CN106855923A - A kind of electronic installation based on biological identification technology - Google Patents

A kind of electronic installation based on biological identification technology Download PDF

Info

Publication number
CN106855923A
CN106855923A CN201510902875.5A CN201510902875A CN106855923A CN 106855923 A CN106855923 A CN 106855923A CN 201510902875 A CN201510902875 A CN 201510902875A CN 106855923 A CN106855923 A CN 106855923A
Authority
CN
China
Prior art keywords
data
biological
biological identification
electronic installation
storage
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201510902875.5A
Other languages
Chinese (zh)
Inventor
李建彬
秦红胜
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhou Medical (beijing) Science And Technology Co Ltd
Original Assignee
Shenzhou Medical (beijing) Science And Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhou Medical (beijing) Science And Technology Co Ltd filed Critical Shenzhou Medical (beijing) Science And Technology Co Ltd
Priority to CN201510902875.5A priority Critical patent/CN106855923A/en
Publication of CN106855923A publication Critical patent/CN106855923A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Storage Device Security (AREA)

Abstract

The present invention relates to a kind of electronic installation based on biological identification technology, including:Storage device and biological identification device, storage device is used for the encryption storage and reading of types of applications and data, biological identification device is used to recognize human body biological characteristics, and carry out data transmission with storage assembly, storage device includes crypting component and storage assembly, crypting component is encrypted or is decrypted by data key, its key is the biometric feature value that the human body biological characteristics gathered with biological identification device are associated, storage assembly is used for data storage, for encryption data, line access is entered by crypting component.Electronic installation based on biological identification technology of the invention isolates access data by sandbox mechanism, and unifies to realize that the encryption of data is stored by I/O interfaces, and user and other application cannot improve the security of data by file system access private data.

Description

A kind of electronic installation based on biological identification technology
Technical field
The present invention relates to a kind of electronic installation, more particularly to a kind of electronic installation based on biological identification technology.
Background technology
USB flash disk is common external storage device now, and the characteristics of possess compact portable, capacity disclosure satisfy that most of interim storages Demand, but USB flash disk does not possess encryption storage capacity and identity distinguishing ability in itself, it is impossible to ensure the security of its memory storage content, Particularly when its storage content is related to secrecy even confidential content, if occurring stolen or losing, consequence is hardly imaginable.
Based on this, the USB flash disk based on encrypting fingerprint is occurred in that, it fixes the body for differentiating user using password or fingerprint identification technology Part, while realizing the encryption to storage file by built-in deciphering chip or application program.For above-mentioned based on encrypting fingerprint For USB flash disk, due to not expansible on product form, therefore other types of life can not be directly extended to from fingerprint identification technology Thing identification technology;Secondly, the USB flash disk is only as storage device, and function is more single;Again, on USB flash disk all data with file Form is accessed, and can arbitrarily be copied duplication or modification, there is no guarantee that the security of data;Also, the USB flash disk is used Fingerprint recognition must be used in combination with USB flash disk, it is impossible to used separately as authentication device;In addition, what USB flash disk encryption was used The key fingerprint and onrelevant used with discriminating, and same producer or consistent with the encryption key of a batch of USB flash disk, its In the password of a USB flash disk be cracked, other USB flash disks will also face same risk.
The content of the invention
The present invention is in order to solve the above-mentioned technical problem, it is proposed that a kind of electronic installation based on biological identification technology.
Electronic installation based on biological identification technology proposed by the present invention, including storage device and biological identification device, storage device For types of applications and data encryption storage with read, biological identification device is used to recognize human body biological characteristics, and with storage group Part carries out data transmission, wherein, storage device includes crypting component and storage assembly, and crypting component passes through data key It is encrypted or decrypts, its key is the biometric feature value that the human body biological characteristics gathered with biological identification device are associated, Storage assembly is used for data storage, for encryption data, line access is entered by crypting component.
Further, storage assembly includes an outside read apparatus, external memory and interface arrangement, and an outside read apparatus include should With area, for depositing the application based on application platform, external host can only carry out read-only operation to it, and external memory includes Privately owned memory block, for the application respective encryption private data of access in application area, it is accessed using by above-mentioned interface arrangement Middle data.
Preferably, the interface arrangement is serial ports.
Additionally, external memory also includes common storage area, the publicly-owned number of all applications access in application area is available for for storing According to, using or user can be accessed by host file system.
Further, crypting component is built-in with deciphering chip.
Specifically, biological identification device includes bio-identification component, communication part and power supply module, stored in bio-identification component Have to biological characteristic and using related key.Bio-identification component can also carry out identification authentication using human body biological characteristics.It is raw Thing recognizer component can recognize somatic fingerprint, iris etc..Communication part is used to enter line number with storage device in a wired or wireless fashion According to exchange, data exchange content is included to storage device transmission and biological characteristic and the related key of application and the authenticating result of application.
Beneficial effects of the present invention:
1. storage device is divisible with biological identification device in the electronic installation based on biological identification technology proposed by the present invention uses, Therefore expansible to support various biological identification technologies, biological identification device can also support the heart in addition to fingerprint recognition, iris recognition The bio-identification modes such as electric identification, gene identification, therefore hardware expanding is strong, possesses the ability of independent upgrade components.And by In having used the key that is associated with biological characteristic, therefore compared to other key forms, cryptographic security is higher, security protection Grade higher, is less susceptible to be cracked.
2. the electronic installation based on biological identification technology proposed by the present invention is a complete applied system equipment.It is preset in device Support cross-platform application platform environment, is capable of achieving the installation of types of applications system during later stage use, renewals, unloads, Each application realizes that each independent memory space can not be accessed mutually by Sandboxing, and data are flat by application in public domain The user biological identification of platform can be accessed after authorizing.
3. biological identification device can be used independently in the electronic installation based on biological identification technology proposed by the present invention.Bio-identification is filled Put can depart from storage device be independently operated, possess self-powered, charge and wireless connection capability, system combined with other application can make With realizing double factor or even multiple-factor certification.Therefore, hardware of the present invention is applied widely, and encryption storage is with mandate without mutually tie up Fixed, the biological identification device can independently be used as authentication means.
4. the encryption key of storage device uses biometric feature in the electronic installation based on biological identification technology proposed by the present invention Value.The encryption key of each device is different, is closely related with user's biological characteristic, if even if device is lost can replicate it The key that middle content is not associated with biological characteristic cannot also decrypt wherein content.
5. types of applications isolates access by sandbox mechanism in the electronic installation based on biological identification technology proposed by the present invention, and The encryption for unifying to realize data by I/O interfaces is stored.Such data are stored in the special area of storage device, all numbers It is both needed to be accessed by unified I/O interfaces according to content application, user and other application cannot be improved by file system access data The security of data.
Brief description of the drawings
Fig. 1 is the structural representation of the electronic installation based on biological identification technology of the invention;
Fig. 2 is the structural representation of the storage device included by the electronic installation based on biological identification technology of the invention;
Fig. 3 is the structural representation of the biological identification device included by the electronic installation based on biological identification technology of the invention;
Fig. 4 is the data storage flow chart of the electronic installation based on biological identification technology of the invention;
Fig. 5 is the workflow diagram of the biological identification device of the electronic installation based on biological identification technology of the invention.
Specific embodiment
To make the object, technical solutions and advantages of the present invention become more apparent, below in conjunction with specific embodiment, and referring to the drawings, The present invention is described in more detail.But those skilled in the art know, the invention is not limited in accompanying drawing and following examples.
Electronic installation based on biological identification technology proposed by the present invention is as shown in figure 1, the device includes storage device 1 and biology Identifying device 2.Wherein, storage device 1 is used for the encryption storage and reading of types of applications and data;Biological identification device 2 is used In identification human body biological characteristics, and data exchange is carried out with storage assembly 1 or other external equipments.Electronic installation of the invention can It is connected with other equipment with by wired or wireless way, it is preferred to use usb mode is connected with other equipment, now, this The electronic installation of invention can obtain electric power from other equipment by USB interface.
As shown in Fig. 2 storage device 1 includes crypting component 11 and storage assembly 12.Crypting component 11 is added by built-in Deciphering chip realizes hardware level encryption and decryption, and its key uses biometric feature value, biometric feature value to come from life Thing identifying device 2.
Storage assembly 12 is used to store types of applications and data, and be divided into for physical storage locations according to purposes many by storage assembly 12 Individual storage region, including application area 121,123 3 parts in privately owned memory block 122 and common storage area.Deposit application area 121 Put all kinds of cross-platforms based on application platform, for external host can only read-only access, when whole electronic installation passes through For example after the insertion main frame of memory interface 3 of USB, host computer system recognizes that the storage assembly 12 has outside read apparatus, outer Portion's storage device and serial port device, wherein application area 121 are an outside read apparatus, privately owned memory block 122 and common storage area 123 It is external memory, the host file system of privately owned memory block 122 is invisible.The automatic running carried by host operating system Mechanism starts application platform, and the application renewal in application area 121 must be carried out by application platform through above-mentioned serial port device;It is privately owned Memory block 122 is used for types of applications storage private data in application area 121, and wherein data are accessed using by above-mentioned serial port device; Common storage area 223 is used to store the publicly-owned data for being available for that all applications are accessed in application area 121, using or user can be by master Machine file system access.
As shown in figure 3, biological identification device 2 includes bio-identification component 21, communication part 22 and power supply module 23.
Bio-identification component 21 is used to recognize human body biological characteristics, and identification authentication is carried out using human body biological characteristics, including fingerprint, Iris etc., while also being stored in bio-identification component 21 to biological characteristic and using related key.
Communication part 22 is used to carry out data exchange with storage device 1 or other external equipments in a wired or wireless fashion, and data are handed over Changing content is included to the transmission of storage device 1 to biological characteristic and using related key, with other external equipments or application by having Line or wireless mode exchange authenticating result.
Power supply module 23 can be that communication part and bio-identification component provide electric power under wireless communication mode, be provided simultaneously with filling repeatedly Electric energy power.
When electronic installation of the invention is connected to external host, external host is identified as an outside read apparatus, external storage Device and serial port device, can run the application in application area 121 in an outside read apparatus, external memory can access public depositing Data in storage area 123, serial port device user is invisible.
Data storage flow of the invention is as shown in Figure 4.When certain in Running storage device 1 is applied, the application is to biology Identifying device 2 sends biometric authentication instruction, human body biological characteristics data is recognized by biological identification device 2, with database mid-early stage The associated biomolecule characteristic information of storage compares, and is verified, if being verified, storage device 1 allows the application memory and visit The data of the application are asked, while biological identification device 2 returns to human body biological characteristics at this to the crypting component 11 of storage device 1 The corresponding key in, this key is associated with human body biological characteristics and the application, is applied to the same human body life of different application Key corresponding to thing feature is different, it is ensured that the security of application data.This key of applications exploiting is through serial port device and encryption and decryption group Part 11 is communicated, and crypting component 11 is encrypted using the key for obtaining to the data for storing or the data to reading are decrypted, So as to realize the access to application data in privately owned memory block 122.
The workflow of biological identification device of the invention is as shown in Figure 5.It is independent that biological identification device 2 can depart from storage device 1 Use, when used alone, ask biometric authentication to ask biometric authentication by external host, electricity is now opened by external switch To start biological identification device 2, power supply module 23 is that whole biological identification device 2 provides supply of electric power to source component 23, then External host connects bio-identification component 21 and by interface requests biometric authentication in a wired or wireless fashion by communication part 22, After user is verified on bio-identification component 21, bio-identification component 21 is returned to external host by communication part 22 and tested The key of card result and combination biometric feature value and application identities.
More than, embodiments of the present invention are illustrated.But, the present invention is not limited to above-mentioned implementation method.It is all this Within the spirit and principle of invention, any modification, equivalent substitution and improvements done etc. should be included in protection model of the invention Within enclosing.

Claims (9)

1. a kind of electronic installation based on biological identification technology, including:Storage device and biological identification device, storage device are used for Encryption storage and the reading of types of applications and data, biological identification device is used to recognize human body biological characteristics, and enters with storage assembly Row data transfer, it is characterised in that:Storage device includes crypting component and storage assembly,
Crypting component is encrypted or is decrypted by data key, and its key is the human-body biological gathered with biological identification device The associated biometric feature value of feature,
Storage assembly is used for data storage, for encryption data, line access is entered by crypting component.
2. the electronic installation of biological identification technology is based on as claimed in claim 1, it is characterised in that:Storage assembly includes outside Read apparatus, external memory and interface arrangement,
An outside read apparatus include application area, and for depositing the application based on application platform, external host can only carry out read-only to it Operation,
External memory includes privately owned memory block, for the application respective encryption private data of access in application area, using logical Cross above-mentioned interface arrangement access wherein data.
3. the electronic installation of biological identification technology is based on as claimed in claim 2, it is characterised in that:External memory is also wrapped Include common storage area, for storing the publicly-owned data for being available for that all applications are accessed in application area, using or user can be by main frame text Part system is accessed.
4. the electronic installation of biological identification technology is based on as claimed in claim 2 or claim 3, it is characterised in that:The interface arrangement It is serial ports.
5. the electronic installation of biological identification technology is based on as claimed in claim 1, it is characterised in that:Crypting component is built-in with Deciphering chip.
6. the electronic installation of biological identification technology is based on as claimed in claim 2, it is characterised in that:Biological identification device includes Bio-identification component, communication part and power supply module, are stored with to biological characteristic and using related key in bio-identification component.
7. the electronic installation of biological identification technology is based on as claimed in claim 6, it is characterised in that:Bio-identification component can also Enough identification authentication is carried out using human body biological characteristics.
8. the electronic installation based on biological identification technology as claimed in claims 6 or 7, it is characterised in that:Bio-identification component For recognizing somatic fingerprint, iris etc..
9. the electronic installation based on biological identification technology as claimed in claims 6 or 7, it is characterised in that:Communication part is used for Data exchange is carried out with storage device in a wired or wireless fashion, data exchange content is included to storage device transmission and biological characteristic To the related key of application and the authenticating result of application.
CN201510902875.5A 2015-12-09 2015-12-09 A kind of electronic installation based on biological identification technology Pending CN106855923A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201510902875.5A CN106855923A (en) 2015-12-09 2015-12-09 A kind of electronic installation based on biological identification technology

