CN110276216A - Data guard method - Google Patents

Data guard method Download PDF

Info

Publication number
CN110276216A
CN110276216A CN201910438120.2A CN201910438120A CN110276216A CN 110276216 A CN110276216 A CN 110276216A CN 201910438120 A CN201910438120 A CN 201910438120A CN 110276216 A CN110276216 A CN 110276216A
Authority
CN
China
Prior art keywords
data
cut section
write
memory device
region
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910438120.2A
Other languages
Chinese (zh)
Inventor
吴锡熙
陈明胜
张宏益
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
YIDING INTERNATIONAL CO Ltd
Innodisk Corp
Original Assignee
YIDING INTERNATIONAL CO Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by YIDING INTERNATIONAL CO Ltd filed Critical YIDING INTERNATIONAL CO Ltd
Priority to CN201910438120.2A priority Critical patent/CN110276216A/en
Publication of CN110276216A publication Critical patent/CN110276216A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/74Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information operating in dual or compartmented mode, i.e. at least one secure mode
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/78Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data
    • G06F21/79Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure storage of data in semiconductor storage media, e.g. directly-addressable memories
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2149Restricted operating environment

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Mathematical Physics (AREA)
  • Storage Device Security (AREA)

Abstract

The present invention provides a kind of data guard method; it is applied on a data memory device; data memory device includes a controller and a plurality of flash memories; flash memory is formed with a region of data storage; when user be intended to for a specific data is protected in data memory device when; through one write-in filter command of host transmission to data memory device, a write-in filter is executed according to write-in filter command after the controller reception write-in filter command of data memory device;When filter execution is written; controller marks off at least one first cut section and one second cut section from region of data storage; and set the read-only region that the first cut section is moved as a forbidden data, then, stored specific data will forbid being moved and being protected in the first cut section.

Description

Data guard method
Technical field
The present invention is espespecially a kind of for certain number stored in data memory device about a kind of data guard method According to the method protected.
Background technique
A write-protect filter functionality in previous solid state hard disk (SSD) Chang Liyong Microsoft embedded system, such as EWF (Enhanced Write Filter), it is non-writable state that cut section specific for one, which is worked out, to avoid specific segmentation Significant data in area, such as operating system data are capped or distort.
Furthermore SSD hard disk often needs to carry out garbage reclamation to allow operation performance to can achieve optimal efficiency (Garbage Collection, GC) and abrasion equilibration (Wear Leveling, WL) etc. processing.SSD hard disk execute GC and When WL processing, in addition to for general cut section carry out data move it is outer, also can for work out be can not write state it is specific Cut section carries out the movement of data-moving, so that each block in SSD hard disk can be used fifty-fifty.Such as: it is not writeable When entering the specific cut section progress data-moving of state, the logical block addresses in cut section will not be changed, when wherein Data in its affiliated block of physical blocks address pointed by one logical block addresses moved because of GC or WL processing routine to When in another affiliated block in physical blocks address, logical block addresses will be directed toward another physical blocks address.However, moving number During, once encountering abnormal situation, electric voltage exception is such as powered off or operates, there are the risks of damage for data.If The data moved occur to damage and the operating system data in exactly specific cut section, it will cause computer system without Method normal switch.
Summary of the invention
A purpose of the invention is to propose a kind of data guard method, apply on a data memory device, data Storage device includes a controller and a plurality of flash memories, and flash memory is formed with a region of data storage, when user is intended to for data storage When a specific data is protected in device, through one write-in filter command of host transmission to data memory device, data storage The controller of cryopreservation device executes a write-in filter according to write-in filter command;Be written filter execute when, controller from At least one first cut section and one second cut section are marked off in region of data storage, and set the first cut section as a forbidden data The read-only region moved and be written;Then, a forbidden data is worked out in the region of data storage of data memory device to move and be written Read-only region, the specific data being stored in read-only region will can avoid generating because moving damage or because by the write-in of other data The risk of covering and loss.
To reach above-mentioned purpose, the present invention provides a kind of data guard method, applies on a data memory device, data The step of storage device includes a controller and a plurality of flash memories, and flash memory is formed with a region of data storage, data guard method is wrapped It includes: one write-in filter command of transmission to data memory device;The controller of data memory device is enabled to be held according to write-in filter command The step of filter is written in row one, and filter is written includes: that at least one first cut section is cut into from region of data storage And one second cut section;And set the read-only region that the first cut section is moved and is written as a forbidden data.
In one embodiment of the invention, the step of setting the read-only region that the first cut section is moved and is written as forbidden data is executed Further include the steps that having before one from the second cut section moving data to the first cut section.
In one embodiment of the invention, the step of setting the read-only region that the first cut section is moved and is written as forbidden data is executed Further include the steps that thering is one to write data to the first cut section before.
In one embodiment of the invention, write-in filter command includes the message of a cutting address range, and controller foundation is cut The message of address range is cut to be cut at least one first cut section from region of data storage.
In one embodiment of the invention, cut section that the first cut section is addressed out by a continuous logical block addresses.
In one embodiment of the invention, the logical block addresses cut section that addresses out of first cut section by a dispersion.
In one embodiment of the invention, when data memory device is operated in a garbage reclamation program or an average loss program When, the first cut section is prohibited moving or being written for data.
In one embodiment of the invention, write-in filter command is issued by a host.
In one embodiment of the invention, data memory device stores a customized write-in filter functionality, data storage The controller of cryopreservation device executes write-in filter through customized write-in filter functionality.
In one embodiment of the invention, being syncopated as the first cut section from region of data storage is a blank for not storing data Sector.
The invention has the advantages that
Data guard method provided by the invention is applied on a data memory device, and data memory device includes one Controller and a plurality of flash memories, flash memory are formed with a region of data storage, when user is intended to for a certain number in data memory device When according to being protected, through one write-in filter command of host transmission to data memory device, the controller of data memory device A write-in filter is executed according to write-in filter command;When filter execution is written, controller is drawn from region of data storage At least one first cut section and one second cut section are separated, and sets that the first cut section is moved and is written as a forbidden data Reading area;Then, the read-only region that a forbidden data is moved and is written is worked out in the region of data storage of data memory device, is stored in Specific data in read-only region will can avoid generating the wind damaged or lost due to being covered by the write-in of other data due to moving Danger.
Detailed description of the invention
Fig. 1 is the structural schematic diagram of computer system of the present invention.
Fig. 2A is the data structure schematic diagram of one embodiment of flash memory of the present invention.
