CN101788957A - Encrypting device and method of storage equipment - Google Patents
Encrypting device and method of storage equipment Download PDFInfo
- Publication number
- CN101788957A CN101788957A CN200910105229A CN200910105229A CN101788957A CN 101788957 A CN101788957 A CN 101788957A CN 200910105229 A CN200910105229 A CN 200910105229A CN 200910105229 A CN200910105229 A CN 200910105229A CN 101788957 A CN101788957 A CN 101788957A
- Authority
- CN
- China
- Prior art keywords
- data
- memory device
- encryption
- module
- deciphering
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The invention discloses encrypting device and method of storage equipment in the field of data safety. In the encrypting device of the storage equipment, the storage equipment is provided with a transmission module which carries out data exchange with external equipment. The device comprises a card reading module and a replaceable encrypting/decrypting module, wherein the card reading module reads the data transmitted by the transmission module and carries out data exchange with the transmission module; the replaceable encrypting/decrypting module sets a replaceable encrypting parameter and encrypts/decrypts data in the card reading module; and by the card reading module and the transmission module, the encrypted data is transmitted to the storage equipment, and the decrypted data is transmitted to the external equipment. The encrypting method of the storage equipment achieves the aim of improving the flexibility and the safety of the encrypting device by resetting the encrypting parameter of the encrypting device.
Description
Technical field
The present invention relates to a kind of data security field, particularly relate to a kind of encryption device and method of memory device.
Background technology
At present the memory device that uses such as hard disk, is to be connected with computer host system by the hard disc data line, and operating system directly reads by the ATA agreement and upgrades data on the hard disk, and the data on the hard disk all are that the mode with plaintext exists.
At significant data, need to carry out encipherment protection sometimes, existing cipher mode has two kinds.
One, adopts the mode of software cryptography at hard disk, a driving at system bus promptly is installed on windows operating system, on system level, data are done the enciphering/deciphering operation; Owing to be that what to adopt is the mode of software cryptography, therefore can pass through the system keeps track instrument, by following the tracks of run time version acquisition encryption key, thereby can crack the encrypt data that is stored on the hard disk.
Two, adopt the enciphering/deciphering on the hardware view to operate at portable hard drive, the transmission chip of binding one portable hard drive and is carried out the safety chip of enciphering/deciphering operation on specific portable hard drive, and safety chip is solidified togather with transmitting chip, and its limitation is as follows:
(1) only at specific portable hard drive, can not generally use;
(2) transmission chip and safety chip binding one each other can not be independent; Safety chip need carry out initial setting up (key, portable hard drive parameter etc. for example are set), and replacing difficulty in back is set.
Summary of the invention
One of purpose of the present invention realizes the flexible configuration to encryption device for a kind of memory device encryption device and method are provided, and makes that simultaneously the data encryption of memory device is safer.
The invention provides a kind of memory device encryption device, described memory device setting and external device carry out the transport module of exchanges data; Described device comprises:
Card reading module reads the data by described transport module transmission, and carries out exchanges data with described transport module;
Removable enciphering/deciphering module is provided with removable encryption parameter, and the data in the described card reading module are carried out enciphering/deciphering; By described card reading module and transport module, respectively described enciphered data is sent to memory device and send data decryption to described external device.
The present invention also provides a kind of memory device encryption method, the data transmission between protection memory device and the external device; Described method comprises step:
Read the data that memory device and external device exchange;
The encryption parameter that encryption device is set carries out enciphering/deciphering to data;
Respectively described enciphered data is sent to memory device and send data decryption to described external device.
Memory device encryption device of the present invention and method, feasible more flexible by enciphering/deciphering module and the encryption parameter that can change is set to the configuration of encryption device, make that simultaneously the data encryption of memory device is safer.
Description of drawings
Fig. 1 is the structural representation of the described memory device encryption device of first embodiment of the invention;
Fig. 2 is the structural representation of the described memory device encryption device of second embodiment of the invention;
Fig. 3 is another structural representation of the described memory device encryption device of second embodiment of the invention;
Fig. 4 is the workflow synoptic diagram of the described memory device encryption method of third embodiment of the invention.
The realization of the object of the invention, functional characteristics and advantage will be in conjunction with the embodiments, are described further with reference to accompanying drawing.
Embodiment
With reference to Fig. 1, the present invention proposes a kind of memory device encryption device 20 of first embodiment, and wherein, described memory device 40 is provided with the transport module 400 that carries out exchanges data with external device 10; Described device comprises:
Removable enciphering/deciphering module 22 is provided with removable encryption parameter, and the data in the described card reading module 21 are carried out enciphering/deciphering; By described card reading module 21 and transport module 400, respectively described enciphered data is sent to memory device 40 and send data decryption to described external device 10; Described enciphering/deciphering module 22 is used for convenient, can change; Wherein, the encryption parameter in the described enciphering/deciphering module 22 also can be reset.
Described encryption parameter comprises encryption key, encryption key parameters and memory device parameter etc.
Memory device encryption device 20 of the present invention has promoted dirigibility and security that encryption device uses.
With reference to Fig. 2, second embodiment of the invention is based on first embodiment and proposes a kind of memory device encryption device 20, it comprises card reading module 21 and removable enciphering/deciphering module 22, by changing described enciphering/deciphering module 22 or reseting the encryption parameter of described enciphering/deciphering module 22, promote dirigibility and security that encryption device uses.
Present embodiment, described memory device 40 can be hard disk or portable hard drive etc., described card reading module 21 is a card reader 31; Described enciphering/deciphering module 22 is terminal security access module 32 (PSAM, PurchaseSecure Access Module).
Present embodiment is an example with hard disk in the PC and the exchanges data between the system, and the present invention is described in detail.Described transport module 400 is hard disk transmission chip herein.
Data are clear datas in the system, and system sends data to hard-disc storage, need to send described clear data to hard-disc storage through being encrypted in earlier; Data in the hard disk are enciphered datas, and system's reading of data from hard disk is used, and need will to re-use after the described enciphered data deciphering earlier.
Described card reader 31 is connected communication with the hard disk transmission chip of described hard disk, reads clear data and/or the enciphered data transmitted by hard disk transmission chip.
Described terminal security access module 32 is connected communication with described card reader 31, and from described card reader 31, obtain described clear data and/or enciphered data, encrypt and/or decipher, to encrypt and/or data decryption sends to described card reader 31, turn back to hard disk transmission chip by card reader 31 again; Described hard disk transmission chip receive described encrypted and/or data decryption after, respectively described enciphered data is sent to described hard disk and stores and send described data decryption to described system.
System in the hard-disc storage data, utilize encryption device of the present invention that clear data is encrypted after, send enciphered data to hard-disc storage by hard disk transmission chip; System need be in the hard disk reading of data, and after the enciphered data that reads hard disk by described encryption device in hard disk transmission chip was decrypted, the system that sends to used.
With reference to Fig. 3, described card reader 31 also comprises slot 310, cooperates pivot joint with described terminal security access module 32, convenient described terminal security access module 32 and described card reader 31 be connected or break away from connection.
When described terminal security access module 32 and described card reader 31 break away from when being connected, the hard disk that is connected with described card reader 31 can not be used, and when described terminal security access module 32 with after described card reader 31 is connected once more, hard disk can also continue to be used; Therefore, when the hard disk that the user leaves for a long time with encryption device is connected, terminal security access module 32 can be taken out, thereby accomplish physically to ban use of the hard disk of encrypting, reach the purpose of protection hard disc data.
The described encryption device of present embodiment can be applied to different hard disks, portable hard drive and other memory device; When needs are applied to different storage device 40 or need to change encryption key, can be by the encryption parameter realization of changing terminal security access module 32 or reseting terminal security access module 32.
With reference to Fig. 4, the present invention proposes a kind of memory device encryption method of the 3rd embodiment, the data transmission between protection memory device 40 and the external device 10, and described method comprises step:
S10, read the data that memory device 40 and external device 10 exchange;
S11, the encryption parameter that encryption device is set carry out enciphering/deciphering to data;
S12, described enciphered data is sent to memory device 40 and send data decryption to described external device 10 respectively.
Described encryption parameter comprises encryption key, encryption key parameters and memory device parameter.
Present embodiment is an example with hard disk in the PC and the exchanges data between the system, and the present invention is described in detail.
