[go: up one dir, main page]

CN100476764C - Storage device and protection method of storage data thereof - Google Patents

Storage device and protection method of storage data thereof Download PDF

Info

Publication number
CN100476764C
CN100476764C CN 200610002196 CN200610002196A CN100476764C CN 100476764 C CN100476764 C CN 100476764C CN 200610002196 CN200610002196 CN 200610002196 CN 200610002196 A CN200610002196 A CN 200610002196A CN 100476764 C CN100476764 C CN 100476764C
Authority
CN
China
Prior art keywords
storage device
garbled
host
data
program
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN 200610002196
Other languages
Chinese (zh)
Other versions
CN101004716A (en
Inventor
周正三
张哲玮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Egis Technology Inc
Original Assignee
Egis Technology Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Egis Technology Inc filed Critical Egis Technology Inc
Priority to CN 200610002196 priority Critical patent/CN100476764C/en
Publication of CN101004716A publication Critical patent/CN101004716A/en
Application granted granted Critical
Publication of CN100476764C publication Critical patent/CN100476764C/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

A storage device and a method for protecting the stored data are disclosed, the storage device basically comprises a control module connected to a terminal host, a biosensor connected to the control module and a storage module. The terminal host executes a biological identification application program to inform the control module to control the biological sensor to read a biological data to be identified of the user and compare whether the biological data to be identified is matched with the template biological data in the storage device. After the comparison is matched, the host executes a host random code generating program to generate and transmit a group of host random codes back to the control module. The control module generates a set of device random codes by utilizing a device random code generating program stored in the control module, compares whether the device random codes are matched with the host computer random codes or not, and enables the host computer to access a data protection unit of the storage device according to a matching result. The invention not only captures the advantages of the independent device, but also can prevent the device from being cracked, and does not need to increase the cost.

Description

一种储存装置及其储存数据的保护方法 A storage device and method for protecting data stored therein

技术领域 technical field

本发明有关于一种储存装置及其储存数据的保护方法,特别是有关于一种含指纹传感器的储存装置及其储存数据的保护方法。本发明也关联至部分发明人的下述专利:(a)中国发明专利申请案号200310116995.X,申请日为2003年12月5日,发明名称为“含指纹传感器的存储器储存装置及其储存数据的保护方法”;(b)中国发明专利申请案号200410038204.0,申请日为2004年5月13日,发明名称为“含生物辨识的可携式加密储存装置及其储存数据的保护方法”;及(c)中国台湾发明专利申请案号094101590,申请日为2005年1月19日,发明名称为“一种储存装置及其储存数据的保护方法”。The invention relates to a storage device and a protection method for storing data thereof, in particular to a storage device containing a fingerprint sensor and a protection method for storing data thereof. The present invention is also related to the following patents of some inventors: (a) Chinese invention patent application number 200310116995.X, the application date is December 5, 2003, and the title of the invention is "memory storage device with fingerprint sensor and its storage (b) China Invention Patent Application No. 200410038204.0, the application date is May 13, 2004, and the title of the invention is "portable encrypted storage device with biometric identification and protection method for its stored data"; And (c) China Taiwan Invention Patent Application No. 094101590, the application date is January 19, 2005, and the title of the invention is "a storage device and its storage data protection method".

背景技术 Background technique

传统上,代表个人身份的表示方式,最简单莫过于证件,诸如身份证、驾驶执照等等,其上贴附有个人的照片及文字与数字记载。然而身份证件的仿冒太容易了,也因此造成许多犯罪行为。Traditionally, the simplest way to represent a person's identity is a document, such as an ID card, a driver's license, etc., with personal photos and text and digital records attached to it. However, the counterfeiting of identity documents is too easy, and thus causes many crimes.

更进一步的改良方法是利用磁条卡片记录个人的数据,同样的,科技的进步使得磁条卡片很容易被破解。A further improvement method is to use magnetic stripe cards to record personal data. Similarly, the advancement of technology makes magnetic stripe cards easy to crack.

最新的方法是采用芯片卡的保密方式来保护个人数据。基本上,关于存储器芯片对个人数据的保密方面,最常使用方式是采用密码保护的方式。然而,使用密码来保护个人数据,不但具有使用者容易忘记密码的麻烦,更有着密码遭人破解的危险性。The latest approach is to protect personal data in a secure way using chip cards. Basically, regarding the confidentiality of personal data by memory chips, the most commonly used method is password protection. However, using passwords to protect personal data not only has the trouble of users forgetting passwords, but also has the danger of passwords being cracked.

同时,上述代表个人身份的装置(除了芯片卡外),都仅能执行单一功能,而无法将多重应用整合于单一装置中。At the same time, the above-mentioned devices representing personal identity (except the chip card) can only perform a single function, and cannot integrate multiple applications into a single device.

因此,美国专利公开第2003/0110389 A1号公报揭露一种类似于固态存储器随身碟的个人身份电子装置,其内含已经加密的个人数据,可以直接连接于计算机系统而使用。然而,此个人身份电子装置同样也需要密码的设定才能开启,面临前述的问题。解决这一问题的最佳方法是利用个人特有的生物特征,譬如指纹、声纹、笔迹、眼睛虹膜等生物辨识方法,来提供较为完整且有效的数据保护方式。其优点为生物特征是随身携带且不需记忆,更无法被盗取,特别是结合指纹的生物特征保护方法,不仅严密,且使用相当方便。Therefore, U.S. Patent Publication No. 2003/0110389 A1 discloses a personal identification electronic device similar to a solid-state memory flash drive, which contains encrypted personal data and can be directly connected to a computer system for use. However, this personal identification electronic device also needs a password setting to open it, which faces the aforementioned problems. The best way to solve this problem is to use unique personal biometrics, such as fingerprints, voiceprints, handwriting, iris and other biometric methods to provide a more complete and effective data protection method. Its advantage is that the biometric feature is portable and does not need to be memorized, and it cannot be stolen. In particular, the biometric feature protection method combined with fingerprints is not only strict, but also very convenient to use.

近年来,更因为芯片式指纹传感器的发明,使得在轻薄短小的电子产品中整合指纹读取装置不再是不可行的技术,相关技术内容可参见本案其中一个发明人周正三的下述专利:1.中国发明专利申请案号02105960.8,申请日为2002年4月10日,发明名称为“电容式指纹读取芯片”,公开号为1450489;2.中国发明专利申请案号02123058.7,申请日为2002年6月13日,发明名称为“压力式指纹读取芯片及其制造方法”,公开号为1464471;3.中国发明专利申请案号02124906.7,申请日为2002年6月25日,发明名称为“温度传感器及其运用该温度传感器的指纹辨识芯片”,公开号为1463674;及4.中国发明专利申请案号02132054.3,申请日为2002年09月10日,发明名称为“电容式压力微感测元及其应用的指纹读取芯片结构”,公开号为1482440。这也开拓了一种崭新的个人化储存媒体的保护方式。In recent years, thanks to the invention of the chip-type fingerprint sensor, it is no longer an unfeasible technology to integrate a fingerprint reading device into a thin, light and small electronic product. For related technical content, please refer to the following patents of Zhou Zhengsan, one of the inventors in this case: 1. China Invention Patent Application No. 02105960.8, the application date is April 10, 2002, the invention name is "capacitive fingerprint reading chip", the publication number is 1450489; 2. China Invention Patent Application No. 02123058.7, the application date is On June 13, 2002, the name of the invention was "Pressure-type fingerprint reading chip and its manufacturing method", and the publication number was 1464471; It is "Temperature Sensor and Its Fingerprint Recognition Chip Using the Temperature Sensor", the publication number is 1463674; and 4. The Chinese Invention Patent Application No. 02132054.3, the application date is September 10, 2002, and the invention name is "capacitive pressure micro Sensor Element and Its Application Fingerprint Reading Chip Structure", the publication number is 1482440. This also opens up a new way of protecting personal storage media.

