.
步骤 308 , 数据加解密模块利用收到的用户解密密钥对已加密的电 子数据进行解密。  Step 308: The data encryption and decryption module decrypts the encrypted electronic data by using the received user decryption key.
步骤 309 , 数据加解密模块将已解密的电子数据经由通信接口模块 回传至与数据卡连接的外部终端设备, 这样, 用户就可以使用该电子数 据。  Step 309: The data encryption/decryption module returns the decrypted electronic data to the external terminal device connected to the data card via the communication interface module, so that the user can use the electronic data.
在上述加密和解密流程中, 所釆用的加解密算法由数据卡的制造商 预先确定, 可以由软件实现对电子数据的加解密, 也可以由硬件实现对 电子数据的加解密。 由上述加密和解密流程可以发现, 在数据卡连接到外部的终端设备 后, 当用户启用数据卡的安全应用时, 需要用户进行登录认证, 如果不 进行登录认证或登录认证不通过,则无法使用数据卡的加密或解密功能。 下面就结合图 4说明用户的登录认证过程。 In the above encryption and decryption process, the encryption and decryption algorithm used is determined in advance by the manufacturer of the data card, and the electronic data can be encrypted and decrypted by software, and the electronic data can be encrypted and decrypted by hardware. According to the above encryption and decryption process, after the data card is connected to the external terminal device, when the user enables the security application of the data card, the user needs to perform login authentication. If the login authentication or login authentication fails, the system cannot be used. Data card encryption or decryption. The login authentication process of the user will be described below with reference to FIG.
步骤 401 , 数据卡安全应用模块提示用户输入用户身份认证信息。 步骤 402 , 用户通过与数据卡连接的终端设备的输入模块将自身的 身份认证信息输入该终端设备;  Step 401: The data card security application module prompts the user to input the user identity authentication information. Step 402: The user inputs its identity authentication information into the terminal device through an input module of the terminal device connected to the data card.
输入的用户身份认证信息可以为用户设置的密码、用户的指紋信息、 用户的瞳孔信息、用户的脸部信息或用户的声音信息等用户独有的信息。  The input user identity authentication information may be user-specific information such as a password set by the user, fingerprint information of the user, pupil information of the user, facial information of the user, or voice information of the user.
步骤 403 , 该终端设备上的数据卡安全应用模块将输入的用户身份 认证信息经由数据卡中的通信接口模块传输到安全认证模块。  Step 403: The data card security application module on the terminal device transmits the input user identity authentication information to the security authentication module via the communication interface module in the data card.
步骤 404 , 安全认证模块从安全存储模块读取该用户预置的用户身 份认证信息, 将输入的用户身份认证信息与预置的用户身份认证信息进 行匹配, 如果匹配失败, 则数据卡安全应用模块提示用户登录认证失败, 流程结束; 否则, 执行步骤 405 ;  Step 404: The security authentication module reads the user identity authentication information preset by the user from the security storage module, and matches the input user identity authentication information with the preset user identity authentication information. If the matching fails, the data card security application module The user is prompted to log in to the authentication failure, and the process ends; otherwise, step 405 is performed;
步骤 404中, 在匹配用户身份认证信息时, 所釆用的匹配算法由数 据卡的制造商预先确定, 可以由软件实现匹配, 也可以由硬件实现匹配。  In step 404, when the user identity authentication information is matched, the matching algorithm used is determined by the manufacturer of the data card, and may be matched by software or matched by hardware.
步骤 405 , 安全认证模块将预置的用户身份认证信息对应的用户标 识置为激活状态, 且数据卡安全应用模块提示用户登录认证成功, 流程 结束。  Step 405: The security authentication module sets the user identifier corresponding to the preset user identity authentication information to an active state, and the data card security application module prompts the user that the login authentication succeeds, and the process ends.
当用户登录认证成功后, 该用户对应的用户标识处于激活状态; 应 当理解, 同一时间只有一个用户标识处于激活状态。  After the user login authentication succeeds, the user ID corresponding to the user is in the active state; it should be understood that only one user ID is active at the same time.
另外, 在用户退出数据卡的安全应用时, 数据卡安全应用模块经由 数据卡的通信接口模块发送退出命令到安全认证模块, 安全认证模块根 据收到的退出命令将处于激活状态的用户标识去激活, 并删除加密过程 中生成的用户加密密钥或解密过程中生成的用户解密密钥, 以免他人非 法使用数据卡的安全应用功能。 In addition, when the user exits the security application of the data card, the data card security application module sends an exit command to the security authentication module via the communication interface module of the data card, and the security authentication module deactivates the activated user identifier according to the received exit command. And delete the encryption process The user encryption key generated in the user or the user decryption key generated during the decryption process, so as to prevent others from illegally using the security application function of the data card.
以上所述, 仅为本发明的较佳实施例而已, 并非用于限定本发明的保 护范围。  The above is only the preferred embodiment of the present invention and is not intended to limit the scope of the present invention.

