[go: up one dir, main page]

CN111966416A - Fingerprint module identification method based on UEFI and system supporting fingerprint identification - Google Patents

Fingerprint module identification method based on UEFI and system supporting fingerprint identification Download PDF

Info

Publication number
CN111966416A
CN111966416A CN202010847180.2A CN202010847180A CN111966416A CN 111966416 A CN111966416 A CN 111966416A CN 202010847180 A CN202010847180 A CN 202010847180A CN 111966416 A CN111966416 A CN 111966416A
Authority
CN
China
Prior art keywords
fingerprint module
fingerprint
identification
bios
driver
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010847180.2A
Other languages
Chinese (zh)
Inventor
李新庆
马晓光
李德国
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shandong Chaoyue CNC Electronics Co Ltd
Original Assignee
Shandong Chaoyue CNC Electronics Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shandong Chaoyue CNC Electronics Co Ltd filed Critical Shandong Chaoyue CNC Electronics Co Ltd
Priority to CN202010847180.2A priority Critical patent/CN111966416A/en
Publication of CN111966416A publication Critical patent/CN111966416A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4411Configuring for operating with peripheral devices; Loading of device drivers
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/32User authentication using biometric data, e.g. fingerprints, iris scans or voiceprints
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/4401Bootstrapping
    • G06F9/4406Loading of operating system
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06VIMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
    • G06V10/00Arrangements for image or video recognition or understanding
    • G06V10/94Hardware or software architectures specially adapted for image or video understanding
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06VIMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
    • G06V40/00Recognition of biometric, human-related or animal-related patterns in image or video data
    • G06V40/10Human or animal bodies, e.g. vehicle occupants or pedestrians; Body parts, e.g. hands
    • G06V40/12Fingerprints or palmprints

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • General Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Human Computer Interaction (AREA)
  • Computer Hardware Design (AREA)
  • Image Input (AREA)

Abstract

本发明公开了基于UEFI的指纹模块识别方法及支持指纹识别的系统,属于指纹模块自动识别技术领域,要解决的技术问题为如何基于UEFI对指纹模块自动识别、以克服现有计算机安全加密功能的不足。方法包括如下步骤:建立上位机与指纹模块驱动的通信;计算机操作系统在开机过程中加载启动服务,通过启动服务判断是否加载指纹模块驱动,指纹模块驱动为UEFI模式的驱动;根据判断结果对BIOS中指纹识别功能进行控制,当检测到指纹模块后,开启BIOS的指纹识别功能;通过BIOS的指纹识别功能对由指纹模块录入的指纹进行指纹识别和验证。该系统包括上位机和指纹模块,指纹模块与上位机通过上述方法指纹识别。

Figure 202010847180

The invention discloses a fingerprint module identification method based on UEFI and a system supporting fingerprint identification, belonging to the technical field of automatic identification of fingerprint modules, and the technical problem to be solved is how to automatically identify the fingerprint module based on UEFI to overcome the problems of the existing computer security encryption function. insufficient. The method includes the following steps: establishing communication between a host computer and a fingerprint module driver; loading a startup service in a computer operating system during a boot process, and judging whether to load a fingerprint module driver through the startup service, and the fingerprint module driver is a UEFI mode driver; After the fingerprint module is detected, the fingerprint identification function of the BIOS is turned on; the fingerprint identification and verification of the fingerprint entered by the fingerprint module are carried out through the fingerprint identification function of the BIOS. The system includes a host computer and a fingerprint module, and the fingerprint module and the host computer are identified by the above-mentioned method.

Figure 202010847180

Description

基于UEFI的指纹模块识别方法及支持指纹识别的系统UEFI-based fingerprint module identification method and system supporting fingerprint identification

技术领域technical field

本发明涉及指纹模块自动识别技术领域,具体地说是基于UEFI的指纹模块识别方法及支持指纹识别的系统。The invention relates to the technical field of automatic identification of fingerprint modules, in particular to a fingerprint module identification method based on UEFI and a system supporting fingerprint identification.

背景技术Background technique

当今社会随着计算机技术和互联网通信技术的飞速发展,为人们带来诸多便利的同时,信息的自由性、开放性、实时性等特点使得人们开始越来越重视信息安全问题。信息曝光、隐私泄露、黑客入侵等计算机系统所带来的信息安全问题成为广大计算机互联网用户备受关注的焦点。对于个人层面而言,现在广泛使用的密码加密很容易被各类软件破解,个人照片、资料等私密文件很容易被他人获取;对于国家层面而言,信息安全直接关系着整个国家安全问题,信息的安全性和保密性更加重要。作为最重要的数据处理和存储设备,计算机安全加密功能理所应当的被提出来。在计算安全中,最安全有效的办法是在计算机尚未进入上层操作系统之前进行身份认证。With the rapid development of computer technology and Internet communication technology in today's society, while bringing many conveniences to people, the freedom, openness, real-time nature of information and other characteristics make people pay more and more attention to information security issues. Information security issues brought about by computer systems such as information exposure, privacy leakage, and hacker intrusion have become the focus of attention of the majority of computer Internet users. At the personal level, the widely used password encryption can be easily cracked by various software, and private files such as personal photos and data can be easily obtained by others; at the national level, information security is directly related to the entire national security issue. security and confidentiality are more important. As the most important data processing and storage device, the computer security encryption function should be proposed. In computing security, the safest and most effective way is to perform identity authentication before the computer has entered the upper operating system.

作为生物特征认证加密技术的一种,指纹识别技术由于具有其它特征识别所不可比拟的优点,其在身份认证技术中的成熟性及应用日益普遍。自动指纹识别是利用计算机来进行指纹识别的一种方法,指纹识别实现了身份鉴定领域的世纪革命。每个人的指纹都是唯一的、并且终生不变。依靠这种唯一性和稳定性,我们就可以把一个人同他的指纹对应起来,从而验证他的真实身份,这就是指纹识别技术。利用指纹在系统启动时自动登录。只有事先被允许并且已经完成了指纹注册的使用者才可以登录并使用电脑,同时系统会根据读取到的指纹信息,自动登录到不同的用户。As a kind of biometric authentication encryption technology, fingerprint recognition technology has the incomparable advantages of other feature recognition, its maturity and application in identity authentication technology are becoming more and more popular. Automatic fingerprint identification is a method of fingerprint identification using computers, and fingerprint identification has achieved a century revolution in the field of identification. Everyone's fingerprints are unique and unchanged for life. Relying on this uniqueness and stability, we can match a person with his fingerprint to verify his true identity, which is fingerprint recognition technology. Use your fingerprint to automatically log in at system startup. Only users who are allowed in advance and have completed the fingerprint registration can log in and use the computer. At the same time, the system will automatically log in to different users according to the fingerprint information read.

UEFI(Unified Extensible Firmware Interface,统一可扩展固件接口)定义了操作系统和平台固件之间的接口,它是UEFI Forum发布的一种标准。作为BIOS的替代品,UEFI系统下的加密成为当今世界各IT厂商研究的主要方向。UEFI (Unified Extensible Firmware Interface, Unified Extensible Firmware Interface) defines the interface between the operating system and the platform firmware, which is a standard released by the UEFI Forum. As a substitute for BIOS, encryption under the UEFI system has become the main research direction of IT manufacturers in the world today.

基于UEFI系统下加密的优点,如何基于UEFI对指纹模块自动识别,以克服现有计算机安全加密功能的不足,以实现准确率高、加密性能好、可对指纹模块自动识别的加密方法。Based on the advantages of encryption under the UEFI system, how to automatically identify the fingerprint module based on UEFI to overcome the insufficiency of the existing computer security encryption function, in order to achieve an encryption method with high accuracy, good encryption performance, and automatic identification of the fingerprint module.

发明内容SUMMARY OF THE INVENTION

本发明的技术任务是针对以上不足,提供基于UEFI的指纹模块识别方法及支持指纹识别的系统,来解决如何基于UEFI对指纹模块自动识别,以克服现有计算机安全加密功能的不足的问题。The technical task of the present invention is to address the above shortcomings, provide a UEFI-based fingerprint module identification method and a system supporting fingerprint identification, and solve the problem of how to automatically identify the fingerprint module based on UEFI to overcome the deficiencies of the existing computer security encryption function.

第一方面,本发明提供一种基于UEFI的指纹模块识别方法,包括如下步骤:In a first aspect, the present invention provides a UEFI-based fingerprint module identification method, comprising the following steps:

根据指纹模块的通信协议,建立上位机与指纹模块驱动的通信;According to the communication protocol of the fingerprint module, establish the communication between the upper computer and the fingerprint module driver;

配置于上位机的计算机操作系统在开机过程中加载启动服务,通过启动服务判断是否加载指纹模块驱动,所述指纹模块驱动为UEFI模式的驱动;The computer operating system configured on the host computer loads the startup service during the booting process, and judges whether to load the fingerprint module driver through the startup service, and the fingerprint module driver is a UEFI mode driver;

根据判断结果对BIOS中指纹识别功能进行控制,当检测到指纹模块后,开启BIOS的指纹识别功能;Control the fingerprint identification function in the BIOS according to the judgment result, and turn on the fingerprint identification function of the BIOS when the fingerprint module is detected;

指纹模块与上位机基于通信协议进行进行信息的发送和接收,通过BIOS的指纹识别功能对由指纹模块录入的指纹进行指纹识别和验证。The fingerprint module and the host computer send and receive information based on the communication protocol, and the fingerprints entered by the fingerprint module are identified and verified through the fingerprint identification function of the BIOS.

作为优选,通过启动服务的OpenProtocol对应的GUID对指纹模块驱动是否加载进行判断,如果判断结果为指纹模块驱动与指纹模块对应,加载并安装指纹模块驱动。Preferably, whether the fingerprint module driver is loaded is judged by the GUID corresponding to the OpenProtocol that starts the service, and if the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint module driver is loaded and installed.

作为优选,根据判断结果对BIOS中指纹识别功能进行控制,包括如下方法:BIOS配置界面中根据判断结果决定BIOS的指纹识别功能是否开启,如果判断结果为指纹模块驱动与指纹模块对应,BISO中指纹识别功能正常开启。Preferably, according to the judgment result, the fingerprint identification function in the BIOS is controlled, including the following method: in the BIOS configuration interface, it is determined whether the fingerprint identification function of the BIOS is enabled according to the judgment result. If the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint in the BISO The recognition function is normally turned on.

作为优选,所述指纹模块为R301指纹模块,所述指纹模块通过半双工异步串行通信方式与上位机通信。Preferably, the fingerprint module is an R301 fingerprint module, and the fingerprint module communicates with the upper computer through half-duplex asynchronous serial communication.

作为优选,所述R301指纹模块与上位机之间的数据包分为三类,分别为命令包、数据包和结束包,且所有的数据包均添加有包头;Preferably, the data packets between the R301 fingerprint module and the host computer are divided into three categories, namely command packets, data packets and end packets, and all data packets are added with headers;

所述数据包需要在其之前有指令包或者在其之后有应答包;The data packet needs to have an instruction packet before it or a response packet after it;

所述应答包用于将有关命令的执行情况与结果传送至上位机,所述应答包含有参数,且所述应答包后能够接后续数据包,所述上位机收到来自指纹模块的应答包后确认指纹指纹模块的收包情况和指令情况。The response packet is used to transmit the execution status and results of the relevant commands to the upper computer, the response contains parameters, and the response packet can be followed by subsequent data packets, and the upper computer receives the response packet from the fingerprint module. Afterwards, confirm the package receiving and instruction status of the fingerprint module.

第二方面,本发明提供一种支持指纹识别的系统,包括上位机和指纹模块,所述上位机配置有操作系统和BIOS,所述BIOS具有指纹识别功能,所述上位机与指纹模块通过如第一方面任一项所述的基于UEFI的指纹模块识别方法进行指纹识别。In the second aspect, the present invention provides a system for supporting fingerprint identification, including a host computer and a fingerprint module, the host computer is configured with an operating system and a BIOS, the BIOS has a fingerprint identification function, and the host computer and the fingerprint module are configured through the following steps: The UEFI-based fingerprint module identification method described in any one of the first aspect performs fingerprint identification.

作为优选,所述操作系统通过启动服务的OpenProtocol对应的GUID对指纹模块驱动是否加载进行判断,如果判断结果为指纹模块驱动与指纹模块对应,加载并安装指纹模块驱动。Preferably, the operating system judges whether the fingerprint module driver is loaded through the GUID corresponding to the OpenProtocol that starts the service, and if the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint module driver is loaded and installed.

作为优选,操作系统根据判断结果对BIOS中指纹识别功能进行控制,包括如下方法:BIOS配置界面中根据判断结果决定BIOS的指纹识别功能是否开启,如果判断结果为指纹模块驱动与指纹模块对应,BISO中指纹识别功能正常开启。Preferably, the operating system controls the fingerprint identification function in the BIOS according to the judgment result, including the following method: in the BIOS configuration interface, it is determined whether the fingerprint identification function of the BIOS is enabled according to the judgment result. If the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the BISO The fingerprint recognition function is turned on normally.

作为优选,所述指纹模块为R301指纹模块,所述指纹模块通过半双工异步串行通信方式与上位机通信。Preferably, the fingerprint module is an R301 fingerprint module, and the fingerprint module communicates with the upper computer through half-duplex asynchronous serial communication.

作为优选,所述R301指纹模块与上位机之间的数据包分为三类,分别为命令包、数据包和结束包,且所有的数据包均添加有包头;Preferably, the data packets between the R301 fingerprint module and the host computer are divided into three categories, namely command packets, data packets and end packets, and all data packets are added with headers;

所述数据包需要在其之前有指令包或者在其之后有应答包;The data packet needs to have an instruction packet before it or a response packet after it;

所述应答包用于将有关命令的执行情况与结果传送至上位机,所述应答包含有参数,且所述应答包后能够接后续数据包,所述上位机收到来自指纹模块的应答包后确认指纹指纹模块的收包情况和指令情况。The response packet is used to transmit the execution status and results of the relevant commands to the upper computer, the response contains parameters, and the response packet can be followed by subsequent data packets, and the upper computer receives the response packet from the fingerprint module. Afterwards, confirm the package receiving and instruction status of the fingerprint module.

本发明的基于UEFI的指纹模块识别方法及支持指纹识别的系统具有以下优点:The UEFI-based fingerprint module identification method and the system supporting fingerprint identification of the present invention have the following advantages:

1、指纹模块驱动采用UEFI驱动实现,利用系统启动服务的OpenProtocol,根据Protocol对应的GUID对指纹模块进行判断,根据判断结果对BIOS中的指纹识别功能进行控制,方便计算机的安全加密;1. The fingerprint module driver is implemented by UEFI driver, using the OpenProtocol of the system startup service to judge the fingerprint module according to the GUID corresponding to the Protocol, and control the fingerprint recognition function in the BIOS according to the judgment result, which is convenient for computer security encryption;

2、相较于传统的计算机加密方式,更加直观简单,能够根据判断结果,对指纹模块进行自动识别,方便指纹加密功能的使用。2. Compared with the traditional computer encryption method, it is more intuitive and simple, and can automatically identify the fingerprint module according to the judgment result, which is convenient for the use of the fingerprint encryption function.

附图说明Description of drawings

为了更清楚地说明本发明实施例中的技术方案,下面将对实施例或现有技术描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域的普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to illustrate the technical solutions in the embodiments of the present invention more clearly, the following briefly introduces the accompanying drawings that need to be used in the description of the embodiments or the prior art. Obviously, the drawings in the following description are only for the present invention. In some embodiments, for those of ordinary skill in the art, other drawings can also be obtained according to these drawings without any creative effort.

下面结合附图对本发明进一步说明。The present invention will be further described below in conjunction with the accompanying drawings.

图1为实施例1一种基于UEFI的指纹模块识别方法的流程框图。FIG. 1 is a flowchart of a method for identifying a fingerprint module based on UEFI according to Embodiment 1.

具体实施方式Detailed ways

下面结合附图和具体实施例对本发明作进一步说明,以使本领域的技术人员可以更好地理解本发明并能予以实施,但所举实施例不作为对本发明的限定,在不冲突的情况下,本发明实施例以及实施例中的技术特征可以相互结合。The present invention will be further described below in conjunction with the accompanying drawings and specific embodiments, so that those skilled in the art can better understand the present invention and implement it, but the embodiments are not intended to limit the present invention, and in the case of no conflict Hereinafter, the embodiments of the present invention and the technical features in the embodiments may be combined with each other.

本发明实施例提供基于UEFI的指纹模块识别方法及支持指纹识别的系统,用于解决如何基于UEFI对指纹模块自动识别,以克服现有计算机安全加密功能的不足的技术问题。Embodiments of the present invention provide a UEFI-based fingerprint module identification method and a system supporting fingerprint identification, which are used to solve the technical problem of how to automatically identify the fingerprint module based on UEFI to overcome the insufficiency of the existing computer security encryption function.

实施例1:Example 1:

本发明的一种基于UEFI的指纹模块识别方法,包括如下步骤:A UEFI-based fingerprint module identification method of the present invention includes the following steps:

S100、根据指纹模块的通信协议,建立上位机与指纹模块驱动的通信;S100, according to the communication protocol of the fingerprint module, establish the communication between the upper computer and the fingerprint module driver;

S200、配置于上位机的计算机操作系统在开机过程中加载启动服务,通过启动服务判断是否加载指纹模块驱动,所述指纹模块驱动为UEFI模式的驱动;S200, the computer operating system configured on the host computer loads a startup service during the boot process, and judges whether to load a fingerprint module driver through the startup service, and the fingerprint module driver is a UEFI mode driver;

S300、根据判断结果对BIOS中指纹识别功能进行控制,当检测到指纹模块后,开启BIOS的指纹识别功能;S300, controlling the fingerprint identification function in the BIOS according to the judgment result, and after detecting the fingerprint module, enable the fingerprint identification function of the BIOS;

S400、指纹模块与上位机基于通信协议进行进行信息的发送和接收,通过BIOS的指纹识别功能对由指纹模块录入的指纹进行指纹识别和验证。S400, the fingerprint module and the host computer send and receive information based on a communication protocol, and perform fingerprint identification and verification on the fingerprint entered by the fingerprint module through the fingerprint identification function of the BIOS.

其中,指纹模块驱动遵循UEFI驱动模型,其核心是通过Driver Binding Protocol管理驱动程序。指纹模块驱动程序包含两个核心部分:EFI Driver Binding Protoccol以及驱动服务本身,在指纹模块UEFI驱动的入口函数中,EFI Driver Binding Protoccol会被安装到自身Handle上,该EBDP会常驻内存,用于驱动的安装和卸载。Among them, the fingerprint module driver follows the UEFI driver model, and its core is to manage the driver through the Driver Binding Protocol. The fingerprint module driver consists of two core parts: EFI Driver Binding Protocol and the driver service itself. In the entry function of the UEFI driver of the fingerprint module, the EFI Driver Binding Protocol will be installed on its own Handle, and the EBDP will reside in memory for Driver installation and uninstallation.

通过启动服务的OpenProtocol对应的GUID对指纹模块驱动是否加载进行判断,如果判断结果为指纹模块驱动与指纹模块对应,加载并安装指纹模块驱动。Whether the fingerprint module driver is loaded is judged by the GUID corresponding to the OpenProtocol that starts the service. If the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint module driver is loaded and installed.

根据判断结果对BIOS中指纹识别功能进行控制,包括如下方法:BIOS配置界面中根据判断结果决定BIOS的指纹识别功能是否开启,如果判断结果为指纹模块驱动与指纹模块对应,BISO中指纹识别功能正常开启。Controlling the fingerprint identification function in the BIOS according to the judgment result includes the following methods: in the BIOS configuration interface, it is determined whether the fingerprint identification function of the BIOS is enabled according to the judgment result. If the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint identification function in the BISO is normal. on.

指纹模块为R301指纹模块,R301采用了最先进的指纹传感器和高性能的DSP处理器,内嵌完整的指纹识别算法和协议,是具有指纹采集,指纹比对,搜索和存储等功能的智能型模块。该指纹模块通过半双工异步串行通信方式与上位机通信,默认波特率为57600bps,可通过命令设置为9600-115200bps。传送的帧格式为10位,1位0电平起始位,8位数据和1位停止位,无校验位。The fingerprint module is the R301 fingerprint module. R301 adopts the most advanced fingerprint sensor and high-performance DSP processor, and has embedded complete fingerprint identification algorithms and protocols. It is an intelligent type with functions such as fingerprint collection, fingerprint comparison, search and storage. module. The fingerprint module communicates with the host computer through half-duplex asynchronous serial communication. The default baud rate is 57600bps, which can be set to 9600-115200bps through commands. The transmitted frame format is 10 bits, 1 0 level start bit, 8 data bits and 1 stop bit, no parity bit.

R301指纹模块与上位机之间的数据包分为三类,分别为命令包、数据包和结束包,且所有的数据包均添加有包头;数据包需要在其之前有指令包或者在其之后有应答包;应答包用于将有关命令的执行情况与结果传送至上位机,应答包含有参数,且应答包后能够接后续数据包,上位机收到来自指纹模块的应答包后确认指纹指纹模块的收包情况和指令情况。The data packets between the R301 fingerprint module and the host computer are divided into three categories, namely command packets, data packets and end packets, and all data packets are added with a packet header; the data packet needs to have an instruction packet before it or after it. There is a response packet; the response packet is used to transmit the execution status and results of the relevant commands to the upper computer. The response contains parameters, and the subsequent data packets can be received after the response packet. The upper computer confirms the fingerprint after receiving the response packet from the fingerprint module. The package receiving and command status of the module.

本发明的一种基于UEFI的指纹模块识别方法,主要涉及三个流程:指纹模块UEFI驱动加载安装、指纹模块信息发送与接收、指纹模块的自动识别。首先计算机系统在开机过程中会加载启动服务,利用系统启动服务的OpenProtocol,根据Protocol对应的GUID对指纹模块UEFI驱动是否加载进行判断,根据判断结果对BIOS中的指纹识别功能进行控制,当检测到指纹模块后会自动打开指纹识别功能,通过指纹模块与上位机通信实现信息的发送与接收,达到指纹模块自动识别验证的目的。该方法克服现有计算机安全加密功能的不足,提供一种基于UEFI的准确率高、加密性能好、能够进行指纹模块自动识别的加密方法。A UEFI-based fingerprint module identification method of the present invention mainly involves three processes: fingerprint module UEFI driver loading and installation, fingerprint module information sending and receiving, and fingerprint module automatic identification. First, the computer system will load the startup service during the boot process, and use the OpenProtocol of the system startup service to judge whether the UEFI driver of the fingerprint module is loaded according to the GUID corresponding to the Protocol, and control the fingerprint recognition function in the BIOS according to the judgment result. After the fingerprint module, the fingerprint identification function will be automatically turned on, and the information will be sent and received through the communication between the fingerprint module and the host computer, so as to achieve the purpose of automatic identification and verification of the fingerprint module. The method overcomes the shortcomings of the existing computer security encryption function, and provides an encryption method based on UEFI with high accuracy, good encryption performance and automatic identification of fingerprint modules.

实施例2:Example 2:

本发明的一种支持指纹识别的系统,包括上位机和指纹模块,上位机配置有操作系统和BIOS,BIOS具有指纹识别功能,上位机与指纹模块通过实施例1公开的基于UEFI的指纹模块识别方法进行指纹识别。A system for supporting fingerprint identification of the present invention includes a host computer and a fingerprint module. The host computer is configured with an operating system and a BIOS, and the BIOS has a fingerprint identification function. The host computer and the fingerprint module are identified by the UEFI-based fingerprint module disclosed in Embodiment 1. method for fingerprint identification.

其中,操作系统通过启动服务的OpenProtocol对应的GUID对指纹模块驱动是否加载进行判断,如果判断结果为指纹模块驱动与指纹模块对应,加载并安装指纹模块驱动。The operating system judges whether the fingerprint module driver is loaded through the GUID corresponding to the OpenProtocol that starts the service, and if the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint module driver is loaded and installed.

操作系统根据判断结果对BIOS中指纹识别功能进行控制,包括如下方法:BIOS配置界面中根据判断结果决定BIOS的指纹识别功能是否开启,如果判断结果为指纹模块驱动与指纹模块对应,BISO中指纹识别功能正常开启。The operating system controls the fingerprint identification function in the BIOS according to the judgment result, including the following methods: in the BIOS configuration interface, it is determined whether the fingerprint identification function of the BIOS is enabled according to the judgment result. If the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint identification in the BISO The function is turned on normally.

指纹模块为R301指纹模块,R301采用了最先进的指纹传感器和高性能的DSP处理器,内嵌完整的指纹识别算法和协议,是具有指纹采集,指纹比对,搜索和存储等功能的智能型模块。该指纹模块通过半双工异步串行通信方式与上位机通信,默认波特率为57600bps,可通过命令设置为9600-115200bps。传送的帧格式为10位,1位0电平起始位,8位数据和1位停止位,无校验位。The fingerprint module is the R301 fingerprint module. R301 adopts the most advanced fingerprint sensor and high-performance DSP processor, and has embedded complete fingerprint identification algorithms and protocols. It is an intelligent type with functions such as fingerprint collection, fingerprint comparison, search and storage. module. The fingerprint module communicates with the host computer through half-duplex asynchronous serial communication. The default baud rate is 57600bps, which can be set to 9600-115200bps through commands. The transmitted frame format is 10 bits, 1 0 level start bit, 8 data bits and 1 stop bit, no parity bit.

R301指纹模块与上位机之间的数据包分为三类,分别为命令包、数据包和结束包,且所有的数据包均添加有包头;数据包需要在其之前有指令包或者在其之后有应答包;应答包用于将有关命令的执行情况与结果传送至上位机,应答包含有参数,且应答包后能够接后续数据包,上位机收到来自指纹模块的应答包后确认指纹指纹模块的收包情况和指令情况。The data packets between the R301 fingerprint module and the host computer are divided into three categories, namely command packets, data packets and end packets, and all data packets are added with a packet header; the data packet needs to have an instruction packet before it or after it. There is a response packet; the response packet is used to transmit the execution status and results of the relevant commands to the upper computer. The response contains parameters, and the subsequent data packets can be received after the response packet. The upper computer confirms the fingerprint after receiving the response packet from the fingerprint module. The package receiving and command status of the module.

上文通过附图和优选实施例对本发明进行了详细展示和说明,然而本发明不限于这些已揭示的实施例,基与上述多个实施例本领域技术人员可以知晓,可以组合上述不同实施例中的手段得到本发明更多的实施例,这些实施例也在本发明的保护范围之内。The present invention is shown and described in detail above through the accompanying drawings and preferred embodiments. However, the present invention is not limited to these disclosed embodiments. Those skilled in the art can know that the above-mentioned different embodiments can be combined based on the above-mentioned multiple embodiments. More embodiments of the present invention can be obtained by the means in the present invention, and these embodiments are also within the protection scope of the present invention.

Claims (10)

1.基于UEFI的指纹模块识别方法,其特征在于包括如下步骤:1. the fingerprint module identification method based on UEFI is characterized in that comprising the steps: 根据指纹模块的通信协议,建立上位机与指纹模块驱动的通信;According to the communication protocol of the fingerprint module, establish the communication between the upper computer and the fingerprint module driver; 配置于上位机的计算机操作系统在开机过程中加载启动服务,通过启动服务判断是否加载指纹模块驱动,所述指纹模块驱动为UEFI模式的驱动;The computer operating system configured on the host computer loads the startup service during the booting process, and judges whether to load the fingerprint module driver through the startup service, and the fingerprint module driver is a UEFI mode driver; 根据判断结果对BIOS中指纹识别功能进行控制,当检测到指纹模块后,开启BIOS的指纹识别功能;Control the fingerprint identification function in the BIOS according to the judgment result, and turn on the fingerprint identification function of the BIOS when the fingerprint module is detected; 指纹模块与上位机基于通信协议进行进行信息的发送和接收,通过BIOS的指纹识别功能对由指纹模块录入的指纹进行指纹识别和验证。The fingerprint module and the host computer send and receive information based on the communication protocol, and the fingerprints entered by the fingerprint module are identified and verified through the fingerprint identification function of the BIOS. 2.根据权利要求1所述的基于UEFI的指纹模块识别方法,其特征在于通过启动服务的OpenProtocol对应的GUID对指纹模块驱动是否加载进行判断,如果判断结果为指纹模块驱动与指纹模块对应,加载并安装指纹模块驱动。2. the fingerprint module identification method based on UEFI according to claim 1 is characterized in that whether the fingerprint module driver is loaded is judged by the corresponding GUID of the OpenProtocol of the startup service, if the judgment result is that the fingerprint module driver is corresponding to the fingerprint module, loading And install the fingerprint module driver. 3.根据权利权利要求2所述的基于UEFI的指纹模块识别方法,其特征在于根据判断结果对BIOS中指纹识别功能进行控制,包括如下方法:BIOS配置界面中根据判断结果决定BIOS的指纹识别功能是否开启,如果判断结果为指纹模块驱动与指纹模块对应,BISO中指纹识别功能正常开启。3. the fingerprint module identification method based on UEFI according to claim 2 is characterized in that according to the result of judgment, the fingerprint identification function in BIOS is controlled, comprising the following methods: in the BIOS configuration interface, the fingerprint identification function of BIOS is determined according to the result of judgment in the BIOS configuration interface Whether to enable, if the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint recognition function in BISO is normally enabled. 4.根据权利要求1、2或3所述的基于UEFI的指纹模块识别方法,其特征在于所述指纹模块为R301指纹模块,所述指纹模块通过半双工异步串行通信方式与上位机通信。4. the fingerprint module identification method based on UEFI according to claim 1,2 or 3, is characterized in that described fingerprint module is R301 fingerprint module, and described fingerprint module communicates with host computer by half-duplex asynchronous serial communication mode . 5.根据权利要求4所述的基于UEFI的指纹模块识别方法,其特征在于所述R301指纹模块与上位机之间的数据包分为三类,分别为命令包、数据包和结束包,且所有的数据包均添加有包头;5. the fingerprint module identification method based on UEFI according to claim 4, is characterized in that the data packet between described R301 fingerprint module and upper computer is divided into three categories, is respectively command packet, data packet and end packet, and All data packets are added with headers; 所述数据包需要在其之前有指令包或者在其之后有应答包;The data packet needs to have an instruction packet before it or a response packet after it; 所述应答包用于将有关命令的执行情况与结果传送至上位机,所述应答包含有参数,且所述应答包后能够接后续数据包,所述上位机收到来自指纹模块的应答包后确认指纹指纹模块的收包情况和指令情况。The response packet is used to transmit the execution status and results of the relevant commands to the upper computer, the response contains parameters, and the response packet can be followed by subsequent data packets, and the upper computer receives the response packet from the fingerprint module. Afterwards, confirm the package receiving and instruction status of the fingerprint module. 6.支持指纹识别的系统,包括上位机和指纹模块,所述上位机配置有操作系统和BIOS,其特征在于所述BIOS具有指纹识别功能,所述上位机与指纹模块通过如权利要求1-5任一项所述的基于UEFI的指纹模块识别方法进行指纹识别。6. the system that supports fingerprint identification, comprises host computer and fingerprint module, described host computer is configured with operating system and BIOS, it is characterized in that described BIOS has fingerprint identification function, and described host computer and fingerprint module pass through as claim 1- 5 any one of the UEFI-based fingerprint module identification methods for fingerprint identification. 7.根据权利要求6所述的基于指纹识别的系统,其特征在于所述操作系统通过启动服务的OpenProtocol对应的GUID对指纹模块驱动是否加载进行判断,如果判断结果为指纹模块驱动与指纹模块对应,加载并安装指纹模块驱动。7. the system based on fingerprint identification according to claim 6, it is characterized in that described operating system judges whether fingerprint module driver is loaded by the corresponding GUID of the OpenProtocol of starting service, if the result of judgment is that fingerprint module is driven and corresponding to fingerprint module , load and install the fingerprint module driver. 8.根据权利要求6所述的基于指纹识别的系统,其特征在于操作系统根据判断结果对BIOS中指纹识别功能进行控制,包括如下方法:BIOS配置界面中根据判断结果决定BIOS的指纹识别功能是否开启,如果判断结果为指纹模块驱动与指纹模块对应,BISO中指纹识别功能正常开启。8. the system based on fingerprint identification according to claim 6, it is characterized in that operating system controls fingerprint identification function in BIOS according to judgment result, comprises the following method: whether the fingerprint identification function of BIOS is decided according to judgment result in BIOS configuration interface If it is turned on, if the judgment result is that the fingerprint module driver corresponds to the fingerprint module, the fingerprint recognition function in the BISO is normally turned on. 9.根据权利要求7或8所述的基于指纹识别的系统,其特征在于所述指纹模块为R301指纹模块,所述指纹模块通过半双工异步串行通信方式与上位机通信。9 . The fingerprint recognition-based system according to claim 7 , wherein the fingerprint module is an R301 fingerprint module, and the fingerprint module communicates with the host computer through a half-duplex asynchronous serial communication mode. 10 . 10.根据权利要求9所述的基于指纹识别的系统,其特征在于所述R301指纹模块与上位机之间的数据包分为三类,分别为命令包、数据包和结束包,且所有的数据包均添加有包头;10. the system based on fingerprint identification according to claim 9, is characterized in that the data packet between described R301 fingerprint module and upper computer is divided into three categories, is respectively command packet, data packet and end packet, and all Data packets are added with headers; 所述数据包需要在其之前有指令包或者在其之后有应答包;The data packet needs to have an instruction packet before it or a response packet after it; 所述应答包用于将有关命令的执行情况与结果传送至上位机,所述应答包含有参数,且所述应答包后能够接后续数据包,所述上位机收到来自指纹模块的应答包后确认指纹指纹模块的收包情况和指令情况。The response packet is used to transmit the execution status and results of the relevant commands to the upper computer, the response contains parameters, and the response packet can be followed by subsequent data packets, and the upper computer receives the response packet from the fingerprint module. Afterwards, confirm the package receiving and instruction status of the fingerprint module.
CN202010847180.2A 2020-08-21 2020-08-21 Fingerprint module identification method based on UEFI and system supporting fingerprint identification Pending CN111966416A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010847180.2A CN111966416A (en) 2020-08-21 2020-08-21 Fingerprint module identification method based on UEFI and system supporting fingerprint identification

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010847180.2A CN111966416A (en) 2020-08-21 2020-08-21 Fingerprint module identification method based on UEFI and system supporting fingerprint identification

Publications (1)

Publication Number Publication Date
CN111966416A true CN111966416A (en) 2020-11-20

Family

ID=73391024

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010847180.2A Pending CN111966416A (en) 2020-08-21 2020-08-21 Fingerprint module identification method based on UEFI and system supporting fingerprint identification

Country Status (1)

Country Link
CN (1) CN111966416A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114281417A (en) * 2021-11-29 2022-04-05 苏州浪潮智能科技有限公司 Server BIOS fingerprint startup method, system, equipment and storage medium
CN116149759A (en) * 2023-04-20 2023-05-23 深圳市吉方工控有限公司 UEFI (unified extensible firmware interface) drive unloading method and device, electronic equipment and readable storage medium

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102779050A (en) * 2011-04-29 2012-11-14 联想(新加坡)私人有限公司 System and method for accelerated boot performance
CN103810464A (en) * 2013-07-31 2014-05-21 深圳光启创新技术有限公司 Fingerprint identification terminal
CN105744083A (en) * 2016-04-29 2016-07-06 努比亚技术有限公司 Mobile terminal fingerprint self-adaption method and device
CN108064376A (en) * 2017-11-20 2018-05-22 深圳市汇顶科技股份有限公司 System starts method of calibration and system, electronic equipment and computer storage media
CN109918887A (en) * 2019-04-03 2019-06-21 中电科技(北京)有限公司 Firmware layer fingerprint identification method and computer system based on UEFI
CN110413335A (en) * 2019-06-18 2019-11-05 深圳中电长城信息安全系统有限公司 A kind of starting-up method and device based on fingerprint

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102779050A (en) * 2011-04-29 2012-11-14 联想(新加坡)私人有限公司 System and method for accelerated boot performance
CN103810464A (en) * 2013-07-31 2014-05-21 深圳光启创新技术有限公司 Fingerprint identification terminal
CN105744083A (en) * 2016-04-29 2016-07-06 努比亚技术有限公司 Mobile terminal fingerprint self-adaption method and device
CN108064376A (en) * 2017-11-20 2018-05-22 深圳市汇顶科技股份有限公司 System starts method of calibration and system, electronic equipment and computer storage media
CN109918887A (en) * 2019-04-03 2019-06-21 中电科技(北京)有限公司 Firmware layer fingerprint identification method and computer system based on UEFI
CN110413335A (en) * 2019-06-18 2019-11-05 深圳中电长城信息安全系统有限公司 A kind of starting-up method and device based on fingerprint

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
崔莹;辛晓晨;沈钢纲;: "基于UEFI的嵌入式驱动程序的开发研究", 计算机工程与设计 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114281417A (en) * 2021-11-29 2022-04-05 苏州浪潮智能科技有限公司 Server BIOS fingerprint startup method, system, equipment and storage medium
CN114281417B (en) * 2021-11-29 2023-07-14 苏州浪潮智能科技有限公司 A server BIOS fingerprint boot method, system, device and storage medium
CN116149759A (en) * 2023-04-20 2023-05-23 深圳市吉方工控有限公司 UEFI (unified extensible firmware interface) drive unloading method and device, electronic equipment and readable storage medium

Similar Documents

Publication Publication Date Title
JP4884627B2 (en) Detachable active personal storage device, system and method
CN100481107C (en) An identity control method based on credibility platform module and fingerprint identifying
WO2021115459A1 (en) Vehicle unlocking method and device
CN106412909B (en) Method and device for connecting equipment
US8356118B2 (en) Storage device and storage device access control method
CN102567063B (en) Method and device for automatically installing software
WO2017113380A1 (en) Fingerprint recognition method and apparatus, and touch-screen terminal
US20140282815A1 (en) Policy-based secure web boot
US20090240907A1 (en) Remote storage access control system
CN101894226B (en) Biometric authentication unit and biometric authentication method
CN1377481A (en) Removable active, personal storage device, system and method
CN105184179A (en) Embedded encrypted mobile storage device and operation method thereof
CN112334896B (en) Unlocking method and equipment of terminal equipment and storage medium
CN111966416A (en) Fingerprint module identification method based on UEFI and system supporting fingerprint identification
CN102110195A (en) Computer system and identification method and device for user
US20220261570A1 (en) Authentication of user information handling system through stylus
US20250016043A1 (en) Equipment access method, networked device and server side
KR100991191B1 (en) Computer security module and computer device applying the same
CN100418033C (en) Computer system of bottom identity identification and method therefor
IL148834A (en) Removable, active, personal storage device, system and method
WO2011050513A1 (en) Method for starting up computer by using user identification device
JP2003281477A (en) Electronic appliance, electronic card, and method for card identification
CN115544482A (en) A Public Security Digital Certificate USB Key Device Control Method and System
TWI435588B (en) Network device and log-on method thereof
WO2011006295A1 (en) Authentication method for user identification equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20201120