Fig. 2 B is the data structure schematic diagram of the another embodiment of flash memory of the present invention.
Fig. 3 is the flow chart of data guard method of the present invention.
Specific embodiment
Referring to Fig. 1, being the structural schematic diagram of computer system of the present invention.As shown in Figure 1, computer system of the present invention 100 include that a host 10 and a data memory device 30, host 10 are connect with data memory device 30.User is right using host 10 The protective program of a data is executed in at least specific data 32 being stored in data memory device 30, to ensure specific data 32 integrality.In the present invention, specific data 32 also for an operating system data, an encryption data or other can have importance Data.
Data memory device 30 is a solid state hard disk (SDD), a memory card or a Portable disk comprising a controller 31, A plurality of flash memories 33 and data transmission interface 35.Data memory device 30 carries out data through data transmission interface 35 and host 10 Transmission.Flash memory 33 is formed with a region of data storage 37.Region of data storage 37 includes plurality of blocks 370 and a consult table 373(Lookup table).Block 370 is to store data.As shown in 2A figure, consult table 373 includes multiple fields, often One field has the number of a logical block addresses (Logical Block Address, LBA) and with recording logical blocks respectively Physical blocks address corresponding to location (LBA) (Physical Block Address, PBA), such as: field (LBA 0765) note It is loaded with a physical blocks address (PBA 0765), controller 31 can be directed toward physical blocks address via field (LBA 0765) (PBA 0765) is accessed with the data in the block 370 for physical blocks address (PBA 0765).Implement in the present invention It is the convenience said for technology solution, the number of logical block addresses (LBA) and the physical blocks address of direction in example (PBA) number is designed to consistent;However, in the situation of practical application, number and the direction of logical block addresses (LBA) The number of physical blocks address (PBA) is usually inconsistent.
Connect, data memory device 30 be equipped with a customized write-in filtering (Enhanced Write Filter, EWF) functional unit 34 can protect the sequencing component of process for an operation data and be stored in region of data storage 37.
Referring to Fig. 3, be data guard method of the present invention flow chart, and arrange in pairs or groups simultaneously refering to fig. 1, Fig. 2A and Fig. 2 B. When user is intended to carry out the movement of data protection for the specific data 32 in data memory device 30, firstly, such as step S51, it is main Filter command 101 is written to data memory device 30 in the transmission of machine 10 one.Step S53, data memory device 30 receive write-in filtering After order 101, the controller 31 of the data memory device 30 EWF functional unit customized according to write-in 101 enable of filter command 34, a write-in filter S55 is executed using customized EWF functional unit 34.
In write-in filter S55, step S551, as shown in Figure 2 A, controller 31 are cut out from region of data storage 37 At least one first cut section 371, and remaining region of data storage 37 will be used as one second cut section 372.Also, from data storage The blank sector that the first cut section 371 that area 37 is cut out also can not store any data for one.Furthermore the first cut section 371 and second cut section 372 respectively included plurality of blocks 370.Each block 370 with having a corresponding logical blocks respectively Location (LBA) and a corresponding physical blocks address (PBA).In one embodiment of the invention, write-in filter command 101 includes all Cut the message 102 of address range, controller 31 is cut into the according to the message 102 of cutting address range from region of data storage 37 One cut section 371, such as: the instruction of message 102 for cutting address range has a logical block addresses range (0770~LBA of LBA 1023), controller 31 is cut into the fan of logical block addresses range (0770~LBA of LBA 1023) from region of data storage 37 Area is as the first cut section 371.In one embodiment of the invention, the first cut section 371 is a continuous logical block addresses range The cut section addressed out, such as LBA0770~LBA 1023.Alternatively, in further embodiment of this invention, the first cut section 371 The cut section that can be addressed out by the logical block addresses range of a dispersion.
After the first cut section 371 is split out from region of data storage 37, step S553 is executed, as shown in Figure 2 B, control Device 31 processed moves the specific data 32 in the block 370 for being stored in the second cut section 372 originally to the area of the first cut section 371 In block 370, the specific data 32 in such as block (PBA 0001, PBA 0765, PBA 0766) 370 of the second cut section 372 is removed It moves in the block (PBA0770, PBA 1021, PBA 1022) 370 of the first cut section 371;Alternatively, outside is written in host 10 In the block (PBA 0770, PBA 1021, PBA 1022) 370 of 32 to the first cut section 371 of specific data.When specific data 32 It moves or is written to the block 370 of the first cut section 371, execute step S555, controller 31 works out the first cut section 371 and is The read-only region that one forbidden data is moved and is written limits entity pointed by the logical block addresses (LBA) of the first cut section 371 Block address (PBA) and its stored data can not be changed.Later, the running of data memory device 30 is in a garbage reclamation It, can only be for second when (Garbage Collection, GC) program or an average loss (Wear Leveling, WL) program 370 data of block of cut section 372 are moved and are written, forbid moving data in the block 370 of the first cut section 371 or Forbid writing data in the block 370 of the first cut section 371, to protect the certain number being stored in the first cut section 371 According to 32.
Then, worked out in the region of data storage 37 of data memory device 30 forbidden data move and be written it is read-only Area, the specific data 32 being stored in read-only region will can avoid generating because moving and damage or because by the write-in covering of other data And the risk lost.
The above is present pre-ferred embodiments and its technical principle used, and is come for those skilled in the art It says, without departing from the spirit and scope of the present invention, any equivalent transformation based on the basis of technical solution of the present invention, Simple replacement etc. obviously changes, and all falls within the protection scope of the present invention.

