CN104978302B - A kind of intelligent and safe USB interface control method based on TCM chips - Google Patents

A kind of intelligent and safe USB interface control method based on TCM chips Download PDF

Info

Publication number
CN104978302B
CN104978302B CN201510351964.5A CN201510351964A CN104978302B CN 104978302 B CN104978302 B CN 104978302B CN 201510351964 A CN201510351964 A CN 201510351964A CN 104978302 B CN104978302 B CN 104978302B
Authority
CN
China
Prior art keywords
tcm
usb
chips
safe
safe key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201510351964.5A
Other languages
Chinese (zh)
Other versions
CN104978302A (en
Inventor
李健
刘泽
王增超
秦清松
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing mechanical and electrical engineering general design department
Original Assignee
Shandong Chaoyue CNC Electronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Chaoyue CNC Electronics Co Ltd filed Critical Shandong Chaoyue CNC Electronics Co Ltd
Priority to CN201510351964.5A priority Critical patent/CN104978302B/en
Publication of CN104978302A publication Critical patent/CN104978302A/en
Application granted granted Critical
Publication of CN104978302B publication Critical patent/CN104978302B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F13/00Interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
    • G06F13/38Information transfer, e.g. on bus
    • G06F13/42Bus transfer protocol, e.g. handshake; Synchronisation
    • G06F13/4282Bus transfer protocol, e.g. handshake; Synchronisation on a serial bus, e.g. I2C bus, SPI bus
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2213/00Indexing scheme relating to interconnection of, or transfer of information or other signals between, memories, input/output devices or central processing units
    • G06F2213/0042Universal serial bus [USB]

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Storage Device Security (AREA)

Abstract

The invention discloses a kind of intelligent and safe USB interface control method based on TCM chips, its specific implementation process is:By TCM chip controls computer management chip EC chips, management USB source chips, realize that the intelligent and safe of USB interface uses by monitoring USB data transmission and usb data encryption.A kind of intelligent and safe USB interface control method based on TCM chips is compared with prior art, pass through TCM chip controls computer management chip EC and monitoring USB data transmission, USB interface data monitoring and encryption function are realized in hardware design aspect, it is more intelligent by software management USB interface to enter system compared to the later stage, it is safer, it is practical, it is applied widely, it is easy to spread.