早在二十年前美国专利第4,582,985号公报便已经揭露一种储存媒体的保护方法,其中利用指纹认证的方式来保护储存于个人身份卡片装置中的个人数据。在指纹辨识程序通过之后,储存于卡片装置中的受保护数据才得以输出以供进行后续的处理或认证程序。此种装置的尺寸相同于目前通用的信用卡,其主要包含一指纹传感器、影像处理与辨识模块、以及储存存储器,而成为一种完全独立的指纹辨识装置(也即指纹撷取及辨识都是在同一装置内执行)。As early as 20 years ago, US Patent No. 4,582,985 disclosed a storage medium protection method, wherein fingerprint authentication was used to protect the personal data stored in the personal identification card device. After the fingerprint identification procedure is passed, the protected data stored in the card device can be output for subsequent processing or authentication procedures. The size of this device is the same as that of a current general-purpose credit card, and it mainly includes a fingerprint sensor, an image processing and identification module, and a storage memory, and becomes a completely independent fingerprint identification device (that is, fingerprint capture and identification are all in the executed on the same device).

中国专利CN1302018A揭露一种通过指纹辨识来控制数据储存装置的读写权的方法。然而,此专利并无明确地揭露此储存装置的格式及接口。Chinese patent CN1302018A discloses a method for controlling the read and write rights of a data storage device through fingerprint identification. However, this patent does not explicitly disclose the format and interface of the storage device.

同样的,欧洲专利EP124079A1公报同样揭露相同于前述美国专利第4,582,985号公报的数据保护理念,但不同的是其沟通接口为供SD卡接口使用的金手指设计。此外,EP124079A1专利的存储器装置具有一指纹辨识模块,且其数据保护概念相同于CN1302018A专利,除了EP124079A1专利的沟通接口是供SD卡接口使用的金手指构造以外。同样的,美国专利公开号US2001/0023375 A1也揭露一种用以通过指纹辨识来保护储存于硬盘或快闪盘的数据的方式。Similarly, European Patent EP124079A1 also discloses the same data protection concept as the above-mentioned US Patent No. 4,582,985, but the difference is that its communication interface is a golden finger design for SD card interface. In addition, the memory device of the EP124079A1 patent has a fingerprint identification module, and its data protection concept is the same as that of the CN1302018A patent, except that the communication interface of the EP124079A1 patent is a golden finger structure for the SD card interface. Similarly, US Patent Publication No. US2001/0023375 A1 also discloses a method for protecting data stored in a hard disk or a flash disk through fingerprint identification.

世界专利WO 02/42887A2公报揭露一种相同于前述美国专利第4,582,985号公报及欧洲专利EP124079A1公报的数据保护理念,但不同的是,通过USB接口执行与终端系统的沟通,这一装置近似目前市场上流行的闪存,不同的是内含独立的指纹处理及辨识模块。World Patent WO 02/42887A2 discloses a data protection concept similar to the aforementioned US Patent No. 4,582,985 and European Patent EP124079A1, but the difference is that the communication with the terminal system is performed through the USB interface. This device is similar to the current market The difference is that it contains an independent fingerprint processing and identification module.

美国专利公开第2003/005337号公报揭露了相同于前述美国专利第4,582,985号公报及欧洲专利EP124079A1公报的数据保护理念,同时也相同于世界专利WO 02/42887A2公报所揭露利用USB作为沟通的接口。然而,其同样为一种独立式指纹辨识装置。U.S. Patent Publication No. 2003/005337 discloses the same data protection concept as the aforementioned U.S. Patent No. 4,582,985 and European Patent EP124079A1, and also uses USB as a communication interface as disclosed in World Patent WO 02/42887A2. However, it is also a stand-alone fingerprint recognition device.

英国专利第GB2387933号公报也揭露几乎完全相同于WO 02/42887A2公报及美国专利公开第2003/005337号公报的理念及装置设计,其为一独立的指纹辨识装置。British Patent No. GB2387933 also discloses an almost identical concept and device design to WO 02/42887A2 and U.S. Patent Publication No. 2003/005337, which is an independent fingerprint identification device.

至此,上述含有指纹辨识装置的发明,除了美国专利第4,582,985号公报揭露应用于个人身份证件代表外,其余都仅作为数据的保护,并无涵盖这一应用及功能。So far, the above-mentioned inventions containing fingerprint recognition devices are only used for data protection, except that the US Patent No. 4,582,985 discloses that they are applied to representatives of personal identity documents, and do not cover this application and function.

此外,上述的含指纹辨识装置的可携式储存装置的基本要求,就是能让使用者能将此储存装置连接至不同的计算机系统以供使用。然而,上述已知技术含指纹辨识功能的储存装置设计,即使使用USB接口,仍需要在计算机系统上事先安装指纹应用程序,以让计算机系统能提供人机接口供使用者方便使用。传统的作法是提供一光盘,以供使用者安装指纹应用程序,才能让整个储存装置可以方便使用。在此情况下,在每一台计算机系统的第一次设定中,使用者除了要携带可携式储存装置以外,还要携带光盘才能在其它计算机系统中使用此储存装置。In addition, the basic requirement of the above-mentioned portable storage device including the fingerprint identification device is to enable the user to connect the storage device to different computer systems for use. However, even if the USB interface is used for the above-mentioned storage device design with fingerprint identification function in the prior art, it is still necessary to install a fingerprint application program on the computer system in advance, so that the computer system can provide a man-machine interface for the user to use conveniently. The traditional method is to provide a CD for the user to install the fingerprint application program, so that the entire storage device can be used conveniently. In this case, in the first setting of each computer system, in addition to carrying the portable storage device, the user also needs to carry a CD to use the storage device in other computer systems.

总之,上述已知技术的目的是提供一种用以通过指纹辨认来保护所储存的数据的储存装置。当使用此装置时,使用者必须事先安装指纹应用软件于终端系统中。因此,储存装置的指纹应用程序无法在各种不同计算机中方便地达到随插即用的效果。In summary, the purpose of the above known technologies is to provide a storage device for protecting stored data through fingerprint identification. When using this device, the user must install the fingerprint application software in the terminal system in advance. Therefore, the fingerprint application program in the storage device cannot be easily plugged and played in various computers.

至此,前述的已知技术有一共同的特色,也就是提供一独立的指纹辨识装置,内部包含指纹传感器、指纹图像处理及辨识IC。这样的设计优点为,或许不需要安装指纹应用程序于终端系统端而提供了热插拔的使用方便性,但却衍生出另一重要问题,那就是价格昂贵,因为必须增加一指纹图像处理及辨识IC及其配套设计的成本,通常该IC为32位的精简指令集计算机(Reduced Instruction Set Computer,RISC)或数字信号处理器(Digital SignalProcessor,DSP),才能快速进行指纹辨识。因此,传统的具有指纹传感器的可携式储存装置具有高成本的缺点。So far, the aforementioned known technologies have a common feature, that is, to provide an independent fingerprint identification device, which includes a fingerprint sensor, fingerprint image processing and identification IC. The advantage of such a design is that it may not need to install the fingerprint application program on the terminal system side and provide the convenience of hot plugging, but it leads to another important problem, that is, it is expensive, because a fingerprint image processing and fingerprint processing must be added. The cost of identifying IC and its supporting design, usually the IC is a 32-bit Reduced Instruction Set Computer (Reduced Instruction Set Computer, RISC) or Digital Signal Processor (Digital Signal Processor, DSP), in order to quickly perform fingerprint identification. Therefore, the conventional portable storage device with a fingerprint sensor has the disadvantage of high cost.

为解决高成本的问题,最佳方式是利用终端系统的微处理器执行指纹图像处理及辨识,便可以有效降低成本。但是目前已知技术对于这一方法并无明确揭露及提出解决方案。In order to solve the problem of high cost, the best way is to use the microprocessor of the terminal system to perform fingerprint image processing and identification, which can effectively reduce the cost. However, the currently known technology does not clearly disclose and propose a solution to this method.

因为如果要将指纹图像处理及辨识的工作由储存装置执行移转到终端系统的微处理器执行,则该发明装置必须要有自动下载指纹应用程序(包含指纹图像处理、辨识及加解密功能等等)于终端系统的功能,才能达到热插拔的功能,以及在任何终端系统都可以使用的方便性。这样的解决方案也是上述已知技术没有提供的。Because if the work of fingerprint image processing and identification is to be transferred from the storage device to the microprocessor of the terminal system, the inventive device must have automatic downloading of fingerprint application programs (comprising fingerprint image processing, identification and encryption and decryption functions, etc.) etc.) in the function of the terminal system, in order to achieve the function of hot plugging, and the convenience that can be used in any terminal system. Such a solution is also not provided by the known techniques described above.