Claims (10)

1. a kind of data guard method, which is characterized in that the data guard method is applied on a data memory device, described Data memory device includes a controller and a plurality of flash memories, and the flash memory is formed with a region of data storage, the data protection The step of method includes:
Filter command is written to the data memory device in transmission one;
The controller of the data memory device is enabled to execute a write-in filter according to said write filter command, it is described Be written filter the step of include:
At least one first cut section and one second cut section are cut into from the region of data storage;And
Set the read-only region that first cut section is moved and is written as a forbidden data.
2. data guard method according to claim 1, which is characterized in that execute it is described set first cut section as Further include before the step of read-only region that the forbidden data is moved and is written have one from the second cut section moving data to The step of first cut section.
3. data guard method according to claim 1, which is characterized in that execute it is described set first cut section as It further include thering is one to write data to first cut section before the step of read-only region that the forbidden data is moved and is written Step.
4. data guard method according to claim 1, which is characterized in that said write filter command includes a cutting The message of address range, the controller is according to the message for cutting address range to be cut into from the region of data storage At least one first cut section.
5. data guard method according to claim 1, which is characterized in that first cut section is a continuous logic The cut section that block address addresses out.
6. data guard method according to claim 1, which is characterized in that first cut section is the logic of a dispersion The cut section that block address addresses out.
7. data guard method according to claim 1, which is characterized in that when the data memory device is operated in a rubbish When rubbish reclaimer or an average loss program, first cut section is prohibited moving or being written for data.
8. data guard method according to claim 1, which is characterized in that said write filter command is by a host institute Publication.
9. data guard method according to claim 1, which is characterized in that it is customized that the data memory device stores one The controller of the write-in filter functionality of change, the data memory device penetrates the customized write-in filtering function Component executes said write filter.
10. data guard method according to claim 1, which is characterized in that be syncopated as from the region of data storage First cut section is a blank sector for not storing data.
CN201910438120.2A 2019-05-24 2019-05-24 Data guard method Pending CN110276216A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910438120.2A CN110276216A (en) 2019-05-24 2019-05-24 Data guard method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910438120.2A CN110276216A (en) 2019-05-24 2019-05-24 Data guard method

Publications (1)

Publication Number Publication Date
CN110276216A true CN110276216A (en) 2019-09-24

Family

ID=67960086

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910438120.2A Pending CN110276216A (en) 2019-05-24 2019-05-24 Data guard method

Country Status (1)

Country Link
CN (1) CN110276216A (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101464841A (en) * 2008-12-31 2009-06-24 杭州华三通信技术有限公司 Method and system for implementing write protection of block memory stack
CN104516684A (en) * 2013-09-30 2015-04-15 瑞萨电子株式会社 Data processing system, microcontroller and semiconductor device
TW201616362A (en) * 2014-10-31 2016-05-01 慧榮科技股份有限公司 Data storage device and flash memory control method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101464841A (en) * 2008-12-31 2009-06-24 杭州华三通信技术有限公司 Method and system for implementing write protection of block memory stack
CN104516684A (en) * 2013-09-30 2015-04-15 瑞萨电子株式会社 Data processing system, microcontroller and semiconductor device
TW201616362A (en) * 2014-10-31 2016-05-01 慧榮科技股份有限公司 Data storage device and flash memory control method

Similar Documents

Publication Publication Date Title
US10303600B2 (en) Method and storage device for collecting garbage data
CN100487632C (en) Dual media storage device
EP1548599B1 (en) Faster write operations to nonvolatile memory by manipulation of frequently accessed sectors
CN109871333B (en) Method for accessing flash memory module, related flash memory controller and electronic device
EP2665065A2 (en) Electronic device employing flash memory
CN101788955B (en) Access method of flash data, storage system and control system thereof
CN100462944C (en) Power-fail protection method based on two continuous logical blocks for non-volatile memory
KR20100080350A (en) Recovery for non-volatile memory after power loss
CN101169760B (en) Electronic hard disk storage room management method
CN110727395B (en) Flash memory controller, method and storage device
CN102096561B (en) Hierarchical data storage processing method, device and storage equipment
CN102073592B (en) Quick read-write method and device for flash memory
CN103955433A (en) Shingled magnetic recording hard disk, and method and device for writing data in shingled magnetic recording hard disk
CN111949220B (en) Abnormal power-off recovery method of storage device and storage device
CN109697170B (en) Method for accessing flash memory module, related flash memory controller and electronic device
CN102591790A (en) Method for implementing data storage snapshot based on solid state disk, and solid state disk
CN102981979B (en) A kind of method improving memory system data access speed
CN104765569A (en) Data write-in method, memory control circuit unit and memory storing device
KR20130034450A (en) Storage device and driving method thereof
KR101996641B1 (en) Apparatus and method for memory overlay
CN102508743B (en) Multi-point backup and real-time protection method for Linux file system
CN110276216A (en) Data guard method
CN103389941B (en) Storer formatting method, Memory Controller and memory storage apparatus
CN106325764A (en) Memory management method, memory control circuit unit and memory storage apparatus
CN102087632B (en) Data storage method for flash memory, controller and storage system

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20190924