CN208400235U - A kind of USBKEY secure storage cabinet with encryption and decryption functions - Google Patents
A kind of USBKEY secure storage cabinet with encryption and decryption functions Download PDFInfo
- Publication number
- CN208400235U CN208400235U CN201820254816.0U CN201820254816U CN208400235U CN 208400235 U CN208400235 U CN 208400235U CN 201820254816 U CN201820254816 U CN 201820254816U CN 208400235 U CN208400235 U CN 208400235U
- Authority
- CN
- China
- Prior art keywords
- drawer
- usbkey
- unit
- main control
- control unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Lock And Its Accessories (AREA)
- Drawers Of Furniture (AREA)
Abstract
The utility model discloses a kind of USBKEY secure storage cabinet with encryption and decryption functions, the USBKEY secure storage cabinet include that main control unit, drawer unit, safe unit, authentification of message unit, electronic seal unit, USBKEY take and go back unit, data storage cell and power supply unit;The USBKEY secure storage cabinet is used for secure storage USBKEY, and the USBKEY secure storage cabinet and the server of peripheral hardware carry out that certification communicate and the taking-up of USBKEY is completed in control extension instruction based on the received and receipts are gone back;The drawer unit includes N number of drawer subelement, and in each described drawer subelement includes CPU module, drawer mechanical structure and drawer security module;Described device has the secure storage cabinet of encryption and decryption functions by setting, by the orderly storage management of USBKEY, while by establishing bidirectional authentication mechanism and carrying out the safety that data communication improves USBKEY using ciphertext.
Description
Technical field
The utility model relates to field of information security technology, more particularly, to a kind of with encryption and decryption functions
USBKEY secure storage cabinet.
Background technique
USBKEY is widely used in the various fields audited as common key, with power marketing system
For the core business-of system takes control business, it is directly related to the vital interests of electric power enterprise and power consumer, safety
It is most important.During implementing to take control, marketing system receives the arrearage list that long-range real-time fee control system of marketing generates, accordingly
County, the specific responsibility of city's business carry out audit to revenue insurance list information and audit data are encrypted and signed, and generate final jump
Lock controls list and tripping control electronic work order.Tripping control list and tripping control electronic work order are through unified interface service platform
Power information acquisition system is sent to be handled.And the audit data for control list of tripping are to need to do business to specialize in pass through
USBKEY is encrypted and is signed;The USBKEY that marketing auditor uses at present lacks effective management method and device, and
And USBKEY not only one that the auditor that markets uses, and there are problems that being easy to obscure, it not can guarantee expense control operation
Safety and trackability, to solve the above problems, must safely and effectively be managed USBKEY.
Utility model content
Lack effective management method and device to solve USBKEY existing for background technique, not can guarantee expense control operation
Safety and trackability, the utility model provides a kind of USBKEY secure storage cabinet device with encryption and decryption functions,
Described device uses dedicated secure storage cabinet, by the orderly storage management of USBKEY, while by establishing bidirectional authentication mechanism
And data communication is carried out using ciphertext, improve the safety of USBKEY, a kind of USBKEY with encryption and decryption functions
Secure storage cabinet device includes:
Main control unit, the main control unit are sent to for receiving two-way authentication request, and by two-way authentication request
Authentification of message unit;The main control unit is used to receive the control instruction of the encryption of peripheral server transmission, and according to the control
System instruction generates corresponding operation instruction and other units of the USBKEY secure storage cabinet carry out data transmission;
Drawer unit, the drawer unit include N number of drawer subelement, each of described N number of drawer subelement packet
CPU module, drawer mechanical structure and drawer security module are included, the CPU module is used to receive the encryption of main control unit transmission
Drawer operational order, after confirmation is decrypted by the drawer security module, after corresponding drawer is executed instruction processing
It is sent to drawer mechanical structure;The CPU module is used to establish two-way authentication by the drawer security module and main control module;
The CPU module includes USB interface, and the USBKEY is gone forward side by side in drawer subelement by being plugged and fixed with the USB interface
Row data communication;
Safe unit, the safe unit include the crypto chip of built-in a variety of national secret algorithms;The safe unit is used for
The instruction of main control unit received control extension is decrypted, and each operational order generated to main control unit encrypts;
Authentification of message unit, for receiving the two-way authentication request through master unit transmissions, and according to the two-way authentication
Request carries out safety certification, and authentication result is sent to main control unit;The authentification of message unit is used for according to main control unit
Instruction generates the two-way authentication between main control unit and drawer unit and between main control unit and peripheral server and requests.
Further, described device further includes that electronic seal unit, USBKEY take and go back unit, data storage cell and electricity
Source unit;
The electronic seal unit includes the crypto chip based on national secret algorithm, and the electronic seal unit is for storing institute
The facility information of device is stated, the facility information includes equipment unique number and equipment purposes;
The power supply unit be used for described device power, the power supply unit include all the way main power supply AC-DC module with
And spare AC-DC module, two-way AC-DC module are mutually isolated all the way;
The data storage cell is used for storage operation person essential information, and stores the USBKEY of each drawer unit storage
Information;The USBKEY information includes USBKEY number and USBKEY status information;
The USBKEY, which takes, goes back unit for judging that each son of the drawer unit is single according to the operational order of main control unit
Whether first feedback states are correct, and the USBKEY, which takes, goes back unit for confirming whether the timeliness for going back USBKEY is abnormal, and to exception
State feeds back to main control unit.
Further, the drawer mechanical structure of each drawer subelement includes drawer shells, electronic lock, position sensing
Device, gear bar, spring, moving casing and guide rail;The position sensor for incude drawer shells whether close in place, when
The electronic lock is automatic locking when the position sensor induction drawer shells are turned off in place;The electronic lock is used for basis
CPU module instruction is unlocked, and when unlocking, the drawer shells are popped up by the pretightning force of the spring, and pass through gear bar,
The deceleration component of moving casing and guide rail composition reaches damping.
Further, two sides are equipped with bracket inside the drawer shells of each drawer subelement, are used to support drawer;Institute
State the bottom inside that electronic lock is fixed on the drawer shells;The spring, gear bar, moving casing and guide rail are fixed on drawer
The bottom of shell.
Further, the authentification of message unit is used to carry out sign test to the signing messages of USBKEY;If sign test does not pass through,
Then sign test is not passed through to information and is sent to main control unit.
Further, between the USBKEY secure storage cabinet and other peripheral systems, in the USBKEY secure storage cabinet
Portion adds the mode of MAC to carry out data transmission using ciphertext.
Further, the main control unit includes master cpu, and the CPU module of each drawer subelement includes drawer
CPU;The master cpu and each drawer CPU are 32 CORTEX-M3 core processors of high performance series.
The utility model has the following beneficial effects: the technical solution of the utility model, gives a kind of with encryption and decryption functions
USBKEY secure storage cabinet, described device has the secure storage cabinet of encryption and decryption functions by setting, that USBKEY is orderly
Storage management, while by establishing bidirectional authentication mechanism and carrying out the safety that data communication improves USBKEY using ciphertext
Property;The automation of USBKEY assets, localization management are realized, the management level of USBKEY is promoted.
Detailed description of the invention
By reference to the following drawings, the illustrative embodiments of the utility model can be more fully understood by:
Fig. 1 is a kind of USBKEY secure storage cabinet device with encryption and decryption functions of specific embodiment of the present invention
Structure chart;
Fig. 2 is the structural schematic diagram of the drawer subelement of specific embodiment of the present invention;
Fig. 3 is the mechanical construction drawing of the drawer subelement of specific embodiment of the present invention;
Specific embodiment
The illustrative embodiments of the utility model are introduced referring now to the drawings, however, the utility model can use many
Different forms is implemented, and is not limited to the embodiment described herein, and to provide these embodiments be in order at large and complete
Open the utility model entirely, and the scope of the utility model is sufficiently conveyed to person of ordinary skill in the field.For
The term in illustrative embodiments being illustrated in the accompanying drawings not is the restriction to the utility model.In the accompanying drawings, identical
Cells/elements use identical appended drawing reference.
Unless otherwise indicated, term (including scientific and technical terminology) used herein has person of ordinary skill in the field
It is common to understand meaning.Further it will be understood that with the term that usually used dictionary limits, should be understood as and its
The context of related fields has consistent meaning, and is not construed as Utopian or too formal meaning.