Data are clear datas in the system, and system sends data to hard-disc storage, need to send described clear data to hard-disc storage through being encrypted in by encryption device earlier; Data in the hard disk are enciphered datas, and system's reading of data from hard disk is used, and re-use after needing by encryption device described enciphered data to be deciphered earlier.Described encryption device has the enciphering/deciphering function.
As described in step S10, at first, read hard disk and send the enciphered data of system and/or the clear data that system sends hard disk to.
As described in step S11, then, utilize encryption device, described enciphered data is decrypted and/or described clear data is encrypted according to the encryption parameter of encryption device; Before carrying out described enciphering/deciphering, can also be provided with described encryption parameter according to specific requirement; Described encryption parameter comprises encryption key, encryption key parameters and hard disk praameter; When changing hard disk or changing encryption key, need reset described encryption parameter, could carry out enciphering/deciphering to communicating by letter between described hard disk and the system, reach the purpose of communicating by letter between protection hard disk and the system.
As described in step S12, in the hard-disc storage data, after by encryption device clear data being encrypted, send enciphered data to hard-disc storage in system; Need after enciphered data that utilize encryption device to read hard disk is decrypted, sends to described system and use in the hard disk reading of data in system.
The described encryption method of present embodiment can be applied to encryption device of the same race different hard disks, portable hard drive and other memory device; When needs are applied to different storage device 40 or need to change encryption key, can realize by the encryption parameter of reseting encryption device.
The described memory device encryption method of present embodiment by reseting encryption parameter, can promote dirigibility and security that encryption device uses.
The above only is the preferred embodiments of the present invention; be not so limit claim of the present invention; every equivalent structure or equivalent flow process conversion that utilizes instructions of the present invention and accompanying drawing content to be done; or directly or indirectly be used in other relevant technical fields, all in like manner be included in the scope of patent protection of the present invention.
Claims (7)
1. memory device encryption device, described memory device setting and external device carry out the transport module of exchanges data, it is characterized in that, and described device comprises:
Card reading module reads the data by described transport module transmission, and carries out exchanges data with described transport module;
Removable enciphering/deciphering module is provided with removable encryption parameter, and the data in the described card reading module are carried out enciphering/deciphering; By described card reading module and transport module, respectively described enciphered data is sent to memory device and send data decryption to described external device.
2. according to the described memory device encryption device of claim 1, it is characterized in that:
Described card reading module is a card reader.
3. according to the described memory device encryption device of claim 2, it is characterized in that:
Described enciphering/deciphering module is the terminal security access module.
4. according to the described memory device encryption device of claim 3, it is characterized in that:
Described card reader comprises slot, cooperates pivot joint with described terminal security access module.
5. according to the described memory device encryption device of claim 1, it is characterized in that:
Described memory device is hard disk or portable hard drive.
6. a memory device encryption method is protected the data transmission between memory device and the external device, it is characterized in that described method comprises step:
Read the data that memory device and external device exchange;
The encryption parameter that encryption device is set carries out enciphering/deciphering to data;
Respectively described enciphered data is sent to memory device and send data decryption to described external device.
7. according to the described memory device encryption method of claim 6, it is characterized in that:
Described encryption parameter comprises encryption key, encryption key parameters and memory device parameter.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910105229A CN101788957A (en) | 2009-01-22 | 2009-01-22 | Encrypting device and method of storage equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910105229A CN101788957A (en) | 2009-01-22 | 2009-01-22 | Encrypting device and method of storage equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101788957A true CN101788957A (en) | 2010-07-28 |
Family
ID=42532177
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910105229A Pending CN101788957A (en) | 2009-01-22 | 2009-01-22 | Encrypting device and method of storage equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101788957A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102073808A (en) * | 2010-11-17 | 2011-05-25 | 北京曙光天演信息技术有限公司 | Method for encrypting and storing information through SATA interface and encryption card |
| CN102932139A (en) * | 2012-11-19 | 2013-02-13 | 丁希春 | Data transmission system with infinite password |
| CN104951408A (en) * | 2015-05-25 | 2015-09-30 | 小米科技有限责任公司 | Data protection method, storage device and terminal device |
| CN105279107A (en) * | 2015-11-13 | 2016-01-27 | 北京华虹集成电路设计有限责任公司 | Disk start-up prevention method and system |
| CN110750776A (en) * | 2019-10-21 | 2020-02-04 | 江苏芯盛智能科技有限公司 | Encryption and decryption module control method, device and equipment and readable storage medium |
| CN113312000A (en) * | 2021-06-04 | 2021-08-27 | 河北光兴半导体技术有限公司 | Hard disk and storage system |
-
2009
- 2009-01-22 CN CN200910105229A patent/CN101788957A/en active Pending
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102073808A (en) * | 2010-11-17 | 2011-05-25 | 北京曙光天演信息技术有限公司 | Method for encrypting and storing information through SATA interface and encryption card |
| CN102073808B (en) * | 2010-11-17 | 2014-05-21 | 曙光云计算技术有限公司 | Method for encrypting and storing information through SATA interface and encryption card |
| CN102932139A (en) * | 2012-11-19 | 2013-02-13 | 丁希春 | Data transmission system with infinite password |
| CN104951408A (en) * | 2015-05-25 | 2015-09-30 | 小米科技有限责任公司 | Data protection method, storage device and terminal device |
| CN104951408B (en) * | 2015-05-25 | 2018-02-06 | 小米科技有限责任公司 | Data guard method, storage device and terminal device |
| CN105279107A (en) * | 2015-11-13 | 2016-01-27 | 北京华虹集成电路设计有限责任公司 | Disk start-up prevention method and system |
| CN110750776A (en) * | 2019-10-21 | 2020-02-04 | 江苏芯盛智能科技有限公司 | Encryption and decryption module control method, device and equipment and readable storage medium |
| CN110750776B (en) * | 2019-10-21 | 2022-03-22 | 江苏芯盛智能科技有限公司 | Encryption and decryption module control method, device and equipment and readable storage medium |
| CN113312000A (en) * | 2021-06-04 | 2021-08-27 | 河北光兴半导体技术有限公司 | Hard disk and storage system |
| CN113312000B (en) * | 2021-06-04 | 2023-04-28 | 河北光兴半导体技术有限公司 | Hard disk and storage system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100468438C (en) | Encryption and decryption method for realizing hardware and software binding | |
| US9793960B2 (en) | NFC apparatus capable to perform a contactless tag reading function | |
| CN102947836B (en) | Memory device, main process equipment and use dual encryption scheme transmit the method for password between the first and second memory devices | |
| CN101738516B (en) | Electronic electric energy meter and data secure transmission method thereof | |
| CN102801730B (en) | Information protection method and device for communication and portable devices | |
| CN101788957A (en) | Encrypting device and method of storage equipment | |
| CN102831346A (en) | Method and system for file protection | |
| CN102201044A (en) | Universal serial bus (USB) security key | |
| CN102081713A (en) | Office system for preventing data from being divulged | |
| CN102439601A (en) | Storage medium having an encrypting device | |
| CN104410602A (en) | Method for realizing random password keyboard based on secure element | |
| US20100067689A1 (en) | Computing platform with system key | |
| CN103606223A (en) | Card authentication method and device | |
| CN101281502B (en) | SATA hard disc physical enciphering system based on MEMS enciphered lock and double FPGA | |
| CN102332077A (en) | Hand-held equipment data encryption and decryption method and hand-held equipment peripheral equipment thereof | |
| CN104063333A (en) | Encrypted storage equipment and encrypted storage method | |
| US9536116B2 (en) | Active component embedded in cable | |
| CN104346586A (en) | Self-destructive data protection storage device and self-destructive data protection method | |
| CN105634729A (en) | Mobile phone encryption and decryption method based on bluetooth equipment | |
| CN102360407A (en) | Communication method for mobile phone and computer | |
| CN101883357A (en) | Method, device and system for mutual authentication between terminal and intelligent card | |
| CN100552649C (en) | Hard disc enciphering system based on MEMS coded lock and FPGA | |
| CN201199439Y (en) | Mobile storage apparatus | |
| CN101281503A (en) | IDE hard disc physical enciphering system based on MEMS enciphered lock and double FPGA | |
| CN103324970B (en) | The receiving/transmission method of a kind of RFID of highly effective and safe and system thereof |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20100728 |