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201510902875.5A CN106855923A (en) 2015-12-09 2015-12-09 A kind of electronic installation based on biological identification technology

Publications (1)

Publication Number Publication Date
CN106855923A true CN106855923A (en) 2017-06-16

Family

ID=59132769

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201510902875.5A Pending CN106855923A (en) 2015-12-09 2015-12-09 A kind of electronic installation based on biological identification technology

Country Status (1)

Country Link
CN (1) CN106855923A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107330305A (en) * 2017-06-28 2017-11-07 北京小米移动软件有限公司 To the access right control method and device of data in the external storage of mobile terminal
CN108229149A (en) * 2017-12-29 2018-06-29 北京安云世纪科技有限公司 A kind of method and apparatus of data protection
CN108900296A (en) * 2018-07-04 2018-11-27 昆明我行科技有限公司 A kind of code key storage device and method based on living things feature recognition

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050244037A1 (en) * 2004-04-30 2005-11-03 Aimgene Technology Co., Ltd Portable encrypted storage device with biometric identification and method for protecting the data therein
CN102521571A (en) * 2011-12-02 2012-06-27 孙霁 Multimode biological identifying device and method thereof
US20120331304A1 (en) * 2011-06-21 2012-12-27 Dong Liang She Key based secure operating system with secure dongle and method, and cryptographic method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20050244037A1 (en) * 2004-04-30 2005-11-03 Aimgene Technology Co., Ltd Portable encrypted storage device with biometric identification and method for protecting the data therein
US20120331304A1 (en) * 2011-06-21 2012-12-27 Dong Liang She Key based secure operating system with secure dongle and method, and cryptographic method
CN102521571A (en) * 2011-12-02 2012-06-27 孙霁 Multimode biological identifying device and method thereof

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107330305A (en) * 2017-06-28 2017-11-07 北京小米移动软件有限公司 To the access right control method and device of data in the external storage of mobile terminal
CN108229149A (en) * 2017-12-29 2018-06-29 北京安云世纪科技有限公司 A kind of method and apparatus of data protection
CN108229149B (en) * 2017-12-29 2020-11-06 北京安云世纪科技有限公司 Data protection method and device
CN108900296A (en) * 2018-07-04 2018-11-27 昆明我行科技有限公司 A kind of code key storage device and method based on living things feature recognition
CN108900296B (en) * 2018-07-04 2021-11-09 昆明我行科技有限公司 Secret key storage method based on biological feature identification

Similar Documents

Publication Publication Date Title
CN103886234B (en) A kind of fail-safe computer based on encryption hard disk and data security control method thereof
CN105391840B (en) Automatically create destination application
CN201181472Y (en) Hardware key device and movable memory system
CN104573441B (en) A kind of computer and its data encryption with data security function and hiding method
CN101470783B (en) Identity recognition method and device based on trusted platform module
CN101562040B (en) Data processing method of high-security mobile memory
CN102624699B (en) Method and system for protecting data
CN105900104A (en) Applet migration in a secure element
CN104090853A (en) Solid-state disc encryption method and system
CN107408175A (en) For the challenge responses certification from encryption driving
CN103310169A (en) SD (Secure Digital) card data protection method and protection system thereof
CN101122942A (en) Data safe reading method and its safe storage device
CN105809070A (en) USB flash disk fingerprint authentication encryption method
CN108681909A (en) The intelligent anti-counterfeiting device realized based on block chain intelligence contract and method for anti-counterfeit of tracing to the source
CN101650693A (en) Security control method for mobile hard disk and security mobile hard disk
EP3355231A1 (en) Mobile data storage device with access control functionality
CN102932140A (en) Key backup method for enhancing safety of cipher machine
CN110324358A (en) Video data manages authentication method, module, equipment and platform
CN102693399A (en) System and method for on-line separation and recovery of electronic documents
CN201590091U (en) Encryption type memory card read/write device based on password authentication
CN201185082Y (en) Mobile memory with high safety
CN105303093A (en) Token verification method for cryptographic smart token
CN106855923A (en) A kind of electronic installation based on biological identification technology
CN101930521A (en) File protecting method and device thereof
CN102184144A (en) Hardware-encryption mobile hard disk drive and application method thereof

Legal Events

Date Code Title Description
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170616

RJ01 Rejection of invention patent application after publication