Fig. 1 is a kind of USBKEY secure storage cabinet device with encryption and decryption functions of specific embodiment of the present invention
Structure chart;Described device has the secure storage cabinet of encryption and decryption functions by setting, by the orderly storage management of USBKEY, together
When by establishing bidirectional authentication mechanism and carrying out data communication using ciphertext improve the safety of USBKEY;A kind of tool
The USBKEY secure storage cabinet device for having encryption and decryption functions includes:
Main control unit 111, the main control unit 111 request the two-way authentication for receiving two-way authentication request
It is sent to authentification of message unit 114;The main control unit 111 is used to receive the control instruction of the encryption of peripheral server transmission,
And other units progress data of the corresponding operation instruction with the USBKEY secure storage cabinet are generated according to the control instruction
Transmission;
Drawer unit, the drawer unit 112 includes N number of drawer subelement, as shown in Fig. 2, N number of drawer subelement
Each of include CPU module 201, drawer mechanical structure 202 and drawer security module 203, the CPU module 201 is used
In the drawer operational order for receiving the encryption that main control unit 111 is sent, confirmation is decrypted by the drawer security module 203
Afterwards, drawer mechanical structure 202 is sent to after corresponding drawer being executed instruction processing;The CPU module 201 is used for by described
Drawer security module 203 and main control module 111 establish two-way authentication;The CPU module 201 includes USB interface, the USBKEY
By being plugged and fixed with the USB interface and carrying out data communication in drawer subelement;
Further, each drawer subelement of the drawer unit is connected with main control unit and carries out data and leads to
Letter;
Further, the drawer mechanical structure 202 of each drawer subelement includes drawer shells, electronic lock, position
Sensor, gear bar, spring, moving casing and guide rail;The position sensor is for incuding whether drawer shells close
Position, when position sensor induction drawer shells are turned off in place, the electronic lock is automatic locking;The electronic lock is used for
It is unlocked according to CPU module instruction, when unlocking, the drawer shells pass through tooth by the pretightning force pop-up of the spring
The deceleration component of wheel item, moving casing and guide rail composition reaches damping;
Further, Fig. 3 is the mechanical construction drawing of a drawer subelement, each described drawer subelement can be independent
The drawer shells inside two sides of disassembly assembling, each drawer subelement are equipped with bracket, are used to support drawer;The electronic lock
It is fixed on the bottom inside of the drawer shells;The spring, gear bar, moving casing and guide rail are fixed on the bottom of drawer shells
Portion;
Safe unit 113, the safe unit 113 include the crypto chip of built-in a variety of national secret algorithms;The safety is single
Member 113 is for being decrypted the instruction of the received control extension of main control unit 111, and each operation to the generation of main control unit 111
Instruction is encrypted;
Further, the safe unit 113 is connected with main control unit 111 and carries out data communication;
Authentification of message unit 114, the authentification of message unit 114 is used to receive two-way to be recognized through what main control unit 111 transmitted
Card request, and requested to carry out safety certification according to the two-way authentication, and authentication result is sent to main control unit 111;It is described
Authentification of message unit 114 is used to being instructed generate between main control unit 111 and drawer unit 112 two-way to recognize according to main control unit 111
Card request.
The further authentification of message unit 114 is connected with main control unit 111 and carries out data communication;The information
Authentication unit 114 is used to carry out sign test to the signing messages of USBKEY;If sign test does not pass through, sign test is not sent by information
To main control unit 111.
Further, the USBKEY secure storage cabinet 110 further includes that electronic seal unit 115, USBKEY take and go back unit
116, data storage cell 117 and power supply unit 118;
The electronic seal unit 115 includes the crypto chip based on national secret algorithm, and the electronic seal unit 115 is used for
110 facility information of USBKEY secure storage cabinet is stored, the facility information includes equipment unique number and equipment purposes;
The power supply unit 118 is used to power to USBKEY secure storage cabinet 110, and the power supply unit 118 includes all the way
Main power supply AC-DC module and all the way spare AC-DC module, two-way AC-DC module are mutually isolated;
The data storage cell 117 is used for storage operation person essential information, and stores what each drawer unit 112 stored
USBKEY information;The USBKEY information includes USBKEY number and USBKEY status information;
The USBKEY, which takes, goes back unit 116 for judging the drawer unit 112 according to the operational order of main control unit 111
Each subelement feedback states it is whether correct, the USBKEY take goes back unit 116 for confirm and also USBKEY timeliness it is whether different
Often, and to abnormality main control unit 111 is fed back to.
Further, the electronic seal unit 115, USBKEY, which take, goes back unit 116, data storage cell 117 and electricity
Source unit 118 is connected with main control unit 111 and carries out data communication;
Further, between the USBKEY secure storage cabinet 110 and other peripheral systems, the USBKEY secure storage cabinet
The mode of MAC is added to carry out data transmission using ciphertext inside 110.
Further, the main control unit 111 includes master cpu, and the CPU module of each drawer subelement includes drawer
CPU;The master cpu and each drawer CPU are 32 CORTEX-M3 core processors of high performance series.
Obviously, it is practical without departing from this can to carry out various modification and variations to the utility model by those skilled in the art
Novel spirit and scope.If in this way, these modifications and variations of the present invention belong to the utility model claims and
Within the scope of its equivalent technologies, then the utility model is also intended to include these modifications and variations.
Claims (6)
1. a kind of USBKEY secure storage cabinet device with encryption and decryption functions, described device include:
Main control unit, the main control unit include master cpu, and the main control unit is for receiving two-way authentication request, and by institute
It states two-way authentication request and is sent to authentification of message unit;The main control unit is used to receive the control of the encryption of peripheral server transmission
System instruction, and according to the control instruction generate corresponding operation instruction and other units of the USBKEY secure storage cabinet into
The transmission of row data;
Drawer unit, the drawer unit include N number of drawer subelement, and each of described N number of drawer subelement includes CPU
Module, drawer mechanical structure and drawer security module, the CPU module include drawer CPU, and the CPU module is for receiving
The drawer operational order for the encryption that main control unit is sent will be corresponding after confirmation is decrypted by the drawer security module
Drawer is sent to drawer mechanical structure after executing instruction processing;The CPU module is for passing through the drawer security module and master
Control module establishes two-way authentication;The CPU module includes USB interface, the USBKEY in drawer subelement by with it is described
USB interface is plugged and fixed and carries out data communication;
The drawer mechanical structure of each drawer subelement includes drawer shells, electronic lock, position sensor, gear bar, bullet
Spring, moving casing and guide rail;The position sensor is for incuding whether drawer shells close in place, when the position sensing
The electronic lock is automatic locking when device induction drawer shells are turned off in place;The electronic lock be used for according to CPU module instruct into
Row is unlocked, and when unlocking, the drawer shells are popped up by the pretightning force of the spring, and are passed through gear bar, moving casing and led
The deceleration component of rail composition reaches damping;
Safe unit, the safe unit include the crypto chip of built-in a variety of national secret algorithms;The safe unit is used for master
The received control extension instruction of control unit is decrypted, and each operational order generated to main control unit encrypts;
Authentification of message unit for receiving the two-way authentication request through master unit transmissions, and is requested according to the two-way authentication
Safety certification is carried out, and authentication result is sent to main control unit;The authentification of message unit according to main control unit for instructing
The two-way authentication between main control unit and drawer unit and between main control unit and peripheral server is generated to request.
2. the apparatus according to claim 1, which is characterized in that described device further includes that electronic seal unit, USBKEY take
Also unit, data storage cell and power supply unit;
The electronic seal unit includes the crypto chip based on national secret algorithm, and the electronic seal unit is for storing the dress
The facility information set, the facility information include equipment unique number and equipment purposes;
The power supply unit is used to power to described device, and the power supply unit includes main power supply AC-DC module and one all the way
The spare AC-DC module in road, two-way AC-DC module are mutually isolated;
The data storage cell is used for storage operation person essential information, and stores the USBKEY information of each drawer unit storage
And the operation log of USBKEY secure storage cabinet;The USBKEY information includes USBKEY number and USBKEY state letter
Breath;
The USBKEY, which takes, goes back unit for judging that each subelement of the drawer unit is anti-according to the operational order of main control unit
Whether feedback state is correct, and the USBKEY, which takes, goes back unit for confirming whether the timeliness for going back USBKEY is abnormal, and to abnormality
Feed back to main control unit.
3. the apparatus according to claim 1, it is characterised in that: two sides inside the drawer shells of each drawer subelement
Equipped with bracket, it is used to support drawer;The electronic lock is fixed on the bottom inside of the drawer shells;The spring, gear bar,
Moving casing and guide rail are fixed on the bottom of drawer shells.
4. the apparatus according to claim 1, it is characterised in that: the authentification of message unit is used for the A.L.S. to USBKEY
Breath carries out sign test;If sign test does not pass through, sign test is not passed through to information and is sent to main control unit.
5. the apparatus according to claim 1, it is characterised in that: the USBKEY secure storage cabinet and other peripheral systems
Between, add the mode of MAC to carry out data transmission using ciphertext inside the USBKEY secure storage cabinet.
6. the apparatus according to claim 1, it is characterised in that: the master cpu and each drawer CPU are high-performance system
32 CORTEX-M3 core processors of column.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201820254816.0U CN208400235U (en) | 2018-02-12 | 2018-02-12 | A kind of USBKEY secure storage cabinet with encryption and decryption functions |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201820254816.0U CN208400235U (en) | 2018-02-12 | 2018-02-12 | A kind of USBKEY secure storage cabinet with encryption and decryption functions |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN208400235U true CN208400235U (en) | 2019-01-18 |
Family
ID=65063471
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201820254816.0U Active CN208400235U (en) | 2018-02-12 | 2018-02-12 | A kind of USBKEY secure storage cabinet with encryption and decryption functions |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN208400235U (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109816831A (en) * | 2019-01-31 | 2019-05-28 | 公安部第三研究所 | A kind of authentication method and system of the smart lock based on national secret algorithm |
-
2018
- 2018-02-12 CN CN201820254816.0U patent/CN208400235U/en active Active
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109816831A (en) * | 2019-01-31 | 2019-05-28 | 公安部第三研究所 | A kind of authentication method and system of the smart lock based on national secret algorithm |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN100388306C (en) | Method for verifying the validity of digital franking notes | |
| CN108376211B (en) | Software authorization management method, server and system | |
| CN103186850B (en) | For obtaining the method for evidence for payment, equipment and system | |
| CN103729942A (en) | Method and system for transmitting transmission key from terminal server to key server | |
| CN102479412A (en) | Processing method and system of network invoicing data as well as tax control device and handling server | |
| CN101753312A (en) | Security certification method and security certification device for power grid equipment and negative control terminal | |
| CN1921395B (en) | Method for improving security of network software | |
| US10256980B2 (en) | System and method for authentication for field replaceable units | |
| CN103108028A (en) | Cloud computing processing system with security architecture | |
| CN110601830A (en) | Key management method, device, equipment and storage medium based on block chain | |
| CN111492355A (en) | Method and control system for controlling and/or monitoring a device | |
| CN103746815A (en) | Secure communication method and device | |
| CN101615318A (en) | E-payment system and device thereof | |
| CN208400235U (en) | A kind of USBKEY secure storage cabinet with encryption and decryption functions | |
| CN105631298A (en) | Encryption/decryption device and method | |
| CN101673434B (en) | Secret key management method of IC card terminal | |
| CN108512847B (en) | Cloud decoding method for second-generation identity card | |
| CN101236674A (en) | Intelligent cipher key equipment and method for information exchange with external apparatus | |
| CN111030817A (en) | Method for safely transmitting file between transformer area terminal and electric energy meter and transformer area terminal | |
| CN114826725B (en) | Data interaction method, device, equipment and storage medium | |
| CN203896378U (en) | System for safe transmission of information | |
| CN114760073B (en) | Block chain-based warehouse commodity distribution method and device, electronic equipment and medium | |
| CN202918498U (en) | SIM card adapter, mobile terminal and digital signature authentication system | |
| CN108257319B (en) | USBKEY safe storage cabinet with encryption and decryption functions and application method thereof | |
| CN202978979U (en) | Password security keypad device and password security pad system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant |