CN100367248C - A encryption U disk system with journal and audits - Google Patents
A encryption U disk system with journal and audits Download PDFInfo
- Publication number
- CN100367248C CN100367248C CNB2006101136945A CN200610113694A CN100367248C CN 100367248 C CN100367248 C CN 100367248C CN B2006101136945 A CNB2006101136945 A CN B2006101136945A CN 200610113694 A CN200610113694 A CN 200610113694A CN 100367248 C CN100367248 C CN 100367248C
- Authority
- CN
- China
- Prior art keywords
- module
- usb
- flash disk
- data
- usb flash
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
This invention relates to a code U disc system with log check in computer information safety field, which comprises the following parts: user layer and drive layer set in host end; memory, safety control module and USB interface control module, wherein, the user layer is to provide interacting interface user operation to monitor user operation to generate log information and files read data and drive layer for interacting; one u disc for data coding and check.
Description
Technical field
The invention belongs to field of computer information security, particularly can guarantee to be stored in the safety of the significant data on the USB flash disk, the encryption U disk system design of in real time accurate log record is carried out in the data manipulation that the user carries out.
Background technology
Development of computer makes computer-readable storage medium have substitute paper to become the main mode of information stores gradually.With no paper office becomes the groundwork mode of government, enterprise, army gradually.Yet, in the construction of current disparate networks system, often only be concerned about the safety of data of transmission over networks and the identity security in the access process, and ignored the security of the security, particularly mobile memory medium of information stores.This becomes the new problem demanding prompt solution of information security field.
At the safety research of mobile memory medium, mainly concentrate on the function of a series of practicalities such as encryption, authentication.Along with being extensive use of of mobile memory medium, the safety problem of information stores shows especially day by day.
Currently marketed USB flash disk product mainly is divided into two kinds: 1, can not partitioning type: USB flash disk only be made of a subregion, and the local disk with general in the use is the same, without any restriction.But 2 partitioning types: but the USB flash disk of partitioning type generally is divided into 2 subregions, can be according to the relative size in user's needs these two districts of free adjustment when the subsidiary formatted program of operation, and determine closed security zone or general area.General area just as local disk the same, without any restriction, can arbitrarily store deleted file.The closed security zone then needs to input password just can carry out the visit of disk space.
By the analysis to new demand for security, existing solution can not well solve the problem of USB flash disk operating position audit, can't know promptly what operation the user has carried out to this dish, and who is operated USB flash disk.Same because only access to your password lock, secret being difficult to of data reliably guaranteed.And along with being extensive use of of USB flash disk, this becomes a problem demanding prompt solution gradually.
Summary of the invention:
The objective of the invention is for overcoming the weak point of prior art, a kind of encryption U disk system with journal and audits is proposed, this system can guarantee to be stored in the safety of the significant data on the USB storage medium, and in real time accurate log record is carried out in the operation of the data of storage on it.
A kind of encryption U disk system with journal and audits that the present invention proposes is characterized in that this USB flash disk system comprises client layer and the Drive Layer that is arranged on host side, and the USB flash disk that is made of storer, safety control module and USB interface control module; This client layer is used to provide interactive interface for user's operation, and monitoring user operation generates log information and file read-write data and Drive Layer and carries out alternately; This Drive Layer is used to realize file system and USB communications protocol and the data encrypting and deciphering function on the USB flash disk; This USB flash disk is used for USB interface control, security control and data storage; This USB flash disk inserts host side by the USB interface of standard, and the client layer of host side carries out data and instruction interaction by the usb bus USB flash disk.
Characteristics of the present invention and effect:
1, the encryption and decryption in the document transmission process
In the data exchange process of main frame and USB flash disk, the host side Drive Layer is carried out real-time encryption and decryption to the data of transmission.Because the resource-constrained on the USB flash disk, so the operation of encryption and decryption has been placed on the main frame, whole encryption and decryption process is very little to the influence of transfer efficiency.
2, use self-defining USB mass storage host-host protocol, adopt with the diverse imperative structures of windows operating system, make windows operating system can not understand underlying protocol fully, guaranteed that the data in the transmission are difficult to be eavesdropped, and can prevent operations such as virus, Long-distance Control.
3, security control function
Except keeper's password, Personal Storage subregion and log area respectively have two passwords, read-only password and read-write passwords.Password authentification is finished at safety control module.USB flash disk is divided into two subregions that are used for depositing file data in data sharing district and Personal Storage district.Corresponding placement can shared file and security type file respectively for two kinds of subregions.