Claims

权利要求书 Claim
1、一种数据卡的使用方法,所述数据卡连接终端设备,其特征在于, 所述数据卡接收终端设备发来的用户预置的用户身份认证信息, 并存储 该用户预置的用户身份认证信息以及与该预置的用户身份认证信息对应 的用户标识;  A method of using a data card, wherein the data card is connected to a terminal device, wherein the data card receives user identity authentication information preset by a user sent by the terminal device, and stores the user identity preset by the user. Authentication information and a user identifier corresponding to the preset user identity authentication information;
所述使用方法包括:  The method of use includes:
用户启用所述数据卡的安全应用, 所述终端设备根据所述数据卡中 是否存在处于激活状态的用户标识判断所述用户是否已经通过登录认 证, 如果存在处于激活状态的用户标识,表明所述用户已通过登录认证, 则完成数据卡的安全应用; 否则, 所述用户实现登录认证后, 再完成数 据卡的安全应用。  The user enables the security application of the data card, and the terminal device determines, according to whether the user identifier in the activated state exists in the data card, whether the user has passed the login authentication, and if there is a user identifier in the activated state, indicating that the user After the user has passed the login authentication, the security application of the data card is completed; otherwise, the user implements the login authentication, and then completes the security application of the data card.
2、 根据权利要求 1所述的数据卡的使用方法, 其特征在于, 所述用 户标识由所述数据卡预先分配、 或根据预置的用户身份认证信息生成。  2. The method of using a data card according to claim 1, wherein the user identification is pre-allocated by the data card or generated according to preset user identity authentication information.
3、 根据权利要求 1所述的数据卡的使用方法, 其特征在于, 所述用 户启用所述数据卡的安全应用为: 用户选择所述终端设备上的电子数据 进行力口密;  The method of using the data card according to claim 1, wherein the user enables the security application of the data card to: the user selects the electronic data on the terminal device to perform a security policy;
所述完成数据卡的安全应用的过程包括:  The process of completing the security application of the data card includes:
所述终端设备将需要加密的电子数据传输给所述数据卡;  Transmitting, by the terminal device, electronic data that needs to be encrypted to the data card;
所述数据卡根据所述处于激活状态的用户标识以及与所述处于激活 状态的用户标识对应的用户身份认证信息, 生成用户加密密钥, 并利用 生成的用户加密密钥对收到的电子数据进行加密, 且在加密的电子数据 中添加所述处于激活状态的用户标识; 所述数据卡将携带有所述处于激 活状态的用户标识的加密的电子数据回传至所述终端设备。  The data card generates a user encryption key according to the user identity in the activated state and the user identity authentication information corresponding to the user identity in the activated state, and uses the generated user encryption key to receive the received electronic data. Encrypting is performed, and the activated user identifier is added to the encrypted electronic data; the data card transmits back the encrypted electronic data carrying the activated user identifier to the terminal device.
4、 根据权利要求 1所述的数据卡的使用方法, 其特征在于, 所述用 户启用所述数据卡的安全应用为: 用户选择对所述终端设备上已加密的 电子数据进行解密; The method for using the data card according to claim 1, wherein the security application of the user to enable the data card is: the user selects an encrypted device on the terminal device Decoding electronic data;
所述完成数据卡的安全应用的过程包括: 所述终端设备将所述已加 密的电子数据传输给所述数据卡;  The process of completing the security application of the data card includes: the terminal device transmitting the encrypted electronic data to the data card;
当所述数据卡确定所述已加密的电子数据中携带的用户标识与所述 处于激活状态的用户标识匹配时, 根据所述处于激活状态的用户标识以 及与所述处于激活状态的用户标识对应的用户身份认证信息, 生成用户 解密密钥, 并利用生成的用户解密密钥对所述已加密的电子数据进行解 密, 将已解密的电子数据回传至所述终端设备。  When the data card determines that the user identifier carried in the encrypted electronic data matches the user identifier in the activated state, according to the user identifier in the activated state and the user identifier in the activated state The user identity authentication information generates a user decryption key, and decrypts the encrypted electronic data by using the generated user decryption key, and transmits the decrypted electronic data back to the terminal device.