为此,本案发明人在上述(a)至(c)专利中揭露了一种自动执行(AutoRun)指纹辨识及应用程序于终端系统的设计,将储存装置作切割成几个区域,并将其中一个区域模拟成CD-ROM(让终端系统认知到CD-ROM装置),而储存于该区域的指纹辨识及应用程序便可以被自动执行。解决已知技术高成本(需要独立辨识装置)或者需要事先在计算机上安装指纹辨识软件的方法。For this reason, the inventor of this case discloses a design of automatic execution (AutoRun) fingerprint identification and application program in the terminal system in the above-mentioned patents (a) to (c), the storage device is cut into several areas, and the One area is simulated as a CD-ROM (let the terminal system recognize the CD-ROM device), and the fingerprint identification and application programs stored in this area can be automatically executed. The method solves the high cost of the known technology (requiring an independent identification device) or the need to install fingerprint identification software on the computer in advance.

在这一些发明案中,指纹影像的处理及对比都是在终端系统进行,当完成对比后再通过特殊指令(special command)通知储存装置开放读写的权限。In these inventions, the processing and comparison of fingerprint images are all carried out in the terminal system, and after the comparison is completed, the storage device is notified to open read and write permissions through a special command.

这样的设计仍有一些缺点,那就是如果有人能在终端主机拦截到该特殊指令,则有可能不需要指纹对比而破解了储存装置的安全性。Such a design still has some disadvantages, that is, if someone can intercept the special command at the terminal host, the security of the storage device may be cracked without fingerprint comparison.

延续上述的发明,本案发明人将更进一步提供一种储存数据的保护方法,可以完全保护本发明储存装置在终端系统操作时不会被撷取到开启储存装置的钥匙。Continuing the above-mentioned invention, the inventor of this case will further provide a protection method for stored data, which can completely protect the storage device of the present invention from being retrieved from the key to open the storage device when the terminal system is operating.

发明内容 Contents of the invention

有鉴于此,本发明的主要目的就是提供一种储存装置及其储存数据的保护方法,所述储存装置与一终端主机连接,并通过与该终端主机的共同作用,可以在不大幅增加储存装置的成本下,来提供含指纹传感器的储存装置的有效数据保护方式。In view of this, the main purpose of the present invention is to provide a storage device and a method for protecting data stored therein. The storage device is connected to a terminal host, and by cooperating with the terminal host, the storage device can be saved without greatly increasing the storage capacity. Provide an effective data protection method for a storage device including a fingerprint sensor at a low cost.

本发明的另一目的是提供一种储存装置及其储存数据的保护方法,其能避免终端主机控制储存装置开启的特殊指令被拦截而丧失数据保护的功能。Another object of the present invention is to provide a storage device and a method for protecting stored data thereof, which can prevent the special command of the terminal host to control the opening of the storage device from being intercepted and lose the function of data protection.

为达成上述目的,本发明提供一种储存装置,用以与一终端主机连接,该终端主机用以执行一生物辨识应用程序以及一主机乱码产生程序。所述储存装置基本上包含:一主机接口,用以与所述终端主机连接;一控制模块,其连接至所述主机接口,并包含一微处理器、一随机存取存储器(RAM)及一只读存储器(ROM),所述RAM作为数据处理时的工作存储器,而所述ROM储存有使该储存装置工作的固件以及一装置乱码产生程序;一生物传感器,其连接至所述控制模块,用以感测一使用者的一待辨识生物数据;一数据保护单元,其连接至所述控制模块,并用以储存一待保护数据;及一储存模块,其连接至所述控制模块,用以储存一模板生物数据。该模板生物数据是通过所述控制模块的微处理器被上传至所述终端主机。在生物辨识应用程序的引导下,所述控制模块控制生物传感器读取使用者的该待辨识生物数据,并将该待辨识生物数据传送至终端主机中。该终端主机利用该生物辨识应用程序处理并对比该待辨识生物数据与模板生物数据,并判断两者是否吻合,并在吻合时利用主机乱码产生程序依据一随时更新的乱码程序金钥来产生一组主机乱码,并将该主机乱码回传至微处理器中。该微处理器利用该装置乱码产生程序依据随时更新的乱码程序金钥来产生一组装置乱码,并在对比这组装置乱码与这组主机乱码吻合时,使数据保护单元致能(enable)以供终端主机存取,否则使数据保护单元禁能(disable)以防止终端主机存取。To achieve the above object, the present invention provides a storage device used to connect with a terminal host, and the terminal host is used to execute a biometric identification application program and a host garbled code generation program. The storage device basically includes: a host interface for connecting with the terminal host; a control module connected to the host interface and including a microprocessor, a random access memory (RAM) and a Read-only memory (ROM), the RAM is used as a working memory during data processing, and the ROM stores firmware that makes the storage device work and a device garbled code generation program; a biosensor, which is connected to the control module, A biometric data to be identified for sensing a user; a data protection unit, which is connected to the control module, and used to store a data to be protected; and a storage module, which is connected to the control module, for A template biological data is stored. The template biological data is uploaded to the terminal host through the microprocessor of the control module. Under the guidance of the biological identification application program, the control module controls the biological sensor to read the biological data to be identified of the user, and transmit the biological data to be identified to the terminal host. The terminal host uses the biometric application program to process and compare the biometric data to be identified with the template biometric data, and judges whether the two are consistent, and uses the host garbled code generation program to generate a garbled code program key that is updated at any time when they match. The group host is garbled, and the host is garbled and returned to the microprocessor. The microprocessor utilizes the device garbled code generation program to generate a group of device garbled codes according to the garbled code program key updated at any time, and when comparing the device garbled codes with the host machine garbled codes, the data protection unit is enabled (enable) to Access by the terminal host, otherwise the data protection unit is disabled to prevent the terminal host from accessing.

为达成上述目的,本发明也提供一种储存装置的储存数据的保护方法,基本上包含以下步骤:连接储存装置与一终端主机;在终端主机执行一生物辨识应用程序;将储存于储存装置的一模板生物数据传送至终端主机;引导一使用者使用储存装置的一生物传感器,以使该生物传感器撷取该使用者的一待辨识生物数据,并将该待辨识生物数据传送至终端主机;利用生物辨识应用程序处理并对比待辨识生物数据与模板生物数据,并判断两者是否吻合,并在吻合时利用一主机乱码产生程序依据一随时更新的乱码程序金钥来产生一组主机乱码,并将该主机乱码回传至储存装置中;及在该储存装置中利用一装置乱码产生程序依据随时更新的乱码程序金钥来产生一组装置乱码,并在对比这组装置乱码与这组主机乱码吻合时,使该储存装置的一数据保护单元致能以供终端主机存取,否则使该数据保护单元禁能以防止该终端主机存取。To achieve the above object, the present invention also provides a method for protecting data stored in a storage device, which basically includes the following steps: connecting the storage device with a terminal host; executing a biometric application program on the terminal host; A template biometric data is sent to the terminal host; a user is guided to use a biosensor of the storage device, so that the biosensor captures a biometric data of the user to be identified, and the biometric data to be identified is transmitted to the terminal host; Use the biometric application program to process and compare the biological data to be identified and the template biological data, and judge whether the two match, and use a host random code generation program to generate a set of host random codes according to a random code program key updated at any time, And return the garbled code of the host to the storage device; and use a device garbled code generating program in the storage device to generate a group of device garbled codes according to the garbled code program key updated at any time, and compare this group of device garbled codes with this group of hosts When the garbled codes match, a data protection unit of the storage device is enabled to be accessed by the terminal host, otherwise, the data protection unit is disabled to prevent the terminal host from accessing.

通过本发明的上述装置与方法,由于复杂的生物数据的对比动作是在终端主机中执行,所以储存装置本身不需要高阶的微处理器。此外,生物数据对比成功后,终端主机所送出的信号并非是单纯用以开启待保护数据的信号,而是一组变化多端的信号,即使被拦截到,也不怕待保护数据外露。这是因为最后的数据保护单元的致能与禁能是在控制模块中进行的,且控制模块的对比数据是两组变化多端的乱码,只有在两组乱码对比成功后,才能开启数据保密单元的管理权限,因此能有效防止被破解。乱码的对比相当简单,可以利用譬如8051处理器的微处理器便可以处理,使本发明因而撷取了独立装置的优点也不需要增加成本。Through the above-mentioned device and method of the present invention, since the comparison of complex biological data is performed in the terminal host, the storage device itself does not need a high-end microprocessor. In addition, after the biological data comparison is successful, the signal sent by the terminal host is not simply a signal to open the data to be protected, but a set of varied signals. Even if it is intercepted, the data to be protected will not be exposed. This is because the enabling and disabling of the final data protection unit is carried out in the control module, and the comparison data of the control module is two sets of variable garbled codes. Only after the two sets of garbled codes are compared successfully can the data security unit be turned on. management authority, so it can effectively prevent it from being cracked. The comparison of garbled characters is quite simple and can be processed by a microprocessor such as an 8051 processor, so that the present invention captures the advantages of an independent device without increasing the cost.

附图说明 Description of drawings

图1显示依本发明第一实施例的储存装置与一终端主机的连接状态示意图。FIG. 1 shows a schematic diagram of a connection state between a storage device and a terminal host according to a first embodiment of the present invention.

图2显示依本发明第二实施例的储存装置与一终端主机的连接状态示意图。FIG. 2 is a schematic diagram showing a connection state between a storage device and a terminal host according to a second embodiment of the present invention.

图3显示依本发明第三实施例的储存装置与一终端主机的连接状态示意图。FIG. 3 is a schematic diagram showing a connection state between a storage device and a terminal host according to a third embodiment of the present invention.

图4显示依本发明第四实施例的储存装置的保护方法的流程图。FIG. 4 shows a flowchart of a method for protecting a storage device according to a fourth embodiment of the present invention.

主要组件符号说明:Description of main component symbols:

1~储存装置                 2~终端主机1~storage device 2~terminal host

10~控制模块                10A~微处理器10~control module 10A~microprocessor

10B~随机存取存储器(RAM)    10C~只读存储器(ROM)10B~Random Access Memory (RAM) 10C~Read Only Memory (ROM)

12~主机接口                16~储存接口12~host interface 16~storage interface

20~储存模块                21~应用程序区块20~storage module 21~application block

22~公用区块                24~保密区块/数据保护单元22~Public block 24~Confidential block/data protection unit

26~隐藏区块                30~生物传感器26~Hide block 30~Biosensor

40~存储器扩充插槽          50~外接存储器/数据保护单元40~memory expansion slot 50~external memory/data protection unit

60~加/解密芯片             70~储存接口扩充插槽60~encryption/decryption chip 70~storage interface expansion slot

80~大容量储存单元/数据保护单元  210-310~方法步骤80~mass storage unit/data protection unit 210-310~method steps

具体实施方式 Detailed ways

图1显示依本发明第一实施例的储存装置与一终端主机的连接状态示意图。如图1所示,本实施例的一种储存装置1是用以与一终端主机2连接。该终端主机2用以执行一生物辨识应用程序以及一主机乱码产生程序。所述生物辨识应用程序以及所述主机乱码产生程序可以预先储存于储存装置1中,再通过自动执行(Auto Run)的方式而使终端主机2自动执行。FIG. 1 shows a schematic diagram of a connection state between a storage device and a terminal host according to a first embodiment of the present invention. As shown in FIG. 1 , a storage device 1 of this embodiment is used to connect with a terminal host 2 . The terminal host 2 is used to execute a biometric identification application program and a host garbled code generation program. The biometric application program and the host garbled code generation program can be pre-stored in the storage device 1, and then the terminal host 2 can be automatically executed by means of Auto Run.

储存装置1基本上包含一主机接口12、一控制模块10、一生物传感器30、一储存模块20及一数据保护单元24。主机接口12用以与终端主机2连接。主机接口12可以是一通用串行总线(USB)接口、一PCMCIA接口、SATA接口、一PCI高速(PCI EXPRESS)接口或一IEEE 1394接口或其它标准接口。控制模块10连接至主机接口12,并包含一微处理器1 0A、一随机存取存储器(RAM)10B及一只读存储器(ROM)10C。所述RAM 10B作为数据处理时的工作存储器,而所述ROM 10C储存有使储存装置1工作的固件(firmware)以及一装置乱码产生程序。所述微处理器10A、RAM 10B及ROM 10C可以整合在单一芯片中而成为单芯片设计。因此,控制模块10的任务是与终端主机2沟通,同时管理储存模块20及生物传感器30。The storage device 1 basically includes a host interface 12 , a control module 10 , a biosensor 30 , a storage module 20 and a data protection unit 24 . The host interface 12 is used to connect with the terminal host 2 . The host interface 12 can be a Universal Serial Bus (USB) interface, a PCMCIA interface, a SATA interface, a PCI high-speed (PCI EXPRESS) interface or an IEEE 1394 interface or other standard interfaces. The control module 10 is connected to the host interface 12 and includes a microprocessor 10A, a random access memory (RAM) 10B and a read only memory (ROM) 10C. The RAM 10B is used as a working memory for data processing, and the ROM 10C stores firmware (firmware) that enables the storage device 1 to work and a device garbled code generation program. The microprocessor 10A, RAM 10B and ROM 10C can be integrated in a single chip to form a single chip design. Therefore, the task of the control module 10 is to communicate with the terminal host 2 and manage the storage module 20 and the biosensor 30 at the same time.

所述生物传感器30连接至控制模块10,用以感测一使用者的一待辨识生物数据。该生物传感器30可以感测使用者的生物数据,譬如指纹、虹膜、声音、笔迹或其它生物数据等,且生物传感器30可以是一面积型指纹传感器、一滑动式指纹传感器、一声纹传感器、一虹膜传感器或一脸型传感器或其它类型生物传感器,以下仅以指纹传感器来作说明。The biosensor 30 is connected to the control module 10 for sensing a biometric data of a user to be identified. The biological sensor 30 can sense the user's biological data, such as fingerprints, iris, voice, handwriting or other biological data, and the biological sensor 30 can be an area type fingerprint sensor, a sliding fingerprint sensor, a voiceprint sensor, a An iris sensor or a face sensor or other types of biometric sensors, the following will only be described with a fingerprint sensor.

