CN108563467B - PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method - Google Patents

PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method Download PDF

Info

Publication number
CN108563467B
CN108563467B CN201810247274.9A CN201810247274A CN108563467B CN 108563467 B CN108563467 B CN 108563467B CN 201810247274 A CN201810247274 A CN 201810247274A CN 108563467 B CN108563467 B CN 108563467B
Authority
CN
China
Prior art keywords
pad
data
touch
driver
function
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201810247274.9A
Other languages
Chinese (zh)
Other versions
CN108563467A (en
Inventor
冀会芳
江云松
冯涛
高猛
张榕冰
郑竹萌
李辉辉
孟褔奎
李大东
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Sunwise Information Technology Ltd
Original Assignee
Beijing Sunwise Information Technology Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Sunwise Information Technology Ltd filed Critical Beijing Sunwise Information Technology Ltd
Priority to CN201810247274.9A priority Critical patent/CN108563467B/en
Publication of CN108563467A publication Critical patent/CN108563467A/en
Application granted granted Critical
Publication of CN108563467B publication Critical patent/CN108563467B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4411Configuring for operating with peripheral devices; Loading of device drivers
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/572Secure firmware programming, e.g. of basic input output system [BIOS]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/40Transformation of program code
    • G06F8/41Compilation

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Stored Programmes (AREA)

Abstract

A PAD hardware meeting the requirements of security and confidentiality is manufactured, an operating system of the PAD is modified into a Win7 system, USB3.0 and WIN NVMe driving programs are injected, antivirus software and confidentiality three-in-one software are installed, and finally the PAD touch screen driving program is compiled and installed to finish the PAD with the touch screen meeting the requirements of security and confidentiality. Compared with the prior art, the safe and confidential PAD obtained by the method can be applied to meetings, reviews and the like in confidential places, paperless office is realized, printing of a large amount of confidential materials is avoided, the problem of secret leakage caused by misoperation in the process of destroying confidential files is avoided, and management of confidential data is facilitated.