5、 根据权利要求 3或 4所述的数据卡的使用方法, 其特征在于, 所 述登录认证的过程包括:  The method of using the data card according to claim 3 or 4, wherein the process of login authentication comprises:
所述终端设备提示所述用户输入用户身份认证信息; 在所述用户输 入用户身份认证信息后, 所述终端设备将输入的用户身份认证信息传输 给所述数据卡;  The terminal device prompts the user to input user identity authentication information; after the user inputs the user identity authentication information, the terminal device transmits the input user identity authentication information to the data card;
所述数据卡将所述输入的用户身份认证信息与所述用户预置的用户 身份认证信息进行匹配, 如果匹配成功, 则所述数据卡将所述预置的用 户身份认证信息对应的用户标识置为激活状态, 且所述终端设备提示所 述用户登录认证成功; 否则, 所述终端设备提示所述用户登录认证失败。  The data card matches the input user identity authentication information with the user identity authentication information preset by the user. If the matching is successful, the data card uses the user identifier corresponding to the preset user identity authentication information. And the terminal device prompts that the user login authentication succeeds; otherwise, the terminal device prompts the user that the login authentication fails.
6、 根据权利要求 3所述的数据卡的使用方法, 其特征在于, 所述使 用方法进一步包括:  The method of using the data card according to claim 3, wherein the using method further comprises:
用户退出所述数据卡的安全应用时, 所述终端设备向所述数据卡发 送退出命令, 所述数据卡根据收到的退出命令将所述处于激活状态的用 户标识去激活, 并删除所述用户加密密钥。  When the user quits the security application of the data card, the terminal device sends an exit command to the data card, and the data card deactivates the activated user identifier according to the received exit command, and deletes the User encryption key.
7、 根据权利要求 4所述的数据卡的使用方法, 其特征在于, 所述使 用方法进一步包括:  The method of using the data card according to claim 4, wherein the using method further comprises:
用户退出所述数据卡的安全应用时, 所述终端设备向所述数据卡发 送退出命令, 所述数据卡根据收到的退出命令将所述处于激活状态的用 户标识去激活, 并删除所述用户解密密钥。 When the user quits the security application of the data card, the terminal device sends the data card to the data card. Sending an exit command, the data card deactivates the activated user identifier according to the received exit command, and deletes the user decryption key.
8、 根据权利要求 1所述的数据卡的使用方法, 其特征在于, 所述用 户身份认证信息为用户设置的密码、用户的指紋信息、用户的瞳孔信息、 用户的脸部信息或用户的声音信息。  The method for using a data card according to claim 1, wherein the user identity authentication information is a password set by a user, fingerprint information of the user, pupil information of the user, facial information of the user, or voice of the user. information.
9、 一种数据卡, 连接终端设备, 其特征在于, 所述数据卡包括: 安 全存储模块、 安全认证模块、 数据加解密模块以及通信接口模块; 其中, 安全存储模块, 用于接收终端设备经由通信接口模块发来的用户预 置的用户身份认证信息, 并存储该用户预置的用户身份认证信息以及与 该预置的用户身份认证信息对应的用户标识;  A data card, connected to the terminal device, wherein the data card comprises: a security storage module, a security authentication module, a data encryption and decryption module, and a communication interface module; wherein the security storage module is configured to receive the terminal device via The user identity authentication information preset by the user sent by the communication interface module, and storing the user identity authentication information preset by the user and the user identifier corresponding to the preset user identity authentication information;
数据加解密模块, 用于当安全认证模块中存在处于激活状态的用户 标识时, 接收终端设备经由通信接口模块传来的需要加密的电子数据, 并通知安全认证模块生成用户加密密钥; 还根据生成的用户加密密钥对 需要加密的电子数据进行加密, 且在加密的电子数据中添加所述处于激 活状态的用户标识, 并将携带有所述处于激活状态的用户标识的加密的 电子数据经由通信接口模块回传至所述终端设备;  a data encryption/decryption module, configured to: when the user identifier in the activated state exists in the security authentication module, receive the electronic data that needs to be encrypted transmitted by the terminal device via the communication interface module, and notify the security authentication module to generate a user encryption key; Generating the user encryption key to encrypt the electronic data to be encrypted, and adding the activated user identifier to the encrypted electronic data, and transmitting the encrypted electronic data carrying the activated user identifier Transmitting the communication interface module to the terminal device;
安全认证模块, 用于实现用户的登录认证, 并根据所述处于激活状 态的用户标识以及与所述处于激活状态的用户标识对应的用户身份认证 信息, 生成用户加密密钥并传输给数据加解密模块。  a security authentication module, configured to implement login authentication of the user, and generate a user encryption key and transmit the data to the data encryption and decryption according to the user identity in the activated state and the user identity authentication information corresponding to the activated user identity. Module.
10、 根据权利要求 9所述的数据卡, 其特征在于, 所述数据加解密 模块还用于: 当安全认证模块中存在处于激活状态的用户标识时, 接收 终端设备经由通信接口模块传来的已加密的电子数据, 并当所述已加密 的电子数据中携带的用户标识与所述处于激活状态的用户标识匹配时, 通知安全认证模块生成用户解密密钥; 还根据生成的用户解密密钥对所 述已加密的电子数据进行解密, 将已解密的电子数据经由通信接口模块 回传至所述终端设备; The data card according to claim 9, wherein the data encryption and decryption module is further configured to: when the user identifier in the activated state exists in the security authentication module, the receiving terminal device transmits the information through the communication interface module. Encrypted electronic data, and when the user identifier carried in the encrypted electronic data matches the activated user identifier, notifying the secure authentication module to generate a user decryption key; and further generating a user decryption key according to the generated Decrypting the encrypted electronic data, and transmitting the decrypted electronic data via a communication interface module Returning to the terminal device;
所述安全认证模块还用于: 根据所述处于激活状态的用户标识以及 与所述处于激活状态的用户标识对应的用户身份认证信息, 生成用户解 密密钥并传输给数据加解密模块。  The security authentication module is further configured to: generate a user decryption key according to the user identity in the activated state and user identity authentication information corresponding to the activated user identity, and transmit the data to the data encryption and decryption module.
11、 根据权利要求 9或 10所述的数据卡, 其特征在于, 所述安全认证 模块在实现用户的登录认证时, 用于: 接收终端设备经由通信接口模块传 来的用户输入的用户身份认证信息, 并当确定输入的用户身份认证信息与 所述用户预置的用户身份认证信息匹配时, 将所述预置的用户身份认证信 息对应的用户标识置为激活状态。  The data card according to claim 9 or 10, wherein the security authentication module is configured to: receive user identity authentication input by the terminal device via the communication interface module when implementing login authentication of the user The information, and when it is determined that the input user identity authentication information matches the user identity authentication information preset by the user, the user identifier corresponding to the preset user identity authentication information is set to an active state.
PCT/CN2010/078792 2010-08-18 2010-11-16 Data card and using method thereof WO2012022078A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN2010102592778A CN102377752A (en) 2010-08-18 2010-08-18 Data card and using method thereof
CN201010259277.8 2010-08-18

Publications (1)

Publication Number Publication Date
WO2012022078A1 true WO2012022078A1 (en) 2012-02-23

Family

ID=45604710

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2010/078792 WO2012022078A1 (en) 2010-08-18 2010-11-16 Data card and using method thereof

Country Status (2)

Country Link
CN (1) CN102377752A (en)
WO (1) WO2012022078A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103714017B (en) * 2012-10-09 2017-06-30 中兴通讯股份有限公司 A kind of authentication method, authentication device and authenticating device

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2003590A1 (en) * 2007-06-11 2008-12-17 Richard Mervyn Gardner Integrated systems for simultaneous mutual authentification of database and user
CN101557428A (en) * 2008-04-08 2009-10-14 中兴通讯股份有限公司 Data card
CN101646262A (en) * 2009-07-28 2010-02-10 刘鸣宇 Wireless data card and identity certification method thereof
CN101764823A (en) * 2010-01-28 2010-06-30 华为终端有限公司 Authentication method, electronic equipment and authentication server

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101217399B (en) * 2007-12-29 2010-08-04 华为终端有限公司 A data card background system and the corresponding operating method
CN101296231A (en) * 2008-05-30 2008-10-29 深圳华为通信技术有限公司 Data card operation method and data card
CN101685560A (en) * 2008-09-26 2010-03-31 高子汉 Waste collecting device, count providing system and count providing method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2003590A1 (en) * 2007-06-11 2008-12-17 Richard Mervyn Gardner Integrated systems for simultaneous mutual authentification of database and user
CN101557428A (en) * 2008-04-08 2009-10-14 中兴通讯股份有限公司 Data card
CN101646262A (en) * 2009-07-28 2010-02-10 刘鸣宇 Wireless data card and identity certification method thereof
CN101764823A (en) * 2010-01-28 2010-06-30 华为终端有限公司 Authentication method, electronic equipment and authentication server

Also Published As

Publication number Publication date
CN102377752A (en) 2012-03-14

Similar Documents

Publication Publication Date Title
US11706033B2 (en) Secure distributed information system
US8462955B2 (en) Key protectors based on online keys
US8683232B2 (en) Secure user/host authentication
EP2060056B1 (en) Method and apparatus for transmitting data using authentication
US9015490B2 (en) Secure credential unlock using trusted execution environments
TWI642288B (en) Instant communication method and system
JP2008533882A (en) How to backup and restore encryption keys
CN113545006A (en) Remote authorized access locked data storage device
CN108763917B (en) Data encryption and decryption method and device
WO2012152191A1 (en) Method and system for accessing e-book data
US9313185B1 (en) Systems and methods for authenticating devices
JP2013502817A (en) Secure USB storage medium generation and decoding method, and medium on which a program for generating a secure USB storage medium is recorded
CA2826837C (en) System and method for remote reset of password and encrytion key
WO2013178154A1 (en) Method for implementing encryption in storage card, and decryption method and device
TW201608408A (en) Wireless authentication system and method for USB storage device
CN115150180A (en) Storage device management method, storage device, management device, and storage medium
WO2015143827A1 (en) Method, apparatus and communication system for address book protection
US20220247729A1 (en) Message transmitting system with hardware security module
US8499157B1 (en) Device-based password management
JP4684714B2 (en) File management system and program
JP7250960B2 (en) User authentication and signature device using user biometrics, and method thereof
EP2747334B1 (en) A secure storage system including a virtual safe device and a mobile secure storage device
CN113342896B (en) Scientific research data safety protection system based on cloud fusion and working method thereof
WO2012022078A1 (en) Data card and using method thereof
WO2015131585A1 (en) Method and device for ensuring sd card security

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 10856076

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 10856076

Country of ref document: EP

Kind code of ref document: A1