所述储存模块20连接至控制模块10,用以储存一模板生物数据以及一随时更新的乱码程序金钥(该乱码程序金钥也可以每次使用时由指纹应用程序产生,而不需要事先储存于储存模块20中)。所谓的模板生物数据,就是储存装置1的拥有者在第一次使用此装置时,在其中所留下的第一次的生物数据,此指纹数据是用以作为与后续指纹数据对比的基准。储存模块20可以是一种存储器模块或一硬盘装置,存储器模块为选自于一非挥发性存储器,例如一闪存、一可编程只读存储器(PROM)、一只读存储器、或一电可擦除只读存储器(EEPROM)等等。硬盘装置具有相同的切割。在本实施例中,储存模块20被分割为一应用程序区块21、一公用区块22、一保密区块24及一隐藏区块26。保密区块24是作为数据保护单元用,因此其也是连接至控制模块10,并用以储存一待保护数据。在终端主机2要自动执行生物辨识应用程序及主机乱码产生程序的情况下,该生物辨识应用程序及该主机乱码产生程序可以储存于应用程序区块21中。此外,该应用程序区块21是被模拟成一光盘储存装置,藉以使连接至该储存装置1的终端主机2自动执行该生物辨识应用程序及该主机乱码产生程序。该主机乱码产生程序与该装置乱码产生程序具有相同的程序逻辑,也就是,根据同一乱码程序金钥可以产生相同的乱码。公用区块22(可以选择性的设计存在或不存在)可以储存公用程序及数据,藉以让使用者在不用通过生物辨识程序之前即可使用该公用程序及数据。在一实施例中,模板生物数据及随时更新的乱码程序金钥储存于隐藏区块26中。在另一实施例中,乱码程序金钥不预先储存于隐藏区块26,而是每次使用时由指纹应用程序根据指纹特征(取自于待辨识生物数据)产生,抑或结合指纹特征及一数学运算产生。所谓随时更新的乱码程序金钥是指供给主机及装置乱码产生程序的起始值,该随时更新的乱码程序金钥在每次主机乱码与装置乱码对比成功后会被更新,以确保这一储存装置无法被轻易破解。The storage module 20 is connected to the control module 10, and is used to store a template biometric data and a garbled code program key updated at any time (the garbled code program key can also be generated by the fingerprint application program every time it is used, without prior storage in the storage module 20). The so-called template biological data is the first biological data left by the owner of the storage device 1 when using the device for the first time. This fingerprint data is used as a benchmark for comparison with subsequent fingerprint data. The storage module 20 can be a memory module or a hard disk device, and the memory module is selected from a non-volatile memory, such as a flash memory, a programmable read-only memory (PROM), a read-only memory, or an electrically erasable In addition to read-only memory (EEPROM) and so on. Hard drive units have the same cut. In this embodiment, the storage module 20 is divided into an application block 21 , a public block 22 , a security block 24 and a hidden block 26 . The security block 24 is used as a data protection unit, so it is also connected to the control module 10 and used to store a data to be protected. In the case that the terminal host 2 is to automatically execute the biometric identification application program and the host garbled code generation program, the biometric identification application program and the host garbled code generation program can be stored in the application program block 21 . In addition, the application block 21 is simulated as an optical disk storage device, so that the terminal host 2 connected to the storage device 1 automatically executes the biometric application program and the host garbled code generation program. The garbled code generation program of the host computer and the garbled code generator program of the device have the same program logic, that is, the same garbled codes can be generated according to the same garbled code program key. The public block 22 (which can be selectively designed to exist or not) can store public programs and data, so that users can use the public programs and data without going through the biometric authentication process. In one embodiment, the biometric data of the template and the garbled program key updated at any time are stored in the hidden block 26 . In another embodiment, the garbled program key is not pre-stored in the hidden block 26, but is generated by the fingerprint application program according to the fingerprint characteristics (taken from the biological data to be identified) each time it is used, or combined with the fingerprint characteristics and a Mathematical operations are generated. The so-called garbled program key updated at any time refers to the initial value of the garbled code generation program supplied to the host and the device. The garbled program key updated at any time will be updated after each successful comparison between the host garbled code and the device garbled code to ensure this storage. The device cannot be easily hacked.

当储存装置1连接至终端主机2时,模板生物数据及随时更新的乱码程序金钥是通过控制模块10的微处理器10A被上传至终端主机2。然后,在终端主机2所执行的生物辨识应用程序的引导下,控制模块10控制生物传感器30读取使用者的待辨识生物数据,并将该待辨识生物数据传送至终端主机2中。接着,终端主机2利用生物辨识应用程序处理,并对比待辨识生物数据与模板生物数据,并判断两者是否实质上吻合,并在实质上吻合时利用主机乱码产生程序依据随时更新的乱码程序金钥来产生一组主机乱码,并将主机乱码回传至微处理器10A中,主机乱码回传的方式可以是直接传送,或者加密后回传(到微处理器10A中也必需要先解密再对比),也或者结合通信协议一起传送(例如与USB控制器沟通的通信协议)。如果乱码程序金钥每次使用时由指纹应用程序产生的情况下,其回传方式也可以如同上述主机乱码的回传方式。值得注意的是,生物数据的对比方式可以用图形对比、特征点对比等方式。然后,微处理器10A利用装置乱码产生程序依据随时更新的乱码程序金钥来产生一组装置乱码,并在对比这组装置乱码与这组主机乱码实质上吻合时,使数据保护单元24致能以供终端主机2存取,否则使数据保护单元24禁能以防止终端主机2存取。When the storage device 1 is connected to the terminal host 2 , the template biometric data and the garbled program key updated at any time are uploaded to the terminal host 2 through the microprocessor 10A of the control module 10 . Then, under the guidance of the biometric application program executed by the terminal host 2 , the control module 10 controls the biosensor 30 to read the user's biometric data to be identified, and transmit the biometric data to be identified to the terminal host 2 . Next, the terminal host 2 uses the biometrics application program to process, and compares the biological data to be identified with the template biological data, and judges whether the two are substantially consistent, and when they are substantially consistent, use the host garbled code generation program based on the garbled code program updated at any time Key to generate a group of host computer garbled codes, and send the host computer garbled codes back to the microprocessor 10A. The host computer garbled codes can be sent back directly, or encrypted and then sent back (in the microprocessor 10A, it must be decrypted first and then comparison), or combined with a communication protocol (such as a communication protocol for communicating with a USB controller). If the garbled program key is generated by the fingerprint application program every time it is used, its return method can also be the same as the return method of the above-mentioned host garbled code. It is worth noting that the comparison method of biological data can be in the form of graphic comparison, feature point comparison, etc. Then, the microprocessor 10A uses the device garbled code generation program to generate a set of device garbled codes according to the garbled code program key updated at any time, and when the set of device garbled codes is substantially consistent with the set of host garbled codes, the data protection unit 24 is enabled. for the terminal host 2 to access, otherwise the data protection unit 24 is disabled to prevent the terminal host 2 from accessing.

图2显示依本发明第二实施例的储存装置与一终端主机的连接状态示意图。如图2所示,本实施例类似于第一实施例,不同之处在于本实施例的储存装置1更包含一存储器扩充插槽40,其与控制模块10电连接,用以与一外接存储器50电连接,藉以增加该储存装置1的存储器容量。该存储器扩充插槽40实质上用以扩充本发明装置的存储器的容量,抑或通过将本装置视为一外接存储器50的读取器(memory reader),该外接存储器譬如CF卡、智能型媒体(smart media)、记忆棒(memory stick)或其它标准接口的外接存储器、或硬盘(特别是一寸或更小的硬盘,又称微型硬盘(microdrive))。外接存储器50是在这组装置乱码与这组主机乱码实质上相符时被致能以供终端主机2存取。在外接存储器50被插入存储器扩充插槽40后,控制模块10将该外接存储器规划为单一扩充保密区块,用以储存额外的待保护数据。FIG. 2 is a schematic diagram showing a connection state between a storage device and a terminal host according to a second embodiment of the present invention. As shown in Figure 2, this embodiment is similar to the first embodiment, the difference is that the storage device 1 of this embodiment further includes a memory expansion slot 40, which is electrically connected with the control module 10, and is used for connecting with an external memory 50 to increase the memory capacity of the storage device 1 . The storage expansion slot 40 is used to expand the capacity of the memory of the device of the present invention in essence, or by treating the device as a reader (memory reader) of an external storage 50, the external storage is such as a CF card, an intelligent medium ( smart media), memory stick (memory stick) or other external memory with standard interface, or hard disk (especially hard disk of one inch or smaller, also known as microdrive). The external memory 50 is enabled for the terminal host 2 to access when the set of device garbled codes substantially matches the set of host garbled codes. After the external memory 50 is inserted into the memory expansion slot 40, the control module 10 plans the external memory into a single expanded security block for storing additional data to be protected.

此外,图2中的外接存储器50,也可以单独作为数据保护单元,其通过存储器扩充插槽40连接至控制模块10。在此情况下,储存模块20的保密区块24可以省略。在外接存储器50被插入存储器扩充插槽40后,控制模块10将该外接存储器规划为单一扩充保密区块,用以储存待保护数据。In addition, the external memory 50 in FIG. 2 can also be used as a data protection unit alone, which is connected to the control module 10 through the memory expansion slot 40 . In this case, the security block 24 of the storage module 20 can be omitted. After the external memory 50 is inserted into the memory expansion slot 40, the control module 10 plans the external memory into a single expanded security block for storing data to be protected.

图3显示依本发明第三实施例的储存装置与一终端主机的连接状态示意图。如图3所示,本实施例类似于第一实施例,不同之处在于本实施例的储存装置1更包含一储存接口扩充插槽70,其用以将一大容量储存单元80电连接至控制模块10,藉以为该储存装置1提供一储存容量。加/解密芯片60通过一储存接口16连接至控制模块10。储存接口扩充插槽70连接至加/解密芯片60。大容量储存单元80通过储存接口扩充插槽70及加/解密芯片60而连接至控制模块10。该大容量储存单元80是在装置乱码与主机乱码实质上相符时被致能以供终端主机2存取。进出该大容量储存单元80的数据可以通过加/解密芯片60进行加/解密。该大容量储存单元80的一个实施例为磁性硬盘,特别是3.5寸、2.5寸或其它尺寸的硬盘;该大容量储存单元80的另一个实施例为CD-R/RW及DVD-R/RW及任何规格的光盘装置。储存接口16及储存接口扩充插槽70在本实施例中为IDE接口,然而也可以是SCSI接口、Serial ATA接口、一Compact Flash(CF)接口、一PCMCIA接口或IEEE 1284接口或者其它标准的接口。FIG. 3 is a schematic diagram showing a connection state between a storage device and a terminal host according to a third embodiment of the present invention. As shown in Figure 3, this embodiment is similar to the first embodiment, the difference is that the storage device 1 of this embodiment further includes a storage interface expansion slot 70, which is used to electrically connect a large-capacity storage unit 80 to the The control module 10 provides a storage capacity for the storage device 1 . The encryption/decryption chip 60 is connected to the control module 10 through a storage interface 16 . The storage interface expansion slot 70 is connected to the encryption/decryption chip 60 . The mass storage unit 80 is connected to the control module 10 through the storage interface expansion slot 70 and the encryption/decryption chip 60 . The mass storage unit 80 is enabled for the terminal host 2 to access when the device garbled code substantially matches the host garbled code. The data in and out of the mass storage unit 80 can be encrypted/decrypted by the encryption/decryption chip 60 . One embodiment of the mass storage unit 80 is a magnetic hard disk, especially a hard disk of 3.5 inches, 2.5 inches or other sizes; another embodiment of the mass storage unit 80 is CD-R/RW and DVD-R/RW And any size of optical disc device. Storage interface 16 and storage interface expansion slot 70 are IDE interface in the present embodiment, but also can be the interface of SCSI interface, Serial ATA interface, a Compact Flash (CF) interface, a PCMCIA interface or IEEE 1284 interface or other standards .

此外,图3中的大容量储存单元80,也可以单独作为数据保护单元。在此情况下,储存模块20的保密区块24可以省略。数据保护单元是通过储存接口扩充插槽70而连接至控制模块10。此外,该大容量储存单元80更通过加/解密芯片60而连接至控制模块10,用以加/解密进出该大容量储存单元80的数据。In addition, the mass storage unit 80 in FIG. 3 can also be used as a data protection unit alone. In this case, the security block 24 of the storage module 20 can be omitted. The data protection unit is connected to the control module 10 through the storage interface expansion slot 70 . In addition, the mass storage unit 80 is further connected to the control module 10 through the encryption/decryption chip 60 for encrypting/decrypting the data in and out of the mass storage unit 80 .

图4显示依本发明第四实施例的储存装置的保护方法的流程图。如图4所示,本发明的储存装置1的储存装置的保护方法包含以下步骤。FIG. 4 shows a flowchart of a method for protecting a storage device according to a fourth embodiment of the present invention. As shown in FIG. 4 , the storage device protection method of the storage device 1 of the present invention includes the following steps.

首先,在储存装置1被插入至终端主机2后,通过储存装置1的主机接口12来连接储存装置1与终端主机2。然后,终端主机2执行生物辨识应用程序,如步骤210所示。接着生物辨识应用程序自动判断该储存装置1是否第一次被使用,如果是,则询问使用者是否登录其指纹数据,如步骤220所示。若使用者选择登录数据,则如步骤225开始登录指纹。在此情况下,生物传感器30感测使用者的指纹数据,如步骤235所示,然后提取指纹模板,如步骤245所示,接着以金钥加密模板,如步骤255所示。然后,将指纹模板数据储存在隐藏区块26中。First, after the storage device 1 is inserted into the terminal host 2 , the storage device 1 and the terminal host 2 are connected through the host interface 12 of the storage device 1 . Then, the terminal host 2 executes the biometric identification application, as shown in step 210 . Then the biometric application automatically determines whether the storage device 1 is used for the first time, and if so, asks the user whether to register his fingerprint data, as shown in step 220 . If the user chooses to register data, the fingerprint registration starts in step 225 . In this case, the biometric sensor 30 senses the fingerprint data of the user, as shown in step 235 , and then extracts a fingerprint template, as shown in step 245 , and then encrypts the template with a key, as shown in step 255 . Then, the fingerprint template data is stored in the hidden block 26 .

当生物辨识应用程序中侦测到隐藏区块26中储存有指纹模板数据,该储存装置1将储存于该储存装置1的一模板生物数据以及一随时更新的乱码程序金钥传送至终端主机2,如步骤230与240所示。然后,生物辨识应用程序引导使用者使用该储存装置1的一生物传感器30,以使该生物传感器30撷取该使用者的一待辨识生物数据,并将该待辨识生物数据传送至终端主机2,如步骤250所示。接着,利用生物辨识应用程序处理并对比待辨识生物数据与模板生物数据,并判断两者是否实质上吻合,如步骤260所示。若两者实质上不吻合时,则询问使用者是否继续对比,如步骤270所示。若使用者不继续对比,则整个流程结束。若使用者要继续对比,则回到步骤250。若两者实质上吻合,利用主机乱码产生程序依据随时更新的乱码程序金钥来产生一组主机乱码,并将该主机乱码回传至储存装置1中,如步骤280所示。When the biometric application detects that there is fingerprint template data stored in the hidden block 26, the storage device 1 transmits a template biometric data stored in the storage device 1 and a garbled program key updated at any time to the terminal host 2 , as shown in steps 230 and 240. Then, the biometric application guides the user to use a biometric sensor 30 of the storage device 1, so that the biometric sensor 30 captures a biometric data of the user to be identified, and transmits the biometric data to be identified to the terminal host 2 , as shown in step 250. Next, use the biological identification application to process and compare the biological data to be identified and the template biological data, and determine whether the two are substantially consistent, as shown in step 260 . If the two do not match substantially, the user is asked whether to continue the comparison, as shown in step 270 . If the user does not continue the comparison, the entire process ends. If the user wants to continue the comparison, go back to step 250 . If the two are substantially consistent, use the host garbled code generation program to generate a set of host garbled codes according to the garbled program key updated at any time, and send the host garbled codes back to the storage device 1 , as shown in step 280 .

然后,在储存装置1中利用一装置乱码产生程序依据该随时更新的乱码程序金钥来产生一组装置乱码,如步骤290所示。接着,对比这组装置乱码与这组主机乱码是否实质上吻合,如步骤300所示。当这组装置乱码与这组主机乱码实质上吻合时,使储存装置1的一数据保护单元24/50/80致能以供终端主机2存取,如步骤310所示。否则使该数据保护单元24/50/80禁能以防止终端主机2存取而结束。Then, a device garbled code generation program is used in the storage device 1 to generate a set of device garbled codes according to the garbled program key updated at any time, as shown in step 290 . Next, compare whether the random codes of the device and the random codes of the host are substantially consistent, as shown in step 300 . When the device garbled codes substantially match the host garbled codes, a data protection unit 24/50/80 of the storage device 1 is enabled for access by the terminal host 2, as shown in step 310 . Otherwise disabling the data protection unit 24/50/80 to prevent access by the end host 2 ends.

值得注意的是,本方法可以应用在上述三个实施例,因此详细内容在此不再详述。It should be noted that this method can be applied to the above three embodiments, so the details will not be described here.

通过本发明的上述装置与方法,由于复杂的生物数据的对比动作是终端主机中执行,所以储存装置本身不需高阶的微处理器。此外,生物数据对比成功后,终端主机所送出的信号并非是单纯用以开启待保护数据的信号,而是一组变化多端的信号,即使被拦截到,也不怕待保护数据外露。此是因为最后的数据保护单元的致能与禁能是在控制模块中进行的,且控制模块的对比数据是两组变化多端的乱码,只有在两组乱码对比成功后,才能开启数据保密单元的管理权限,因此能有效防止被破解。乱码的对比相当简单,可以利用譬如8051处理器的微处理器便可以处理,使本发明因而撷取了独立装置的优点也不需要增加成本。Through the above-mentioned device and method of the present invention, since the comparison of complex biological data is performed in the terminal host, the storage device itself does not need a high-end microprocessor. In addition, after the biological data comparison is successful, the signal sent by the terminal host is not simply a signal to open the data to be protected, but a set of varied signals. Even if it is intercepted, the data to be protected will not be exposed. This is because the enabling and disabling of the final data protection unit is carried out in the control module, and the comparison data of the control module is two sets of variable garbled codes. Only after the two sets of garbled codes are compared successfully can the data security unit be turned on. management authority, so it can effectively prevent it from being cracked. The comparison of garbled characters is quite simple and can be processed by a microprocessor such as an 8051 processor, so that the present invention captures the advantages of an independent device without increasing the cost.

在较佳实施例的详细说明中所提出的具体实施例仅用以方便说明本发明的技术内容,而非将本发明狭义地限制于上述实施例,在不超出本发明的精神及申请专利范围的情况,所做的种种变化实施,都属于本发明的范围。The specific embodiments proposed in the detailed description of the preferred embodiments are only used to facilitate the description of the technical content of the present invention, rather than restricting the present invention to the above-mentioned embodiments in a narrow sense, without departing from the spirit of the present invention and the scope of the patent application The situation, the implementation of various changes, all belong to the scope of the present invention.

Claims (20)

1.一种储存装置,用以与一终端主机连接,该终端主机用以执行一生物辨识应用程序以及一主机乱码产生程序,其特征在于,所述储存装置包含:1. A storage device, used to connect with a terminal host, the terminal host is used to execute a biometric application program and a host garbled code generation program, characterized in that the storage device includes: 一主机接口,用以与所述终端主机连接;a host interface, used to connect with the terminal host; 一控制模块,其连接至所述主机接口,并包含一微处理器、一随机存取存储器及一只读存储器,所述随机存取存储器作为数据处理时的工作存储器,而所述只读存储器储存有使所述储存装置工作的固件以及一装置乱码产生程序;A control module, which is connected to the host interface, and includes a microprocessor, a random access memory and a read-only memory, the random access memory is used as a working memory for data processing, and the read-only memory Firmware for making the storage device work and a device garbled code generation program are stored; 一生物传感器,其连接至所述控制模块,用以感测一使用者的一待辨识生物数据;a biological sensor connected to the control module for sensing a user's biological data to be identified; 一数据保护单元,其连接至所述控制模块,并用以储存一待保护数据;及a data protection unit, which is connected to the control module and used to store a data to be protected; and 一储存模块,其连接至所述控制模块,用以储存一模板生物数据;a storage module connected to the control module for storing a template biological data; 其中:in: 所述模板生物数据是通过所述控制模块的微处理器被上传至所述终端主机;The template biological data is uploaded to the terminal host through the microprocessor of the control module; 在所述生物辨识应用程序的引导下,所述控制模块控制生物传感器读取使用者的待辨识生物数据,并将该待辨识生物数据传送至终端主机中;Under the guidance of the biometric application program, the control module controls the biometric sensor to read the biometric data to be identified of the user, and transmit the biometric data to be identified to the terminal host; 所述终端主机利用生物辨识应用程序处理并对比待辨识生物数据与模板生物数据,并判断两者是否吻合,并在吻合时利用主机乱码产生程序依据一随时更新的乱码程序金钥来产生一组主机乱码,并将该主机乱码回传至微处理器中;且The terminal host utilizes a biometric application program to process and compare the biological data to be identified with the template biological data, and judge whether the two match, and use the host garbled code generation program to generate a set of garbled code program keys that are updated at any time when they match. The host is garbled, and the host is garbled and returned to the microprocessor; and 该微处理器利用所述装置乱码产生程序依据随时更新的乱码程序金钥来产生一组装置乱码,并在对比这组装置乱码与这组主机乱码吻合时,使所述数据保护单元致能以供终端主机存取,否则使该数据保护单元禁能以防止终端主机存取。The microprocessor utilizes the device garbled code generation program to generate a set of device garbled codes according to the garbled code program key updated at any time, and when comparing the set of device garbled codes with the host machine garbled codes, the data protection unit is enabled to for the terminal host to access, otherwise the data protection unit is disabled to prevent the terminal host from accessing. 2.如权利要求1所述的储存装置,其特征在于,所述数据保护单元为储存模块中的一保密区块。2. The storage device according to claim 1, wherein the data protection unit is a security block in the storage module. 3.如权利要求1所述的储存装置,其特征在于,所述数据保护单元为一外接存储器,其通过一存储器扩充插槽连接至所述控制模块。3. The storage device according to claim 1, wherein the data protection unit is an external memory connected to the control module through a memory expansion slot. 4.如权利要求3所述的储存装置,其特征在于,所述外接存储器被插入所述存储器扩充插槽后,所述控制模块将该外接存储器规划为单一扩充保密区块,用以储存待保护数据。4. The storage device according to claim 3, wherein after the external memory is inserted into the memory expansion slot, the control module plans the external memory into a single expanded security block for storing Protect data. 5.如权利要求1所述的储存装置,其特征在于,所述数据保护单元为一大容量储存单元,其通过一储存接口扩充插槽而连接至所述控制模块。5. The storage device according to claim 1, wherein the data protection unit is a large-capacity storage unit connected to the control module through a storage interface expansion slot. 6.如权利要求5所述的储存装置,其特征在于,所述大容量储存单元还通过一加/解密芯片而连接至所述控制模块,用以加/解密进出该大容量储存单元的数据。6. The storage device according to claim 5, wherein the large-capacity storage unit is also connected to the control module through an encryption/decryption chip for encrypting/decrypting data entering and exiting the large-capacity storage unit . 7.如权利要求1所述的储存装置,其特征在于,所述生物辨识应用程序及所述主机乱码产生程序储存于所述储存模块的一应用程序区块中。7. The storage device according to claim 1, wherein the biometric identification application program and the host garbled code generation program are stored in an application program block of the storage module. 8.如权利要求7所述的储存装置,其特征在于,所述应用程序区块被模拟成一光盘储存装置,藉以使连接至所述储存装置的终端主机自动执行生物辨识应用程序及主机乱码产生程序。8. The storage device according to claim 7, wherein the application program block is simulated as an optical disc storage device, so that the terminal host connected to the storage device automatically executes the biometric application program and host garbled codes are generated program. 9.如权利要求1所述的储存装置,其特征在于,所述主机乱码产生程序与装置乱码产生程序具有相同的程序逻辑。9. The storage device according to claim 1, wherein the program for generating garbled characters of the host has the same program logic as the program for generating garbled characters of the device. 10.如权利要求1所述的储存装置,其特征在于,所述模板生物数据及随时更新的乱码程序金钥储存于所述储存模块的一隐藏区块中。10. The storage device according to claim 1, wherein the template biometric data and the garbled program key updated at any time are stored in a hidden block of the storage module. 11.如权利要求1所述的储存装置,其特征在于,所述随时更新的乱码程序金钥储存于所述储存模块中,且该随时更新的乱码程序金钥是通过所述控制模块的微处理器被上传至终端主机。11. The storage device according to claim 1, characterized in that, the garbled program key which is updated at any time is stored in the storage module, and the garbled program key which is updated at any time is passed through the microcomputer of the control module. The processor is uploaded to the end host. 12.如权利要求1所述的储存装置,其特征在于,所述随时更新的乱码程序金钥由所述生物辨识应用程序所产生。12 . The storage device according to claim 1 , wherein the garbled program key updated at any time is generated by the biometric application. 13 . 13.如权利要求1所述的储存装置,其特征在于,所述随时更新的乱码程序金钥由所述生物辨识应用程序依据待辨识生物数据所产生。13. The storage device according to claim 1, wherein the garbled program key updated at any time is generated by the biometric application program according to the biometric data to be identified. 14.如权利要求1所述的储存装置,其特征在于,所述随时更新的乱码程序金钥由所述生物辨识应用程序依据待辨识生物数据及一数学运算所产生。14. The storage device according to claim 1, wherein the garbled program key updated at any time is generated by the biometric application program according to the biometric data to be identified and a mathematical operation. 15.一种储存装置的储存数据的保护方法,其特征在于,包含以下步骤:15. A method for protecting stored data of a storage device, comprising the following steps: 连接所述储存装置与一终端主机;connecting the storage device to a terminal host; 在终端主机执行一生物辨识应用程序;executing a biometric application on the terminal host; 将储存于所述储存装置的一模板生物数据传送至所述终端主机;transmitting a template biometric data stored in the storage device to the terminal host; 引导一使用者使用该储存装置的一生物传感器,以使该生物传感器撷取该使用者的一待辨识生物数据,并将该待辨识生物数据传送至所述终端主机;guiding a user to use a biometric sensor of the storage device, so that the biometric sensor captures biometric data of the user to be identified, and transmits the biometric data to be identified to the terminal host; 利用生物辨识应用程序处理并对比所述待辨识生物数据与所述模板生物数据,并判断两者是否吻合,并在吻合时利用一主机乱码产生程序依据一随时更新的乱码程序金钥来产生一组主机乱码,并将该主机乱码回传至所述储存装置中;及Process and compare the biometric data to be identified with the template biometric data with a biometric application program, and judge whether the two match, and use a host garbled code generation program to generate a garbled code program key that is updated at any time when they match. The group host is garbled, and the host is garbled and returned to the storage device; and 在所述储存装置中,利用一装置乱码产生程序依据所述随时更新的乱码程序金钥来产生一组装置乱码,并在对比这组装置乱码与这组主机乱码吻合时,使所述储存装置的一数据保护单元致能以供终端主机存取,否则使该数据保护单元禁能以防止终端主机存取。In the storage device, a device garbled code generation program is used to generate a set of device garbled codes according to the garbled code program key updated at any time, and when the set of device garbled codes matches the set of host garbled codes, the storage device A data protection unit is enabled for the end host to access, otherwise the data protection unit is disabled to prevent the end host from accessing. 16.如权利要求15所述的储存装置的储存数据的保护方法,其特征在于,所述储存模块的一应用程序区块被模拟成一光盘储存装置,且其中储存有所述生物辨识应用程序及所述主机乱码产生程序,藉以使连接至所述储存装置的终端主机自动执行该生物辨识应用程序及该主机乱码产生程序。16. The method for protecting data stored in a storage device according to claim 15, wherein an application program block of the storage module is simulated as an optical disc storage device, and the biometric application program and The host garbled code generating program is used to make the terminal host connected to the storage device automatically execute the biometric application program and the host garbled code generating program. 17.如权利要求15所述的储存装置的储存数据的保护方法,其特征在于,更包含以下步骤:将储存于所述储存装置的随时更新的乱码程序金钥传送至终端主机。17 . The method for protecting data stored in a storage device according to claim 15 , further comprising the step of: transmitting the garbled program key updated at any time stored in the storage device to the terminal host. 18.如权利要求15所述的储存装置的储存数据的保护方法,其特征在于,更包含以下步骤:利用所述生物辨识应用程序产生随时更新的乱码程序金钥。18. The method for protecting data stored in a storage device according to claim 15, further comprising the step of: using the biometric identification application program to generate a garbled program key that can be updated at any time. 19.如权利要求15所述的储存装置的储存数据的保护方法,其特征在于,更包含以下步骤:利用所述生物辨识应用程序依据待辨识生物数据产生随时更新的乱码程序金钥。19. The method for protecting stored data of a storage device according to claim 15, further comprising the step of: using the biometric identification application program to generate a garbled program key updated at any time according to the biometric data to be identified. 20.如权利要求15所述的储存装置的储存数据的保护方法,其特征在于,更包含以下步骤:利用所述生物辨识应用程序依据待辨识生物数据及一数学运算产生随时更新的乱码程序金钥。20. The method for protecting stored data in a storage device according to claim 15, further comprising the step of: using the biometric application program to generate a garbled program gold updated at any time according to the biometric data to be identified and a mathematical operation key.
CN 200610002196 2006-01-18 2006-01-18 Storage device and protection method of storage data thereof Expired - Fee Related CN100476764C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200610002196 CN100476764C (en) 2006-01-18 2006-01-18 Storage device and protection method of storage data thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200610002196 CN100476764C (en) 2006-01-18 2006-01-18 Storage device and protection method of storage data thereof