4, daily record real time record and reliable management
In the log record process, write, write incoming interface and control by safety control module by log interface.Because read password, write password and remove journal function separately, the user can not wipe daily record subregion content at write state.
Description of drawings
Fig. 1 is a general structure block diagram of the present invention.
Fig. 2 is the USB flash disk security control workflow diagram of present embodiment.
Fig. 3 is the area dividing synoptic diagram of the USB flash disk storer of present embodiment.
Fig. 4 is the log area logical organization synoptic diagram of present embodiment.
Embodiment
A kind of encryption U disk system with journal and audits that the present invention proposes reaches embodiment in conjunction with the accompanying drawings and is described in detail as follows:
Main assembly structure of the present invention comprises the client layer and the Drive Layer that are arranged on main frame (computer) end as shown in Figure 1, and the USB flash disk that is made of storer, safety control module and USB interface control module; USB flash disk inserts host side by the USB interface of standard, and the client layer of host side carries out data and instruction interaction by usb bus (according to usb protocol) and USB flash disk.
Each parts composition is respectively described below:
Client layer
Client layer provides interactive interface for user's operation, and monitoring user operation generates log information and file read-write data and Drive Layer and carries out alternately; Client layer comprises interactive interface module, logger module and operation supervise and control module; Wherein:
The interactive interface module provides user interface, and described operation-interface is through operation supervise and control module and bottom document data interaction; The interactive interface module can obtain log information and show by the interface of reading that logger module provides.The interactive interface module is carried out operations such as the read-write of USB flash disk hardware relevant configuration information and authentication by the USB driver module that directly calls Drive Layer.
The operation supervise and control module is imported the user action and the relevant information that obtain into logger module, and the log pattern record generates journal entries.Logger module and operation supervise and control module are passed through separate data channels control daily record data stream and document data flow separately respectively.Logger module directly and the encryption and decryption module interactive log information of Drive Layer.The mutual fileinfo of ATA driver module of operation supervise and control module and Drive Layer.
Drive Layer
Drive Layer provides the interactive interface of client layer and USB flash disk, has realized the management to file system on the USB flash disk, and the interaction data between client layer and USB flash disk is carried out real-time encryption and decryption.This layer comprises ATA driver module, encryption and decryption module and USB driver module.The document data flow that the ATA driver module will import into is that file data blocks imports the encryption and decryption module into according to file system organization.The file data blocks that log information that the encryption and decryption module is imported into client layer and ATA driver module import into is encrypted.The data bulk-only pattern after the encryption and decryption generates the usb data bag by the USB driver module and USB flash disk carries out data interaction.The USB driver module carries out data interaction by self-defining USB mass storage communication command and USB flash disk, management channels and the mutual configuration information of USB flash disk that client layer provides by this module.
USB flash disk
USB flash disk has storer and realizes data storage function, and has realized the usb protocol of standard and to the safety management function of USB flash disk by interface control module in the controller and safety control module.
USB flash disk comprises USB interface control module and safety control module and storer three parts.USB flash disk USB interface control module is handled the USB instruction, and the normal data bag is interpreted as steering order and data division.Steering order and data are imported safety control module into, and safety control module is at first verified the password of current login, and according to pairing authority processing instruction of password and data.Write data and reading command and storer after the processing are carried out alternately.Steering order is returned result by safety control module.
The present invention further is described as follows each ingredient of encryption U disk system of band journal and audits by embodiment:
Present embodiment comprises client layer and the Drive Layer that is arranged on main frame (computer) end, and the USB flash disk that is made of storer, safety control module and USB interface control module.
Client layer comprises: interactive interface module, logger module and operation supervise and control module; Wherein:
The interactive interface module: the interactive interface module is generating run interface, configuration interface and log management interface on the main frame screen, and the file operation of user to USB flash disk, parameter configuration, log management function are provided.
The operation interface of present embodiment is provided with action button, comprises file copy, new folder, deletion, generic-document and directory operation buttons such as rename, for file on the user management USB flash disk, the list box of the similar file browser of file operation function is browsed local disk and USB flash disk content.
The operation-interface that configuration interface provides by Drive Layer, direct control are positioned at the flag information district of USB flash disk inside.Carry out the parameters configuration of USB flash disk for the user.This interface is called management channels and is operated.
The log management interface provides the user to the reading of daily record, and searches, and analyzes, and operation interface such as empties.Logger module is called at this interface and direct management channels is operated.
The operation supervise and control module: the user is caught by this module at any time to all operations of file in the USB flash disk.The detailed content of user's performed operation on the interactive interface module, time and other relevant information are imported logger module into as the log record content.After log record produced, this module was finished current operation, and the method has guaranteed the reliability of each Operation Log.
Logger module: logger module will be assembled into journal entries by the log information that the operation supervise and control module generates.The journal entries content of present embodiment comprises: running time, host name, each MAC Address of Network Card, IP address, hard disk sequence number, essential informations such as cpu type, and the concrete log information of certain file having been done a certain operation.The journal format that logger module is made into fixed length with the data set of log information imports the encryption and decryption module of Drive Layer into.
Drive Layer:
The ATA driver module: the ATA driver module of present embodiment uses the FAT file layout of standard.File and folder information are organized as blocks of data import the encryption and decryption module into.And provide the basic operation of file to client layer, as operations such as newly-built, deletion, copy, rename, newly-built catalogues.
The encryption and decryption module: present embodiment adopts general encryption and decryption module, uses AES256 or other data encryption algorithm.
The USB driver module: the USB driver module of present embodiment uses the USB of standard to enumerate and configuration protocol, USB flash disk is inserted need not extra the driving behind the main frame to get final product enumeration succeeds.For fear of the control of host operating system to the data passage, this module has added self-defining USB mass storage communication command, and host operating system can not be understood the data message on the whole data channel.And corresponding command code is consistent with the code in the USB interface control module.
The self-defining usb mass storage communication command of present embodiment mainly comprises:
Standard Operational Orders: ReadDisk, WriteDisk, TestUnitReady, DeviceInquiry.
Journalizing order: WriteLog, ReadLog, WriteBlock, ReadBlock, EraseBlock.
Bookkeeping order: parameter reading and writing interface.
In Standard Operational Orders, the communication command word select gets final product with the command word of nonstandard protocol definition, and data are done to handle arbitrarily, has added subregion sign in the order, for USB interface control module streamed data.Host operating system will not done any response to this data stream.
The journalizing order is the further encapsulation of standard operation, and adds the daily record sign in order, and the USB interface control module is added directly to the daily record subregion through resolve command with journal entries.
The bookkeeping order is command word independently, carries out the read-write of authentication and system configuration information by safety control module.Comprising password authentification, zone configuration information writes, and password writes, and Clear Log is set operations such as sequence number.
USB flash disk:
USB flash disk comprises USB interface control module, safety control module and storer.
Present embodiment adopts the firmware code in the USB flash disk controller to generate USB interface control module and safety control module, the USB flash disk controller adopts the USB control chip of ST, chip is able to programme, and usb interface controller interface and nand flash class memory access interface are provided.
The USB interface control module: the standard USB that defers in the USB driver module enumerates and configuration protocol.And observe self-defining USB mass storage communication command in the USB driver module, finish and operation requests such as the data interaction of host side and system configuration.
The USB interface control module is operation automatically after USB flash disk inserts main frame USB mouth, and USB flash disk will be presented as the read-only USB flash disk of standard of a low capacity in host side windows system, the software of USB flash disk content for carrying with dish.As seen other each subregions neither under host operating system, and inaccessible.Because the difference of communication command and safety control module be identifying user identity not as yet, so in fact data partition is in the lock state.
Safety control module: this module guarantees the secure access of host side software to the bottom hardware information and date.After password authentification was passed through, the side enabled read-write operation request or the configuration order to corresponding subregion, otherwise returns mistake.
The password configuration, the configuration interface of password in client layer generated by the user, is positioned over the flag information district of USB flash disk after handling by hashing algorithm.
Password enables for safety control module and forbids the request of access of upper strata to these district's data, and present embodiment has following 5 passwords.Corresponding authority such as table 1
Table 1 password and authority list
Name of code | Authority |
Administrator's password | The read-write flag information, log area is read and is removed in read-write equipment software district |
Personal Storage district read-only password | Read Personal Storage district data, the setting section flag information |
Personal Storage district read-write password | Read-write Personal Storage district data, the setting section flag information |
The log area read-only password | Daily record is read |
Log area is write password | Daily record is added |
The workflow of the safety control module of present embodiment as shown in Figure 2, step is as follows:
A) after USB flash disk inserted main frame, USB flash disk powered on, and the USB flash disk safety control module starts;
B) client layer issues the USB flash disk OPEN, if open mistake, then returns.If correctly open, then enter the data sharing district automatically.The user can select to enter Personal Storage district (needing login) this moment;
C) in the read-write process, generate daily record earlier, operate again;
The USB flash disk locking condition:
A) if log area is full, the locking of USB flash disk safety control module has only the keeper can remove release after the daily record;
B) the Personal Storage district needs user password, if the password errors number reaches preset upper limit, hardware lock then needs the administrator's password can release.
Storer: the Nand Flash of the storer selection standard of present embodiment, as Samsung, the product of manufacturers such as Toshiba, capacity is bigger, uses the page storage, is fit to mass storage class equipment.
The USB flash disk storer of present embodiment is divided into five zones: as shown in Figure 3, comprising: flag information district, software district, shared region, Personal Storage district and log area.
The parameter that flag information is preserved, as shown in table 2, call for safety control module.
The content of parameter that table 2 flag information is preserved
Title | Describe |
Area flag | The labeling head of sign table, verification is used |
Vendor name | Factory setting |
Name of product | Factory setting |
Software district capacity | Revise for the keeper |
Data sharing district capacity | The keeper sets, and the user can revise, |
Personal Storage district capacity | The keeper sets, and the user can revise |
The log area capacity | Revise for the keeper |
Log area index capacity | Revise for the keeper |
Sequence number | Factory setting |
Encrypted message | Result behind the cryptographic hash and information |
The software district:
Place application software, after the keeper landed, this regional read-write function enabled, and when the user used, this zone was read-only.
Data sharing district and Personal Storage district:
Data sharing district and Personal Storage district all are storage spaces, and the file system of using the ATA driver module to provide is organized, and is consistent with common U disk, and difference is that the Personal Storage district needs the password in Personal Storage district to open.
Log area: log area adopts the mode of journal to carry out writing of daily record, and journalizing is write with the mistake that prevents daily record by the unified control of safety control module.
Log area daily record institutional framework: as shown in Figure 4, comprise two major parts.Block district and Log district.
The Block district: the Block district is the index in Log district, and allocation of space is divided according to the data that are set in mark region.The reference position in Block district is exactly the reference position of log area.
Each plug operation produces a Block, and block comprises two sections, is called blockup and blockdown.Blockup generates when USB flash disk is opened, and blockdown generates when closing, and the blockdown that causes for prevent that USB flash disk from normally not closing time plug loses, and system scan block zone is to supply this information when opening.
The information that blockup comprises is as follows: zero-time, host name, each MAC Address of Network Card, IP address, hard disk sequence number, cpu type.The start address of corresponding log.
The information that blockdown comprises is as follows: termination time, the end address of corresponding log.
The Log district: the Log district is the detailed district of daily record, and every log has comprised following information: the time, and operating area (local disk is the path, and USB flash disk is data sharing district or Personal Storage district), action type (newly-built, deletion, copy is gone into, and copies out rename).
Log is linear array in logic, positions according to the information of describing among the block when reading.
Each the bar daily record of Log district has all comprised the sector service marking, for the sector number of the current not usefulness in safety control module location.
It is as follows to write fashionable flow process: open and use binary search first free sector in the Log zone behind the equipment, sector number is added in the block content go, deposit block, deposit daily record again.
The course of work of present embodiment is described as follows:
After the user inserted main frame with USB flash disk, USB flash disk software district was shown as the read-only subregion of standard on main frame, and the client layer interactive interface promptly is placed on this subregion.After moving this interface, client layer generating run interface, log management interface and configuration interface.
At operation interface, the user can operate the file in data sharing district and Personal Storage district on the USB flash disk, and the data sharing district does not need password, could visit after the Personal Storage district needs password authentification to pass through.The user can shift file at USB flash disk and host side, the process that data move into USB flash disk is equivalent to encrypt, and the process that shifts out is equivalent to deciphering.
USB flash disk in the process of using, operation supervise and control module and logger module can real time record under the user to all operations of file on the USB flash disk, and by the recording operation machine MAC number, the IP address, hard reel number, CPU ID number and user name, information such as machine name location user.The recording mode of daily record adopts writes the serial operation of carrying out action after the daily record earlier, could executable operations after daily record writes successfully, guaranteed the integrality of log information.If log area is full, then USB flash disk can lock voluntarily, could continue use after having only administrator's password that daily record is removed, and the assurance all operations all can be recorded.
At the log management interface, the user can check own all journal entries, and carries out and can search, operations such as derivation.
At configuration interface, the user can set the size of each subregion, formats each subregion, and to all passwords, the user can set up the upper limit of password and password attempt on their own.After any password mistake exceeded capping, USB flash disk entered lock-out state, needed use and management person's password to carry out release.
Claims (4)
1. the encryption U disk system with journal and audits is characterized in that, this USB flash disk system comprises client layer and the Drive Layer that is arranged on host side, and the USB flash disk that is made of storer, safety control module and USB interface control module; This client layer is used to provide interactive interface for user's operation, and monitoring user operation generates log information and file read-write data and Drive Layer and carries out alternately; This Drive Layer is used to realize file system and USB communications protocol and the data encrypting and deciphering function on the USB flash disk; This USB flash disk is used for USB interface control, security control and data storage; This USB flash disk inserts host side by the USB interface of standard, and the client layer of host side carries out data and instruction interaction by the usb bus USB flash disk; Described Drive Layer comprises ATA driver module, encryption and decryption module and USB driver module; The document data flow that described ATA driver module will import into is that file data blocks imports the encryption and decryption module into according to file system organization; The file data blocks that log information that this encryption and decryption module is imported into client layer and ATA driver module import into carries out encryption and decryption, and the The data bulk-only pattern after the encryption and decryption generates the usb data bag by the USB driver module and described USB flash disk carries out data interaction; Described USB driver module carries out data interaction by self-defining USB mass storage communication command and USB flash disk, management channels and the mutual configuration information of USB flash disk that client layer provides by this module; Described USB communications protocol adopts self-defining USB mass storage communication command, this communication command mainly comprises: the communication command word select adds the journalizing order of daily record sign and adopts the independently bookkeeping order of command word with the Standard Operational Orders of the command word of nonstandard protocol definition.
2. USB flash disk as claimed in claim 1 system is characterized in that described client layer comprises interactive interface module, logger module and operation supervise and control module;
Described interactive interface module provides user interface, and this operation-interface is through operation supervise and control module and bottom document data interaction; The interactive interface module obtains log information and shows by the interface of reading that logger module provides; The interactive interface module is carried out the read-write and the authentication operation of USB flash disk hardware relevant configuration information by the USB driver module that directly calls Drive Layer;
Described operation supervise and control module is imported the user action and the relevant information that obtain into logger module, and the log pattern record generates journal entries; Logger module and operation supervise and control module are passed through separate data channels control daily record data stream and document data flow separately respectively; Logger module directly and the encryption and decryption module interactive log information of Drive Layer; The mutual fileinfo of ATA driver module of operation supervise and control module and Drive Layer.
3. USB flash disk as claimed in claim 1 system is characterized in that, described USB flash disk USB interface control module is handled the USB instruction, and the normal data bag is interpreted as steering order and data division; Steering order and data are imported safety control module into. and described safety control module is at first verified the password of current login, and according to pairing authority processing instruction of password and data, write data and reading command and storer after the processing are carried out alternately, and steering order is returned result by safety control module.
4. USB flash disk as claimed in claim 3 system, it is characterized in that, the storer of described USB flash disk is divided into flag information district, software district, shared region, Personal Storage district and log area, and wherein, this flag information district preserves the flag information parameter of calling for safety control module; Application software is placed in this software district, and after the keeper landed, this regional read-write function enabled, and when the user used, this zone was read-only; This data sharing district and Personal Storage district all are storage spaces, and wherein the Personal Storage district needs the password in Personal Storage district to open; This log area adopts the mode of journal to carry out writing of daily record, and write operation is write with the mistake that prevents daily record by the unified control of safety control module.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB2006101136945A CN100367248C (en) | 2006-10-13 | 2006-10-13 | A encryption U disk system with journal and audits |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CNB2006101136945A CN100367248C (en) | 2006-10-13 | 2006-10-13 | A encryption U disk system with journal and audits |
Publications (2)
Publication Number | Publication Date |
---|---|
CN1952914A CN1952914A (en) | 2007-04-25 |
CN100367248C true CN100367248C (en) | 2008-02-06 |
Family
ID=38059262
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CNB2006101136945A Expired - Fee Related CN100367248C (en) | 2006-10-13 | 2006-10-13 | A encryption U disk system with journal and audits |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN100367248C (en) |
Families Citing this family (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101237353B (en) * | 2007-09-07 | 2011-10-05 | 北京飞天诚信科技有限公司 | A method and system for monitoring mobile storage device based on USBKEY |
CN102063359B (en) * | 2010-11-02 | 2013-05-22 | 北京安天电子设备有限公司 | Method and device for monitoring data for USE mobile storage device |
CN102609367A (en) * | 2011-11-25 | 2012-07-25 | 无锡华御信息技术有限公司 | USB (Universal Serial Bus) flash disc system with safety control and audit |
CN103294960A (en) * | 2013-06-06 | 2013-09-11 | 国家电网公司 | Portable data wiping device based on U disk |
CN103268458A (en) * | 2013-06-08 | 2013-08-28 | 福建伊时代信息科技股份有限公司 | Take-away equipment as well as processing method, device and system thereof |
CN104573559B (en) * | 2015-01-24 | 2018-05-04 | 浙江远望软件有限公司 | It is a kind of to support the storage of the file of password authorization and operation log and access method |
CN108090363A (en) * | 2016-11-22 | 2018-05-29 | 英业达科技有限公司 | Confidential data manages System and method for |
CN108985107A (en) * | 2018-07-13 | 2018-12-11 | 重庆爱思网安信息技术有限公司 | A kind of encrypted electronic evidence-obtaining auditing system |
CN109308249A (en) * | 2018-08-27 | 2019-02-05 | 山东超越数控电子股份有限公司 | A kind of system and method for auditing and store log based on separate hardware module |
CN111062064B (en) * | 2019-12-24 | 2021-11-02 | 飞天诚信科技股份有限公司 | Method and system for realizing encrypted USB flash disk system |
CN111147500A (en) * | 2019-12-30 | 2020-05-12 | 国网河南省电力公司南阳供电公司 | Information intranet data transfer equipment and method based on data security processing |
CN111625876A (en) * | 2020-05-29 | 2020-09-04 | 北京中超伟业信息安全技术股份有限公司 | Mobile storage management control system |
CN116611048A (en) * | 2023-07-13 | 2023-08-18 | 深圳奥联信息安全技术有限公司 | Password verification system and password verification method |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006236307A (en) * | 2005-10-05 | 2006-09-07 | Castnet Tokyo Corp | Information protection device using usb flash memory |
CN1838137A (en) * | 2006-04-26 | 2006-09-27 | 南京大学 | Read-write access control method for plug-in memory device |
-
2006
- 2006-10-13 CN CNB2006101136945A patent/CN100367248C/en not_active Expired - Fee Related
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2006236307A (en) * | 2005-10-05 | 2006-09-07 | Castnet Tokyo Corp | Information protection device using usb flash memory |
CN1838137A (en) * | 2006-04-26 | 2006-09-27 | 南京大学 | Read-write access control method for plug-in memory device |
Also Published As
Publication number | Publication date |
---|---|
CN1952914A (en) | 2007-04-25 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN100367248C (en) | A encryption U disk system with journal and audits | |
AU770753B2 (en) | Distributed data archive device and system | |
CN101854392B (en) | Personal data management method based on cloud computing environment | |
CN101853363B (en) | File protection method and system | |
KR100861822B1 (en) | Data management method | |
CN102043927B (en) | Data divulgence protection method for computer system | |
CN103825953B (en) | A kind of user model encrypted file system | |
US20070016771A1 (en) | Maintaining security for file copy operations | |
US20070011749A1 (en) | Secure clipboard function | |
US20070011469A1 (en) | Secure local storage of files | |
US7962492B2 (en) | Data management apparatus, data management method, data processing method, and program | |
CN103679050A (en) | Security management method for enterprise-level electronic documents | |
US8750519B2 (en) | Data protection system, data protection method, and memory card | |
CN101341493A (en) | Computer data management method, program, and recording medium | |
CN101894242B (en) | System and method for protecting information safety of mobile electronic equipment | |
CN102609667A (en) | Automatic file encryption and decryption system and automatic file encryption and decryption method based on filter drive program | |
KR20080053824A (en) | Approching control system to the file server | |
CN106682521B (en) | File transparent encryption and decryption system and method based on driver layer | |
CN101751536A (en) | Transparent file encryption method for increasing file header | |
JP2006343887A (en) | Storage medium, server device, and information security system | |
US20180083954A1 (en) | Method, system, login device, and application software unit for logging into docbase management system | |
CN108399341A (en) | A kind of Windows dualized file managing and control systems based on mobile terminal | |
TWI444849B (en) | System for monitoring personal data file based on server verifying and authorizing to decrypt and method thereof | |
CN101932995A (en) | Method for encrypting digital file, method for decrypting digital file, apparatus for processing digital file and apparatus for converting encryption format | |
CN102456045A (en) | Database cluster encrypting method and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant | ||
C17 | Cessation of patent right | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20080206 Termination date: 20121013 |