WO2015014014A1

WO2015014014A1 - Terminal, data interaction method and data interaction system

Info

Publication number: WO2015014014A1
Application number: PCT/CN2013/084354
Authority: WO
Inventors: 丁兆刚; 冯耀辉; 刘东海; 祝芳浩; 袁刚; 戴钢; 陈澜波
Original assignee: 宇龙计算机通信科技(深圳)有限公司
Priority date: 2013-07-30
Filing date: 2013-09-26
Publication date: 2015-02-05

Abstract

A terminal comprises: a first processor and a second processor used to process different types of data inside the terminal respectively; a restricted external device only connected to the first processor; wherein, the second processor and the restricted external device realizes the interaction process with the assistance from the first processor. A data interaction method and a data interaction system are also provided. By technical solutions above, different processor can be used to process different types of data inside the terminal, and the direct interaction between the second processor and restricted external device is restricted by using the first processor to assist the data interaction between the second processor and the restricted external device, avoiding the data which should be processed by the first processor existing in the interaction data of the second processor and restricted external device, and the safety of the terminal can be effectively enhanced.

Description

Terminal, data interaction method and data interaction system

The present invention relates to the field of data security technologies, and in particular, to a terminal, a data interaction method, and a data interaction system. Background technique

As shown in Figure 1, a number of peripherals (i.e., external devices 102) are installed in the terminal, such as a display screen, a touch screen, a camera, a button, a communication module, a sensor module, and the like. In the related art, only a single processor (the CPU shown in FIG. 1) is provided in the terminal, and the processor can transmit data to any peripheral device under the control of any application, and can also receive any peripheral device. Data, when there are some applications with excessive permissions in the terminal, especially third-party applications with uncertain sources, these applications can easily control the only processor in the terminal to call any data in it. , including important, private data, and even arbitrarily uploaded to other terminals or servers. At the same time, since all the data processed by the only processor is in the same storage space (RAM and ROM shown in Figure 1), the above application is also likely to be able to pass the simple cracking technique. Get any data in the storage space. Therefore, for applications in the terminal, especially when some third-party applications in the terminal come from some hackers or personal information vendors with ulterior motives, it will lead to data in the terminal, especially private data such as user information. , in an extremely unsafe state.

Therefore, how to solve the data security problem brought by a single processor to the terminal has become a technical problem to be solved at present. Summary of the invention

The invention is based on the above problems, and proposes a new technical solution, which can make different types of data in the terminal be processed by different processors, and by the first processor to the second processor and the restricted class external The data interaction between the devices is assisted, and the direct interaction between the two is restricted, and the data that should be processed by the first processor in the interaction data of the second processor and the restricted external device is avoided, thereby effectively improving the security of the terminal.

In view of this, the present invention provides a terminal, including: a first processor and a second processor, respectively configured to process different types of data in the terminal; and limit external devices, only connected to the first a processor; wherein the second processor and the restricted external device implement an interaction process by using the assistance of the first processor.

In this technical solution, different types of data in the terminal are processed by different processors, so that the data processing process is physically isolated, which helps to improve the data security of the terminal. At the same time, by connecting the restriction-type external device only to the first processor, and assisting the data exchange process between the second processor and the restriction-type external device by the first processor, on the one hand, when the computing power of the first processor is more When it is powerful, it helps to reduce the processing load of the second processor; on the other hand, when the data processed by the first processor is more important and the privacy is stronger, the first processor can limit the second processor and the second processor Monitoring the data interaction process between the external devices of the class, avoiding the existence of data that should be processed by the first processor in the interaction data of the second processor and the restriction type external device, or avoiding the simultaneous processing of the first processor and the second processor Data interaction with restricted external devices helps to improve the security of the terminal.

It should be noted that the first processor and the second processor are not used to limit the number of processors in the terminal to two, and it is obvious that more processors can be included in the terminal. Among them, "first" and "second" represent the relationship between any two processors in the terminal, and are used to distinguish any two processors that are compared. For example, there are 3 The terminal of the processor, when the processor 1 and the processor 2 are selected for comparison, any one of the processor 1 and the processor 2 may be referred to as a "first processor" and the other as a "second processor"; When processor 2 and processor 3 are selected for comparison, either processor 2 and processor 3 may be referred to as a "first processor" and the other as a "second processor", and so on.

Of course, in order to enhance the processing capability of the terminal, multiple processors can be used to process the same type of data, and the multiple processors should be treated as one processor group, then the "first processor" and the "second processor". It is also possible to actually represent a processor group for processing the same type of data, each processor group containing one or more processors. At the same time, in order to respond to more types of data, there may obviously be more processor groups in the terminal, such as "third processor group", "fourth processor group," and the like.

In the above technical solution, preferably, the first processor is configured to: perform data forwarding between the second processor and the restricted external device to assist in implementing the second processor and the limitation The process of interaction between external devices of a class.

In the technical solution, the interaction data between the second processor and the restricted external device is directly forwarded by the first processor, so that the first processor controls the data interaction process between the second processor and the restricted external device. At the same time, it is also possible to monitor the specific interactive data content, so as to ensure that the second processor interacts with the restricted external device, even if it involves data that should be processed by the first processor, it can be first The processor discovers and blocks the corresponding data interaction.

In any one of the foregoing technical solutions, preferably, the first processor is further configured to: receive all data from the restricted external device, directly process data corresponding to a type of the first processor, and Data corresponding to the type of the second processor is transmitted to the second processor; and the received data from the second processor is forwarded to the restricted external device.

In this technical solution, when the restriction type external device cannot perform type identification on the data, all data can be transmitted to the first processor, and type identification and data distribution are performed by the first processor. On the one hand, when the processing capability of the first processor is stronger, it helps to reduce the computational burden of the restricted external device and the second processor; on the other hand, when the data processed by the first processor is more important and private. When stronger, the first processor is more secure than the second processor, so that all data is sent to the first processor, so that data that should be processed by the first processor can be prevented from being sent to the first The second processor is capable of physically isolating the acquisition and utilization of important, private data (or any other data processed by the first processor) by the second processor based on the second processor, thereby ensuring data security of the terminal.

In any one of the foregoing technical solutions, preferably, the first processor implements connection and interaction with the restricted external device by using a first peripheral interface, and is implemented by the first forwarding interface and the second processor. The first processor is further configured to: close a connection between the first forwarding interface and the first peripheral interface by configuring, or in the first forwarding interface and the first outer The DMA transmission channel is configured to be configured between the interfaces to assist in the connection and interaction between the second processor and the restricted external device.

In the technical solution, the data transmission bus to the first processor is realized by establishing a data transmission channel directly between the second processor and the restriction type external device, or by establishing a corresponding DMA transmission channel in the first processor. The call implements data interaction between the second processor and the restricted class external device. Since the first processor is configured to establish the above data transmission channel or DMA transmission channel, the first processor still implements control of the interaction process between the second processor and the restricted external device, and avoids the first processor Intersect with the processing data of the second processor to avoid illegal acquisition or leakage of data.

In any one of the foregoing technical solutions, preferably, the first processor is further configured to: receive all external devices from the restricted type when the second processor and the restricted external device are not in a connected state. Data, directly processing data corresponding to the type of the first processor, and transmitting data corresponding to the type of the second processor to the second processor through the first forwarding interface.

In this technical solution, due to the need to be configured by the first processor to establish a relationship between the second processor and the restricted external device Data transmission channel or DMA transmission channel, but the first processor is not able to determine when the restricted external device sends data to the second processor, and thus, when a connection has not been established between the second processor and the restricted external device, The first processor can receive all the data, and the data corresponding to the second processor is directly transmitted to the second processor, ensuring that the data between the second processor and the restricted external device can be assisted at any time. Interaction.

In any one of the above technical solutions, preferably, the method further includes: a shared external device connected to the first processor and the second processor; wherein, when the first processor is external to the shared class When the device interacts, the path of the second processor and the shared external device is in an off state; when the second processor interacts with the shared external device, the first processor and the first processor The path of the shared external device is in an open state.

In this technical solution, since the shared external device is directly connected to the first processor and the second processor, by controlling the connection and disconnection of the path, only the first processor or the second process is performed at the same time. The device is connected to a shared external device to avoid data crossover, which helps to improve the security of the terminal.

In any one of the foregoing technical solutions, preferably, the method further includes: a line switching device, one end is connected to the shared external device, and the other end is connected to the first processor and the second processor, respectively, for implementing Holding or disconnecting a path between the first processor or the second processor and the shared external device; wherein, when the shared external device interacts with the first processor, The line switching device disconnects a path between the shared external device and the second processor, and when the shared external device interacts with the second processor, the line switching device disconnects A path between the shared class external device and the first processor.

In this technical solution, the circuit switching device is configured to control the interaction process between the first processor and the second processor and the shared external device through the physical switching device, physically different types of data and the shared external device Interacting isolation to avoid the problem that data, especially important or private data, is easily acquired and leaked when interacting at the same time.

In any one of the foregoing technical solutions, the line switching device is configured to: determine, according to the first switching instruction received from the control port, that the first processor needs to interact with the shared external device, according to Determining, by the second switching instruction received from the control port, that the second processor needs to interact with the shared external device; wherein:

When the first processor is connected to the control port, if the first processor needs to interact with the shared external device, send the first switching instruction directly to the control port, if The second processor needs to interact with the shared external device, and then send the second switching instruction to the first processor to be forwarded by the first processor to the control port; When the second processor is connected to the control port, if the second processor needs to interact with the shared external device, the second switching instruction is directly sent to the control port, if the first The processor needs to interact with the shared external device, and sends the first switching instruction to the second processor to be forwarded by the second processor to the control port.

In this technical solution, the control port is used to directly control the line switching action of the line switching device. The first processor may be a processor in the terminal for processing important, private types of data, such that the first processor is a "secure processor" with respect to other processors within the terminal, and the first processor switches the line When the device performs control, it can complete the data transmission and ensure the data security of the terminal, and physically prevent the illegal application from controlling the line switching device through the second processor or the like, and avoid the data processed by the first processor. Obtained by an illegal application. Alternatively, the second processor may be connected to the control port and control the switching operation of the line switching device.

In any one of the above aspects, preferably, the line switching device is further configured to: when detecting that the data to be transmitted by the shared external device is a data type corresponding to the first processor, determine The shared external device needs to interact with the first processor; and when it is detected that the data to be transmitted by the shared external device is the data type corresponding to the second processor, determining the external of the shared class The device needs to interact with the second processor.

In the technical solution, the line switching device performs type identification on data that needs to be transmitted by the shared external device. Directly switch the line, so as to control the data transmission direction, ensure that the data type and the processor to be transmitted to each other correspond to each other, to avoid data being stolen due to incorrect transmission of data to the uncorresponding processor. Security issues occur.

In any one of the foregoing technical solutions, preferably, the first processor is configured to: when the second processor interacts with the shared external device, connect itself to a port setting of the shared external device. And the second processor is configured to: when the first processor interacts with the shared external device, set a port that is itself connected to the shared external device to a high impedance state.

In the technical solution, the port level is set by the first processor or the second processor, and the physical connection relationship with the shared external device is controlled, and physically connected to the second processor or the first processor and The interaction of the external devices of the shared class is isolated to avoid the problem that data is easily acquired and leaked due to the fact that multiple processors are in a line connection state with the shared external device at the same time.

In any one of the foregoing technical solutions, preferably, the method further includes: an unrestricted external device connected only to the second processor; wherein, the first processor and the non-restricted external device pass the The second processor assists in the interaction process.

In this technical solution, the interaction process between the first processor and the non-restricted external device is controlled by the second processor, and the data processed by the first processor and the second processor are also ensured to be physically isolated, thereby avoiding Data theft or leakage caused by data crossover.

In any one of the foregoing technical solutions, the second processor is configured to: perform data forwarding between the first processor and the non-restricted external device to assist in implementing the first processor and The process of interaction between the non-restricted external devices.

In the technical solution, the second processor directly forwards the interaction data between the first processor and the non-restricted external device. Since the second processor only implements type identification and forwarding of data, it is still possible to ensure data isolation between the first processor and the second processor.

In any one of the foregoing technical solutions, preferably, the second processor is further configured to: receive all data from the non-restricted external device, directly process data corresponding to a type of the second processor, and Transmitting data corresponding to the type of the first processor to the first processor; and forwarding the received data from the first processor to the non-restricted external device.

In this technical solution, when the non-restricted external device cannot perform type identification on the data, all data can be sent to the second processor, and the second processor performs type identification and data distribution. When the processing power of the second processor is stronger, it helps to reduce the computational burden of the non-limiting external device and the first processor. At the same time, by identifying and forwarding data types, different types of data are physically isolated, thus ensuring data security of the terminal.

In any one of the foregoing technical solutions, preferably, the second processor is further configured to: forward all data from the non-restricted external device directly to the first processor, and receive the received source The interaction data of the first processor is forwarded to the non-restricted external device; and the first processor is further configured to: directly process data corresponding to a type of the first processor, and correspond to the Data of the type of the second processor is returned to the second processor.

In this technical solution, when the data processed by the first processor is more important and the privacy is stronger, the first processor is more secure than the second processor, and thus all data is sent to the first processing. The ability to prevent data that should otherwise be processed by the first processor from being sent to the second processor is capable of physically isolating the illegal application based on the second processor pair of important, private data (or any other by the first The acquisition and utilization of the data processed by the processor ensures the data security of the terminal.

In any one of the foregoing technical solutions, preferably, the second processor implements a connection and interaction with the non-restricted external device by using a second peripheral interface, and is implemented by the second forwarding interface and the first processing. The second processor is further configured to: close a connection between the second forwarding interface and the second peripheral interface by configuration, or at the second forwarding interface and the second Configuring a DMA transmission channel between the peripheral interfaces to assist in implementing the first processor and The connection and interaction of the non-restricted external device.

In this technical solution, data transmission to the second processor is realized by establishing a data transmission channel directly between the first processor and the non-restricted external device, or by establishing a corresponding DMA transmission channel in the second processor. The bus call enables data interaction between the first processor and an unrestricted external device. By establishing a relatively independent transmission channel, the intersection of the processing data of the first processor and the second processor is avoided, and illegal acquisition or leakage of data is avoided.

In any one of the foregoing technical solutions, preferably, the second processor is further configured to: when the first processor and the non-restricted external device are not in a connected state, receive all from the unrestricted class Data of the external device directly processes data corresponding to the type of the second processor, and transmits data corresponding to the type of the first processor to the first processor through the second forwarding interface.

In this technical solution, since the second processor is configured to establish a data transmission channel or a DMA transmission channel between the first processor and the non-restricted external device, the second processor is not able to determine the non-restricted external type. When the device sends data to the first processor, so when the connection between the first processor and the non-restricted external device is not established, the data can be received by the second processor and corresponding to the first processor The data is transmitted directly to the first processor, ensuring that data interaction between the first processor and the unrestricted external device can be assisted at any time.

In any one of the foregoing technical solutions, preferably, the second processor is further configured to: when the first processor and the non-restricted external device are not in a connected state, all from the unrestricted class The data of the external device is directly forwarded to the first processor by using the second forwarding interface; the first processor is further configured to: directly process data corresponding to a type of the first processor, and corresponding to The data of the type of the second processor is returned to the second processor through the second forwarding interface.

In any one of the above technical solutions, preferably, the method further includes: a first memory connected to the first processor, configured to store data processed by the first processor, and in the first memory And storing a desktop initiator; the second memory is only connected to the second processor, and is configured to store data processed by the second processor; wherein, the second processor passes the first processing The device implements a call to the desktop launcher.

In the technical solution, the desktop initiator is stored in the first memory, so that only the first processor can directly invoke the desktop initiator, and on the other hand, when the processing capability of the first processor is stronger, the number of the first processor is reduced. The computational burden of the second processor; on the other hand, when the data processed by the first processor is more important and the privacy is stronger, the first processor is more secure than the second processor, thereby ensuring security. , to avoid damage or tampering by the application through the second processor. Meanwhile, since the first processor directly invokes the desktop initiator, so that the first processor can control the permission of the second processor to invoke the desktop initiator, the service or data processed by the first processor and the second processor are processed. The business or data can independently implement independent control requirements and UI interactions, and also help to meet their respective data privacy requirements, thereby improving the security of the terminal and the convenience in use.

In any one of the foregoing technical solutions, the external device in the terminal is configured to form a corresponding display interface when the desktop launcher is invoked, where the second processor is further configured to: pass the first A processor implements interaction with the display interface.

In this technical solution, the terminal needs to pass certain hardware devices to complete specific functions, and these "hardware devices" are "external devices". Specifically, for example, a display screen or the like is required to display the display interface. Since the external device is only connected to the first processor, when the second processor needs to perform UI interaction, data forwarding by the first processor is required, and the first processor implements specific UI interaction with the second processor. Process control, any data or instructions that may be involved in processing by the first processor, can be directly monitored by the first processor and promptly responded accordingly The handling helps to improve the security of the terminal.

In any one of the foregoing technical solutions, the second processor is further configured to: when receiving the installation instruction of the application to be installed, install the to-be-installed application to the second memory, and The first processor sends an application installation request to invoke the desktop launcher, and transmits installation display data to the corresponding external device through the first processor, thereby displaying a corresponding installation screen on the display interface. The first processor is further configured to: parse configuration information of the to-be-installed application from the application installation request or receive the configuration information sent by the second processor, and configure the configuration information Stored to the first memory for display on the display interface.

In this technical solution, the calling process of the display interface by the second processor during the installation of the application is described. Through the call to the display interface, the second processor can complete the installation on the data, and can minimize the difference with the installation process of the related technology in the related technology, which helps to improve the user experience. Wherein, since the application installation process is completed in the second processor, the configuration information such as the icon and the name of the application needs to be displayed on the screen interface of the terminal all the time, and the configuration information is passed through the application through the second processor. The installation request or other manner is sent to the first processor, and the first processor can be stored in the first memory, so that the configuration information can be displayed without the second processor always calling the user interface, and the terminal security is improved. At the same time, it helps to reduce unnecessary resource waste and power consumption in the terminal.

In any one of the foregoing technical solutions, the first processor is further configured to: determine, according to the detected application startup operation, an installation location of the application to be started, if the to-be-launched application is installed in the The second memory is configured to send an application start instruction to the second processor, where the second processor is further configured to: start the to-be-launched application according to the application start instruction, and pass the display data through the first A processor transmits to the corresponding external device for display.

In the technical solution, the second processor implements the call of the user interface during the running of the application by using the data forwarding of the first processor. Since the first processor is more secure than the second processor, and any data or instructions that may be processed by the first processor may be directly monitored by the first processor, and corresponding processing is performed in time. Helps improve the security of the terminal.

In any one of the above technical solutions, preferably, the method further includes: a first memory connected to the first processor, configured to store data processed by the first processor, and in the first memory Also storing a first desktop launcher or a first operating system; a second memory connected only to the second processor for storing data processed by the second processor, and in the second memory Storing a second desktop launcher or a second operating system; wherein the first processor executes the user interface by running the first desktop launcher or the first user interface displayed after the first operating system The second processor performs user interface interaction by running the second desktop launcher or the second user interface displayed after the second operating system.

In this technical solution, the first processing unit or the second operating system is stored in the second storage unit by storing the first desktop initiator or the first operating system in the first storage unit, so that only the first processing unit can Directly calling the first desktop launcher or the first operating system, only the second processing unit can directly invoke the second desktop launcher or the second operating system to ensure the security of the application (desktop launcher) and the system (operating system), avoiding Damaged or tampered with. At the same time, because the first processing unit directly invokes the first desktop launcher or the first operating system, the second processing unit invokes the second desktop launcher or the second operating system, so that the first processing unit processes the service and the second processing unit processes The business can independently implement independent control requirements and UI interactions, and also help to meet their data privacy requirements, thereby improving the security of the terminal and the convenience in use.

In any one of the foregoing technical solutions, the first processor is further configured to: when the user interface interaction is required, detect a currently displayed user interface, and if the first user interface is If the second user interface is, sending an interrupt instruction to the second processor, causing the second processor to close or put the second desktop launcher or the second operating system into the background, and run the The first desktop launcher or the first operating system; the second processor is further configured to: close or put the second desktop launcher or the second operating system according to the received interrupt instruction Taiwan; and

The second processor is further configured to: when the user interface needs to be interacted, detect the currently displayed user interface, if the second user interface, directly perform the interaction, if the first user interface, The first processor sends an interrupt instruction, causing the first processor to shut down or put the first desktop launcher or the first operating system into the background, and run the second desktop launcher or the second operating system The first processor is further configured to: shut down or put the first desktop launcher or the first operating system into the background according to the received interrupt instruction.

In the technical solution, the second processing unit can still switch to the first user interface (or by the first user) by sending an interface switching instruction during the UI interaction using the corresponding second user interface. The interface is switched to the second user interface, which is not described here. By properly switching the user interface, some potentially more important processing tasks or services can be executed in time.

In any one of the foregoing technical solutions, the first processor is further configured to: receive an interface from the second processor when interacting with the first application by using the first user interface a switching instruction, where the interface switching instruction indicates that the second processor wishes to interact with the second application by using the second user interface, and the priority of the first application is higher than the second application In the case of continuing to perform the interaction until the interaction is completed, in a case where the priority of the first application is lower than the second application, the first desktop launcher or the first operating system is turned off or placed a background to activate the second user interface by the second processor;

The second processor is further configured to: when receiving an interface switching instruction from the first processor when interacting with the third application by using the second user interface, the interface switching instruction indicates the The first processor hopes to interact with the fourth application through the first user interface, and if the priority of the third application is higher than the fourth application, continue to perform the interaction until the interaction is completed. In a case where the priority of the third application is lower than the fourth application, the first desktop launcher or the first operating system is turned off or placed in the background to be booted by the second processor The second user interface.

In this technical solution, the priority of the application (or data service) that needs to be processed by the first processing unit and the second processing unit is determined, and the application with higher priority is preferentially processed, so that there are multiple In the case of a processing unit and multiple user interfaces, it is possible to effectively communicate and coordinate the sequence of processing tasks, so that important data can be prioritized and better terminal operation management can be realized.

In any one of the foregoing technical solutions, the second processor is further configured to: if the first processor has a lower priority than the second application in the first application, interrupting The interaction of the first application, after completing the interaction with the second application, sending a resume instruction to the first processor, so that the first processor continues to pass the first user interface. Interacting with the first application; and the first processor is further configured to: if the second processor has a lower priority than the fourth application in the third application, interrupting The interaction of the third application, after completing the interaction with the fourth application, is further sent a recovery instruction to the second processor, so that the second processor continues to pass the second user interface. Interacting with the third application.

In the technical solution, after the processing of the higher priority application is completed, the original lower priority application is restored in time, so that effective coordination control is implemented between the multiple processing units, as timely as possible. Complete all processing tasks.

In any one of the foregoing technical solutions, the first processor is further configured to: shut down the first desktop initiator or the first operating system according to an interface switching command received by the first user interface Putting in the background; the second processor is further configured to: run the second desktop launcher or the second operating system according to the interface switching command received by the first user interface; and the second processing The device is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the interface switching command received by the second user interface; the first processor is further configured to: The interface switching command received by the second user interface is executed to run the first desktop initiator or the first operating system.

In this technical solution, if the user needs to prioritize an application according to his actual needs, and the application needs to use another user interface different from the current user interface for UI interaction, the user can manually issue the boundary. The face switching instruction causes the terminal to preferentially process the corresponding application by switching the user interface.

The present invention also provides a data interaction method, including: processing, by the first processing unit and the second processing unit, different types of data in the terminal; wherein the first processing unit is further configured to: directly The restriction-type external device in the terminal performs data interaction, and assists the second processing unit to implement data interaction with the restricted-type external device.

In the above technical solution, preferably, the process that the first processing unit assists the second processing unit to implement data interaction with the restricted external device includes: the first processing unit executes the second processor Data forwarding between the restricted external device.

In any one of the above aspects, preferably, the method further includes: storing, by the first storage unit and the second storage unit, data processed by the first processing unit and the second processing unit, respectively, and the first The processing unit performs direct operation only on the first storage unit, and the second processing unit performs direct operation only on the second storage unit; wherein the first storage unit further stores a desktop initiator, and The second processing unit implements a call to the desktop launcher by the first processing unit.

In any one of the foregoing technical solutions, the method further includes: the external device in the terminal forming a corresponding display interface when the desktop launcher is invoked; wherein the second processing unit passes the first The processing unit implements interaction with the display interface.

In this technical solution, the terminal needs to pass certain hardware devices to complete specific functions, and these "hardware devices" are "external devices". Specifically, for example, a display screen or the like is required to display the display interface. Since the external device is only connected to the first processor, when the second processor needs to perform UI interaction, data forwarding by the first processor is required, and the first processor implements specific UI interaction with the second processor. Process control, any data or instructions that may need to be processed by the first processor, can be directly monitored by the first processor, and timely processed accordingly, which helps to improve the security of the terminal.

In any one of the above technical solutions, preferably, the method further includes: the second processing unit installing the to-be-installed application to the second storage unit according to the received installation instruction of the application to be installed, and The first processing order Sending an application installation request to invoke the desktop launcher, and transmitting the installation display data to the corresponding external device through the first processing unit, thereby displaying a corresponding installation screen on the display interface; The first processing unit further parses the configuration information of the to-be-installed application from the application installation request or receives the configuration information sent by the second processing unit, and stores the configuration information to the first a storage unit for displaying on the display interface.

In any one of the foregoing technical solutions, preferably, the method further includes: determining, by the first processing unit, an installation location of the application to be started according to the detected application startup operation, if the to-be-launched application is installed in the first And sending, by the second processing unit, an application startup instruction to the second processing unit, where the second processing unit starts the to-be-launched application according to the application startup instruction, and passes the display data to the first processing unit Transfer to the corresponding external device for display.

In any one of the above aspects, preferably, the method further includes: storing, by the first storage unit, data processed by the first processing unit, and storing, in the first storage unit, a first desktop initiator or a first An operating system; the data processed by the second processing unit is stored by the second storage unit, and the second storage unit further stores a second desktop launcher or a second operating system; wherein, the first The processing unit performs direct operation only on the first storage unit, and performs user interface interaction by running the first desktop initiator or the first user interface displayed after the first operating system; the second processing The unit performs direct operation only on the second storage unit, and performs user interface interaction by running the second desktop launcher or the second user interface displayed after the second operating system.

In any one of the foregoing technical solutions, the method further includes: the first processing unit detects a currently displayed user interface when the user interface interaction is required, and if the first user interface is the first user interface, directly performing the interaction, if Sending, to the second processing unit, an interrupt instruction to the second processing unit, causing the second processing unit to close or put the second desktop launcher or the second operating system into the background, and run the a first desktop launcher or a first operating system; the second processing unit is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the received interrupt instruction;

The second processing unit detects the currently displayed user interface when the user interface interaction is required, if the a second user interface, directly performing an interaction, and if the first user interface is, sending an interrupt instruction to the first processing unit, so that the first processing unit will use the first desktop initiator or the first operating system Close or put in the background, and run the second desktop launcher or the second operating system; the first processing unit is further configured to: according to the received interrupt instruction, the first desktop launcher or the first An operating system is shut down or placed in the background.

In any one of the above aspects, preferably, the method further includes: when the first processing unit interacts with the first application by using the first user interface, receiving an interrupt instruction from the second processor The interrupt instruction indicates that the second processing unit wishes to interact with the second application through the second user interface, and if the priority of the first application is higher than the second application And continuing to perform the interaction until the interaction is completed, and executing the interrupt instruction if the priority of the first application is lower than the second application;

The second processing unit, when interacting with the third application by the second user interface, if receiving an interrupt instruction from the first processing unit, the interrupt instruction indicates that the first processing unit wishes to pass The first user interface interacts with the fourth application, and if the priority of the third application is higher than the fourth application, the interaction is continued until the interaction is completed, in the third application. The interrupt instruction is executed when the priority of the program is lower than the fourth application.

In any one of the above aspects, preferably, the method further includes: if the first processing unit has a lower priority than the second application in the first application, interrupting the first application After the interaction, the second processing unit sends a resume instruction to the first processing unit after completing the interaction with the second application, so that the first processing unit continues to pass the first user interface. The first application interacts; and if the second processing unit interrupts interaction with the third application when the priority of the third application is lower than the fourth application, After completing the interaction with the fourth application, the first processing unit further sends a resume instruction to the second processing unit, so that the second processing unit continues to pass the second user interface and the third The application interacts.

In any one of the foregoing technical solutions, the method further includes: the first processing unit turns off or puts the first desktop initiator or the first operating system according to the interface switching command received by the first user interface Up to the background; the second processing unit runs the second desktop launcher or the second operating system according to the interface switching command received by the first user interface; and the second processing unit is configured according to the first And the second desktop initiator or the second operating system is shut down or placed in the background; the first processing unit receives the interface switching command according to the second user interface. , running the first desktop launcher or the first operating system.

In this technical solution, if the user needs to prioritize an application according to actual needs of the user, and the application needs to perform UI interaction using another user interface different from the current user interface, the interface switching may be manually issued. The instruction causes the terminal to preferentially process the corresponding application by switching the user interface.

The present invention further provides a data interaction system, comprising: a first processing unit and a second processing unit, respectively processing different types of data in the terminal; wherein, the first processing unit is further configured to: directly Restricting external devices in the terminal to perform data interaction, and assisting the second processing unit to implement data with the restricted external device Interaction.

In the above technical solution, the first processing unit is configured to: assist the second processing unit to implement the data forwarding by performing data forwarding between the second processor and the restricted external device. Restrict the data interaction of external devices of the class.

In any one of the above aspects, preferably, the method further includes: a first storage unit and a second storage unit, respectively storing data processed by the first processing unit and the second processing unit, and the first The processing unit performs direct operation only on the first storage unit, and the second processing unit performs direct operation only on the second storage unit; wherein the first storage unit further stores a desktop initiator, and The second processing unit implements a call to the desktop launcher by the first processing unit.

In any one of the foregoing technical solutions, preferably, the external device in the terminal forms a corresponding display interface when the desktop launcher is invoked; and the second processing unit is further configured to: pass the first The processing unit implements interaction with the display interface.

In any one of the foregoing technical solutions, the second processing unit is further configured to: install the to-be-installed application to the second storage unit according to the received installation instruction of the application to be installed, and Sending an application installation request to the first processing unit to invoke the desktop launcher, and transmitting installation display data to the corresponding external device through the first processing unit, thereby displaying a corresponding installation screen on the display interface The first processing unit is further configured to: parse configuration information of the to-be-installed application from the application installation request, or receive the second location And the configuration information sent by the processing unit is stored in the first storage unit for display on the display interface.

In any one of the foregoing technical solutions, the first processing unit is further configured to: determine, according to the detected application startup operation, an installation location of the application to be started, if the to-be-launched application is installed in the And sending, by the second processing unit, an application startup instruction to the second processing unit, where the second processing unit is further configured to: start the application to be started according to the application startup instruction, and pass the display data The first processing unit is transmitted to a corresponding external device for display.

In any one of the foregoing technical solutions, the method further includes: a first storage unit, configured to store data processed by the first processing unit, and further storing, by the first storage unit, a first desktop initiator Or a first operating system; a second storage unit, configured to store data processed by the second processing unit, and further storing, in the second storage unit, a second desktop launcher or a second operating system; The first processing unit is configured to: perform a direct operation only on the first storage unit, and execute a user interface by running the first desktop initiator or the first user interface displayed after the first operating system The second processing unit is configured to: directly perform the direct operation on the second storage unit, and execute the second user interface displayed after running the second desktop launcher or the second operating system User interface interaction.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: when the user interface interaction is required, detect the currently displayed user interface, if the first user interface is directly Performing an interaction, if the second user interface is, sending an interrupt instruction to the second processing unit, causing the second processing unit to close or put the second desktop launcher or the second operating system into the background. And running the first desktop launcher or the first operating system; the second processing unit is further configured to: close or put the second desktop launcher or the second operating system according to the received interrupt instruction To the background;

The second processing unit is further configured to: when the user interface interaction is required, detect the currently displayed user interface, if the second user interface is, perform the interaction directly, if the first user interface, The first processing unit sends an interrupt instruction, causing the first processing unit to close or put the first desktop launcher or the first operating system into the background. And running the second desktop launcher or the second operating system; the first processing unit is further configured to: close or put the first desktop launcher or the first operating system according to the received interrupt instruction To the background.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: when interacting with the first application by using the first user interface, if receiving the second processing An interrupt instruction indicating that the second processing unit desires to interact with the second application through the second user interface, wherein the first application has a higher priority than the second application In the case of a program, the interaction is continued until the interaction is completed, and the interrupt instruction is executed if the priority of the first application is lower than the second application;

The second processing unit is further configured to: when receiving an interrupt instruction from the first processing unit when interacting with the third application by using the second user interface, the interrupt instruction indicates the first The processing unit hopes to interact with the fourth application through the first user interface, and if the priority of the third application is higher than the fourth application, continue to perform the interaction until the interaction is completed. In the case where the priority of the third application is lower than the fourth application, the interrupt instruction is executed.

In any one of the above technical solutions, the method further includes: the first processing unit is further configured to: if the second processing unit has a lower priority than the fourth application when the third application Interrupting the interaction with the third application, after completing the interaction with the fourth application, sending a resume instruction to the second processing unit, so that the second processing unit continues to pass the a second user interface interacting with the third application;

The second processing unit is further configured to: if the first processing unit interrupts interaction with the first application when the priority of the first application is lower than the second application, After completing the interaction with the second application, a resume instruction is further sent to the first processing unit to cause the first processing unit to continue to interact with the first application through the first user interface.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: use the interface switching command received by the first user interface to perform the first desktop initiator or the first operation The system is shut down or placed in the background; the second processing unit runs the second desktop launcher or the second operating system according to the interface switching command received by the first user interface; and the second processing unit The method is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the interface switching command received by the second user interface; the first processing unit is configured according to the second user interface Receiving the interface switching command, running the first desktop initiator or the first operating system.

Through the above technical solution, different types of data in the terminal can be processed by different processors, and the data exchange between the second processor and the restricted external device is assisted by the first processor, and the two are restricted. The direct interaction avoids the existence of data that should be processed by the first processor in the interaction data of the second processor and the restriction type external device, thereby effectively improving the security of the terminal. Those skilled in the art will appreciate that embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, the invention can take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) including computer usable program code.

The present invention has been described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems), and computer program products according to embodiments of the invention. It will be understood that each flow and/or block of the flowchart illustrations and/or FIG. These computer program instructions can be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing device to produce a machine for the execution of instructions for execution by a processor of a computer or other programmable data processing device. Means for implementing the functions specified in one or more of the flow or in a block or blocks of the flow chart.

The computer program instructions can also be stored in a computer readable memory that can direct a computer or other programmable data processing device to operate in a particular manner, such that the instructions stored in the computer readable memory produce an article of manufacture comprising the instruction device. The apparatus implements the functions specified in one or more blocks of a flow or a flow and/or block diagram of the flowchart.

These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device. The instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram. DRAWINGS

FIG. 1 is a schematic structural diagram of a terminal in the related art;

2 is a block diagram showing the structure of a terminal according to an embodiment of the present invention;

3 is a schematic structural diagram of a data transmission line of the embodiment shown in FIG. 2;

4 is a schematic structural diagram of another data transmission line of the embodiment shown in FIG. 2;

FIG. 5 is a schematic structural diagram of a terminal including two or more processors in an embodiment of the embodiment shown in FIG. 2; FIG.

6 is a schematic diagram of a terminal structure including two or more processors in another specific embodiment of the embodiment shown in FIG. 2;

7 is a schematic structural diagram of a terminal in a specific implementation manner of the embodiment shown in FIG. 6;

8 is a schematic structural diagram of a terminal in another specific implementation manner of the embodiment shown in FIG. 2;

9 is a schematic structural diagram of a terminal in still another specific embodiment of the embodiment shown in FIG. 2;

FIG. 10 is a schematic diagram showing a connection structure of a non-restricted external device and a processor in a terminal including two or more processors according to an embodiment of the present invention; FIG.

FIG. 11 is a schematic diagram showing a connection structure of a non-restricted external device and a processor in a terminal including two or more processors according to another embodiment of the present invention; FIG.

FIG. 12 is a schematic structural diagram of a terminal in a specific implementation manner of the embodiment shown in FIG.

FIG. 13 is a schematic diagram showing a connection structure of a non-restricted external device and a processor in a terminal including two or more processors according to still another embodiment of the present invention; FIG.

FIG. 14 is a schematic diagram showing a connection structure of a non-restricted external device and a processor in a terminal including two or more processors according to still another embodiment of the present invention; FIG.

15 is a schematic structural diagram of a terminal in a specific implementation manner of the embodiment shown in FIG. 14;

16 is a schematic diagram showing a connection structure of a single communication module and a processor according to an embodiment of the present invention; FIG. 17 is a schematic diagram showing a connection structure of a plurality of communication modules and a processor according to an embodiment of the present invention; 18 is a schematic diagram showing a connection structure of each communication module and two or more processors in the embodiment shown in FIG. 16 or FIG. 17;

Figure 19 is a diagram showing another connection structure of each communication module and two or more processors of the embodiment shown in Figure 16 or Figure 17;

Figure 20 is a schematic view showing the connection structure of a specific embodiment of the embodiment shown in Figure 19;

21 is a schematic diagram showing a connection structure of a single communication module and a processor according to another embodiment of the present invention; FIG. 22 is a schematic diagram showing a connection structure of a plurality of communication modules and a processor according to another embodiment of the present invention; FIG. 23 is a schematic diagram showing a connection structure of each communication module and two or more processors in the embodiment shown in FIG. 21 or FIG. 22; FIG.

Figure 24 is a diagram showing another connection structure of each communication module and two or more processors of the embodiment shown in Figure 21 or Figure 22;

Figure 25 is a schematic view showing the connection structure of a specific embodiment of the embodiment shown in Figure 24;

FIG. 26 is a block diagram showing the structure of a terminal according to another embodiment of the present invention; FIG.

27 is a schematic flowchart of a terminal installation application of the embodiment shown in FIG. 26;

28 is a schematic flowchart of a terminal startup application of the embodiment shown in FIG. 26;

29 is a schematic flow chart of a display control method of a user interface of the embodiment shown in FIG. 26;

FIG. 30 is a block diagram showing the structure of a terminal according to still another embodiment of the present invention; FIG.

Figure 31 is a schematic structural view of an embodiment of the terminal shown in Figure 30;

32 is a schematic structural view of another embodiment of the terminal shown in FIG. 30;

Figure 33 is a schematic structural view of still another embodiment of the terminal shown in Figure 30;

FIG. 34 is a schematic flow chart showing execution of user interface switching control by the CPU 1 according to an embodiment of the present invention; FIG. 35 is a schematic flow chart showing execution of user interface switching control by the CPU 2 according to an embodiment of the present invention; A schematic flow chart of a data interaction method according to an embodiment of the present invention;

Figure 37 shows a schematic block diagram of a data interaction system in accordance with an embodiment of the present invention. detailed description

The present invention will be further described in detail below with reference to the drawings and specific embodiments. It should be noted that the features of the embodiments and embodiments of the present application may be combined with each other without conflict.

In the following description, numerous specific details are set forth in order to provide a thorough understanding of the present invention, but the invention may be practiced otherwise than as described herein. Limitations of the embodiments.

FIG. 2 shows a schematic structural diagram of a terminal according to an embodiment of the present invention.

As shown in FIG. 2, a terminal according to an embodiment of the present invention includes: a first processor (CPU1 as shown in FIG. 2) and a second processor (CPU2 shown in FIG. 2) for respectively Different types of data in the terminal are processed; the restricted external device 102A is connected only to the first processor; wherein the second processor and the restricted external device 102A pass the first processing The help of the device to achieve the interaction process.

In this technical solution, different types of data in the terminal are processed by different processors, so that the data processing process is physically isolated, which helps to improve the data security of the terminal. Meanwhile, by connecting the restriction-type external device 102A only to the first processor, and assisting the data exchange process between the second processor and the restriction-type external device 102A by the first processor, on the one hand, when the calculation of the first processor When the capability is more powerful, it helps to reduce the processing load of the second processor; on the other hand, when the data processed by the first processor is more important and the privacy is stronger, the first processor can be the second processor. Monitoring the data interaction process with the restriction class external device 102A, avoiding the presence of data that should be processed by the first processor in the interaction data of the second processor and the restriction class external device 102A, or avoiding the first place The processor and the second processor simultaneously perform data interaction with the restricted external device 102A, which helps to improve the security of the terminal. It should be noted that the first processor and the second processor are not used to limit the number of processors in the terminal to two, and it is obvious that more processors can be included in the terminal. Among them, "first" and "second" represent the relationship between any two processors in the terminal, and are used to distinguish any two processors that are compared. For example, for a terminal including 3 processors, when processor 1 and processor 2 are selected for comparison, either processor 1 and processor 2 may be referred to as "first processor" and the other is ""Secondprocessor"; and when processor 2 and processor 3 are selected for comparison, either processor 2 and processor 3 may be referred to as "first processor" and the other as "second processor"" , So on and so forth.

1, data classification

The first processor and the second processor are respectively used to process different types of data within the terminal, and thus involve classifying data within the terminal. For example, according to the importance of the data, the data is divided into core data and non-core data; or according to the privacy of the data, the data is divided into private data and non-private data; or according to the data transmission direction, the data is divided into Send data and received data, and so on.

Each classification can be preset by the manufacturer, or it can be determined by the user according to his actual situation. For example, in the case of classification of private data and non-private data, for example, data associated with certain applications can be used as private data or non-private data, such as "address book" and "call record". Application-related data such as "," "short message", "mail", whether read or written, is counted as private data, or data related to a game application is treated as non-private data; In this case, a certain type of data may be used as private data or non-private data, such as interactive data with online banking as private data, and software update package data as non-private data, etc., and may also include other The way to distinguish, not here - enumeration.

2, external equipment classification

In the above description, the interaction relationship between the first processor, the second processor and the restriction type external device 102A is described; and FIG. 2 also shows the external device 102B such as the shared class, the non-restricted external device 102C, and the like. .

Specifically, for example, it may be classified according to the type of data involved in each external device. For example, when an external device processes more data (greater than or equal to the preset amount of data) as high-priority and high-privacy data, it can be classified as a restricted-type external device 102A; The various types of data processed by the external device are similar, and can be classified as the shared external device 102B; when the data processed by an external device is more of low importance and low privacy, it can be Classified as non-restricted external device 102C.

Alternatively, it can be classified according to the relationship between each external device and the processor. For example, when an external device interacts with the first processor frequently, it can be classified as a restricted class external device 102A; when an external device interacts with the second processor frequently, it can be classified as unrestricted. Class external device 102A; the rest can be classified as a shared class external device.

The technical solutions of various aspects will be described below based on the terminal of the hardware structure in a specific case described in FIG. 2 with reference to the accompanying drawings and embodiments.

—, CPU and restricted external device 102A connection

1, CPU1 performs data forwarding

Preferably, the CPU 1 is configured to: perform data forwarding between the CPU 2 and the restricted-type external device 102A to assist in implementing an interaction process between the CPU 2 and the restricted-type external device 102A.

In this technical solution, the interaction data between the CPU 2 and the restriction-type external device 102A is directly performed by the CPU 1 . Forwarding, so that the CPU1 can monitor the data interaction process of the CPU2 and the restricted external device 102A, and can also monitor the specific interactive data content, thereby ensuring that the CPU2 interacts with the restricted external device 102A, even if it involves The data processed by CPU1 can also be detected by CPU1 in time and prevent corresponding data interaction.

Preferably, the CPU 1 is further configured to: receive all data from the restricted external device 102A, directly process data corresponding to the type of the CPU1, and transmit data corresponding to the type of the CPU 2 to the CPU 2; And forwarding the received data from the CPU 2 to the restricted class external device 102A.

In this technical solution, when the restriction type external device 102A cannot perform type identification on the data, all data can be transmitted to the CPU 1, and the CPU 1 performs type identification and data distribution. On the one hand, when the processing power of CPU1 is stronger, it helps to reduce the computational burden of the restricted external devices 102A and CPU2; on the other hand, when the data processed by CPU1 is more important and the privacy is stronger, CPU1 is relative to CPU2. It is more secure, so all data is sent to CPU1, which can prevent data that should be processed by CPU1 from being sent to CPU2, which can physically isolate illegal applications based on CPU2 for important and private data (or other The acquisition and utilization of any data processed by CPU1 ensures the data security of the terminal.

2. CPU1 configuration establishes the transmission channel between CPU2 and the restricted external device 102A.

Preferably, the CPU 1 implements the connection and interaction with the restricted external device 102A by the first peripheral interface, and implements the connection with the CPU 2 by the first forwarding interface, and the CPU 1 is further configured to: configure the device as shown in FIG. Closing the connection between the first forwarding interface and the first peripheral interface, or as shown in FIG. 4, configuring a DMA transmission channel between the first forwarding interface and the first peripheral interface, To assist in the connection and interaction of the CPU 2 with the restricted external device 102A.

In this technical solution, by directly establishing a data transmission channel between the CPU 2 and the restriction type external device 102A, or by establishing a corresponding DMA transmission channel in the CPU 1, the call to the data transfer bus of the CPU 1 is realized, and the CPU 2 and the limitation are realized. Data interaction of class external device 102A. Since the CPU 1 establishes the above data transmission channel or DMA transmission channel, the CPU 1 still implements the control of the interaction process between the CPU 2 and the restriction-type external device 102A, and avoids the intersection of the processing data of the CPU 1 and the CPU 2, and avoids data. Illegal acquisition or leakage.

Preferably, the CPU 1 is further configured to: when the CPU 2 and the restricted external device 102A are not in a connected state, receive all data from the restricted external device 102A, directly process data corresponding to the type of the CPU 1, and correspondingly Data of the type of CPU 2 is transmitted to the CPU 2 through the first forwarding interface.

In this technical solution, since it is necessary to configure the data transmission channel or the DMA transmission channel between the CPU 2 and the restriction-type external device 102A by the CPU 1, the CPU 1 cannot determine when the restriction-type external device 102A transmits data to the CPU 2, and thus When the connection between the CPU 2 and the restriction-type external device 102A has not been established, the CPU 1 can receive the data of all, and directly transmit the data corresponding to the CPU 2 to the CPU 2, ensuring that the CPU 2 and the restriction-type external device 102A can be assisted at any time. Data interaction between.

For the connection between the CPU and the restricted external device 102A, the above description and analysis are performed in the case where the terminal includes one CPU1 and one CPU2, but in order to obtain more processing power or achieve better security. The effect, the terminal can contain a larger number of CPU1 and / or a larger number of CPU2, the following will be combined with Figure 5-7, the terminal contains CPU1, CPU1A and CPU1B for private data processing processor, and CPU2 The processor for non-private data processing, such as CPU2A and CPU2B, is an example, and the terminal structure and processing strategy in the case of a larger number of processors will be described. Of course, those skilled in the art should understand that: for a terminal that contains only a plurality of processors for private data processing or only a plurality of processors for non-private data processing, and the number of processors is more In many cases, the connection principle is actually the same, and will not be described in detail in this application.

It should be noted that although it is not specifically indicated in FIG. 5-7, it can actually correspond to the three cases in which the CPU and the restriction-type external device 102A described in each of the above-described first to third embodiments interact with each other, and In each case, there is no influence on the connection mode between the restriction type external device 102A and the CPU.

Implementation method (1) In a plurality of CPUs for processing private data/non-private data, a certain CPU is used as a "relay" with the restricted type external device 102A, and other CPUs implement and limit the external device through the "relay". 102A interaction.

Specifically, as shown in FIG. 5, it is assumed that a connection is established between the CPU 1 and the restriction-type external device 102A, and other CPUs for processing the private data are connected to the CPU 1 in a "series" manner; Multiple CPUs with non-private data are connected in "parallel" mode.

For the "series" mode: When the CPU 1 needs to interact with the restricted class external device 102A, the CPU 1 directly performs data interaction with the restricted class external device 102A; when the CPU 1A needs to interact with the restricted class external device 102A, the CPU 1 performs data forwarding. When CPU1B needs to interact with the restricted external device 102A, the CPU1A and CPU1 perform data forwarding.

For the "parallel" mode: When the CPU 2 needs to interact with the restricted class external device 102A, the CPU 2 can 1) perform data forwarding by the CPU 1 by issuing a request to the CPU 1, 2) perform port configuration by the CPU 1, and establish the CPU 2 and the restricted class externally. The data transmission channel between the devices 102A, 3) the CPU 1 establishes a DMA transmission channel between the CPU 2 and the restriction-type external device 102A, thereby performing data interaction with the restriction-type external device 102A; when the CPU 2A or the CPU 2B requires and limiting the external device When 102A interacts, the CPU 2 performs data forwarding and indirectly implements data interaction with the restricted class external device 102A.

Of course, CPUs used for private data processing can also use "parallel" connection, and even partially use "series" and partially "parallel" connections; CPUs for non-private data processing can also use "series". It is obvious that the connection method is even partially "series" and partially "parallel". However, since only CPU1 is directly connected to the restricted external device 102A, any other CPU wishing to interact with the restricted external device 102A needs to be forwarded by at least CPU1.

In addition to interacting with the restricted class external device 102A, when multiple CPUs interact, data transfer by other CPUs may also be required. For example, when CPU1 interacts with CPU2 or CPU1A, it can directly interact; when CPU1 interacts with CPU1B, it needs CPU1A to forward; when CPU2 interacts with CPU1, CPU2A or CPU2B, it can directly interact; When the CPU 2A interacts with the CPU 2B, the CPU 2 is required to perform the transfer.

In addition, on the basis of "parallel", there may be a connection between CPU2A and CPU2B (not shown), which enables direct data interaction between the two. Further, when the number of CPUs is larger, data exchange between the CPUs and both of them may be performed directly without the need for forwarding by other CPUs.

Implementation method (2)

In a plurality of CPUs for processing private data, each CPU is "parallel" to the restricted-type external device 102A, and directly interacts with the restricted-type external device 102A without requiring other CPUs as "relays".

Specifically, as shown in FIG. 6, the CPU 1, CPU 1A, and CPU 1B for processing private data are respectively connected to the restriction type external device 102A; meanwhile, the CPU 2, CPU 2A, and CPU 2B for processing non-private data are not associated with the restriction type external device. 102A connection.

At the same time, between the multiple CPUs with the same processing function, the "series" and / or "parallel" methods mentioned in the above text can be used. As a specific embodiment, FIG. 6 shows that: CPU1, CPU1A, and CPU IB for processing private data adopt a "series" mode, and CPU2, CPU2A, and CPU2B for processing non-private data are adopted. Parallel" way.

When a part of the CPU is connected to the restricted-type external device 102A, such as a CPU for private data processing, these CPUs can directly interact with the restricted-type external device 102A, including data transmission and reception; and other non-restricted external devices. 102A directly connected CPUs, such as CPUs for non-private data processing at this time, when these CPUs need to interact with the restricted type external device 102A, it is necessary to involve these CPUs and the CPU directly connected to the restricted external device 102A. The process of interaction.

(1) Data uplink processing

Assume that each CPU can directly interact with any other CPU (the specific connection is not shown in the figure). System), then 1) CPU2A or CPU2B can directly transfer the data that needs to be sent to the CPU directly connected to the restricted external device 102A, such as to the CPU1A or CPU1B, and then further forwarded to the restricted external device 102A by the CPU1A or CPU1B; 2) The CPU 2A or the CPU 2B can directly issue a request to a CPU directly connected to the restriction-type external device 102A to establish a data transmission channel/DMA transmission channel between the CPU 2A or the CPU 2B and the restriction-type external device 102A, for example, by the CPU 1A or The CPU 1B receives the request and establishes the above-described data transfer channel/DMA transfer channel between the CPU 2A or the CPU 2B and the restriction type external device 102A.

Assuming that each CPU can only interact directly with an adjacent CPU, as shown in Figure 6, CPU2A or CPU2B can only interact directly with CPU2, CPU2A or CPU2B can send data to CPU2, 1) is sent by CPU2 to CPU1. And forwarded by CPU1 to the restricted class external device 102A; 2) by the CPU2 making a request to the CPU1, the CPU1 establishes a data transfer channel/DMA transfer channel between the CPU2 and the restricted class external device 102A, and the CPU2 sends the data directly to the restricted class External device 102A.

It is assumed that each CPU can interact with other CPUs of the specified type in addition to direct interaction with adjacent CPUs. For example, as shown in FIG. 7, as the same type of CPU, CPU2 is adjacent to CPU2A and can directly interact with each other. As a different type of CPU, the CPU 2 can also directly interact with the CPU 1; similarly, the CPU 2A can directly interact with the adjacent CPU 2 and the CPU 2B, and can directly interact with the CPU 1A, and the CPU 2A can be indirectly transmitted to the adjacent CPU via the CPU 2 or the like. The CPU 1 is further transmitted by the CPU 1 to the restriction-type external device 102A, and can also be directly transmitted to the CPU 1A, and further transmitted to the restriction-type external device 102A by the CPU 1A. At this time, 1) the CPU 2, the CPU 2A, and the CPU 2B perform data transfer to the restriction external device 102A via the corresponding CPU 1, CPU 1A, and CPU IB; 2) the CPU 2, the CPU 2A, and the CPU 2B can transmit a request to the corresponding CPU 1, CPU 1A, and CPU IB. It establishes a corresponding data transmission channel/DMA transmission channel, and realizes the interaction between CPU2, CPU2A, CPU2B and the restriction type external device 102A.

(2) Data downlink processing

1, by means of data forwarding

It is necessary to transfer the data to the directly connected CPU by the restricted external device 102A, for example, to the CPU 1A, and then to the target CPU.

For example, when the restricted external device 102A transfers data to the CPU 1A: In the first case, the CPU 1A finds that the data is non-private data, but it is not clear which CPU is processed; in the second case, the CPU 1A finds the data as non- Private data, and know which CPU should be processed.

In both cases, you still need to analyze based on the specific connection of the CPU:

Assuming that each CPU can directly interact with any other CPU (the specific connection relationship is not shown in the figure), for the first case, CPU1A can directly transfer data to any CPU for processing non-private data. For example, CPU2A, then CPU2A determines the specific target CPU; for the second case, CPU1A can directly transfer data to the target CPU, such as CPU2A.

Assume that each CPU can only interact directly with an adjacent CPU. For example, as shown in Figure 6, CPU1A can only interact directly with CPU1 and CPU1B, CPU1A can send data to CPU1, CPU1 sends to CPU2, and CPU2 Forward to the target CPU.

It is assumed that each CPU can interact with other CPUs of the specified type in addition to direct interaction with adjacent CPUs. For example, as shown in FIG. 7, as the same type of CPU, CPU1 is adjacent to CPU1A and can directly interact with each other. As a different type of CPU, the CPU 1 can also directly interact with the CPU 2; similarly, the CPU 1A can directly interact with the adjacent CPU 1 and CPU 1B, and can also directly interact with the CPU 2A, and when the CPU 1 A receives the restriction-type external device 102A, The non-private data can be transferred indirectly to the CPU for processing non-private data by an adjacent CPU such as CPU1, or directly to CPU2A, and determined by CPU2A and transmitted to the final target CPU.

2. By establishing a data transmission channel / DMA transmission channel

a) If there is no established data transmission channel/DMA transmission channel, it needs to be restricted by the external device 102A. The data is transferred to a directly connected CPU, for example to CPU1A, and then further to the target CPU. For example, when the restricted external device 102A transfers data to the CPU 1A: In the first case, the CPU 1A finds that the data is non-private data, but it is not clear which CPU is processed; in the second case, the CPU 1A finds the data as non- Private data, and know which CPU should be processed.

Assume that each CPU can only interact directly with an adjacent CPU, as shown in Figure 6, CPU1A can only

When CPU1 and CPU1B interact directly, CPU1A can send data to CPU1, send it to CPU2 by CPU1, and forward it to CPU2 by CPU2.

b) There is an established data transmission channel / DMA transmission channel.

Assume that a data transfer channel/DMA transfer channel between the CPU 2 and the restriction type external device 102A is established in the CPU 1 as shown in Figs. 5 and 6. When the restriction type external device 102A needs to be transferred to the CPU 2, the data transmission channel/DMA transmission channel can be directly used for transmission; when the restriction type external device 102A needs to be transferred to the CPU 2A or the CPU 2B, the data transmission channel/DMA transmission channel can be used. Sent to CPU2, and forwarded by CPU2, or sent to directly connected CPU (CPU1 for the case of Figure 5; CPU1, CPU1A or CPU1B for the case of Figure 6), and then by the CPU Forward to a specific target CPU.

Assume that, as shown in FIG. 7, each CPU that is not directly connected to the restriction-type external device 102A establishes a data transmission channel/DMA transmission channel in the CPU directly connected to the corresponding restriction-type external device 102A, thereby limiting the class. The external device 102A can directly transmit data to the corresponding target CPU (CPU2, CPU2A or CPU2B) by selecting the DMA transfer channel.

Second, the CPU and the shared external device 102B connection

(1) The terminal contains two CPUs

Embodiment 1

As shown in FIG. 2, the CPU 1 and the CPU 2 are respectively connected to the shared external device 102B, and on the path of the shared external device 102B and the CPU 1, CPU 2, a line switching device 104 (the shared external device 102B such as "camera" is provided. " ).

In a specific embodiment, the type of data that the shared-type external device 102B needs to transmit is detected by the line switching device 104. Wherein, when the data type is private, it is determined that the shared external device 102B needs to interact with the CPU 1, and the line switching device 104 keeps the line between the CPU 1 and the shared external device 102B closed, and the CPU 2 and the shared external device The line between the devices 102B remains disconnected; when the data type is non-private, it is determined that the shared external device 102B needs to interact with the CPU 2, and the line switching device 104 causes the line between the CPU 2 and the shared external device 102B. Stay closed while the line between CPU1 and shared class external device 102B remains disconnected.

The line switching device 104 directly switches the line by performing type identification on the data to be transmitted by the shared external device 102B, thereby realizing control of the data transmission direction, and ensuring that the private data is performed by the CPU1. Rational, non-private data is processed by CPU2.

In another specific embodiment, the line switching device 104 does not type-recognize data from the shared-type external device 102B, but transmits all data to the CPU 1 by default. That is, regardless of whether the line between the current CPU 1 or the CPU 2 and the shared-type external device 102B is connected, the circuit is switched such that the line between the CPU 1 and the shared-type external device 102B is closed, and then the data is sent to the CPU 1 , and the type of data by the CPU 1 For identification, if it is private, CPU1 directly processes it. If it is non-private, CPU1 forwards it to CPU2 and processes it by CPU2.

Since the line switching device 104 does not perform type identification on the data from the shared class external device 102B, all data is transmitted to the CPU 1, and the CPU 1 performs type identification and data allocation, and the CPU 1 is exclusively used to process private data with respect to the CPU 2 In this case, a more secure processor sends all the data to CPU1, even if the non-private data is obtained and utilized by other applications (relative to the application that should be sent to), it does not result in privacy. The leakage of information; as long as it can ensure that private data will not be processed by CPU2, it can physically isolate the illegal application based on the acquisition and utilization of private data by CPU2, thus ensuring the data security of the terminal.

In yet another specific embodiment, the line switching device 104 still does not type-recognize data from the shared-type external device 102B, but directly transmits it. Specifically, the line switching device 104 needs to check its previous line connection relationship with the CPU 1 and the CPU 2, and directly transmits the data to the case where the path between the current CPU 1 and the CPU 1 is closed and the path between the CPU 2 and the CPU 2 is opened. CPU1; in the case of seeing that the path between the current and CPU2 is closed, and the path between the CPU1 and the CPU1 is open, the data is transferred to the CPU 2 to be forwarded by the CPU 2 to the CPU 1; wherein the CPU 1 processes the data of the private type , and forward non-private type data to CPU2.

In this technical solution, the type identification of the data is actually performed by the CPU 1. The line switching device 104 can transmit data by directly using the line currently processing the connected state, thereby reducing the requirement for the line switching device 104, which is advantageous for Control of manufacturing costs. Since the data transmitted by the shared-type external device 102B is not directly processed by the CPU 2 under any circumstances, the private data that may exist is transmitted to the CPU 2 even if it is started, and is ensured that it is directly forwarded to the CPU 2 without being processed. The CPU 1 enables the terminal to have high security even in a low configuration.

In the technical solution shown in Fig. 2, the line switching device 104 has functions such as autonomous line switching, data type identification, etc.; however, in practice, the operation of the line switching device 104 can be controlled by other devices.

In one case, as shown in Fig. 8, the line switching device 104 can be controlled by the CPU 1. Specifically, a control line 106A is established between the control port of the line switching device 104 and the CPU 1, and the CPU 1 can send a control command to the line switching device 104 through the control line 106A to implement a specific line switching operation.

Then, when the CPU 1 needs to interact with the shared-type external device 102B, the line corresponding to the CPU 1 can be closed by directly controlling the line switching device 104, and the line corresponding to the CPU 2 can be disconnected; when the CPU 2 needs to perform with the shared-type external device 102B. When interacting, it is necessary to first send a handover request to the CPU 1. When the CPU 1 can accept the handover request, the CPU 1 controls the line switching device 104 to close the line corresponding to the CPU 2, and disconnects the line corresponding to the CPU 1 (the control line 106A is always kept closed).

In this technical solution, the control port is used to directly control the line switching action of the line switching device 104. Since the CPU 1 is a "secure processor" with respect to the CPU 2 when the CPU 1 processes more important and private data, when the CPU 1 controls the line switching device 104, data transmission can be completed and the terminal can be secured. Data security, which physically prevents an illegal application from controlling the line switching device 104 through the CPU 2, prevents private data from being acquired by an illegal application.

In another case, the control port of the line switching device 104 can also be connected to the CPU 2 to constitute the control line 106B, as shown in Fig. 9.

Then, when the CPU 2 needs to interact with the shared class external device 102B, the line corresponding to the CPU 2 can be closed and the line corresponding to the CPU 1 can be disconnected directly by controlling the line switching device 104; when the CPU 1 needs to share with the class When the external device 102B interacts, it is necessary to first transmit a handover request to the CPU 2, and when the CPU 2 can accept the handover request, the CPU 2 controls the line switching device 104 to close the line corresponding to the CPU 1, and disconnects the line corresponding to the CPU 2 (the control line 106A is always Keep closed).

In this technical solution, since the CPU 1 is dedicated to the processing of private data, most of the data is often non-private data, so that the CPU 1 having weak processing capability and the CPU 2 having strong processing capability can be used, and when the CPU 2 controls the line switching device 104. In this case, it is beneficial to make full use of the processing power of the CPU 2 to avoid the processing pressure that the control process may cause on the CPU 1. Although the control of CPU2 may cause a decrease in security with respect to CPU1, it still guarantees a certain degree of security and helps to reduce the overall production cost of the terminal.

Embodiment 2

As shown in Figure 2, CPU1 and CPU2 are directly connected to shared external device 102B (such as "button").

In the above technical solution, preferably, the shared-type external device 102B transmits all data that needs to be transmitted to a corresponding processor in a connected state. Specifically, if the processor in the connected state is the CPU 1, the CPU 1 processes the private data from the shared external device 102B, and forwards the non-private data from the shared external device 102B to the CPU 2; The processor in the connected state is CPU2, then the CPU 2 directly forwards data from the shared class external device 102B to the CPU1, and the CPU1 processes the private data from the CPU2, and will come from

CPU2's non-private data is forwarded to CPU2

In this technical solution, the type identification of the data by the CPU 1 eliminates the need to add another hardware device to perform type identification on the data, which is advantageous for controlling the manufacturing cost. Since the data transmitted by the shared-type external device 102B is not directly processed by the CPU 2 under any circumstances, the private data that may exist is transmitted to the CPU 2 even if it is started, and is ensured that it is directly forwarded to the CPU 2 without being processed. The CPU 1 enables the terminal to have high security even in a low configuration.

In the above technical solution, preferably, cooperation between the CPU 1 and the CPU 2 can be achieved by the interaction of instructions. For example, when the CPU 1 needs to transmit data to the external device, and sends an interrupt instruction to the CPU 2, so that the CPU 2 sets the port connected to the shared-type external device 102B to a high-impedance state, the CPU 1 can connect the sharing-type external device 102B. The connected port returns from the high-resistance state to the normal state to implement data interaction; when the CPU 2 needs to transmit data to the external device, it sends an interrupt instruction to the CPU 1 to cause the CPU 1 to set the port connected to the shared-type external device 102B. In the high-impedance state, the CPU 2 can restore the normal connection state from the high-resistance state to the port connected to the shared-type external device 102B, thereby implementing data interaction.

In this technical solution, through the instruction interaction between the CPU 1 and the CPU 2, only one processor is connected to the shared external device 102B at the same time, so that the two are physically separated completely, and the security of the terminal is ensured.

In the above technical solution, preferably, after the CPU 2 completes transmitting data to the shared-type external device 102B,

The CPU 1 sends a resume command to cause the CPU 1 to restore the port connected to the shared external device 102B to be connected.

In this technical solution, since the CPU 1 is for processing private data, which is a "secure processor" with respect to the CPU 2, in order to ensure that the CPU 1 can preferentially implement the interaction with the shared-type external device 102B, the CPU 2 is unnecessary. In the case of data interaction with the shared-type external device 102B, the connection with the shared-type external device 102B is actively disconnected, so that the CPU 1 restores the connection with the shared-type external device 102B in time.

Of course, since CPU1 and CPU2 interact with interrupt instructions, when CPU1 or CPU2 receives an interrupt instruction, it is highly likely that the current operation needs to be suspended, so that the sender of the interrupt instruction performs the operation first, even if CPU1 sends The interrupt instruction, after the CPU1 completes the operation, can also send a resume instruction to the CPU 2, so that the CPU 2 can perform the suspended operation in time.

(2) The terminal contains more than two CPUs

Case 1: The line switching device 104 is included on the line between the shared external device 102B and the CPU. Embodiment 1

In a plurality of CPUs for processing private data/non-private data, a CPU is used as a "relay" with the shared-type external device 102B, and other CPUs implement the shared-type external device through the "relay". 102B interaction.

Specifically, as shown in FIG. 10, it is assumed that a connection is established between the CPU 1 and the shared-type external device 102B (specifically, data is forwarded by the line switching device 104), and other CPUs for processing private data, and the CPU 1 Connected by "cascade" mode; at the same time, it is assumed that a connection is established between the CPU 2 and the shared-type external device 102B (specifically, data is forwarded by the line switching device 104), and other CPUs for processing non-private data, and CPU2 is connected in "parallel" mode.

For the "series" mode: When the CPU 1 needs to interact with the shared class external device 102B, the CPU 1 directly performs data interaction with the shared class external device 102B; when the CPU 1A needs to interact with the shared class external device 102B, the CPU 1 performs data forwarding. When CPU1B needs to interact with shared class external device 102B, data is forwarded by CPU1A and CPU1.

For the "parallel" mode: When the CPU 2 needs to interact with the shared class external device 102B, the CPU 2 directly performs data interaction with the shared class external device 102B; when the CPU 2A needs to interact with the shared class external device 102B, the CPU 2 performs data forwarding. When the CPU 2B needs to interact with the shared class external device 102B, the CPU 2 also performs data forwarding.

Of course, CPUs used for private data processing can also use "parallel" connection, and even partially use "series" and partially "parallel" connections; CPUs for non-private data processing can also use "series". It is obvious that the connection method is even partially "series" and partially "parallel".

In addition to interacting with the shared external device 102B, other interactions may be required when interacting with multiple CPUs

CPU data forwarding. For example, when CPU1 interacts with CPU2 or CPU1A, it can directly interact; when CPU1 interacts with CPU1B, it needs CPU1A to forward; when CPU2 interacts with CPU1, CPU2A or CPU2B, it can directly interact; When the CPU 2A interacts with the CPU 2B, the CPU 2 is required to perform the transfer.

Embodiment 2

In a plurality of CPUs for processing private data/non-private data, each CPU is "parallel" to the shared class external device 102B and directly interacts with the shared class external device 102B without requiring other CPUs as "relays" " .

Specifically, as shown in FIG. 11, the CPU 1, CPU 1A, and CPU IB for processing private data are respectively connected to the shared external device 102B (indirect connection is implemented by the line switching device 104), and at the same time, for processing non-private data. The CPU 2, the CPU 2A, and the CPU 2B are also connected to the shared class external device 102B, respectively.

At the same time, between the multiple CPUs with the same processing function, the "series" and / or "parallel" methods mentioned in the above text can be used. As a specific embodiment, FIG. 11 shows: CPU1, CPU1A, and CPU IB for processing private data adopt "cascade" mode, and CPU2, CPU2A, and CPU2B for processing non-private data are used. "Parallel" mode.

When each CPU is connected to the shared class external device 102B, the CPU for one processing function may need to interact with the CPU of another processing function. For example, when the shared external device 102B transfers data to the CPU 1A: In the first case, the CPU 1A finds that the data is non-private data, but it is not clear which CPU is processed; in the second case, the CPU 1 A finds the data. It is non-private data and knows which CPU should be processed.

Assuming that each CPU can directly interact with any other CPU (the specific connection relationship is not shown in the figure), for the first case, CPU1A can directly transfer data to any CPU for processing non-private data. , for example, CPU2A, then CPU2A determines the specific target CPU; for the second case, CPU1A can be straight The data is transferred to the target CPU, such as CPU2A.

Assume that each CPU can only interact directly with adjacent CPUs. For example, as shown in Figure 11. CPU1A can only interact directly with CPU1 and CPU1B. CPU1A can send data to CPU1, which is sent by CPU1 to CPU2. CPU2 forwards to the target CPU.

Assume that each CPU can interact with other CPUs of the specified type in addition to direct interaction with adjacent CPUs. For example, as shown in Figure 12, CPU1 is adjacent to CPU1A and can directly interact as the same type of CPU. As a different type of CPU, the CPU 1 can also directly interact with the CPU 2; similarly, the CPU 1A can directly interact with the adjacent CPU 1 and CPU 1B directly, and can also directly interact with the CPU 2A, when the CPU 1A receives the transmission from the shared external device 102B. Non-private data can be transferred indirectly to a CPU for processing non-private data by an adjacent CPU such as CPU1, or directly to CPU2A, and determined by CPU2A and transmitted to the final target CPU.

Case 2: The line switching device is not included on the line between the shared external device 102B and the CPU. 104 Embodiment 1

Specifically, as shown in FIG. 13, it is assumed that a connection is established between the CPU 1 and the shared-type external device 102B, and other CPUs for processing private data are connected to the CPU 1 in a "series" manner; meanwhile, it is assumed that the CPU 2 and A connection is established between the shared class external devices 102B, and other CPUs for processing non-private data are connected to the CPU 2 in a "parallel" manner.

Embodiment 2

Specifically, as shown in FIG. 14, the CPU 1, the CPU 1A, and the CPU IB for processing the private data are respectively connected to the shared external device 102B, and the CPU 2, the CPU 2A, and the CPU 2B for processing the non-private data are also respectively connected to the shared class. External device 102B.

At the same time, between the multiple CPUs with the same processing function, the "series" and / or "parallel" methods mentioned in the above text can be used. As a specific embodiment, FIG. 14 shows: CPU1 for processing private data. The CPU1A and CPU IB adopt the "series" mode, and the CPU2, CPU2A, and CPU2B for processing non-private data adopt the "parallel" mode.

Assume that each CPU can only interact directly with an adjacent CPU. For example, as shown in Figure 14, CPU1A can only interact directly with CPU1 and CPU1B, CPU1A can send data to CPU1, send it to CPU2 by CPU1, and by CPU2. Forward to the target CPU.

It is assumed that each CPU can interact with other CPUs of the specified type in addition to direct interaction with adjacent CPUs. For example, as shown in Figure 15, CPU1 is adjacent to CPU1A and can directly interact as the same type of CPU. As a different type of CPU, the CPU 1 can also directly interact with the CPU 2; similarly, the CPU 1A can directly interact with the adjacent CPU 1 and CPU 1B directly, and can also directly interact with the CPU 2A, when the CPU 1A receives the transmission from the shared external device 102B. Non-private data can be transferred indirectly to a CPU for processing non-private data by an adjacent CPU such as CPU1, or directly to CPU2A, and determined by CPU2A and transmitted to the final target CPU.

Third, non-restricted external devices 102C and CPU connection

Similar to the connection and interaction between the restricted external device 102A and the CPU 1 shown in FIG. 2 to FIG. 4, the non-restricted external device 102C is directly connected to the CPU 2, and may also adopt, for example, the CPU 2 directly executes the CPU 1 and the unrestricted class. Data forwarding between the external devices 102C; the CPU 2 closes the path between the CPU 1 and the non-restricted external device 102C through the port configuration; the CPU 2 configures a DMA transfer channel between the CPU 1 and the unrestricted external device 102C to call the CPU 2 The way of the bus, the realization of data interaction.

Similarly, in the case of including a plurality of CPUs as shown in FIGS. 5 to 7, the "restricted external device 102A" is replaced with the "unrestricted external device 102A", and the CPU 1, CPU 1A, CPU 1B, and the like are associated. In the CPU of the CPU 2 shown in FIG. 2, the CPU 2, the CPU 2A, the CPU 2B, and the like are used as the CPU corresponding to the CPU 1 shown in FIG. 2, and all of the above-described data interaction methods can be applied thereto.

Fourth, the connection between the CPU and external devices

The above describes the data interaction between the CPU and the external device (including any one or more of the restricted class external device 102A, the shared class external device 102B, and the unrestricted class external device 102C), and for the terminal It also includes data interaction with other terminals or servers, and involves uplink and downlink data interaction between the CPU and the communication module.

As shown in Fig. 16, it is assumed that the CPU 1 is used to process private data, the CPU 2 is used to process non-private data, and the communication module 106 is used for transmitting and receiving of uplink and downlink data. Then, for the uplink data, since the communication module 106 is respectively connected to the CPU 1 and the CPU 2, the data from the CPU 1 is private data, the data from the CPU 2 is non-private data; and for the downlink data, the communication module 106 directly directly performs the received data. Type identification, if it is private data, is directly transmitted to CPU1, and if it is non-private data, it is directly transmitted to CPU2.

The data is identified by the communication module 106, so that the private data and the non-private data are respectively allocated to the CPU 1 and the CPU 2 to implement physical data isolation, which helps to improve the security of the terminal.

At the same time, in order to further improve the security, it is also possible to add a function to the communication module 106, that is, when the communication module 106 interacts with the CPU 1, the connection with the CPU 2 is cut off, and when the communication module 106 interacts with the CPU 2, the CPU 1 is disconnected. Alternatively, a device similar to the line switching device 104 shown in FIG. 10-12 is added between the communication module 106 and the CPU 1, CPU 2, and is controlled by the device itself or the CPU 1, CPU 2, when the communication module 106 is When the CPU 1 interacts, the connection with the CPU 2 is cut off, and when the communication module 106 interacts with the CPU 2, the connection with the CPU 1 is cut off. By physically connecting and disconnecting the lines, the physical isolation of private data and non-private data helps to further enhance the security of the terminal.

There may also be a plurality of communication modules 106 in the terminal, such as shown in FIG. 17, including a communication module 106A and a communication module 106B, both of which are respectively connected to the CPU 1 and the CPU 2, and thus, for the communication module 106A or the communication module 106B, actually The processing module 106 is the same as the communication module 106 shown in FIG. 16, and the processing strategy corresponding to the communication module 106 shown in FIG. 16 can be used for reference.

Similar to the situation shown in Figures 10-15, when there are multiple CPUs for processing private data in the terminal, and/or multiple CPUs for processing non-private data, the communication module described in Figure 16-17 106 (for example, the communication module 106A and the communication module 106B are the same), and the plurality of CPUs may adopt the following strategies.

The CPU for processing private data here includes CPU1, CPU1A, and CPU1B, and the CPU for processing non-private data includes CPU2, CPU2A, and CPU2B as an example for description.

Implementation (1)

The communication module 106 is only connected to a CPU for processing private data and a CPU for processing non-private data, such as to CPU1 and CPU2.

Then, for data uplink, CPU1/CPU2 directly transfers the private data/non-private data to the communication module 106, and the CPU1A, CPU IB needs to transmit the private data to the CPU1, and is forwarded by the CPU1 to the communication module 106; similarly, the CPU2A The CPU 2B needs to transfer the non-private data to the CPU 2 and forward it to the communication module 106 by the CPU 2.

When the data is downlinked, the communication module 106 sends all the private data to the CPU1, and sends all the non-private data to the CPU2. In the first case, the communication module 106 can understand by analyzing the data. To the target CPU for processing the data, the communication module 106 may add a corresponding identifier on the data, so that after the CPU 1 or the CPU 2 receives the data, the corresponding target CPU may be determined according to the added identifier to implement In the second case, if the communication module 106 cannot know the target CPU of the received data, the communication module 106 directly transmits it to the CPU 1 or the CPU 2, and the CPU 1 or the CPU 2 determines the corresponding target CPU by itself.

Different data is transmitted between CPUs based on different connection methods between multiple CPUs. For example, as shown in Figure 18, CPU1, CPU1A and CPU1B are in "series" mode. CPU2, CPU2A and CPU2B are in "parallel" mode. When CPU1B needs to send uplink data or receive downlink data, it needs to pass CPU1A. Two-stage transmission with CPU1 can be realized; for CPU2A and CPU2B, only one level of transmission of CPU2 is required.

Of course, similar to the description in Figure 10-15, for any type of CPU, such as CPU for processing private data or non-private data, you can use "series" or "parallel" connection according to actual needs. It is even possible to connect in a "series" and "parallel" mode at the same time.

Implementation method (2)

As shown in FIG. 19, the communication module 106 can also be connected to all the CPUs respectively. For the uplink data, each CPU can be directly transmitted to the communication module 106 without performing forwarding by other CPUs, which is advantageous for reducing the data transmission delay. . For the downlink data, if the communication module 106 can know the specific target CPU, it can directly transmit to the target CPU; if the communication module 106 cannot know the specific target CPU, the following method is adopted:

In the first case, the communication module 106 performs type identification on the downlink data, and according to the recognition result, transmits the data to a default or arbitrary CPU for processing the same type of data, for example, the private data is transmitted to the CPU1 by default. Private data is transferred to CPU2 by default, or private data is arbitrarily transferred to CPU1, CPU1A or CPU1B, and non-private data is arbitrarily transferred to CPU2, CPU2A or CPU2B, and then further determined and forwarded to the specific target by the CPU receiving the downlink data. CPU. In the second case, if the communication module 106 does not perform type identification on the downlink data, the downlink data is directly transmitted to a certain default or arbitrary CPU, and the CPU directly performs type identification or forwards to other CPUs for type identification, and then according to The result is recognized and sent to the target CPU. Specifically, for example, by default, the CPU 1 performs type identification (or specifies that all downlink data is type-recognized by the CPU 1A, and then needs to be transmitted to the CPU 1A for type identification), and transmits the downlink data to the specific one according to the recognition result. Target CPU.

In each of the above cases, the data interaction between different types of CPUs is actually included, and the following cases are also included:

It is assumed that each CPU can directly interact with any other CPU (the specific connection is not shown in the figure). Assuming that CPU1A receives non-private data, if CPU1A does not know the target CPU corresponding to the data, it can directly transfer the data to any CPU for processing non-private data, such as CPU2A, and then CPU2A determines the specific target CPU; If CPU1A knows the target CPU corresponding to the data, it can directly transfer the data to the target CPU, such as CPU2A.

Assume that each CPU can only interact directly with an adjacent CPU. For example, as shown in Figure 19, CPU1A can only interact directly with CPU1 and CPU1B, CPU1A can send data to CPU1, CPU1 sends to CPU2, and CPU2 Forward to the target CPU.

It is assumed that each CPU can interact with other CPUs of the specified type in addition to direct interaction with adjacent CPUs. For example, as shown in FIG. 20, as the same type of CPU, CPU1 is adjacent to CPU1A and can directly interact with each other. As a different type of CPU, the CPU 1 can also directly interact with the CPU 2; similarly, the CPU 1A can directly interact with the adjacent CPU 1 and CPU IB, and can also directly interact with the CPU 2A, and when the CPU 1A receives the non-transmission sent by the communication module 106 Private data can be transferred indirectly to a CPU for processing non-private data via an adjacent CPU such as CPU1, or directly to CPU2A and determined by CPU2A and transferred to the final target CPU.

In the technical solution described in FIGS. 16-20, the communication module 106 is respectively connected to a CPU for processing private data and a CPU for processing non-private data; and in FIGS. 21-25 described below, each communication module 106 (or the communication module 106A and the communication module 106B shown in FIG. 22) are each connected to only one type of CPU, such as only to a CPU for processing private data, or only to a CPU for processing non-private data. .

Specifically, as shown in FIG. 21, the communication module 106 is only connected to the CPU 1, so that for the uplink data, the CPU 1 can directly interact with the communication module 106, and the CPU 2 needs the CPU 1 as a relay to indirectly interact with the communication module 106. For the downlink data, in the first case, the communication module 106 can perform type identification on the downlink data, and add an identifier to the downlink data according to the identification result, and then all send to the CPU1, and the CPU1 determines the self-processing according to the identifier on the downlink data. Or sent to the CPU2 for processing; in the second case, the communication module 106 does not perform type identification on the downlink data, after the CPU1 performs type identification, directly processes the private data, and forwards the non-private data to the CPU 2 deal with.

Of course, the communication module 106 can also be connected to the CPU 2, and the CPU 2 directly interacts with the communication module 106, and the CPU 1 must indirectly implement the interaction with the communication module 106 by using the CPU 2 as a "relay". However, since CPU2 is used to process non-private data, it is an insecure CPU compared to CPU1, because private data will flow through CPU2, which may result in illegal applications stealing from it. Therefore, in order to obtain a safer application environment, the communication module 106 is more likely to be directly connected to the CPU 1. In the following various technical solutions, the communication module 106 is connected to the CPU 1 as an example, but based on the above description, this is obviously not a limitation or limitation.

As shown in Fig. 22, when there are a plurality of communication modules in the terminal, for example, including the communication module 106A and the communication module 106B, they are respectively connected to the CPU 1. Then, the communication module 106A or the communication module 106B is the same as the communication module 106 shown in FIG. 20, and the corresponding connection manner or processing policy may be adopted, and details are not described herein again.

Similar to the situation shown in Figures 16-20, when there are multiple CPUs for processing private data in the terminal, and/or multiple CPUs for processing non-private data, the communication module described in Figure 21-22 106 (for example, the communication module 106A and the communication module 106B are the same), and the plurality of CPUs may adopt the following strategies. The CPU for processing private data here includes CPU1, CPU1A, and CPU1B, and the CPU for processing non-private data includes CPU2, CPU2A, and CPU2B as an example for description.

Implementation (1)

The communication module 106 is only connected to a CPU for processing private data or a CPU for processing non-private data, such as to CPU1.

Then, when the data is uplinked, the CPU 1 directly interacts with the communication module 106, and all other CPUs need to directly or indirectly transmit the data to be transmitted to the CPU 1, and the CPU 1 forwards the data to the communication module 106 to implement uplink transmission of data.

For the data downlink, in the first case, the communication module 106 can understand the target CPU for processing the data by analyzing the data, etc., and the communication module 106 can add a corresponding identifier to the data, thereby After receiving the data, the CPU 1 may determine the corresponding target CPU according to the added identifier to implement forwarding. In the second case, the communication module 106 cannot know the target CPU of the received data, and the communication module 106 directly directly Transferred to the CPU1, the CPU1 determines the corresponding target CPU by itself. Of course, the communication module 106 can identify the type of the data, determine whether it is private data or non-private data, and then send it to the CPU1, or the communication module 106 does not perform type identification. The operation is directly sent to the CPU 1, and the CPU 1 performs type identification on the received data.

Different data is transmitted between CPUs based on different connection methods between multiple CPUs. For example, as shown in Figure 23, CPU1, CPU1A and CPU1B are in "series" mode. CPU2, CPU2A and CPU2B are in "parallel" mode. When CPU1B needs to send uplink data or receive downlink data, it needs to pass CPU1A. Two-stage transmission with CPU1 can be realized; for CPU2A and CPU2B, only one level of transmission of CPU2 is required.

Of course, similar to the description in Figure 18-20, for any type of CPU, such as CPU for processing private data or non-private data, you can use "series" or "parallel" connection according to actual needs. It is even possible to connect in a "series" and "parallel" mode at the same time.

Implementation method (2)

As shown in Fig. 24, the communication module 106 can also be connected to all CPUs of the same type, for example, to all CPUs for processing private data (specifically, CPU1, CPU1A and CPU1B in the figure).

Then, for the uplink data, each CPU for processing the private data can be directly transmitted to the communication module 106 without performing forwarding by other CPUs, which is advantageous for reducing the data transmission delay and for processing the CPU of the non-private data. Then you still need to forward the data to a CPU that processes private data, such as CPU1, to enable data to be sent upstream.

For the downlink data, if the communication module 106 can know the specific target CPU, if the data is private data, it can be directly transmitted to the target CPU. If the data is non-private data, the non-private data is added with the identifier. Directly transferred to a connected CPU (this CPU can be default or arbitrary, such as sending to CPU1 by default, or randomly selecting a connected CPU). If it is CPU1, it will be forwarded by CPU1 according to the identifier on the data. To the corresponding target CPU; if the communication module 106 is unable to know the specific target CPU, the following manner is adopted: In the first case, the communication module 106 performs type identification on the downlink data, and transmits the data to the identification result according to the recognition result. A default or arbitrary CPU for processing the same type of data, such as transferring private data to CPU1 by default, adding the corresponding type identifier to non-private data, and then transferring it to CPU1 by default, or transferring private data to CPU1, CPU1A or arbitrarily. CPU1B, arbitrarily transfer non-private data to the CPU1, CPU1A or CPU after adding the corresponding type identifier 1B is then further determined and forwarded by the CPU receiving the downlink data to a specific target CPU.

In the second case, if the communication module 106 does not perform type identification on the downlink data, the downlink data is directly transmitted to a certain default or arbitrary CPU, and the CPU directly performs type identification or forwards to other CPUs for type identification, and then according to The result is recognized and sent to the target CPU. Specifically, for example, by default, the CPU 1 performs type identification (or specifies that all downlink data is type-recognized by the CPU 1A, and then needs to be transmitted to the CPU 1A for type identification. In addition, according to the recognition result, the downlink data is transmitted to the specific target CPU.

Assume that each CPU can only interact directly with an adjacent CPU. For example, as shown in Figure 24, CPU1A can only interact directly with CPU1 and CPU1B, CPU1A can send data to CPU1, CPU1 sends to CPU2, and CPU2 Forward to the target CPU.

Assume that each CPU can interact with other CPUs of the specified type in addition to direct interaction with adjacent CPUs. For example, as shown in Figure 25, CPU1 is adjacent to CPU1A and can directly interact as the same type of CPU. As a different type of CPU, the CPU 1 can also directly interact with the CPU 2; similarly, the CPU 1A can directly interact with the adjacent CPU 1 and CPU IB, and can also directly interact with the CPU 2A, and when the CPU 1A receives the non-transmission sent by the communication module 106 Private data can be transferred indirectly to a CPU for processing non-private data via an adjacent CPU such as CPU1, or directly to CPU2A and determined by CPU2A and transferred to the final target CPU.

Five, the CPU call to the desktop launcher

As shown in FIG. 26, a terminal according to an embodiment of the present invention includes: a CPU 1 and a CPU 2, respectively, for processing different types of data in the terminal; a first storage unit (such as RAMI and EMMC1 shown in FIG. 26) And storing the data processed by the CPU1, and the desktop storage device is further stored in the first storage unit; the second storage unit (such as RAM2 and EMMC2 shown in FIG. 26) is used for The data processed by the CPU 2 is stored; wherein the CPU 2 implements a call to the desktop initiator through the CPU 1.

In this technical solution, different types of data are separately processed by the CPU 1 and the CPU 2, and the processed data is stored in different memories, so that the various types of data are physically separated effectively, thereby avoiding only the terminal in the terminal. When using a single processor, any application can easily get data from that single processor simply by privilege cracking or the like.

For convenience of explanation, it is assumed that the CPU 1 is used to process private data in the terminal, and the CPU 2 is configured to process non-private data in the terminal.

By storing the desktop launcher in the first storage unit, only CPU1 can directly invoke the desktop launcher, and since CPU1 is a more secure processing unit relative to CPU2, security can be ensured and applications can be avoided. Destruction or tampering performed by CPU2. At the same time, since CPU1 directly calls the desktop launcher, so that CPU1 can control the permission of CPU2 to invoke the desktop launcher, the private service handled by CPU1 (corresponding to private data) and the non-private service handled by CPU2 (corresponding to non-private data) ), can achieve independent control requirements and UI interaction, and also help to meet their data privacy needs, thereby improving the security of the terminal and the convenience in use.

Preferably, the external device 102 in the terminal forms a corresponding display interface when the desktop launcher is called. The CPU 2 is further configured to: implement interaction with the display interface by using the CPU 1.

In this technical solution, the terminal needs to pass certain hardware devices to complete the specific functions, and these "hardware devices" are "external devices 102". Specifically, for example, a display screen or the like is required to display the display interface. Since the external device 102 is only connected to the CPU 1, when the CPU 2 needs to perform UI interaction, the CPU 1 needs to perform data forwarding, and the CPU 1 implements control of the specific UI interaction process of the CPU 2, and any data that may be processed by the CPU 1 may be involved. Or the instruction can be directly monitored by the CPU1, and the corresponding processing is performed in time to help improve the security of the terminal.

Wherein, in the above embodiment, for example, FIG. 2 describes that there may be a restriction type external device 102A in the terminal, The external device 102B, the non-restricted external device 102C, but in the present embodiment, the external device 102 shown in FIG. 26 is mainly directed to the restricted external device 102A connected to the CPU 1 shown in FIG. 2; It is not used to limit the type of external devices in the terminal. For example, the shared external device 102B, the non-restricted external device 102C, and the like may still be set in the terminal.

The above technical solution for invoking the desktop launcher can be applied to various application scenarios. The following two specific scenarios are taken as an example for description.

( 1 ) Install the application

The CPU 2 is further configured to: when the installation instruction of the application to be installed is received, install the to-be-installed application to the second memory, and send an application installation request to the CPU1 to invoke the desktop initiator And displaying the installation display data to the corresponding external device 102 through the CPU1, thereby displaying a corresponding installation screen on the display interface; the CPU1 is further configured to: parse the same from the application installation request The configuration information of the application to be installed or the configuration information sent by the CPU 2 is received, and the configuration information is stored in the first memory for display on the display interface.

In this technical solution, the calling process of the display interface by the CPU 2 during the installation of the application is described. Through the call to the display interface, CPU2 can complete the installation on the data, and can minimize the difference between the installation process and the application in the related technology, which helps to improve the user experience. The application installation process is completed in the CPU 2, but the configuration information such as the icon and the name of the application needs to be displayed on the screen interface of the terminal, and the configuration information is sent by the CPU 2 through the application installation request or other manner. For the CPU1, the CPU1 can be stored in the first memory, so that the display of the configuration information can be realized without the CPU2 directly calling the user interface, which improves the security of the terminal and helps reduce unnecessary resource waste of the terminal. And power loss.

( 2 ) Launch the application

The CPU 1 is further configured to: determine an installation location of the application to be started according to the detected application startup operation, and send an application startup instruction to the CPU 2 if the to-be-launched application is installed in the second memory; The CPU 2 is further configured to: start the to-be-launched application according to the application startup instruction, and transmit the display data to the corresponding external device 102 for display by using the CPU1.

In this technical solution, CPU2 implements the call of the user interface during the running of the application program through the data forwarding of CPU1. Since CPU1 is more secure than CPU2, any operation or instruction that may involve private data can be directly monitored by CPU1 and processed accordingly, thus helping to improve the security of the terminal.

The above two application scenarios are specifically described below with reference to FIG. 27 and FIG. 28 respectively.

As shown in FIG. 27, the flow of installing an application (in the CPU 2) according to an embodiment of the present invention includes: Step 2702, the CPU 2 determines, according to the detected user operation, that an installation operation for an application needs to be performed.

Step 2704, when executing the installation operation on the application, the CPU 2 also sends configuration information of the call request and the application to the CPU 1.

Among them, because the CPU 2 performs the installation operation in the background data processing process, it is not visible; but in order to give the user an intuitive operation experience, the user interface needs to be called to display the screen and information corresponding to the installation process.

Step 2706, the CPU1 runs the desktop launcher according to the received call request, invokes the formed user interface, and displays the installation process of the application. Through the call to the user interface and the display of the installation screen, especially for the installation progress of the application, whether the installation is successful or not, the user can directly view from the displayed screen to avoid the installation failure due to the wrong operation.

Step 2708, the CPU1 saves configuration information of the application in a corresponding first storage unit, where the configuration information includes an icon, a name, and the like of the application. By storing the configuration information of the application in the first storage unit, even if the CPU 2 does not invoke the desktop launcher or the user interface, the configuration information of the application can always be displayed on the screen interface of the terminal.

It should be noted that, in step 504, the sending of the configuration information of the calling request and the application may be simultaneous. Send, you can also send separately. When sending at the same time, the configuration information of the application may be directly added in the call request; when sending separately, the call request may be sent first, or the configuration information of the application may be sent first.

At the same time, the execution order of step 2706 and step 2708 is not necessarily in the manner shown in FIG. 27, and step 2706 and step 2708 may be performed at the same time, or step 2708 may be performed first, then step 2706 and the like may be performed.

Step 2710: The application is successfully installed in the second storage unit corresponding to the CPU 2.

As shown in FIG. 28, the flow of launching an application (in the CPU 2) according to an embodiment of the present invention includes: Step 2802, the CPU 1 detects an operation of a user launching an application.

In step 2804, the installation location of the application is determined. If it is installed in the CPU 1, the process proceeds to step 2806. If the CPU 2 is installed, the process proceeds to step 2808.

In step 2806, the CPU 1 directly starts the application.

In step 2808, the CPU 1 sends a start command to the CPU 2, and the CPU 2 starts the application.

In step 2810, the CPU 2 detects and performs a user operation.

Specifically, in one case, the CPU 2 directly acquires rights to the corresponding external device, such as a touch screen, a button, etc., and detects and performs a user operation through the external device; in another case, the CPU 1 detects the user operation through the external device, And forwarded to CPU2.

In step 2812, the CPU 2 sends the corresponding display information to the CPU 1 according to the user operation.

In step 2814, the CPU 1 displays the information on the user interface based on the display information sent from the CPU 2.

FIG. 29 shows a flow chart of a display control method of a user interface according to an embodiment of the present invention.

As shown in FIG. 29, the display control method of the user interface according to the embodiment of the present invention includes: Step 2902, processing, by the first processing unit, the private data in the terminal, and using the first storage unit to The private data processed by the processing unit is stored, and the first storage unit further stores a desktop initiator; the second processing unit processes the non-private data in the terminal, and passes through the second storage unit. And storing the non-private data processed by the second processing unit; wherein, the second processing unit implements a call to the desktop initiator by using the first processing unit.

In the technical solution, the private data and the second processing unit are processed by the first processing unit to process the non-private data, so that the private data and the non-private data are physically separated from each other, thereby avoiding use only in the terminal. In a single processor, any application can easily obtain private data from the single processor only through privilege cracking or the like.

The private data processed by the first processing unit and the second storage unit are stored by the first storage unit to store the non-private data processed by the second processing unit, so that the private data and the non-private data are also physically stored and invoked. Isolation, resulting in better data security.

By storing the desktop launcher in the first storage unit, only the first processing unit can directly invoke the desktop launcher, and since the first processing unit belongs to a more secure processing unit relative to the second processing unit, Ensure security and avoid damage or tampering by the application through the second processing unit. At the same time, since the first processing unit directly invokes the desktop launcher, so that the first processing unit can control the permission of the second processing unit to invoke the desktop launcher, the private service processed by the first processing unit (corresponding to the private data) and The non-private service (corresponding to non-private data) processed by the second processing unit can independently implement independent control requirements and UI interactions, and also help to meet respective data privacy requirements, thereby improving terminal security and convenience in use. Sex.

In the above technical solution, preferably, the first processing unit is connected to all the external devices 102 (such as the external device 102 shown in FIG. 26), and the display control method of the user interface further includes: the desktop The initiator is invoked and forms a corresponding display interface on the designated external device 102; the second processing unit effects interaction with the display interface through the first processing unit.

In this technical solution, the terminal needs to pass certain hardware devices to complete the specific functions, and these "hardware devices" are "external devices 102". Specifically, for example, through a display screen, etc., the display interface can be displayed. Show. Since the external device 102 is only connected to the first processing unit, when the second processing unit needs to perform UI interaction, the first processing unit needs to perform data forwarding, and the first processing unit implements a specific UI for the second processing unit. The control of the interaction process, any operation or instruction that may involve private data, can be directly monitored by the first processing unit, and corresponding processing is performed in time to help improve the security of the terminal.

In the above technical solution, preferably, the method further includes: when the second processing unit receives the installation instruction of the application to be installed, installing the to-be-installed application to the second storage unit, and The first processing unit sends an application installation request to invoke the desktop launcher, and transmits the installation display data to the corresponding external device 102 through the first processing unit, thereby displaying a corresponding installation screen on the display interface; The first processing unit further parses the configuration information of the to-be-installed application from the application installation request or receives the configuration information sent by the second processing unit, and stores the configuration information to the a first storage unit for displaying on the display interface.

In this technical solution, the calling process of the display interface by the second processing unit during the installation of the application is described. Through the call to the display interface, the second processing unit can complete the installation on the data, and can minimize the difference with the installation process of the related technology in the related technology, which helps to improve the user experience. Wherein, since the application installation process is completed in the second processing unit, the configuration information such as the icon and the name of the application needs to be displayed on the screen interface of the terminal all the time, and the configuration information is passed through the application through the second processing unit. The installation request or other manner is sent to the first processing unit, and the first processing unit can be stored in the first storage unit, so that the configuration information can be displayed without the second processing unit always calling the user interface, and the terminal is improved. At the same time of security, it helps to reduce unnecessary resource waste and power consumption of the terminal.

In the above technical solution, preferably, the method further includes: the first processing unit determining, according to the detected application startup operation, an installation location of the application to be launched, if the to-be-launched application is installed in the second storage Sending an application start instruction to the second processing unit; the second processing unit starts the to-be-launched application according to the application start instruction, and transmits display data to the corresponding data through the first processing unit The external device 102 is displayed.

In the technical solution, the second processing unit implements the call of the user interface during the running of the application program by the data forwarding of the first processing unit. Since the first processing unit is more secure than the second processing unit, and any operation or instruction that may involve private data can be directly monitored by the first processing unit, and corresponding processing is performed in time, thereby contributing to the improvement of the terminal. Security.

In the above technical solution, preferably, the process of the second processing unit implementing interaction with the display interface by using the first processing unit includes: the first processing unit executing the second processor and the Data forwarding between the external devices 102 to implement an interaction process between the second processor and the external device 102; or the first processing unit implements a connection with the external device 102 by a peripheral interface and Interacting, and implementing a connection with the second processor by a forwarding interface, and configuring a connection between the forwarding interface and the peripheral interface by configuring, to implement the second processor and the external device 102 Connecting and interacting; or the first processing unit implements connection and interaction between the second processor and the external device 102 by configuring a DMA transmission channel between the forwarding interface and the peripheral interface.

In this technical solution, by the interaction between the first processing unit and the second processing unit, the first processing unit controls the second processing unit to invoke the user interface to ensure that the second processing unit cannot access the private data, and Any operation or instruction that may involve private data can be directly monitored by the first processing unit, and corresponding processing can be made in time to avoid the problem of private data being acquired and leaked.

Sixth, user interface display control

Fig. 30 is a block diagram showing the structure of a terminal according to an embodiment of the present invention.

As shown in FIG. 30, a terminal according to an embodiment of the present invention includes: a CPU 1 configured to process private data in the terminal; and a CPU 2 configured to process non-private data in the terminal; a memory (such as RAMI and EMMC1 shown in FIG. 30) is connected to the CPU1 for inputting the private data processed by the CPU1. Row storage, and the first storage unit further stores a first desktop initiator or a first operating system; a second memory (such as RAM2 and EMMC2 shown in FIG. 30) is connected to the CPU 2 for The non-private data processed by the CPU 2 is stored, and the second desktop further stores a second desktop launcher or a second operating system; wherein the CPU 1 runs the first desktop launcher or The first user interface displayed after the first operating system performs user interface interaction; the CPU 2 executes the user by running the second desktop initiator or the second user interface displayed after the second operating system Interface interaction.

In this technical solution, the private data is processed by the CPU 1 and the CPU 2 processes the non-private data, so that the private data and the non-private data are physically separated from each other, thereby avoiding the use of only a single processor in the terminal. Any application can easily obtain private data from the single processor by means of privilege cracking or the like.

In order to prevent malicious applications from obtaining private data from shared storage space, such as in Figure 1, CPU1 uses the first memory (ie RAMI and EMMC 1, etc.), while CPU2 uses the second memory (ie RAM2 and EMMC2, etc.) ), you can physically separate the storage space used by CPU1 and CPU2. Since CPU1 and CPU2 physically use phase-separated storage devices, both private data and non-private data are physically isolated during processing and storage, resulting in better data security.

By storing the first desktop launcher or the first operating system in the first memory, storing the second desktop launcher or the second operating system in the second memory, so that only the CPU 1 can directly invoke the first desktop launcher or the first operation System, only CPU2 can directly call the second desktop launcher or the second operating system to ensure the security of the application (desktop launcher) and system (operating system) to avoid damage or tampering. At the same time, because CPU1 directly calls the first desktop launcher or the first operating system, and CPU2 calls the second desktop launcher or the second operating system, the private service (corresponding to private data) handled by CPU1 and the non-private service handled by CPU2 ( Corresponding to non-private data), it can independently implement independent control requirements and UI interactions, and also help to meet their data privacy requirements, thereby improving the security of the terminal and the convenience in use.

When CPU1 or CPU2 needs to perform a certain data processing task, it may need to be equipped with the corresponding external device. For example, when running the first initiator or the first operating system, it is necessary to display the corresponding screen on the display screen.

In the technical solution of the present application, switching of different user interfaces is achieved by transmitting an interrupt instruction between CPUs. Specifically, for example:

(1) CPU1 requires user interface interaction

The CPU 1 detects the currently displayed user interface, and if it is the first user interface, directly performs an interaction, and if it is the second user interface, sends an interrupt instruction to the CPU 2, and runs the first desktop initiator or The first operating system.

At the same time, the CPU 2 turns off or puts the second desktop launcher or the second operating system into the background according to the received interrupt instruction.

(2) CPU2 needs to interact with the user interface

The CPU 2 detects the currently displayed user interface, and if it is the second user interface, directly performs an interaction, and if it is the first user interface, sends an interrupt instruction to the CPU1, and runs the second desktop launcher or The second operating system.

At the same time, the CPU 1 turns off or puts the first desktop launcher or the first operating system to the background according to the received interrupt instruction.

In the technical solution, the CPU 2 can still switch to the first user interface (or switch from the first user interface to the second user interface) by sending an interrupt instruction during the UI interaction using the corresponding second user interface. , and will not repeat them here. Through the reasonable switching of the user interface, some potentially more important processing tasks or services can be executed in time.

However, if the task coordination is performed only by the interrupt instruction, it is possible that the CPU 1 and the CPU 2 frequently perform the cutting of the user interface in the case where there are many processing tasks, especially when the processing tasks of the CPU 1 and the CPU 2 are relatively large. Change.

In order to solve the above problem, the application also sets different priorities for the applications in the terminal, so as to determine the order in which they are processed according to the priority level. For example: the priority of a private application > the priority of a non-private application; the priority of an application that invokes private data > the priority of an application that does not invoke private data, and so on. In addition, private applications, as well as private applications, may have different priorities, such as the priority of the private application used for the payment process, the address book, and so on.

The following provides several specific ways for the user interface switching process between CPU 1 and CPU 2:

Embodiment 1

As shown in Figure 31, the function of "Comparator" is added to CPU1. When the CPU 1 interacts with the first application through the first user interface, if the CPU 2 wishes to interact with the second application through the second user interface, the CPU 2 sends an interrupt instruction to the CPU 1.

The interrupt instruction may include information of the second application, or the CPU 2 may express the switch interface by using the interrupt command, and separately send the information of the second application to the CPU1.

The comparator compares the priority of the first application currently running by CPU1 with the second application that CPU2 wishes to run: If the priority of the first application is higher than the priority of the second application, CPU1 continues to perform the interaction until After the interaction is completed, the CPU 2 is allowed to perform the switching of the user interface; if the priority of the first application is lower than the priority of the second application, the CPU 1 directly executes the interrupt instruction, and the first user interface is closed or placed in the background, and Allows CPU2 to switch to the second user interface.

Embodiment 2

As shown in Figure 32, add the "Comparator" function to CPU2. When the CPU 2 interacts with the third application through the second user interface, if the CPU 1 wishes to interact with the fourth application through the first user interface, the CPU 1 sends an interrupt instruction to the CPU 2.

The interrupt instruction may include information of the fourth application, or the CPU 1 may express the switch interface by using the interrupt instruction, and separately send the information of the fourth application to the CPU 2

The comparator compares the priority of the third application currently running by the CPU 2 with the fourth application that the CPU 1 wishes to run: if the priority of the third application is higher than the priority of the fourth application, the CPU 2 continues to perform the interaction until After the interaction is completed, the CPU 1 is allowed to perform the switching of the user interface; if the priority of the third application is lower than the priority of the fourth application, the CPU 2 directly executes the interrupt instruction, and the second user interface is closed or placed in the background, and Allows CPU1 to switch to the first user interface.

Embodiment 3

As shown in Figure 33, add a separate "comparator" to the terminal, and connect to CPU1 and CPU2 respectively. CPU1 and CPU2 need to run an application. If you need to switch the currently running user interface, compare them separately. The device sends an interrupt instruction. The interrupt instruction may include information of a specific application, or the CPU 1 or the CPU 2 may express the desire to switch the application interface only by the interrupt instruction, and separately send the information of the specific application to the comparator.

After receiving the interrupt instruction from CPU1 or CPU2, the comparator determines the corresponding priority according to the information of the specific application, and compares the priority of the application to be run and the running application. If the former has a higher priority, the user interface is switched. Otherwise, the latter interaction process is continued until the interaction is completed, and then the user interface is switched.

By judging the priority of the application (or data service) that CPU1 and CPU2 need to process, and making the higher priority application be prioritized, so that there are multiple processing units and multiple user interfaces, Effectively communicate and coordinate the sequence of processing tasks, so that important data can be prioritized to achieve better terminal operation management.

In addition, if the application that needs to run has a higher priority than the running application, it will be shipped The application pause of the line is processed, and the switching of the user interface is performed. Then, after the terminal completes the processing of the application after the user interface switching, the processing of the original running application can be resumed by the following manner. :

(1) It is assumed that the CPU 1 is running the first application, and the CPU 2 needs to run the second application, and the CPU 1 interrupts the interaction with the first application when the priority of the first application is lower than that of the second application. Then, after completing the interaction with the second application, the CPU 2 also sends a resume instruction to the CPU 1 to cause the CPU 1 to continue to interact with the first application through the first user interface.

(2) It is assumed that the CPU 2 is running the third application, and the CPU 1 needs to run the fourth application, and the CPU 2 interrupts the interaction with the third application when the priority of the third application is lower than the fourth application. Then, after completing the interaction with the fourth application, the CPU 1 further sends a resume instruction to the CPU 2, so that the CPU 2 continues to interact with the third application through the second user interface.

The above is the terminal to determine whether to switch the user interface. Because the actual needs of different users are different, the user can manually perform the user interface switching operation according to the actual situation, for example:

(1) The user can send an interface switching command to the CPU1 through the first user interface, and the CPU 1 turns off or puts the first desktop initiator or the first operating system into the background; meanwhile, the CPU 2 also switches according to the interface received by the first user interface. Command, run the second desktop launcher or the second operating system.

(2) The user can send an interface switching command to the CPU 2 through the second user interface, and the CPU 2 turns off or puts the second desktop initiator or the second operating system into the background; meanwhile, the CPU 1 also switches according to the interface received by the second user interface. Command, run the first desktop launcher or the first operating system.

In the above technical solution, preferably, the CPU 1 is further configured to: if the first user interface is a default interface, run the first desktop launcher or the first operating system each time the terminal is powered on And the CPU 2 is further configured to: if the second user interface is a default interface, run the second desktop launcher or the second operating system each time the terminal is powered on.

In this technical solution, by setting a default interface, the terminal only needs to run a specified desktop initiator or operating system when booting, and it is not necessary to run all desktop initiators or operating systems at the same time, thereby helping to reduce the terminal. The consumption of running resources and the loss of electricity.

Of course, the terminal can also not set the default interface. When booting, all the desktop launchers or operating systems are started at the same time, but only one of the user interfaces is displayed, and the others are placed in the background, when the user needs to switch to other When the user interface is used, it is not necessary to start the corresponding desktop launcher or operating system in real time, and the switching can be directly performed, which helps to shorten the waiting time of the user and enhance the user experience.

Fig. 34 is a flow chart showing the CPU 1 performing user interface switching control according to an embodiment of the present invention.

As shown in FIG. 34, the flow of executing the user interface switching control by the CPU 1 according to the embodiment of the present invention includes: Step 3402, determining whether the CPU 1 receives the interrupt instruction sent by the CPU 2, and if not, proceeds to step 3404, and if received, , then go to step 3406

Specifically, the terminal includes a CPU 1 and a CPU 2, and the CPU 1 is configured to process private data, and the CPU 2 is configured to process non-private data. The CPU 1 and the CPU 2 respectively correspond to different storage spaces, for example, the CPU 1 corresponds to the first storage unit, and the CPU 2 corresponds to the second storage unit. In order to enable the application processed by the CPU 1 and the CPU 2 to obtain different interactive characteristics, data of different desktop launchers or operating systems are respectively stored in the first storage unit and the second storage unit. In the first case, the same operating system is used (the data of the operating system is stored in the first storage unit or the second storage unit), and the first storage unit is stored in the first storage unit for starting the first a second desktop storage unit is configured to start a second user interface. In the second case, the first storage unit stores data of the first operating system, and is used to start the first user. The second storage unit is stored in the second storage unit for starting the second user interface.

Step 3404: Determine whether the service currently required to be executed by the CPU 1 needs to perform UI interaction. If necessary, proceed to step 3410. Otherwise, the service is normally executed, and the process returns to step 3402.

Step 3406: Determine whether the current user interface is the first user interface. If yes, go to step 3408, otherwise go to step 3402.

If the current interface is not the first user interface, it has no relationship with the CPU1. In this case, the CPU2 may determine that the error or the error is sent, or the terminal may include other CPUs, such as the CPU3. In response to the third user interface of the CPU 3, the CPU 2 can send an interrupt instruction to all other CPUs when detecting that the second user interface is not currently corresponding to itself.

In step 3408, the first user interface is closed or placed in the background. If the first user interface is closed, it is beneficial to release more storage space and system resources; if placed in the background, it is helpful to switch back to the first user interface in time to shorten the waiting time of the user. After step 3408 is completed, step 3404 or end can be entered.

Step 3410: Determine whether the current user interface is the first user interface. If yes, return to step 3402; otherwise, proceed to step 3412.

Step 3412: Start the first user interface, specifically, by starting the first desktop launcher, or by starting the first operating system. Meanwhile, if the terminal only includes the CPU 1 and the CPU 2, or the CPU 1 detects that the current user interface is specifically the second user interface, sends an interrupt instruction to the CPU 2 to stop or put the second user interface in the background; if the terminal includes the CPU1 For CPU2 and other CPUs, CPU1 can send interrupt instructions directly to all CPUs except its own.

Corresponding to the CPU1, similar process steps can be used for other CPUs in the terminal to detect and switch the user interface.

Figure 35 is a flow chart showing the CPU 2 performing user interface switching control in accordance with an embodiment of the present invention.

As shown in FIG. 35, the flow of executing the user interface switching control by the CPU 2 according to the embodiment of the present invention includes: Step 3502: Determine whether the CPU 2 receives the interrupt instruction sent by the CPU 1, and if not, enters the step.

3504, if received, proceeds to step 3506.

In step 3504, it is determined whether the service currently required to be executed by the CPU 2 needs to perform UI interaction. If necessary, the process proceeds to step 3510, otherwise the service is normally executed, and the process returns to step 3502.

Step 3506: Determine whether the current user interface is the second user interface. If yes, go to step 3508, otherwise go to step 3502.

In step 3508, the second user interface is closed or placed in the background. After step 3508 is completed, you can proceed to step 3504 or end.

Step 3510: Determine whether the current user interface is the second user interface. If yes, return to step 3502, otherwise proceed to step 3512.

Step 3512: Start the second user interface, specifically, by starting the second desktop launcher, or by starting the second operating system. Meanwhile, if the terminal only includes the CPU 1 and the CPU 2, or the CPU 2 detects that the current user interface is specifically the first user interface, sends an interrupt instruction to the CPU 1 to stop or put the first user interface in the background; if the terminal includes the CPU1 For CPU 2 and other CPUs, CPU 2 can send interrupt instructions directly to all CPUs before itself.

In addition, based on the processing flow shown in FIG. 34 and FIG. 35, the present application further proposes further improvement. In the above technical solution, preferably, the method further includes: when the CPU1 interacts with the first application by using the first user interface, if receiving an interrupt instruction from the CPU 2, the interrupt instruction indicates the The CPU 2 hopes to interact with the second application through the second user interface, and the CPU 1 continues to perform the interaction until the interaction is completed if the priority of the first application is higher than the second application. Executing the interrupt instruction if the priority of the first application is lower than the second application;

When the CPU 2 interacts with the third application through the second user interface, if an interrupt instruction from the CPU 1 is received, the interrupt instruction indicates that the CPU 1 wishes to pass the first user interface and the fourth The application interacts, and the CPU 2 continues to perform the interaction until the interaction is completed, in a case where the priority of the third application is higher than the fourth application, and the priority of the third application is lower than In the case of the fourth application, the interrupt instruction is executed.

In this technical solution, the priority of the application (or data service) that needs to be processed by the CPU 1 and the CPU 2 is judged, and the application with higher priority is preferentially processed, so that there are multiple processing units and multiple users. In the case of the interface, the sequence of processing tasks can be effectively communicated and coordinated, so that important data can be prioritized and better terminal operation management can be realized.

In the above technical solution, preferably, the method further includes: if the CPU 1 interrupts interaction with the first application when the priority of the first application is lower than the second application, After completing the interaction with the second application, the CPU 2 further sends a resume instruction to the CPU1, so that the CPU1 continues to interact with the first application through the first user interface;

If the CPU 2 interrupts the interaction with the third application when the priority of the third application is lower than the fourth application, the CPU 1 completes the fourth application After the interaction, a recovery instruction is also sent to the CPU 2, so that the CPU 2 continues to interact with the third application through the second user interface.

In the above technical solution, preferably, the method further includes: according to the interface switching command received by the first user interface, the CPU1 turns off or puts the first desktop initiator or the first operating system into the background, and The CPU 2 runs the second desktop launcher or the second operating system; and according to the interface switching command received by the second user interface, the CPU 2 turns off or puts the second desktop launcher or the second operating system Up to the background, and the CPU 1 runs the first desktop launcher or the first operating system.

In the above technical solution, preferably, the method further includes: setting the first user interface or the second user interface as a default interface; and each time the power is turned on, the corresponding first desktop launcher or the first one is operated by default An operating system or the second desktop launcher or a second operating system.

FIG. 36 shows a schematic flow chart of a data interaction method in accordance with an embodiment of the present invention. As shown in FIG. 36, the data interaction method according to the embodiment of the present invention includes: Step 3602, the first processing unit and the second processing unit respectively process different types of data in the terminal; wherein, the first processing The unit is further configured to: directly perform data interaction with the restricted external device in the terminal, and assist the second processing unit to implement data interaction with the restricted external device.

In this technical solution, different types of data in the terminal are processed by different processors, so that the data processing process is physically isolated, which helps to improve the data security of the terminal. At the same time, by connecting the restriction-type external device only to the first processing unit, and the first processing unit assists the data processing process of the second processing unit and the restriction-type external device, on the one hand, when the computing capability of the first processing unit is more When it is powerful, it helps to reduce the processing load of the second processing unit; on the other hand, when the data processed by the first processing unit is more important and the privacy is stronger, the first processing unit can limit the second processing unit and the second processing unit. Monitoring the data interaction process between the external devices of the class, avoiding the existence of data that should be processed by the first processing unit in the interaction data of the second processing unit and the restriction type external device, or avoiding the simultaneous processing of the first processing unit and the second processing unit Data interaction with restricted external devices helps to improve the security of the terminal.

In the above technical solution, preferably, the process that the first processing unit assists the second processing unit to implement data interaction with the restricted external device includes: the first processing unit executes the second processing unit Data forwarding between the restricted external device.

In this technical solution, the interaction data between the second processing unit and the restricted external device is directly forwarded by the first processing unit, so that the first processing unit controls the data interaction process between the second processing unit and the restricted external device. At the same time, it is also possible to monitor the specific interactive data content, so as to ensure that the data that should be processed by the first processing unit during the interaction between the second processing unit and the restricted external device can be firstly timely. The processing unit discovers and blocks the corresponding data interaction.

In this technical solution, by storing the desktop launcher in the first memory, only the first processing unit can directly invoke the desktop launcher, and on the one hand, when the processing capability of the first processing unit is stronger, it helps to reduce the number The computational burden of the two processing units; on the other hand, when the data processed by the first processing unit is more important and the privacy is stronger, the first processing unit is more secure than the second processing unit, thereby ensuring security. , to avoid damage or tampering by the application through the second processing unit. Meanwhile, since the first processing unit directly invokes the desktop launcher, so that the first processing unit can control the right of the second processing unit to invoke the desktop launcher, the service or data processed by the first processing unit and the second processing unit are processed. The business or data can independently implement independent control requirements and UI interactions, and also help to meet their respective data privacy requirements, thereby improving the security of the terminal and the convenience in use.

In this technical solution, the terminal needs to pass certain hardware devices to complete specific functions, and these "hardware devices" are "external devices". Specifically, for example, a display screen or the like is required to display the display interface. Since the external device is only connected to the first processing unit, when the second processing unit needs to perform UI interaction, the first processing unit needs to perform data forwarding, and the first processing unit implements specific UI interaction with the second processing unit. The control of the process, any data or instructions that may need to be processed by the first processing unit, can be directly monitored by the first processing unit, and corresponding processing is performed in time to help improve the security of the terminal.

In this technical solution, the calling process of the display interface by the second processing unit during the installation of the application is described. Through the call to the display interface, the second processing unit can complete the installation on the data, and can minimize the difference with the installation process of the related technology in the related technology, which helps to improve the user experience. Wherein, since the application installation process is completed in the second processing unit, the configuration information such as the icon and the name of the application needs to be displayed on the screen interface of the terminal all the time, and the configuration information is passed through the application through the second processing unit. The installation request or other manner is sent to the first processing unit, and the first processing unit can be stored in the first memory, so that the configuration information can be displayed without the second processing unit always calling the user interface, and the terminal security is improved. At the same time, it helps to reduce unnecessary resource waste and power consumption in the terminal.

In the technical solution, the second processing unit implements the call of the user interface during the running of the application program by the data forwarding of the first processing unit. Since the first processing unit is more secure than the second processing unit, and any data or instructions that may need to be processed by the first processing unit can be directly monitored by the first processing unit, and corresponding processing is performed in time. Helps improve the security of the terminal.

In any one of the above technical solutions, preferably, the method further includes: when the first processing unit interacts with the first application by using the first user interface, if receiving an interrupt instruction from the second processing unit The interrupt instruction indicates that the second processing unit wishes to interact with the second application through the second user interface, and if the priority of the first application is higher than the second application And continuing to perform the interaction until the interaction is completed, and executing the interrupt instruction if the priority of the first application is lower than the second application;

Figure 37 shows a schematic block diagram of a data interaction system in accordance with an embodiment of the present invention.

As shown in FIG. 37, the data interaction system 3700 according to the embodiment of the present invention includes: a first processing unit 3702 and a second processing unit 3704, respectively processing different types of data in the terminal; wherein, the first processing Unit 3702 The method is further configured to: directly perform data interaction with a restricted external device in the terminal, and assist the second processing unit 3704 to implement data interaction with the restricted external device.

In this technical solution, different types of data in the terminal are processed by different processors, so that the data processing process is physically isolated, which helps to improve the data security of the terminal. Meanwhile, by connecting the restriction-type external device only to the first processing unit 3702, and assisting the data processing process of the second processing unit 3704 with the restriction-type external device by the first processing unit 3702, on the one hand, when the first processing unit 3702 When the computing power is more powerful, it helps to reduce the processing load of the second processing unit 3704; on the other hand, when the data processed by the first processing unit 3702 is more important and the privacy is stronger, the first processing unit 3702 can Monitoring the data interaction process between the second processing unit 3704 and the restriction-type external device, avoiding the existence of data that should be processed by the first processing unit 3702 in the interaction data of the second processing unit 3704 and the restriction-type external device, or avoiding The first processing unit 3702 and the second processing unit 3704 simultaneously perform data interaction with the restricted external device, which helps to improve the security of the terminal.

In the above technical solution, preferably, the first processing unit 3702 is configured to: assist the second processing unit 3704 by performing data forwarding between the second processing unit 3704 and the restricted external device. Implementing data interaction with the restricted external device.

In this technical solution, the interaction data between the second processing unit 3704 and the restriction-type external device is directly forwarded by the first processing unit 3702, so that the first processing unit 3702 is controlling the second processing unit 3704 and the restriction-type external device. At the same time of the data interaction process, the specific interactive data content can also be monitored to ensure that the data that should be processed by the first processing unit 3702 is involved in the interaction between the second processing unit 3704 and the restricted external device. It is also possible to be discovered by the first processing unit 3702 in time and to block corresponding data interactions.

In order to realize display control of the user interface, the present invention proposes two specific embodiments based on the functional architecture shown in Fig. 37, which will be described in detail below.

Embodiment 1

The data interaction system 3700 further includes: a first storage unit 3706 and a second storage unit 3708, respectively storing data processed by the first processing unit and the second processing unit 3704, and the first processing unit The first storage unit 3706 performs a direct operation only, and the second processing unit 3704 performs a direct operation only on the second storage unit 3708. The first storage unit 3706 further stores a desktop initiator. And the second processing unit 3704 implements a call to the desktop launcher by the first processing unit.

In this technical solution, by storing the desktop launcher in the first memory, only the first processing unit 3702 can directly invoke the desktop launcher, and on the one hand, when the processing capability of the first processing unit 3702 is stronger, it is helpful. The computing burden of the second processing unit 3704 is reduced; on the other hand, when the data processed by the first processing unit 3702 is more important and the privacy is stronger, the first processing unit 3702 is more secure than the second processing unit 3704. Thereby, security can be ensured and the destruction or tampering by the application through the second processing unit 3704 can be avoided. Meanwhile, since the first processing unit 3702 directly invokes the desktop launcher, so that the first processing unit 3702 can control the right of the second processing unit 3704 to invoke the desktop launcher, the first processing unit 3702 processes the service or data and the first The services or data processed by the processing unit 3704 can implement independent control requirements and UI interactions respectively, and also help to meet the respective data privacy requirements, thereby improving the security of the terminal and the convenience in use.

In any one of the above aspects, preferably, the external device in the terminal forms a corresponding display interface when the desktop launcher is invoked; and the second processing unit 3704 is further configured to: pass the first A processing unit implements interaction with the display interface.

In this technical solution, the terminal needs to pass certain hardware devices to complete specific functions, and these "hardware devices" are "external devices". Specifically, for example, a display screen or the like is required to display the display interface. Since the external device is only connected to the first processing unit 3702, when the second processing unit 3704 needs to perform UI interaction, the first processing unit 3702 needs to perform data forwarding, and the first processing unit 3702 implements the second processing unit. Control of the specific UI interaction process of 3704, any data or instructions that may be involved in processing by the first processing unit 3702, It can be directly monitored by the first processing unit 3702, and corresponding processing is performed in time to help improve the security of the terminal. In any one of the foregoing technical solutions, the second processing unit 3704 is further configured to: install the to-be-installed application to the second storage unit 3708 according to the received installation instruction of the application to be installed. And sending an application installation request to the first processing unit to invoke the desktop launcher, and transmitting the installation display data to the corresponding external device through the first processing unit, thereby displaying the corresponding installation screen in the On the display interface, the first processing unit is further configured to: parse configuration information of the to-be-installed application from the application installation request, or receive the configuration information sent by the second processing unit 3704, And storing the configuration information to the first storage unit 3706 for display on the display interface.

In this technical solution, the process of calling the display interface by the second processing unit 3704 in the process of installing the application is described. Through the call to the display interface, the second processing unit 3704 can complete the installation on the data, and can minimize the difference with the installation process of the related technology in the related art, and help to improve the user experience. The application installation process is completed in the second processing unit 3704, but the configuration information such as the icon and the name of the application needs to be displayed on the screen interface of the terminal all the time, and the configuration information is sent by the second processing unit 3704. The first processing unit 3702 can be stored in the first memory by using an installation request or other manner, so that the second processing unit 3704 can be directly invoked to directly display the configuration information. While improving the security of the terminal, it helps to reduce unnecessary resource waste and power consumption of the terminal.

In any one of the foregoing technical solutions, the first processing unit is further configured to: determine, according to the detected application startup operation, an installation location of the application to be started, if the to-be-launched application is installed in the The second memory sends an application start instruction to the second processing unit 3704. The second processing unit 3704 is further configured to: start the to-be-launched application according to the application start instruction, and display data The display is transmitted to the corresponding external device through the first processing unit.

In this technical solution, the second processing unit 3704 implements the call of the user interface during the running of the application program by the data forwarding of the first processing unit 3702. Since the first processing unit 3702 is more secure than the second processing unit 3704, and any data or instructions that may be processed by the first processing unit 3702 may be directly monitored by the first processing unit 3702, and correspondingly made in time. The processing helps to improve the security of the terminal.

Embodiment 2

The data interaction system 3700 further includes: a first storage unit 3706, configured to store data processed by the first processing unit, and the first storage unit 3706 further stores a first desktop initiator or a first operating system The second storage unit 3708 is configured to store data processed by the second processing unit 3704, and the second storage unit 3708 further stores a second desktop launcher or a second operating system; The first processing unit is configured to: perform direct operation only on the first storage unit 3706, and perform user interface interaction by running the first desktop launcher or the first user interface displayed after the first operating system The second processing unit 3704 is configured to: directly perform the direct operation on the second storage unit 3708, and display the second user interface after running the second desktop launcher or the second operating system, Perform user interface interactions.

In the technical solution, the first desktop initiator or the first operating system is stored in the first storage unit 3706, and the second desktop initiator or the second operating system is stored in the second storage unit 3708, so that only the first processing is performed. The unit can directly invoke the first desktop launcher or the first operating system, and only the second processing unit 3704 can directly invoke the second desktop launcher or the second operating system to ensure the security of the application (desktop launcher) and the system (operating system). Sex, avoid being damaged or tampered with. At the same time, the first processing unit directly invokes the first desktop launcher or the first operating system, and the second processing unit 3704 invokes the second desktop launcher or the second operating system, so that the first processing unit processes the service and the second processing unit. The services handled by the 3704 can independently implement independent control requirements and UI interactions, and also help to meet their data privacy requirements, thereby improving the security of the terminal and the convenience in use.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: when the user interface interaction is required, detect the currently displayed user interface, if the first user interface is directly Perform interaction, if it is The second user interface sends an interrupt instruction to the second processing unit 3704, causing the second processing unit 3704 to close or put the second desktop launcher or the second operating system into the background, and run the a first desktop launcher or a first operating system; the second processing unit 3704 is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the received interrupt instruction; as well as

The second processing unit 3704 is further configured to: when the user interface interaction is required, detect the currently displayed user interface, if the second user interface, directly perform the interaction, if the first user interface, Sending an interrupt instruction to the first processing unit, causing the first processing unit to close or put the first desktop launcher or the first operating system into the background, and run the second desktop launcher or the second operation The first processing unit is further configured to: shut down or put the first desktop launcher or the first operating system into the background according to the received interrupt instruction.

In the technical solution, the second processing unit 3704 can still switch to the first user interface (or by the first) by sending an interface switching instruction during the UI interaction using the corresponding second user interface. The user interface is switched to the second user interface, which is not described here. By reasonably switching the user interface, some potentially more important processing tasks or services are executed in time.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: when interacting with the first application by using the first user interface, if receiving the second processing An interrupt instruction of the unit 3704, the interrupt instruction indicating that the second processing unit 3704 wishes to interact with the second application through the second user interface, and the priority of the first application is higher than the first In the case of two applications, the interaction is continued until the interaction is completed, and the interrupt instruction is executed if the priority of the first application is lower than the second application;

The second processing unit 3704 is further configured to: when receiving an interrupt instruction from the first processing unit when interacting with the third application by using the second user interface, the interrupt instruction indicates the A processing unit desires to interact with the fourth application through the first user interface, and if the priority of the third application is higher than the fourth application, continue to perform the interaction until the interaction is completed, The interrupt instruction is executed when the third application has a lower priority than the fourth application.

In this technical solution, the priority of the application (or data service) that needs to be processed by the first processing unit and the second processing unit 3704 is determined, and the application with higher priority is preferentially processed, so that there are many In the case of multiple processing units and multiple user interfaces, it is possible to effectively communicate and coordinate the sequence of processing tasks, so that important data can be prioritized for better terminal operation management.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: if the second processing unit 3704 has a lower priority than the fourth application in the third application And interrupting the interaction with the third application, after completing the interaction with the fourth application, sending a resume instruction to the second processing unit 3704, so that the second processing unit 3704 continues to pass The second user interface interacts with the third application;

The second processing unit 3704 is further configured to: if the first processing unit interrupts interaction with the first application when the priority of the first application is lower than the second application, After completing the interaction with the second application, a resume instruction is further sent to the first processing unit to cause the first processing unit to continue interacting with the first application through the first user interface.

In any one of the foregoing technical solutions, the method further includes: the first processing unit is further configured to: use the interface switching command received by the first user interface to perform the first desktop initiator or the first operation The system is shut down or placed in the background; the second processing unit 3704 runs the second desktop launcher or the second operating system according to the interface switching command received by the first user interface; and the second processing The unit 3704 is further configured to: receive according to the second user interface The interface switching command, the second desktop initiator or the second operating system is closed or placed in the background; the first processing unit runs the first according to the interface switching command received by the second user interface A desktop launcher or first operating system.

Those skilled in the art will appreciate that embodiments of the present invention can be provided as a method, system, or computer program product. Accordingly, the present invention may take the form of an entirely hardware embodiment, an entirely software embodiment, or a combination of software and hardware. Moreover, the invention can take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage, CD-ROM, optical storage, etc.) including computer usable program code.

These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device. The instructions provide steps for implementing the functions specified in one or more of the flow or in a block or blocks of a flow diagram.

The technical solution of the present invention is described in detail above with reference to the accompanying drawings. The present invention provides a terminal, a data interaction method and a data interaction system, which can make different types of data in the terminal be processed by different processors. And assisting the data interaction between the second processor (or the second processing unit) and the restricted external device by the first processor (or the first processing unit), limiting the direct interaction between the two, avoiding the second processing The interaction data of the external device of the restriction class and the external device have data that should be processed by the first processor, which effectively improves the security of the terminal.

In the present invention, the terms "first" and "second" are used for descriptive purposes only and are not to be construed as indicating or implying relative importance. The term "plurality" refers to two or more, unless specifically defined otherwise.

The above is only the preferred embodiment of the present invention, and is not intended to limit the present invention, and various modifications and changes can be made to the present invention. Any modifications, equivalent substitutions, improvements, etc., made within the spirit and scope of the present invention are intended to be included within the scope of the present invention.

Claims

Claim

A terminal, comprising:

The first processor and the second processor are respectively configured to process different types of data in the terminal; the restricted external device is connected only to the first processor;

The second processor and the restricted external device implement an interaction process by using the assistance of the first processor.

2. The terminal according to claim 1, wherein the first processor is configured to:

Performing data forwarding between the second processor and the restricted external device to assist in implementing an interaction process between the second processor and the restricted external device.

The terminal according to claim 2, wherein the first processor is further configured to:

Receiving all data from the restricted type external device, directly processing data corresponding to the type of the first processor, and transmitting data corresponding to the type of the second processor to the second processor; And forwarding the received data from the second processor to the restricted external device.

The terminal according to claim 1, wherein the first processor implements connection and interaction with the restricted external device by using a first peripheral interface, and is implemented by the first forwarding interface. The second processor is connected, and the first processor is further configured to:

Configuring to close a connection between the first forwarding interface and the first peripheral interface, or configuring a DMA transmission channel between the first forwarding interface and the first peripheral interface to assist in implementing The connection and interaction between the second processor and the restricted external device.

The terminal according to claim 4, wherein the first processor is further configured to:

Receiving, when the second processor and the restricted external device are not in a connected state, receiving all data from the restricted external device, directly processing data corresponding to a type of the first processor, and correspondingly Data of a type of the second processor is transmitted to the second processor through the first forwarding interface.

The terminal according to claim 1, further comprising:

a first memory, connected only to the first processor, configured to store data processed by the first processor, and a desktop initiator is further stored in the first memory;

a second memory, connected to the second processor, for storing data processed by the second processor; wherein, the second processor is configured to start the desktop by using the first processor Call of the device.

The terminal according to claim 6, wherein the external device in the terminal forms a corresponding display interface when the desktop launcher is invoked;

The second processor is further configured to: implement interaction with the display interface by using the first processor.

8. The terminal according to claim 7, wherein:

The second processor is further configured to: when the installation instruction of the application to be installed is received, install the to-be-installed application to the second memory, and send an application installation request to the first processor Calling the desktop launcher, and transmitting the installation display data to the corresponding external device through the first processor, thereby displaying a corresponding installation screen on the display interface;

The first processor is further configured to: parse configuration information of the to-be-installed application from the application installation request or receive the configuration information sent by the second processor, and store the configuration information To the first memory for display on the display interface.

9. The terminal of claim 8 wherein:

The first processor is further configured to: determine, according to the detected application startup operation, an installation location of the application to be started, and if the to-be-launched application is installed in the second memory, proceed to the second processing Send an application start command; The second processor is further configured to: start the to-be-launched application according to the application startup instruction, and transmit the display data to the corresponding external device for display by using the first processor.

The terminal according to claim 1, further comprising:

The first memory is only connected to the first processor, and is configured to store data processed by the first processor, and the first memory further stores a first desktop initiator or a first operating system;

a second memory, connected only to the second processor, for storing data processed by the second processor, and storing, in the second memory, a second desktop launcher or a second operating system;

The first processor performs user interface interaction by running the first desktop launcher or the first user interface displayed after the first operating system;

The second processor performs user interface interaction by running the second desktop launcher or the second user interface displayed after the second operating system.

1 1. The terminal according to claim 10, wherein:

The first processor is further configured to: when the user interface needs to be performed, detect a currently displayed user interface, if the first user interface, directly perform an interaction, if the second user interface, The second processor sends an interrupt instruction, causing the second processor to shut down or put the second desktop launcher or the second operating system into the background, and run the first desktop launcher or the first operating system The second processor is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the received interrupt instruction;

12. The terminal according to claim 11, wherein

The first processor is further configured to: when receiving an interrupt instruction from the second processor when interacting with the first application by using the first user interface, the interrupt instruction indicates the second The processor hopes to interact with the second application through the second user interface, and if the priority of the first application is higher than the second application, continue to perform the interaction until the interaction is completed. The interrupt instruction is executed when the priority of the first application is lower than the second application;

The second processor is further configured to: when receiving an interrupt instruction from the first processor when interacting with the third application by using the second user interface, the interrupt instruction indicates the first The processor hopes to interact with the fourth application through the first user interface, and if the priority of the third application is higher than the fourth application, continue to perform the interaction until the interaction is completed. In the case where the priority of the third application is lower than the fourth application, the interrupt instruction is executed.

13. The terminal of claim 12, wherein:

The second processor is further configured to: if the first processor interrupts interaction with the first application when the priority of the first application is lower than the second application, After completing the interaction with the second application, sending a resume instruction to the first processor to cause the first processor to continue interacting with the first application through the first user interface;

The first processor is further configured to: if the second processor interrupts interaction with the third application when the priority of the third application is lower than the fourth application, After the interaction with the fourth application is completed, a resume instruction is further sent to the second processor, so that the second processor continues to interact with the third application through the second user interface.

14. The terminal of claim 10, wherein:

The first processor is further configured to: display the first table according to an interface switching command received by the first user interface The second processor is further configured to: run the second desktop initiator or the first operating system according to the interface switching command received by the first user interface Second operating system;

The second processor is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the interface switching command received by the second user interface; And the method is: running the first desktop initiator or the first operating system according to the interface switching command received by the second user interface.

A data interaction method, comprising:

Processing, by the first processing unit and the second processing unit, different types of data in the terminal;

The first processing unit directly performs data interaction with the restricted external device in the terminal, and assists the second processing unit to implement data interaction with the restricted external device.

The data interaction method according to claim 15, wherein the process of the first processing unit assisting the second processing unit to implement data interaction with the restricted external device comprises:

The first processing unit performs data forwarding between the second processor and the restricted external device.

The data interaction method according to claim 15, further comprising:

Data processed by the first processing unit and the second processing unit are respectively stored by the first storage unit and the second storage unit, and the first processing unit performs direct operation only on the first storage unit, The second processing unit performs direct operation only on the second storage unit;

The desktop storage device is further stored in the first storage unit, and the second processing unit implements a call to the desktop launcher by using the first processing unit.

The data interaction method according to claim 17, further comprising:

The external device in the terminal forms a corresponding display interface when the desktop launcher is invoked;

The second processing unit implements interaction with the display interface by using the first processing unit.

The data interaction method according to claim 18, further comprising:

The second processing unit installs the to-be-installed application to the second storage unit according to the received installation instruction of the application to be installed, and sends an application installation request to the first processing unit to invoke the a desktop launcher, and transmitting the installation display data to the corresponding external device through the first processing unit, thereby displaying a corresponding installation screen on the display interface;

The first processing unit further parses the configuration information of the to-be-installed application from the application installation request or receives the configuration information sent by the second processing unit, and stores the configuration information to The first storage unit is configured to display on the display interface.

The data interaction method according to claim 19, further comprising:

Determining, by the first processing unit, an installation location of the application to be launched according to the detected application startup operation, and sending an application startup to the second processing unit if the application to be launched is installed in the second memory And the second processing unit starts the to-be-launched application according to the application startup instruction, and transmits the display data to the corresponding external device for display by using the first processing unit.

The data interaction method according to claim 15, further comprising:

And storing, by the first storage unit, data processed by the first processing unit, and storing, in the first storage unit, a first desktop initiator or a first operating system;

And storing, by the second storage unit, data processed by the second processing unit, and storing, in the second storage unit, a second desktop initiator or a second operating system;

The first processing unit performs direct operation only on the first storage unit, and performs user interface interaction by running the first desktop initiator or the first user interface displayed after the first operating system. ;

The second processing unit performs direct operation only on the second storage unit, and performs user interface interaction by running the second desktop initiator or the second user interface displayed after the second operating system.

The data interaction method according to claim 21, further comprising: The first processing unit detects the currently displayed user interface when the user interface interaction is required, and if the first user interface is the first user interface, directly performs the interaction, and if the second user interface is the second user interface, the second The processing unit sends an interrupt instruction, causing the second processing unit to close or put the second desktop launcher or the second operating system into the background, and run the first desktop launcher or the first operating system; The second processing unit is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the received interrupt instruction;

The second processing unit detects the currently displayed user interface when the user interface interaction is required, and if the second user interface is the second user interface, directly performs the interaction, and if the first user interface is the first user interface, the first The processing unit sends an interrupt instruction, causing the first processing unit to close or put the first desktop launcher or the first operating system into the background, and run the second desktop launcher or the second operating system; A processing unit is further configured to: shut down or put the first desktop launcher or the first operating system into the background according to the received interrupt instruction.

The data interaction method according to claim 22, further comprising:

The first processing unit, when interacting with the first application by the first user interface, if receiving an interrupt instruction from the second processor, the interrupt instruction indicates that the second processing unit wishes to pass The second user interface interacts with the second application, and if the priority of the first application is higher than the second application, the interaction continues to be performed until the interaction is completed, in the first application. Executing the interrupt instruction if the priority of the program is lower than the second application;

The data interaction method according to claim 23, further comprising:

If the first processing unit interrupts interaction with the first application when the priority of the first application is lower than the second application, the second processing unit is finished with the After the interaction of the second application, the recovery instruction is further sent to the first processing unit, so that the first processing unit continues to interact with the first application through the first user interface;

If the second processing unit interrupts interaction with the third application when the priority of the third application is lower than the fourth application, the first processing unit is completing and After the interaction of the fourth application, the recovery instruction is further sent to the second processing unit, so that the second processing unit continues to interact with the third application through the second user interface.

The data interaction method according to claim 21, further comprising:

The first processing unit closes or puts the first desktop launcher or the first operating system into the background according to the interface switching command received by the first user interface; the second processing unit is configured according to the first The interface switching command received by the user interface, running the second desktop launcher or the second operating system;

The second processing unit turns off or puts the second desktop launcher or the second operating system into the background according to the interface switching command received by the second user interface; the first processing unit is according to the second The interface switching command received by the user interface runs the first desktop launcher or the first operating system.

26. A data interaction system, comprising:

The first processing unit and the second processing unit respectively process different types of data in the terminal;

The first processing unit is further configured to: directly perform data interaction with a restricted external device in the terminal, and assist the second processing unit to implement data interaction with the restricted external device.

The data interaction system according to claim 26, wherein the first processing unit is configured to: assist in performing data forwarding between the second processor and the restricted external device The second processing unit implements data interaction with the restricted external device.

28. The data interaction system of claim 26, further comprising:

The first storage unit and the second storage unit respectively store data processed by the first processing unit and the second processing unit, and the first processing unit performs direct operation only on the first storage unit, The second processing unit performs direct operation only on the second storage unit;

29. The data interaction system of claim 28, wherein

The external device in the terminal forms a corresponding display interface when the desktop launcher is invoked; and the second processing unit is further configured to: implement interaction with the display interface by using the first processing unit.

30. The data interaction system of claim 29, wherein

The second processing unit is further configured to: install the to-be-installed application to the second storage unit according to the received installation instruction of the application to be installed, and send an application installation request to the first processing unit Invoking the desktop launcher, and transmitting the installation display data to the corresponding external device through the first processing unit, thereby displaying a corresponding installation screen on the display interface;

The first processing unit is further configured to: parse configuration information of the to-be-installed application from the application installation request, or receive the configuration information sent by the second processing unit, and configure the configuration Information is stored to the first storage unit for display on the display interface.

31. The data interaction system of claim 30, wherein:

The first processing unit is further configured to: determine, according to the detected application startup operation, an installation location of the application to be started, and if the to-be-launched application is installed in the second memory, proceed to the second processing The unit sends an application start instruction;

The second processing unit is further configured to: start the to-be-launched application according to the application startup instruction, and transmit the display data to the corresponding external device for display by using the first processing unit.

The data interaction system according to claim 26, further comprising:

a first storage unit, configured to store data processed by the first processing unit, and further storing, in the first storage unit, a first desktop launcher or a first operating system;

a second storage unit, configured to store data processed by the second processing unit, and further stored in the second storage unit with a second desktop initiator or a second operating system;

The first processing unit is configured to perform direct operation only on the first storage unit, and execute the first user interface that is displayed after running the first desktop initiator or the first operating system. User interface interaction;

The second processing unit is configured to: perform a direct operation only on the second storage unit, and execute a user interface by running the second desktop initiator or the second user interface displayed after the second operating system Interaction.

33. The data interaction system of claim 32, further comprising:

The first processing unit is further configured to: when the user interface needs to be interacted, detect the currently displayed user interface, if the first user interface, directly perform the interaction, if the second user interface, The second processing unit sends an interrupt instruction, causing the second processing unit to close or put the second desktop launcher or the second operating system into the background, and run the first desktop launcher or the first operating system The second processing unit is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the received interrupt instruction;

The second processing unit is further configured to: when the user interface interaction is required, detect the currently displayed user interface, if the second user interface is, perform the interaction directly, if the first user interface, The first processing unit sends an interrupt instruction, causing the first processing unit to close or put the first desktop launcher or the first operating system into the background, and run the second desktop launcher or the second operating system The first processing unit is further configured to: shut down or put the first desktop launcher or the first operating system into the background according to the received interrupt instruction.

The data interaction system according to claim 33, further comprising: The first processing unit is further configured to: when receiving an interrupt instruction from the second processor when interacting with the first application by using the first user interface, the interrupt instruction indicates the second The processing unit hopes to interact with the second application through the second user interface, and if the priority of the first application is higher than the second application, continue to perform the interaction until the interaction is completed. The interrupt instruction is executed when the priority of the first application is lower than the second application;

The data interaction system according to claim 34, further comprising:

The first processing unit is further configured to: if the second processing unit interrupts interaction with the third application when the priority of the third application is lower than the fourth application, After completing the interaction with the fourth application, sending a resume instruction to the second processing unit, causing the second processing unit to continue interacting with the third application through the second user interface;

The data interaction system according to claim 32, further comprising:

The first processing unit is further configured to: shut down or put the first desktop launcher or the first operating system into the background according to the interface switching command received by the first user interface; The interface switching command received by the first user interface, running the second desktop launcher or the second operating system;

The second processing unit is further configured to: shut down or put the second desktop launcher or the second operating system into the background according to the interface switching command received by the second user interface; The interface switching command received by the second user interface runs the first desktop launcher or the first operating system.