Description

A kind of intelligent and safe USB interface control method based on TCM chips
Technical field
The present invention relates to technical field of data security, specifically a kind of practical, based on TCM chips intelligence peace All-USB interface control method.
Background technology
With the rapid development of informatization, information security issue is become increasingly conspicuous, and in networked information era, network is attacked Hit, emerge in an endless stream the problem of information leakage, without the information security technology of core, we will just face the information security state of sternness Gesture.Particularly in the modernization computer and server industries using big data as medium.USB interface in the market is controlled safely Make relatively simple, cause its data easily by artificial Compulsory Removal, cause data loss rate high, to avoid the occurrence of this, A kind of intelligent and safe USB interface control method based on TCM chips is now provided.
The content of the invention
The technical assignment of the present invention is to be directed to above weak point, there is provided a kind of practical, based on TCM chips intelligence Safe USB interface control method.
A kind of intelligent and safe USB interface control method based on TCM chips, its specific implementation process are:Pass through TCM chips Control computer managing chip EC chips, management USB source chips, realized by monitoring USB data transmission and usb data encryption The intelligent and safe of USB interface uses.
The usb data ciphering process is:After computer monitoring is to USB device, i.e., the TCM chips monitoring in computer To after USB device, the TCM chips read facility information by USB data line first and judge it whether there is safe key;Confirmation has After safe key, TCM decontrols USB data transmission control;If do not find safe key or safe key checking not by, TCM is transmitted again after then usb data is encrypted automatically, and transmission data are monitored in real time.
The above-mentioned data by TCM encryptions can decrypt reading in the equipment for decrypting function with TCM.
Safe key is generated by TCM chips, has safe key to refer in the USB storage device in advance in above-mentioned USB device The safe key that storage is generated by above-mentioned TCM equipment.
After TCM chips decontrol USB data transmission control, whether it can be set by TCM internal processes to USB data transmission Monitoring in real time.
When USB device is without safe key or not verified safe key, TCM chips send report by lpc bus Alert instruction.
The step of also including data auto-destruct, i.e.,:When TCM chips monitor that computer is used for multiple times without safe key During the USB storage device of checking, the TCM chips control EC managing chips to send alarm and auto-destruct storage by spi bus All data of equipment.
A kind of intelligent and safe USB interface control method based on TCM chips of the present invention, has advantages below:
A kind of intelligent and safe USB interface control method based on TCM chips of the invention is calculated by TCM chip controls Machine managing chip EC and monitoring USB data transmission, USB interface data monitoring and encryption function, phase are realized in hardware design aspect It is more intelligent by software management USB interface than entering system in the later stage, it is safer;Realize some higher to safety coefficient requirement The intelligent and safe of the equipment such as computer, server outbound data transmission, and USB data transmission can be monitored and be encrypted; Under the background that information security issue becomes increasingly conspicuous, this invention can solve the most widely used USB interface data safety of computer and ask Topic, it is practical, it is applied widely, it is easy to spread.
Brief description of the drawings
Accompanying drawing 1 realizes schematic diagram for the present invention's.
Embodiment
The invention will be further described with specific embodiment below in conjunction with the accompanying drawings.
A kind of intelligent and safe USB interface control method based on TCM chips is now provided, this method is by TCM chip management and control EC And USB source chips, there is provided embed the authentication of specific Secret key arithmetic based on TCM, and by monitor USB data transmission and Usb data encryption realizes that the intelligent and safe of USB interface uses technology.
The TCM encryption chips, there is provided the function such as crypto-operation service software interface, SPI interface, 7816 interfaces;It is based on The firmware of STM32F10X USART peripheral modules, Toshiba Nandflash storage chips TC58NVG4D2HTAOO series.
As shown in Figure 1, its specific implementation process is:Pass through TCM chip controls computer management chip EC chips, management USB source chips, realize that the intelligent and safe of USB interface uses by monitoring USB data transmission and usb data encryption.
The usb data ciphering process is:After computer monitoring is to USB device, i.e., the TCM chips monitoring in computer To after USB device, the TCM chips read facility information by USB data line first and judge it whether there is safe key;Confirmation has After safe key, TCM decontrols USB data transmission control;If do not find safe key or safe key checking not by, TCM is transmitted again after then usb data is encrypted automatically, and transmission data are monitored in real time.
The above-mentioned data by TCM encryptions can decrypt reading in the equipment for decrypting function with TCM.
Safe key is generated by TCM chips, has safe key to refer in the USB storage device in advance in above-mentioned USB device The safe key that storage is generated by above-mentioned TCM equipment.
After TCM chips decontrol USB data transmission control, whether it can be set by TCM internal processes to USB data transmission Monitoring in real time.
When USB device is not verified without safe key or safe key, TCM chips are then carried out to usb data automatically Encrypted transmission, the TCM chips send alarm command by lpc bus.
The step of also including data auto-destruct, i.e.,:When TCM chips monitor that computer is used for multiple times without safe key During the USB storage device of checking, the TCM chips control EC managing chips to send alarm and auto-destruct storage by spi bus All data of equipment.
More than operation control and complete after electricity on TCM chips and EC managing chips, not by operating system and it is follow-up other Software impact, usb data management and control is realized in hardware view, so that USB interface is more intelligent, it is safer.
Above-mentioned embodiment is only the specific case of the present invention, and scope of patent protection of the invention includes but is not limited to Above-mentioned embodiment, a kind of power of any intelligent and safe USB interface control method based on TCM chips for meeting the present invention The appropriate change or replacement that sharp claim and any person of an ordinary skill in the technical field is done to it, it should all fall into this The scope of patent protection of invention.

Claims (1)

1. a kind of intelligent and safe USB interface control method based on TCM chips, it is characterised in that specific implementation process is:Pass through TCM chip controls computer management chip EC chips, management USB source chips, by monitoring USB data transmission and usb data Encryption realizes that the intelligent and safe of USB interface uses;
The usb data ciphering process is:After computer monitoring is to USB device, i.e., the TCM chips in computer monitor After USB device, the TCM chips read facility information by USB data line first and judge it whether there is safe key;Confirmation has peace After full key, TCM decontrols USB data transmission control;If safe key or safe key checking are not found not by TCM Transmitted again after then usb data is encrypted automatically, and transmission data are monitored in real time;
The above-mentioned data by TCM encryptions can decrypt reading in the equipment for decrypting function with TCM;
Safe key is generated by TCM chips, has safe key to refer to prestore in the USB storage device in above-mentioned USB device The safe key generated by above-mentioned TCM equipment;
After TCM chips decontrol USB data transmission control, whether real-time to USB data transmission it can be set by TCM internal processes Monitoring;
When USB device is without safe key or not verified safe key, TCM chips send alarm by lpc bus and referred to Order;
The step of also including data auto-destruct, i.e.,:Verified when TCM chips monitor that computer is used for multiple times without safe key USB storage device when, the TCM chips by spi bus control EC managing chips send alarm and auto-destruct storage device All data.
CN201510351964.5A 2015-06-24 2015-06-24 A kind of intelligent and safe USB interface control method based on TCM chips Expired - Fee Related CN104978302B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510351964.5A CN104978302B (en) 2015-06-24 2015-06-24 A kind of intelligent and safe USB interface control method based on TCM chips

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510351964.5A CN104978302B (en) 2015-06-24 2015-06-24 A kind of intelligent and safe USB interface control method based on TCM chips

Publications (2)

Publication Number Publication Date
CN104978302A CN104978302A (en) 2015-10-14
CN104978302B true CN104978302B (en) 2018-02-23

Family

ID=54274820

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510351964.5A Expired - Fee Related CN104978302B (en) 2015-06-24 2015-06-24 A kind of intelligent and safe USB interface control method based on TCM chips

Country Status (1)

Country Link
CN (1) CN104978302B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107194289A (en) * 2017-03-29 2017-09-22 山东超越数控电子有限公司 A kind of USB interface permission control device and authority control method
CN110298183B (en) * 2019-06-26 2021-07-20 浪潮金融信息技术有限公司 Method for protecting data security in grading manner
CN111262703A (en) * 2020-01-13 2020-06-09 浪潮金融信息技术有限公司 Safe and credible Ethernet interface system and implementation method

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101079008A (en) * 2006-05-22 2007-11-28 中国软件与技术服务股份有限公司 Mobile memory divulgence protection method and system
CN101324912A (en) * 2008-07-30 2008-12-17 中国航天科工集团第二研究院七○六所 Credible safety computer
CN101714123A (en) * 2008-10-07 2010-05-26 谈剑锋 Document mobile memory device capable of ensuring information security and implementing method thereof
CN101881997A (en) * 2009-05-04 2010-11-10 同方股份有限公司 Trusted safe mobile storage device

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW468112B (en) * 1999-12-15 2001-12-11 Via Tech Inc Arbitrating method of bus between control chipsets
US20060072748A1 (en) * 2004-10-01 2006-04-06 Mark Buer CMOS-based stateless hardware security module

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101079008A (en) * 2006-05-22 2007-11-28 中国软件与技术服务股份有限公司 Mobile memory divulgence protection method and system
CN101324912A (en) * 2008-07-30 2008-12-17 中国航天科工集团第二研究院七○六所 Credible safety computer
CN101714123A (en) * 2008-10-07 2010-05-26 谈剑锋 Document mobile memory device capable of ensuring information security and implementing method thereof
CN101881997A (en) * 2009-05-04 2010-11-10 同方股份有限公司 Trusted safe mobile storage device

Also Published As

Publication number Publication date
CN104978302A (en) 2015-10-14

Similar Documents

Publication Publication Date Title
CN104778141B (en) A kind of TPCM modules based on control system trusted infrastructure and credible detection method
CN102006186B (en) System for monitoring illegal external connection of intranet equipment and method thereof
CN110011848B (en) Mobile operation and maintenance auditing system
CN104978302B (en) A kind of intelligent and safe USB interface control method based on TCM chips
CN105184196A (en) Electronic system information security protection system and method
CN103218181A (en) Data safety printing control method based on virtual printer technology
CN100334519C (en) Method for establishing credible input-output channels
CN105184181A (en) File encryption method, file decryption method and file encryption device
CN111770076A (en) Self-detection network security system and working method thereof
CN111046405B (en) Data processing method, device, equipment and storage medium
CN116662957A (en) Identity authentication method, identity authentication device, computer readable storage medium and computer equipment
CN108599932A (en) A kind of identity identifying method for electric system
CN114266081A (en) Operation and maintenance computer safety protection system and method of power monitoring system
CN104821879B (en) A kind of encryption method in electric power system data transfer
CN112968774B (en) Method, device storage medium and equipment for encrypting and decrypting configuration file
CN103457723B (en) A kind of encryption method and the encryption device based on it
CN202050425U (en) Illegal external connection monitoring system for internal network equipment
CN115118751B (en) Blockchain-based supervision system, method, equipment and medium
CN104579684A (en) SM2 checking algorithm suitable for data of power distribution network
CN117270928A (en) Online upgrading method, system, equipment and medium for trusted DCS (distributed control system) upper computer software
CN102694655A (en) Hardware anti-counterfeiting method for LKJ monitoring device
CN114844676A (en) Network security threat emergency disposal system and method for power monitoring system
CN105426705A (en) Encryption control system for accounting software
CN104091099A (en) Program encryption transmission method and system for single chip microcomputer
CN107896231B (en) Data encryption method for remote communication of energy hosting platform system

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
CB02 Change of applicant information
CB02 Change of applicant information

Address after: 250100 Ji'nan province hi tech Zone, Sun Village Branch Road, No. 2877

Applicant after: Shandong beyond CNC electronic Limited by Share Ltd

Address before: 250100 Ji'nan province hi tech Zone, Sun Village Branch Road, No. 2877

Applicant before: Chaoyue Digital Controlling Electronic Co., Ltd., Shandong Prov.

GR01 Patent grant
GR01 Patent grant
TR01 Transfer of patent right
TR01 Transfer of patent right

Effective date of registration: 20190415

Address after: 250100 No. 2877 Kehang Road, Sun Village Town, Jinan High-tech District, Shandong Province

Co-patentee after: Beijing mechanical and electrical engineering general design department

Patentee after: Shandong beyond CNC electronic Limited by Share Ltd

Address before: 250100 No. 2877 Kehang Road, Sun Village Town, Jinan High-tech District, Shandong Province

Patentee before: Shandong beyond CNC electronic Limited by Share Ltd

CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20180223

Termination date: 20190624