Publications (2)

Publication Number Publication Date
CN101004716A CN101004716A (en) 2007-07-25
CN100476764C true CN100476764C (en) 2009-04-08

Family

ID=38703875

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200610002196 Expired - Fee Related CN100476764C (en) 2006-01-18 2006-01-18 Storage device and protection method of storage data thereof

Country Status (1)

Country Link
CN (1) CN100476764C (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106898381B (en) * 2013-08-09 2020-12-15 慧荣科技股份有限公司 Data storage device and voltage protection method thereof
CN103593619A (en) * 2013-11-13 2014-02-19 宇龙计算机通信科技(深圳)有限公司 Method and system applied to data protection
CN109753821B (en) * 2017-11-01 2022-03-15 瑞昱半导体股份有限公司 Data access device and method

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1281608A (en) * 1997-11-14 2001-01-24 数字人公司 Cryptographic key generation using biometric data
CN1359210A (en) * 2002-01-18 2002-07-17 胡祥义 Method for realizing network accreditation by encipher clobber generating
CN1624667A (en) * 2003-12-05 2005-06-08 瀚群科技股份有限公司 Memory storage device with fingerprint sensor and method for protecting stored data
US6957337B1 (en) * 1999-08-11 2005-10-18 International Business Machines Corporation Method and apparatus for secure authorization and identification using biometrics without privacy invasion
CN1696960A (en) * 2004-05-13 2005-11-16 瀚群科技股份有限公司 Portable encrypted storage device with biometric identification and protection method for stored data

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1281608A (en) * 1997-11-14 2001-01-24 数字人公司 Cryptographic key generation using biometric data
US6957337B1 (en) * 1999-08-11 2005-10-18 International Business Machines Corporation Method and apparatus for secure authorization and identification using biometrics without privacy invasion
CN1359210A (en) * 2002-01-18 2002-07-17 胡祥义 Method for realizing network accreditation by encipher clobber generating
CN1624667A (en) * 2003-12-05 2005-06-08 瀚群科技股份有限公司 Memory storage device with fingerprint sensor and method for protecting stored data
CN1696960A (en) * 2004-05-13 2005-11-16 瀚群科技股份有限公司 Portable encrypted storage device with biometric identification and protection method for stored data

Also Published As

Publication number Publication date
CN101004716A (en) 2007-07-25

Similar Documents

Publication Publication Date Title
US7519203B2 (en) Portable encrypted storage device with biometric identification and method for protecting the data therein
US7447911B2 (en) Electronic identification key with portable application programs and identified by biometrics authentication
JP4884627B2 (en) Detachable active personal storage device, system and method
TWI282940B (en) Memory storage device with a fingerprint sensor and method for protecting the data therein
TWI417732B (en) Memory device with near field communications, method of communicating wireless network settings between devices, and universal serial bus flash drive related therewith
US7539830B2 (en) Portable storage device capable of automatically running biometrics application programs and methods of automatically running the application programs
US7461266B2 (en) Storage device and method for protecting data stored therein
US20020073340A1 (en) Secure mass storage device with embedded biometri record that blocks access by disabling plug-and-play configuration
US7620761B2 (en) Multi-functional storage apparatus and control method thereof
WO2009095263A1 (en) Method of secure pin entry and operation mode setting in a personal portable device
CN101320355B (en) Storage device, memory card access device and read-write method thereof
US7519829B2 (en) Storage device and method for protecting data stored therein
CN100476764C (en) Storage device and protection method of storage data thereof
CN1284090C (en) Memory storage device with fingerprint sensor and protection method for stored data
CN100452000C (en) Portable storage device and method for automatically executing biological identification application program
CN1333348C (en) Portable encrypted storage device with biometric identification and protection method for stored data
JP2007122731A (en) Hard disk apparatus with biometrics sensor and method of protecting data therein
CN100451999C (en) Storage device and protection method of storage data thereof
JP4640920B2 (en) Storage device and storage method
US20070150746A1 (en) Portable storage with bio-data protection mechanism & methodology
KR20050034506A (en) Stand alone usb storage device using finger printing cognition
KR20070109488A (en) Fingerprint recognition mouse with built-in security flash memory
CN1627226A (en) Identity electronic key and its control method
KR200345250Y1 (en) Stand alone usb storage device using finger printing cognition
KR20180128309A (en) SD Memory Control Method having Authentication-based Selective-Activation Function of Multi-Partitioned Memory

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20090408