Description

PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method
Technical Field
The invention relates to the field of mobile office such as security property units, in particular to a PAD implementation method with a touch screen, which accords with security.
Background
PAD is widely applied to the mobile and paperless office field, especially the multifunctional integrated safe conference management system for issuing, recovering and modifying postil on line of conference files is widely applied, plays a role in saving various cost expenditures of the conference, simplifying the complex work of file material preparation before the conference, filing and destroying files after the conference, and greatly reduces the labor and material cost of the conference. In government departments, military troops, military industry and various security units, the work of printing and recovering the paper documents of the security documents is heavy, and the cost and the risk of recovering and managing the paper documents are higher, so that the call for meeting the security units in paperless mobile offices is higher.
Meanwhile, in order to fundamentally solve the threat of spyware such as 'ferry trojans' to confidential information, a confidential unit must install a confidential information protection product which strictly complies with the relevant standards and technical requirements of the national security bureau and is evaluated by the national security department. The three-in-one product is a combined product of a U disk one-way leading-in device, a special secret-related U disk and a secret-related computer for preventing illegal external connection. The system carries out authorization, authentication, management and audit on the USB mobile storage medium of the controlled host, blocks a possible information leakage channel of the controlled host, carries out one-way control of a physical layer on the information transmitted to the confidential computer through the USB mobile storage equipment, and effectively prevents the confidential information from reversely flowing into the USB mobile storage equipment in the information transmission process. The system functions include: the illegal external connection management control can monitor and block illegal behaviors of a confidential computer accessing the Internet in various modes, and can send alarm information to a management end; the mobile storage medium uses the administrative control, the administrator can limit the application range of the special USB flash disk of the confidential, make it only can exchange the data on the confidential computer in the permission range; the special confidential USB flash disk cannot be accessed to a non-confidential computer, and the common USB flash disk cannot be directly accessed to the confidential computer, so that the cross mixed use of mobile storage media is avoided; the non-confidential information is led in one direction, and the stored non-confidential information can be safely led into the confidential computer by the common USB flash disk through the multifunctional leading-in device.
However, when the PAD application function is performed, the following contradictions exist:
1) in view of the nature of the security unit, the use of mobile office equipment must comply with security management regulations, at least a "triple play system" is installed and strictly managed. However, from compatibility, the three-in-one security platform generally supports current mainstream operating systems such as Win7 and Win8, and does not support the version of Win 10;
2) many PAD hardware designs with touch function on the market are designed according to the win10 operating system;
3) the architecture of the design of the win7 system is inconsistent with the architecture of the system of the win10, so that the win7 system cannot be compatible with the touch function of the PAD sold on the market, and meanwhile, the official part cannot provide touch driving compatible with the win 7; therefore, if the pad installed with the win7 system is selected for security, the touch screen function is not supported. If the touch function is abandoned, the application and popularization effect of the PAD is greatly reduced; based on the background, the invention provides a PAD implementation method with a touch screen, which is in accordance with safety and confidentiality.
Disclosure of Invention
The technical problem solved by the invention is as follows: the PAD implementation method with the touch screen, which is in accordance with the security, overcomes the defects of the prior art, solves the problems that no USB3.0 drive exists and hard disks cannot be identified on an NVMe SSD by updating a PAD operating system, and is in accordance with the security management requirements of government departments, military industry and various security-related units in order to keep the application of the touch screen.
The technical solution of the invention is as follows: a PAD realization method with a touch screen, which accords with security, comprises the following steps:
(1) manufacturing PAD hardware meeting the security requirement;
(2) modifying the PAD operating system into a Win7 system, and injecting a USB3.0 and WIN NVMe driver;
(3) installing antivirus software and confidentiality three-in-one software;
(4) and compiling and installing a PAD touch screen driving program to finish the PAD with the touch screen which is in accordance with safety and confidentiality.
The method for manufacturing the PAD hardware meeting the security requirement comprises the following steps: and dismantling the camera, the wifi module and the Bluetooth in the middle of the PAD hardware, which meet the requirements of confidential management.
The method for modifying the PAD operating system into a Win7 system and injecting the USB3.0 and WIN NVMe drivers comprises the following steps:
(1) mapping the downloaded Windows 7 mirror image system to a U disk by using UltraISO software;
(2) loading the USB3.0 drive and the NVMe drive to the USB flash disk by using an injection tool corresponding to a PAD mainboard manufacturer;
(3) and (4) booting the U disk by using the obtained system, and completing Win7 system modification and USB3.0 and WIN NVMe driver injection.
The method for compiling and installing the PAD touch screen driving program in the PAD touch screen driving program comprises the following steps:
(1) VMware work is installed on a development machine, further a Win7 virtual machine is installed by utilizing virtual machine software, and a drive development environment WDK, a Visual Studio 2008 and WinDbg are installed on a Win 7;
(2) taking a driveEntry function as an inlet of a drive function and an equipment addition response function, calling a WdfdriverCreate function to initialize a dirver object, and initializing a DRIVER object by using a WDF _ DRIVER _ CONFIG structure; taking a second parameter in the WDF _ DRIVER _ CONFIG as an equipment addition initialization function, finishing the initialization of a queue and an interrupt, and naming the initialization function as TouchEvtDeviceAdd ();
(3) acquiring equipment data through a function TouchEvtDeviceAdd to further obtain touch data, and identifying the touch data by means of a motion model to obtain a user gesture;
(4) and (3) forming a PAD touch screen driver compiling file for the operation flows corresponding to the step (2) and the step (3), and then installing the compiled driver into a Win7 virtual machine.
The method for obtaining the device data through the function touch element device add to further obtain the touch data, and identifying the touch data by means of the motion model to obtain the user gesture comprises the following steps:
(1) creating a device object and registering a function WDF _ IO _ QUEUE _ CONFIG _ INIT responding to the IO read request;
(2) processing equipment data, converting naked data into HID data TranslateRawDataToHID, and identifying the HID data TranslateRawDataToHID by means of a motion model to obtain a user gesture; the equipment data comprises a mouse acquisition mode and a multi-point touch mode; the multi-touch mode comprises translation, zooming and rotation.
And the PAD touch screen driver compiling file comprises a sys driver and an INF installation file.
A PAD with a touch screen, which accords with security, comprises a touch display module, a security module, a driving module, an operating system module and a service module; wherein:
the touch display module supports multi-point touch input operation and performs single-screen or multi-screen display; the security and secrecy module has the functions of antivirus, Trojan horse prevention and data transmission secrecy management; the driving module provides the touch, service function and the driving required by the operating system; the operating system module provides touch, service functions and drives the required operating system; the service module provides service functions required by the current PAD.
Compared with the prior art, the invention has the advantages that:
(1) compared with the prior art, the safe and confidential PAD obtained by the method can be applied to meetings, reviews and the like in confidential places, paperless office is realized, printing of a large amount of confidential materials is avoided, the problem of secret leakage caused by misoperation in the process of destroying confidential files is avoided, and management of confidential data is facilitated;
(2) the safe and confidential PAD constructed by the method can be provided with a touch screen, so that the portability of the equipment is greatly improved, the use efficiency is improved, the application grade is improved, the method is easy to popularize and has a good use effect;
(3) the method can be applied to the mobile office field which is not easy to use a PC (personal computer), such as material/equipment inventory checking, offline data acquisition and the like, realizes electronic coverage on the area which can not realize informatization management at present, provides informatization level, automatically accesses data, improves data acquisition efficiency, and lays a foundation for real-time display of the whole process and range data;
(4) the method realizes the obtained safe and confidential PAD, and avoids printing confidential materials before meeting, destroying after meeting, complicated examination and approval links in the middle and waste of a large amount of paper; the method improves the data acquisition efficiency when being used in a production workshop and the like, avoids the complex steps of repeated input of paper and electronics and the like, and can improve the willingness of using an information system.
Drawings
FIG. 1 is a schematic diagram of a PAD suitable for use in the present patent;
FIG. 2 is a general principle of a driver;
FIG. 3 is a mechanism for touch actuation;
FIG. 4 is a schematic illustration of the positioning of a touch screen driver;
FIG. 5 is a logic diagram for implementing a touch screen event;
fig. 6 shows the contents of a drive packet in the present invention.
Detailed Description
The invention provides a PAD implementation method with a touch screen, which is in accordance with the security and confidentiality aiming at the defects of the prior art, solves the problems that no USB3.0 drive exists and a hard disk cannot be identified on an NVMe SSD by updating a PAD operation system, and is in accordance with the security and confidentiality management requirements of government departments, military industry and various confidential units in order to keep the application of the touch screen. The present invention will be further described in detail and with reference to the following examples and figures in order to facilitate the understanding and practice of the invention by those of ordinary skill in the art.
Step one, hardware manufacturing of safe and confidential PAD
And (4) removing the key camera, wifi module, Bluetooth and other modules which do not conform to the requirements of confidential management.
Step two, reinstallation of safe and secret PAD operation system
On NVMe SSDs with different operating systems installed as shown in fig. 1, the drivers that need to be additionally installed are different. For example, the Win10 system has integrated the USB3.0 and Win NVMe drivers necessary for installing NVMe SSD, so normal use can be directly installed, but the Win7 system is installed, and the installation first judges PAD platform attributes to decide whether to install USB3.0 or Win vme driver. Two main difficulties are estimated in the step of installing the Win7 system in the NVMe SSD:
(1)100/200 the main board is changed to XHCI main control, lacking USB3.0 drive, if not brushing in the drive, it shows that all USB interfaces including mouse and keyboard are invalid after entering the installation interface, even if the mouse and keyboard of PS/2 interface are available, the U disk can not be installed.
(2) Win7is installed on a system mainboard of a part 9/8, an applicable NVMe driver needs to be loaded, and if the NVMe driver is not loaded, the disk cannot be recognized when the NVMe driver enters a partition and an installation interface, so that the NVMe driver cannot be installed.
Because the Win10 system integrates the USB3.0 and Win NVMe drivers necessary to install NVMe SSD, after downgrading the Win10 system to a Win7 system, to ensure USB is available, disk is readable, both drivers must be manually injected.
Preparing materials, namely a USB flash disk starting disk; UltraISO software; motherboard injection tools (there are similar injection tools for stars, large, craftsman, etc.); NVMe drive suitable for SSD corresponding to the PAD; windows 764 bit master image.
The basic process of the preparation: (1) mapping the downloaded Windows 7 mirror image system to a U disk by using UltraISO software; (2) loading the USB3.0 driver and the NVMe driver to the USB flash disk by using an injection tool provided by a mainboard manufacturer; (3) and burning to obtain a system guide U disk, and loading the NVMe drive into the U disk.
The specific operation steps are as follows:
1, Ultraiso opens a Win10ISO write U disk;
2, Ultraiso opens Win7ISO to extract INSTALL.WIM, creates wimmount and hotfix folders, places patch files into the hotfix folders, places the INSTALL.WIM, the hotfix and wimmount folders into the same directory to execute the following commands, and integrates NVMeq drive into a Win7 installation file to form a new file Win7 instance.Wim. The method comprises the following specific steps:
(1) mount image from WIM file:
Dism/Mount-WIM/WimFile:E:\install.wim/Index:4/MountDir:E:\wimmount
(2) the new image is then added to the WIM file:
Dism/Image:E:\wimmount/Add-Package/PackagePath:E:\hotfix
(3) uninstall the image with the DISM:
Dism/Unmount-WIM/MountDir:E:\wimmount/Commit
3. and replacing the install.wim file in the U disk with the obtained Win7install.wim file.
4. And selecting UEFI to start the USB flash disk and directly installing.
Step three, installation of safe and confidential PAD confidential software
In order to meet the security, not only the hardware meets the security regulations, but also security software, such as antivirus software and security three-in-one software, must be installed. Because the selected security triple play software cannot normally operate under the Win10 environment, the PAD operating system based on the invention is degraded from Win10 to Win7, and the security triple play software can be installed.
Step four, realizing and installing safe and confidential PAD touch screen drive
1. Touch screen driven system positioning
FIG. 4 is a schematic diagram of the positioning of a touch screen driver, and the touch from Win8 has been expanded to include devices such as a stylus, a touch device, a multi-touch device, and the like. These devices interact with windows using the human interaction device HID protocol. The HID driver is included in the windows8, so that the HID driver does not need to be implemented by the driver, and the use condition of the windows equipment only needs to be reported in a hardware driver. As shown in fig. 2, the Driver is a bridge between the Device and the operating system, and is a software component that enables the operating system and the Device to communicate with each other, so as to enable the Device to collect information and communicate with the operating system. For example, assuming that an application needs to read some data from the device, the application will call a function implemented by the operating system, and the operating system will call a function implemented by the driver. The driver (written by the same company that designed and manufactured the device) knows how to communicate with the device hardware to obtain the data. When the driver retrieves the data from the device, it returns the data to the operating system, which returns the data to the application. The touch hardware device receives input data from the user and the task of the touch screen driver is to bridge between the touch screen device and the win7OS messaging.
As shown in FIG. 3, there is also a filter driver that typically performs hierarchical participation in a stack for a given I/O request (e.g., reading data from a device) with the first participating object at the top and the last participating object at the bottom. Some drivers in the stack may participate by translating requests from one format to another, which do not communicate directly with the device, manipulate the requests and pass them to drivers below the stack, one driver in the stack that communicates directly with the device being referred to as a function driver, and the driver that performs the auxiliary processing being referred to as a filter driver.
2. Windows touch driver
Based on the new Driver development environment wdf (windows Driver foundation) of microsoft, there are two modes, KMDF (kernel mode Driver) and UMDF (user mode Driver).
Kernel-Mode Driver KMDF (Kernel-Mode Driver Framework), which executes as part of Kernel-Mode operating system components, manages I/O, plug and play, memory, processes and threads, security, and the like.
A User-Mode Driver UMDF (User-Mode Driver Framework), which typically provides an interface between Win32 applications and kernel-Mode drivers or other operating system components. User mode drivers support protocol-based or serial bus-based devices such as video cameras and portable music players.
No matter the driver of the kernel mode or the driver of the user mode, the same environment is used for construction, and the environment is called WDK; all adopt the same set of object model to construct, adopt the same foundation to bear, this foundation is WDF. The WDF driving model provides an object-oriented and event-driven driver development framework, so that the development difficulty is greatly reduced. The KMDF is a Windows system bottom driver, and has the file name: *. SYS, Vista provides KMDF for 2 ten thousand peripherals, which also includes USB2.0, so for FX2 with USB2.0 protocol, only the UMDF related to FX2 needs to be written; UMDF is a user-layer driver, with the file name: *. DLL.
1) Drive development environment preparation:
first, in order to develop a driver, it is necessary to prepare a native Win7 (development environment) and a virtual machine Win7 (simulation debuggee system). Generally, VMware work is installed on a development machine, and then Win7 virtual machines are installed by utilizing VMware and other virtual machine software;
installing a drive development environment WDK on the Win7 of the machine;
installing Visual Studio 2008 on the Win7 of the computer to compile the drive;
and installing WinDbg on the native Win7 to perform online (virtual machine) debugging, so that the editing, compiling and debugging environments are available.
2) A driving development process:
installing Visual Studio 2008 for programming drivers, wherein the programming steps of the drivers are as follows:
21) and implementing a DriverEntry function as an entry of a drive function as a device addition response function.
First, call the wdfddrivercreate function in this function to initialize a dirver object, and initialize the DRIVER object using the WDF _ DRIVER _ CONFIG structure.
The WDF _ DRIVER _ CONFIG structure is defined as follows:
Figure BDA0001606889350000091
the second parameter in WDF _ DRIVER _ CONFIG is to add an initialization function to an apparatus to complete the initialization of the resources (queues, interrupts, etc.) of the dynamic program. In the practice of the present invention, the initialization function is named TouchEvtDeviceAdd ().
22) And acquiring equipment data in an equipment adding response function TouchEvtDeviceAdd, and putting the original touch data into a motion model for calculation according to a touch mode so as to recognize the gesture of the user.
Firstly, creating an equipment object, registering a function WDF _ IO _ QUEUE _ CONFIG _ INIT responding to an IO read request, and using the function WDF _ IO _ QUEUE _ CONFIG _ INIT for reading and writing and controlling equipment; and then processing the device data, mainly converting the naked data into HID data TranslateRawDataToHID, fully considering the definition of hardware on the naked data in the process of realizing the function, acquiring a mouse/multi-point touch mode by using the device context, and simultaneously judging the state of the finger.
For example, two fingers are put together in the window, one finger slides upwards and the other finger slides downwards to enlarge, the two fingers are put on the window separately, and the sliding between the two fingers is to reduce. The program recognizes this gesture and, in a first step, gets a message that the hand points to the screen. And secondly, calculating the distance according to the coordinates of the two fingers, and comparing the distance of the two fingers according to an empirical value to obtain whether the two fingers are separated or the two fingers are closed. And thirdly, capturing the coordinates of the fingers in real time according to a timer to calculate the moving direction and speed, and further judging whether the two fingers slide reversely or oppositely.
The implementation of the pan gesture requires distinguishing whether the user wants to change the position of the picture or turn the page, and acceleration must be used. The finger coordinates are captured in real time in a timer, the speed and the acceleration are calculated, the speed and the acceleration can be compared with the acceleration through an empirical value, when the acceleration is large, the page turning can be considered, and otherwise, the dragging can be considered. Besides, when dragging, it needs to further judge whether the program boundary is reached, and if the program boundary is reached, the page is also considered to be turned. For the page-turning process, if the page is rapidly moved to the left or reaches the left boundary, the page is considered as the previous page.
Fig. 5 is a schematic diagram of a gesture (translation, zoom, and rotation) of the touch screen implemented by the combination of the work sequence and the logical relationship between events. The touch move mode is entered after the operation is first started, and is performed by operation change and iteration within the operation (touch down/down move) until there is no further action and the operation is completed.
3) Preparing a compiled document
After the driver is written, the task of the compiling stage is to generate the sys driver and the INF installation file. The sys dynamic library is compiled according to the source code written by the invention to form a drive file; files such as makefile and sources required for compilation need to be prepared. Makefile and Makefile. inc file can be copied directly from the example, and basically remain unchanged.
31) Writing an INX file
(pseudo-code is not well suited in the patent, please assemble the following yellow background content into the form of steps)
Please refer to the WDK example in the writing process. The INX file is similar to the format of the ini file, and a ying-ini file can be created, wherein the INX file is the same as the driver in general.
The version field is added first, which is also a mandatory field:
(ii) a Version field
[Version]
Signature $ WINDOWS NT $; fixing
Class HUSTSample; the driver of the invention does not belong to the existing equipment class, and defines a new equipment class
ClassGuid ═ FDA3877E-5FF3-4c18-8235-7FEA16EE04E2 }; GUID of device class
Provider ═% ProviderName; author of driver, specified by ProviderName in string field
DriverVer 01/12/2016, 21.12.36.570; a drive version;
string field [ Strings ] ProviderName ═ hus 10; driving author
Provider refers to the content in the string field, and other parts also define the related content in the string field. Here, a GUID of a device class is needed, and if Visual Studio is installed, there is a guidggen. exe tool under the Tools directory, which can be used to generate GUID, or certainly, a GUID can be generated online from a website.
Because the invention adds own device Class HUSTD10 newly, the related registry key needs to be added under HKLM \ SYSTEM \ Current Control \ Class of the registry, therefore, the next domain to be added by the INX file is the device Class installation domain. The device of the invention then needs to be assigned a manufacturer domain and a product domain, followed by information about the device itself, i.e. the device domain or the device installation domain, is an important part, also called the DDInstall domain.
-----------------------------------------------------------------------;
Device installation domain [ star _ device.NT ]
CopyFiles ═ Drivers _ Dir; sys specifies a list of files to be copied, which are typically driver files written in accordance with the present invention
(ii) a Drivers _ Dir subfield
[ Drivers _ Dir ]. star. sys; drive file compiled by the invention
An important sub-domain, namely a service sub-domain, of the device installation domain is defined, and is used for registering services with the system and providing support for the operation of the device.
---------------------------------------------------------------------
(ii) a Device domain service subdomain
[**_Device.NT.Services]
AddService ═,% SPSVCINST _ assosrvice%,% Service _ Inst; adding a Service instruction, wherein the name of the added Service is ×,% SPSVCINST _ ASSOCSERVICE% is a mark, specifying how to add the Service, and is defined in Setupapi.h, and ×,/Service _ Inst is a Service installation sub-domain; a character string field [ Strings ] SPSVCINST _ asscestervice ═ 0x 00000002; the service installs the token.
The following are service installation sub-domains:
---------------------------------------------------------------------
(ii) a Service install sub-domain
[**_Service_Inst]
DisplayName ═ SVCDESC%; service display name, different from service name
ServiceType is 1; type of service
SERVICE _ kernell _ DRIVER StartType is 3; type of start-up
SERVICE _ DEMAND _ START error control is 1; error control level
SERVICE_ERROR_NORMAL ServiceBinary=%12%\**.sys
(ii) a Mirror file path, i.e. sys file path
(ii) a Character string field
[Strings]
SVCDESC ═ Service "; service display name
32) Generating INF files
The INF file can be generated according to the written INX file by a StampInf. exe tool under a bin directory in the WDK, and the INF file is called in the makefile through a batch processing command later.
33) Writing Source file
There is next a file to be written, i.e. a sources file.
------------------------------------------------------------------
Sys filename after TARGETNAME × # compilation
TARGETTYPE DRIVER # compile type
KMDF _ VERSION _ MAJOR ═ 1# KMDF master VERSION
INF _ NAME # INF filename generated by this variable is referenced in makefile
INCLUDES $ (INCLUDES); .. \ inc # header file directory
NTTARGETFILE0=$(OBJ_PATH)\$(O)\$(INF_NAME).inf
PASS0_ BINPLACE $ (NTTARGETFILE0) # INF file path generated by INX
C _ DEFINES ═ C _ DEFINES) # switches for compilers
Source code file list of source code
Files required for compiling are ready, a compiling environment is opened, a project directory is entered, a build command is input for compiling, the compiling generates the sys, the inf and symbol files for debugging, and then the driver is installed.
4) Mounting drive
And installing the compiled driver into a Win7 virtual machine.
41) A drive package is prepared. And copying the star sys and the star inf generated by the previous compilation, and then copying an auxiliary installation dll in the WDK under a redist \ wdf \ x86 directory, wherein libraries of two versions, namely a debugged version and a Release version are arranged. The debugging version used by the invention is compiled, so that the debugging version is also carried, as shown in FIG. 6, the content of the drive package is copied, and the drive content shown in FIG. 6 is copied into the WinXP virtual machine.
42) Find "add hardware" wizard in control panel, click "i have connected this hardware", then select "add new hardware Device" at the bottom of list, "click" install hardware i manually select from list, "select" show all devices "at the top," click "install from disk," select.
Those skilled in the art will appreciate that those matters not described in detail in the present specification are well known in the art.

Claims (1)

1. A realization method of PAD with a touch screen, which accords with security, is characterized by comprising the following steps:
(1) installing a Win7 operating system on PAD hardware compatible with a Win10 operating system, and adopting a method of injecting USB3.0 and WIN NVMe driving programs to solve the problem that a USB interface is invalid after the version of the operating system is reduced;
(2) developing a touch screen driving program adaptive to a Win7 system on PAD hardware compatible with a Win10 operating system, acquiring device data through a function touch element device add to further obtain touch data, and identifying by means of a motion model according to the touch data to obtain a user gesture; compiling and installing a developed PAD touch screen driving program through a USB interface to complete the PAD with the touch function which accords with safety and confidentiality;
the method for solving the problem of failure of the USB interface after the version of the operating system is reduced by installing a Win7 operating system on PAD hardware compatible with a Win10 operating system and adopting a method of injecting USB3.0 and WIN NVMe drivers comprises the following steps:
(11) mapping the downloaded Windows 7 mirror image system to a U disk by using UltraISO software;
(12) loading the USB3.0 drive and the NVMe drive to the USB flash disk by using an injection tool corresponding to a PAD mainboard manufacturer;
(13) guiding the U disk by using the obtained system, completing Win7 system correction and USB3.0 and WIN NVMe driver injection;
the specific process of the step (2) is as follows:
(21) taking a driveEntry function as an inlet of a drive function and an equipment addition response function, calling a WdfdriverCreate function to initialize a dirver object, and initializing a DRIVER object by using a WDF _ DRIVER _ CONFIG structure; taking a second parameter in the WDF _ DRIVER _ CONFIG as an equipment addition initialization function, finishing the initialization of a queue and an interrupt, and naming the initialization function as TouchEvtDeviceAdd ();
(22) acquiring equipment data through a function TouchEvtDeviceAdd to further obtain touch data, and identifying the touch data by means of a motion model to obtain a user gesture;
(23) forming a PAD touch screen driver compiling file for the operation flows corresponding to the step (21) and the step (22), and then installing the compiled driver into a Win7 virtual machine;
the method for obtaining the device data through the function touch element device add to further obtain the touch data, and identifying the touch data by means of the motion model to obtain the user gesture comprises the following steps:
(31) creating a device object and registering a function WDF _ IO _ QUEUE _ CONFIG _ INIT responding to the IO read request;
(32) processing equipment data, converting naked data into HID data TranslateRawDataToHID, and identifying the HID data TranslateRawDataToHID by means of a motion model to obtain a user gesture; the equipment data comprises a mouse acquisition mode and a multi-point touch mode; the multi-touch mode comprises translation, zooming and rotation.
CN201810247274.9A 2018-03-23 2018-03-23 PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method Active CN108563467B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810247274.9A CN108563467B (en) 2018-03-23 2018-03-23 PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810247274.9A CN108563467B (en) 2018-03-23 2018-03-23 PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method

Publications (2)

Publication Number Publication Date
CN108563467A CN108563467A (en) 2018-09-21
CN108563467B true CN108563467B (en) 2021-12-07

Family

ID=63532993

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810247274.9A Active CN108563467B (en) 2018-03-23 2018-03-23 PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method

Country Status (1)

Country Link
CN (1) CN108563467B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111506275A (en) * 2020-04-20 2020-08-07 北京睛像科技有限公司 Confidential asset management all-in-one machine equipment and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103576787A (en) * 2013-10-31 2014-02-12 中晟国计科技有限公司 Panel computer with high safety performance
CN203561913U (en) * 2013-07-02 2014-04-23 上海龙艺云计算技术有限公司 Personal digital assistant
CN206849097U (en) * 2017-03-13 2018-01-05 北京思路创新科技有限公司 A kind of mobile office system

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8038722B2 (en) * 2006-08-02 2011-10-18 Applied Minds, Llc Method and apparatus for protecting data in a portable electronic device
CN103853383B (en) * 2014-03-05 2016-08-31 中南大学 A kind of method realizing touch-screen driving in Uboot
CN104635583A (en) * 2015-01-15 2015-05-20 西安原创电子科技有限公司 Intelligent power supply control device
CN106249976A (en) * 2016-08-15 2016-12-21 中国电子科技集团公司第四十研究所 A kind of multi-touch method for digital oscilloscope touch screen

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN203561913U (en) * 2013-07-02 2014-04-23 上海龙艺云计算技术有限公司 Personal digital assistant
CN103576787A (en) * 2013-10-31 2014-02-12 中晟国计科技有限公司 Panel computer with high safety performance
CN206849097U (en) * 2017-03-13 2018-01-05 北京思路创新科技有限公司 A kind of mobile office system

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
《MAXHUB高效会议平台,或成中国""造企业的高效能标配》;MAXHUB新闻中心;《https://www.maxhub.com/blog/maxhub高效会议平台,或成为中国造企业的高效能/》;20170928;正文第3段-倒数第1段,图2-4 *
《win7pad》;QQ3354378242;《https://baike.***.com/history/win7pad/10679598/123307119》;20171102;正文1产品介绍,2产品参数 *
《win7镜像添加usb3.0和nvme驱动方法》;yuzeliang715;《https://wenku.***.com/view/4110a4607f21af45b307e87101f69e314332fa31.html?fr=search-1_income4#》;20161118;正文第1段-倒数第2段 *

Also Published As

Publication number Publication date
CN108563467A (en) 2018-09-21

Similar Documents

Publication Publication Date Title
Cant Writing Windows WDM device drivers
Horstmann et al. Core Java: Advanced Features
CN102193817B (en) Simplify the management of physics and virtual deployment
Smyth Android Studio 3.2 Development Essentials-Android 9 Edition: Developing Android 9 Apps Using Android Studio 3.2, Java and Android Jetpack
Smyth Android Studio 2.2 Development Essentials-Android 7 Edition
CN101030241A (en) Method and system based on Keil C51 software protecting development
Simmonds Mastering Embedded Linux Programming
CN110348233A (en) A kind of multilevel security OS implementation method based on ARM
CN108563467B (en) PAD (PAD application) with touch screen conforming to security and confidentiality and implementation method
Smyth Android Studio 4.1 Development Essentials-Kotlin Edition
Carpenter Microsoft Windows Operating System Essentials
Smyth Android Studio 3.0 Development Essentials-Android 8 Edition
Smyth Android Studio 3.6 Development Essentials-Java Edition: Developing Android 10 (Q) Apps Using Android Studio 3.6, java and Android Jetpack
Smyth Android Studio 4.0 Development Essentials-Kotlin Edition
Smyth Android Studio 4.2 Development Essentials-Java Edition: Developing Android Apps Using Android Studio 4.2, Java and Android Jetpack
Russinovich Inside windows vista user account control
Smyth Android Studio 3.4 Development Essentials-Kotlin Edition
Sun et al. PYNQ Introduction
Ye Embedded programming with Android: bringing up an Android system from scratch
Phung Professional microsoft windows embedded CE 6.0
Smyth Android Studio 3.6 Development Essentials-Kotlin Edition: Developing Android 10 (Q) Apps Using Android Studio 3.6, Kotlin and Android Jetpack
Ospanova et al. Advanced Administration of Windows Based on Open Source Utilities
Coker Porting nsa security enhanced linux to hand-held devices
Osborne The postroom computer
Kumar et al. Porting and BSP Customization of Linux on ARM Platform

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant