[go: up one dir, main page]

CN1284090C - Memory storage device with fingerprint sensor and protection method for stored data - Google Patents

Memory storage device with fingerprint sensor and protection method for stored data Download PDF

Info

Publication number
CN1284090C
CN1284090C CN 200310116995 CN200310116995A CN1284090C CN 1284090 C CN1284090 C CN 1284090C CN 200310116995 CN200310116995 CN 200310116995 CN 200310116995 A CN200310116995 A CN 200310116995A CN 1284090 C CN1284090 C CN 1284090C
Authority
CN
China
Prior art keywords
fingerprint sensor
data
host
end host
controller
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN 200310116995
Other languages
Chinese (zh)
Other versions
CN1624667A (en
Inventor
邱立国
陈明舜
古茂源
陈盈苍
周正三
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hanqun Science & Technology Co ltd
LighTuning Technology Inc
Solid State System Co Ltd
Original Assignee
Hanqun Science & Technology Co ltd
LighTuning Technology Inc
Solid State System Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hanqun Science & Technology Co ltd, LighTuning Technology Inc, Solid State System Co Ltd filed Critical Hanqun Science & Technology Co ltd
Priority to CN 200310116995 priority Critical patent/CN1284090C/en
Publication of CN1624667A publication Critical patent/CN1624667A/en
Application granted granted Critical
Publication of CN1284090C publication Critical patent/CN1284090C/en
Anticipated expiration legal-status Critical
Expired - Fee Related legal-status Critical Current

Links

Images

Landscapes

  • Image Input (AREA)
  • Collating Specific Patterns (AREA)
  • Measurement Of The Respiration, Hearing Ability, Form, And Blood Characteristics Of Living Organisms (AREA)

Abstract

The invention discloses a memory storage device with a fingerprint sensor, which basically comprises a host interface connected to a terminal host, a controller connected to the host interface, a fingerprint sensor connected to the controller and a memory module. The controller is connected with the terminal host and enables the terminal host to load and install the driver and the application program suitable for the terminal host from the memory module into the terminal host. The terminal host receives an instruction from the user through the two programs so as to inform the controller to control the fingerprint sensor to read fingerprint data to be identified of the user. The terminal host processes the fingerprint data to be identified and the template fingerprint data stored in the memory module by using the application program, judges whether the fingerprint data and the template fingerprint data are substantially matched, and enables the terminal host to access a specific block of the memory module according to the matching result.

Description

含指纹传感器的存储器储存装置及其储存数据的保护方法Memory storage device with fingerprint sensor and protection method for stored data

技术领域technical field

本发明涉及一种存储器储存装置及其储存数据的保护方法,特别是有关于一种含指纹传感器的存储器储存装置及其储存数据的保护方法。The invention relates to a memory storage device and a protection method for storing data thereof, in particular to a memory storage device containing a fingerprint sensor and a protection method for storing data thereof.

背景技术Background technique

传统上,关于个人数据保密的作法,最常使用的是采用密码保护的方式来达成。然而,使用密码来保护个人数据,不但具有使用者容易忘记密码的麻烦,更有密码遭人破解的危险性。因此,关于个人特有的生物数据,譬如指纹、声纹、笔迹、眼睛虹膜等生物辨识方法,已经逐渐被发展来提供较为完整且有效的数据保护方式。其优点为生物特征随身携带且不须存储,更无法被盗取,特别是结合指纹的生物特征保护方法,不仅严密,且使用相当方便。Traditionally, the most common way to protect the confidentiality of personal data is to use password protection. However, using passwords to protect personal data not only has the trouble of users easily forgetting passwords, but also has the danger of passwords being cracked. Therefore, with respect to personal biological data, such as fingerprints, voiceprints, handwriting, eye iris and other biometric methods, have been gradually developed to provide a relatively complete and effective data protection method. Its advantage is that the biometric feature is portable and does not need to be stored, and it cannot be stolen. In particular, the biometric feature protection method combined with fingerprints is not only strict, but also very convenient to use.

近年来更因为芯片式指纹传感器的发明,使得轻薄短小的电子产品整合指纹辨识装置不再是不可行的技术,相关技术内容可参见本案其中一个发明人周正三的下述专利:1、中国发明专利申请案序号02105960.8,申请日为2002年4月10日,发明名称为[电容式指纹读取芯片];2、中国发明专利申请案序号02123058.7,申请日为2002年06月13日,发明名称为[压力式指纹读取芯片及其制造方法];3、中国发明专利申请案序号02124906.7,申请日为2002年07月12日,发明名称为[温差感测元及其应用于指纹热像读取];及4、中国发明专利申请案序号02132054.3,申请日为2002年09月10日,发明名称为[电容式压力微感测元及其应用的指纹读取芯片结构]。这也开拓了一种崭新的个人化应用,亦即个人随身的电子产品附带指纹辨识的功能。In recent years, thanks to the invention of the chip-type fingerprint sensor, it is no longer an unfeasible technology to integrate a fingerprint recognition device into thin, light and small electronic products. For related technical content, please refer to the following patents of Zhou Zhengsan, one of the inventors in this case: 1. Chinese invention Patent application serial number 02105960.8, the application date is April 10, 2002, and the name of the invention is [capacitive fingerprint reading chip]; 2. The Chinese invention patent application number is 02123058.7, the application date is June 13, 2002, and the name It is [Pressure-type fingerprint reading chip and its manufacturing method]; 3. The serial number of the Chinese invention patent application is 02124906.7, the application date is July 12, 2002, and the name of the invention is [The temperature difference sensor and its application to fingerprint thermal image reading Take]; and 4. Chinese invention patent application serial number 02132054.3, the application date is September 10, 2002, and the invention name is [capacitive pressure micro-sensing element and fingerprint reading chip structure for its application]. This has also opened up a brand-new personal application, that is, the personal electronic product has the function of fingerprint identification.

特别是在储存媒体的保护方面,更是结合生物辨识方法的重要发展项目,例如:早在二十年前美国专利第4,582,985号公报便已经揭露一种储存媒体的保护方法,其中利用指纹认证的方式来保护储存于个人身分卡片装置中的个人数据。在指纹辨识程序通过之后,储存于卡片装置中的受保护数据才得以输出以供进行后续的处理或认证程序。此种装置的横向尺寸相同于目前通用的信用卡,其主要包含一指纹传感器、影像处理及辨识模块及储存存储器,为一完全独立的指纹辨识装置(亦即指纹撷取及辨识都是在同一装置内执行)。即使其应用标的为防止例如个人信用卡等的仿冒,然而,这种装置的价格昂贵,例如除了指纹传感器外,影像处理及辨识模块需要高阶的微处理器例如32位(bits)的RISC处理器或DSP芯片,使得这一种独立辨识装置不易推广。Especially in the protection of storage media, it is an important development project combined with biometric methods. For example, as early as 20 years ago, U.S. Patent No. 4,582,985 has disclosed a storage media protection method, which uses fingerprint authentication. means to protect personal data stored in personal ID card devices. After the fingerprint identification procedure is passed, the protected data stored in the card device can be output for subsequent processing or authentication procedures. The horizontal size of this kind of device is the same as that of the current universal credit card, which mainly includes a fingerprint sensor, image processing and identification module and storage memory, and is a completely independent fingerprint identification device (that is, fingerprint capture and identification are all in the same device) executed within). Even if its application target is to prevent the counterfeiting of personal credit cards, etc., however, this device is expensive. For example, in addition to the fingerprint sensor, the image processing and identification modules require high-end microprocessors such as 32-bit RISC processors. Or DSP chips, making this kind of independent identification device difficult to popularize.

美国专利第6,213,403号公报揭露一种具有指纹传感器的储存装置,其乃利用PCMCIA的接口来与计算机连接,相同的,此一装置的理念几乎相同于美国专利第4,582,985号公报所揭露的,为一独立的指纹辨识装置(亦即指纹撷取及辨识都是在同一装置内执行),通过指纹的认证才能开启该储存装置中的数据。不同指出是利用一标准的PCMCIA接口执行。同时,PCMCIA装置是将整个卡片塞入计算机插槽中,为此该发明必须通过复杂的机构设计方能将指纹感测装置暴露于外以方便使用,这都会增加机构的不稳定性及成本。U.S. Patent No. 6,213,403 discloses a storage device with a fingerprint sensor, which uses a PCMCIA interface to connect to a computer. Similarly, the concept of this device is almost the same as that disclosed in U.S. Patent No. 4,582,985. An independent fingerprint identification device (that is, fingerprint capture and identification are performed in the same device), and the data in the storage device can only be opened through fingerprint authentication. Different pointing is implemented using a standard PCMCIA interface. At the same time, the PCMCIA device inserts the entire card into the computer slot, so the invention must be designed through a complex mechanism to expose the fingerprint sensing device to the outside for easy use, which will increase the instability and cost of the mechanism.

欧洲专利EP124079A1公报同样揭露相同于前述美国专利第4,582,985号公报,美国专利第6,213,403号公报的数据保护理念,不同之处是其沟通接口为较不常见的金手指设计,同样的为一独立式指纹辨识模块。European Patent EP124079A1 also discloses the same data protection concept as the aforementioned US Patent No. 4,582,985 and US Patent No. 6,213,403. The difference is that its communication interface is a relatively uncommon gold finger design, and the same is an independent fingerprint Identification module.

世界专利WO 02/42887A2公报揭露一种相同于前述美国专利第4,582,985号公报,美国专利第6,213,403号公报,欧洲专利EP124079A1公报的数据保护理念,不同之处是藉由USB接口执行与终端系统的沟通,此一装置近似目前市场上流行的闪存硬盘,不同处是内含独立的指纹处理及辨识模块。The world patent WO 02/42887A2 discloses a data protection concept similar to the aforementioned US Patent No. 4,582,985, US Patent No. 6,213,403, and European Patent EP124079A1. The difference is that the communication with the terminal system is performed through the USB interface. , this device is similar to the popular flash memory hard disk currently on the market, the difference is that it contains an independent fingerprint processing and identification module.

美国专利公开第2003/005337号公报揭露了相同于前述美国专利第4,582,985号公报,美国专利第6,213,403号公报,欧洲专利EP124079A1公报的数据保护理念,同时也相同于世界专利WO 02/42887A2公报所揭露利用USB作为沟通的接口。相同的为一独立式指纹辨识装置。U.S. Patent Publication No. 2003/005337 discloses the same data protection concept as the aforementioned U.S. Patent No. 4,582,985, U.S. Patent No. 6,213,403, and European Patent EP124079A1. It is also the same as the world patent WO 02/42887A2. Utilize USB as the communication interface. The same is an independent fingerprint identification device.

英国专利第GB2387933号公报亦揭露几乎完全相同于WO 02/42887A2公报及美国专利公开第2003/005337号公报的理念及装置设计,为一独立的指纹辨识装置(亦即指纹撷取及辨识都是在同一装置内执行)。British Patent No. GB2387933 also discloses the concept and device design almost identical to WO 02/42887A2 and U.S. Patent Publication No. 2003/005337, which is an independent fingerprint recognition device (that is, fingerprint capture and recognition are both executed within the same device).

至此,前述的习知技术有一共同的特色,也就是提供一独立的指纹辨识装置,内部包含指纹传感器,指纹图像处理及辨识IC。这样的设计优点为或许不需要安装指纹应用程序于终端系统而提供了热插拔的使用方便性,但却衍生出另一重要问题,那就是价格昂贵,因为必须增加一指纹图像处理及辨识IC及其配套设计的成本,通常该IC为32位的精简指令集计算机(Reduced InstructionSet Computer,RISC)或数字讯号处理器(Digital Signal Processor,DSP),才能快速进行指纹辨识。处理器的成本通常随着其运算速度与处理能力的增加而增加,上述的RISC及/或DSP的最小成本也要在美金10元以上。因此,传统的具有指纹传感器的可携式储存装置具有高成本的缺点。So far, the aforementioned conventional technologies have a common feature, that is, to provide an independent fingerprint identification device, which includes a fingerprint sensor, fingerprint image processing and identification IC. The advantage of this design is that it may not need to install the fingerprint application program on the terminal system, which provides the convenience of hot plugging, but it leads to another important problem, that is, it is expensive, because a fingerprint image processing and identification IC must be added. And the cost of its supporting design, usually the IC is a 32-bit Reduced Instruction Set Computer (Reduced InstructionSet Computer, RISC) or Digital Signal Processor (Digital Signal Processor, DSP), in order to quickly perform fingerprint identification. The cost of a processor usually increases with the increase of its computing speed and processing capability, and the minimum cost of the above-mentioned RISC and/or DSP is also more than US$10. Therefore, the conventional portable storage device with a fingerprint sensor has the disadvantage of high cost.

为解决高成本的问题,最佳方式为利用终端系统的微处理器执行指纹图像处理及辨识,便可以有效降低成本。但是目前习知技术对于此一方法并无明确揭露及提出解决方案。In order to solve the problem of high cost, the best way is to use the microprocessor of the terminal system to perform fingerprint image processing and identification, which can effectively reduce the cost. However, the current prior art does not clearly disclose and propose a solution to this method.

因为如果要将指纹图像处理及辨识的工作由储存装置执行移转到终端系统的微处理器执行,则该发明装置必须要有自动下载指纹应用程序(包含指纹图像处理、辨识及加解密功能等等)于终端系统的功能,方能达到热插拔的功能以及在任何终端系统都可以使用的方便性。这样的解决方案也是上述习知技术没有提供的。Because if the work of fingerprint image processing and identification is to be transferred from the storage device to the microprocessor of the terminal system, the inventive device must have automatic downloading of fingerprint application programs (comprising fingerprint image processing, identification and encryption and decryption functions, etc.) etc.) in the function of the terminal system, in order to achieve the hot-swappable function and the convenience that can be used in any terminal system. Such a solution is also not provided by the prior art mentioned above.

或者如美国专利公开第2003/005337号公报揭露的,可以将指纹处理及辨识软件安装于终端系统上,这样的设计使得使用者便无法在不同终端系统使用,或者需要费时费力的安装软件。传统的作法是提供一光盘片,以供使用者分别安装储存装置中的存储器的驱动程序,以及指纹传感器的驱动程序,才能让整个储存装置可以开始使用。于此情况下,在每一台计算机系统的第一次设定中,使用者除了要携带可携式储存装置以外,还要携带光盘片才能在其它计算机系统中使用此储存装置。虽然可以通过网络下载驱动程序,但这并不是完美的作法,因为有些计算机不一定都能连上网络。Alternatively, as disclosed in US Patent Publication No. 2003/005337, the fingerprint processing and identification software can be installed on the terminal system. Such a design prevents users from using it on different terminal systems, or requires time-consuming and laborious installation of the software. The traditional method is to provide a CD for the user to install the driver program of the memory in the storage device and the driver program of the fingerprint sensor respectively, so that the entire storage device can be used. In this case, in the first setting of each computer system, in addition to carrying the portable storage device, the user also needs to carry a CD to use the storage device in other computer systems. While it's possible to download drivers over the Internet, it's not perfect because not all computers are connected to the Internet.

因此,本发明将提供一种含指纹感测装置的储存装置及其储存数据的保护方法,特色有二。一为利用终端系统的处理器做指纹处理及辨识,可以大幅降低装置的硬件成本,达到普及的目的。二为提供一完全自动下载指纹应用程序的功能,藉由整合USB控制器的韧件(firmware),指纹辨识及处理软件,以及相关的AP(application program)在一起,本发明的装置除了完全不需要在终端系统安装任何驱动程序或辨识软件,便可以完全热插拔的使用于各种操作系统的终端系统,特别是计算机装置,而且支持各种语言操作系统。Therefore, the present invention provides a storage device including a fingerprint sensing device and a protection method for storing data, which has two characteristics. One is to use the processor of the terminal system for fingerprint processing and identification, which can greatly reduce the hardware cost of the device and achieve the purpose of popularization. The second is to provide a function of fully automatic downloading of fingerprint application programs. By integrating the firmware of the USB controller, fingerprint identification and processing software, and related AP (application program), the device of the present invention does not need to be used at all. It is necessary to install any driver or identification software on the terminal system, so that it can be completely hot-swapped and used in terminal systems of various operating systems, especially computer devices, and supports various language operating systems.

同时,本装置存储器所储存的个人数据,是以加密方式存录,即使将该存储器拔除也无法撷取出正确的格式及内容。At the same time, the personal data stored in the memory of the device is recorded in an encrypted manner, and the correct format and content cannot be retrieved even if the memory is removed.

发明内容Contents of the invention

有鉴于此,本发明的主要目的就是提供一种含指纹传感器的存储器储存装置,该存储器储存装置是与一终端主机连接,并藉由与该终端主机的共同作用,可以在不大幅增加该储存装置的成本下,来提供含指纹传感器的存储器储存装置。In view of this, the main purpose of the present invention is to provide a memory storage device containing a fingerprint sensor. A memory storage device including a fingerprint sensor is provided at the cost of the device.

本发明的另一目的是提供一种含指纹传感器的存储器储存装置,其能对一终端主机隐藏其指纹传感器及存储器,用以简化该终端主机的控制方式。Another object of the present invention is to provide a memory storage device with a fingerprint sensor, which can hide the fingerprint sensor and memory from a terminal host, so as to simplify the control method of the terminal host.

为达成上述目的,本发明提供一种含指纹传感器的存储器储存装置,用以与一终端主机连接,该存储器储存装置包含:一主机接口,用以与该终端主机连接;一控制器,连接至该主机接口;一指纹传感器,连接至该控制器,用以感测一使用者的一待辨识指纹数据;及一存储器模块,连接至该控制器。To achieve the above object, the present invention provides a memory storage device containing a fingerprint sensor for connecting with a terminal host, the memory storage device includes: a host interface for connecting with the terminal host; a controller connected to The host interface; a fingerprint sensor connected to the controller for sensing a user's fingerprint data to be identified; and a memory module connected to the controller.

控制器对存储器模块分割成多个磁盘。这种方法由控制器所完成,而非主机。对于主机,上述多个磁盘中的每一个对于主机而言都是真正的磁盘,而非逻辑磁盘。而且,一个磁盘还可以被分割多个区域。一些区域可被所有终端用户自由存取,另一些则只能由指定用户通过识别后进行存取。据此,可以实现数据保护或保密功能。控制器对该存储器模块分割成三个区域包含:一公用区块,用以储存多个应用程序;一保密区块,用以储存一待保护数据;及一隐藏区块,用以储存一模板指纹数据及加密金钥。一旦存储器储存装置插入主机插槽,控制器在初始电源开启后,将信息区块读入控制器的SRAM内。根据装载入SRAM的信息区块数据,控制器将对主机发出的请求做出反应,对存储器模块进行配置,并将其视为逻辑磁盘。主机将读到存储器模块的公用区块的应用程序,而执行该程序于该主机中。该控制器将该模板指纹数据传输至该主机中。该主机通过该逻辑磁盘数据存取及该应用程序接收来自该使用者的一指令,以通知该控制器控制该指纹传感器读取该使用者的该待辨识指纹数据,并将该待辨识指纹数据传送至该主机中。该终端主机利用该应用程序处理该待辨识指纹数据及该模板指纹数据,并判断两者是否实质上吻合,并于实质上吻合时使该保密区块致能以供该终端主机存取,否则使该保密区块禁能以防止该终端主机存取。The controller partitions the memory module into a plurality of disks. This method is done by the controller, not the host. To the host, each of the above multiple disks is a real disk to the host, not a logical disk. Moreover, a disk can be divided into multiple areas. Some areas can be freely accessed by all end users, while others can only be accessed by designated users after identification. Accordingly, a data protection or confidentiality function can be realized. The controller divides the memory module into three areas including: a public block for storing multiple application programs; a confidential block for storing data to be protected; and a hidden block for storing a template Fingerprint data and encryption key. Once the memory storage device is inserted into the host slot, the controller reads the block of information into the controller's SRAM after initial power-on. Based on the block data loaded into the SRAM, the controller responds to requests from the host to configure the memory modules and treat them as logical disks. The host will read the application program in the common block of the memory module and execute the program in the host. The controller transmits the template fingerprint data to the host. The host receives an instruction from the user through the logical disk data access and the application program to notify the controller to control the fingerprint sensor to read the user's fingerprint data to be identified, and the fingerprint data to be identified sent to the host. The terminal host utilizes the application program to process the fingerprint data to be identified and the template fingerprint data, and judge whether the two are substantially identical, and enable the security block for the terminal host to access when they are substantially identical, otherwise The secure block is disabled to prevent access by the end host.

该模板指纹数据的建立方式如下。该控制器通过该主机接口而与该终端主机沟通,并令该终端主机将适合于该终端主机的其中一个驱动程序及其中一个应用程序加载安装至该终端主机中。该终端主机通过该驱动程序及该应用程序接收来自一授权使用者的一指令,以通知该控制器控制该指纹传感器读取该授权使用者的该模板指纹数据,并将该模板指纹数据传送至该终端主机中。该终端主机利用该应用程序处理该模板指纹数据,并将处理过的该模板指纹数据传输至该隐藏区块中储存。The template fingerprint data is established in the following manner. The controller communicates with the terminal host through the host interface, and enables the terminal host to load and install one of the driver programs and one of the application programs suitable for the terminal host into the terminal host. The terminal host receives an instruction from an authorized user through the driver program and the application program to notify the controller to control the fingerprint sensor to read the template fingerprint data of the authorized user, and transmit the template fingerprint data to in the end host. The terminal host utilizes the application program to process the template fingerprint data, and transmits the processed template fingerprint data to the hidden block for storage.

本发明的特色在于解决上述习知技术的两大问题。The feature of the present invention is to solve the two major problems of the above-mentioned prior art.

一为本发明装置是利用终端系统的微处理器执行指纹图像处理及辨识,取代习知技术装置内含独立的指纹辨识微处理器,以大幅降低成本。One is that the device of the present invention uses the microprocessor of the terminal system to perform fingerprint image processing and identification, replacing the independent fingerprint identification microprocessor contained in the prior art device, so as to greatly reduce the cost.

二为本发明装置虽然没有独立的指纹辨识微处理器,却可以自动下载指纹应用程序于终端系统使用,不需要人为的安装于终端系统中,使得本发明装置得以随身携带,方便的使用于不同的终端系统。The second is that although the device of the present invention does not have an independent fingerprint recognition microprocessor, it can automatically download the fingerprint application program for use in the terminal system, and does not need to be installed in the terminal system artificially, so that the device of the present invention can be carried around, and it is convenient to use in different applications. terminal system.

为让本发明的上述和其它目的、特征、和优点能更明显易懂,下文特举一较佳实施例,并配合附图,作详细说明。In order to make the above and other objects, features, and advantages of the present invention more comprehensible, a preferred embodiment will be described in detail below with accompanying drawings.

附图说明Description of drawings

图1表示依本发明第一实施例的具有一指纹传感器的存储器储存装置与一终端主机的连接状态示意图。FIG. 1 is a schematic diagram showing a connection state between a memory storage device with a fingerprint sensor and a terminal host according to a first embodiment of the present invention.

图2表示具有指纹传感器的存储器储存装置的应用系统流程。FIG. 2 shows an application system flow of a memory storage device with a fingerprint sensor.

图3显示将本发明装置的存储器模块切割成不同独立区域的示意图。FIG. 3 shows a schematic diagram of cutting the memory module of the device of the present invention into different independent regions.

图4表示依本发明第二实施例的具有一指纹传感器的存储器储存装置与一终端主机的连接状态示意图。FIG. 4 is a schematic diagram showing a connection state between a memory storage device with a fingerprint sensor and a terminal host according to a second embodiment of the present invention.

图5显示将本发明应用于一拇指盘的实体外观图。FIG. 5 shows the physical appearance of the present invention applied to a thumb tray.

图6显示将本发明应用于一拇指盘的实体分解图。Figure 6 shows a physical exploded view of the present invention applied to a thumb tray.

具体实施方式Detailed ways

如图1所示,其为本发明实施例含指纹传感器的存储器储存装置10的功能方块图。该装置10基本上包含一个控制器102,一个存储器模块104、一个指纹传感器106及一主机接口108。在本实施例中主机接口为通用序列汇流排(USB)的接口,然而也可以是一PCMCIA接口、PCI高速(PCI EXPRESS)接口或一IEEE1394接口或者其它标准的接口。USB接口108是与终端主机10O连接,控制器102连接至主机接口,使得控制器102通过主机接口108而与终端主机1O0连接,并通过存储器接口110与存储器模块104连接。控制器102的任务是与终端主机100沟通,同时管理存储器模块104及指纹传感器106。存储器模块104须包括至少一个用来储存数据的储存芯片或存储器,例如闪存、可编程只读存储器(PROM)、只读存储器(ROM)或可电性抹除可编程只读存储器(EEPROM)。存储器模块104被分割为:一公用区块104A,用以储存包含一指纹应用程序在内的至少一应用程序;一保密区块104B,用以储存一待保护数据;及一隐藏区块104C,用以储存至少一模板指纹数据,更可用以储存一加/解密金钥,而该控制器102更可将该加/解密金钥传输至该终端主机100中,使得终端主机100的应用程序是通过加/解密金钥来将从保密区块104B存取的待保护数据予以加密/解密。As shown in FIG. 1 , it is a functional block diagram of a memory storage device 10 including a fingerprint sensor according to an embodiment of the present invention. The device 10 basically includes a controller 102 , a memory module 104 , a fingerprint sensor 106 and a host interface 108 . In this embodiment, the host interface is a universal serial bus (USB) interface, but it can also be a PCMCIA interface, a PCI high-speed (PCI EXPRESS) interface or an IEEE1394 interface or other standard interfaces. The USB interface 108 is connected to the terminal host 100 , and the controller 102 is connected to the host interface, so that the controller 102 is connected to the terminal host 100 through the host interface 108 and connected to the memory module 104 through the memory interface 110 . The task of the controller 102 is to communicate with the terminal host 100 and manage the memory module 104 and the fingerprint sensor 106 at the same time. The memory module 104 must include at least one storage chip or memory for storing data, such as flash memory, programmable read-only memory (PROM), read-only memory (ROM) or electrically erasable programmable read-only memory (EEPROM). The memory module 104 is divided into: a public block 104A for storing at least one application program including a fingerprint application program; a security block 104B for storing a data to be protected; and a hidden block 104C, It is used to store at least one template fingerprint data, and can be used to store an encryption/decryption key, and the controller 102 can transmit the encryption/decryption key to the terminal host 100, so that the application program of the terminal host 100 is The data to be protected accessed from the security block 104B is encrypted/decrypted by the encryption/decryption key.

指纹传感器106特别是上述其中一位发明人周正三的专利申请案中所提的电容式、温差感应式或压力式的指纹传感器。包含了用以感测静置于其上的手指指纹的面积型指纹传感器或用以感测滑动通过其上的手指指纹的滑动式指纹传感器。指纹传感器106受控制器102存取控制抓取实时的指纹数据使用。终端主机100将所抓取实时的指纹数据与先前的模板指纹数据做模板比对。所谓的模板指纹数据,就是存储器储存装置10的拥有者于第一次使用此装置时,在其中所留下的第一次的指纹数据,此指纹数据是用以作为与后续指纹数据比对的基准。因此,指纹传感器106是连接至该控制器102,用以感测授权使用者的模板指纹数据,更可用以感测一使用者的一待辨识指纹数据来跟模板指纹数据比对。The fingerprint sensor 106 is especially a capacitive, temperature difference sensing or pressure fingerprint sensor mentioned in the patent application of one of the above-mentioned inventors, Zhou Zhengsan. An area-type fingerprint sensor for sensing a fingerprint of a finger resting thereon or a swipe-type fingerprint sensor for sensing a fingerprint of a finger slid across it is included. The fingerprint sensor 106 is controlled by the controller 102 to access and capture real-time fingerprint data. The terminal host 100 performs a template comparison between the captured real-time fingerprint data and the previous template fingerprint data. The so-called template fingerprint data is the first fingerprint data left by the owner of the memory storage device 10 when using the device for the first time. This fingerprint data is used as a comparison with subsequent fingerprint data. benchmark. Therefore, the fingerprint sensor 106 is connected to the controller 102 for sensing template fingerprint data of an authorized user, and can also be used for sensing a fingerprint data of a user to be identified for comparison with the template fingerprint data.

如图2所示,本发明的存储器储存装置10在连接至终端主机100之后的储存数据的保护方法如下。首先,控制器102通过主机接口108而与终端主机100沟通,并令终端主机100将适合于终端主机100的操作系统的驱动程序及指纹应用程序加载安装至该终端主机100中,如步骤210所示。然后,于步骤220,终端主机100上显示出一窗口供使用者选择或自动判定进入一指纹登入模式(步骤225)或一指纹认证模式(步骤230)。As shown in FIG. 2 , the storage data protection method of the memory storage device 10 of the present invention after being connected to the terminal host 100 is as follows. First, the controller 102 communicates with the terminal host 100 through the host interface 108, and instructs the terminal host 100 to load and install the driver program and fingerprint application program suitable for the operating system of the terminal host 100 into the terminal host 100, as shown in step 210. Show. Then, in step 220, a window is displayed on the terminal host 100 for the user to select or automatically determine to enter a fingerprint login mode (step 225) or a fingerprint authentication mode (step 230).

若要进入指纹登入模式,则终端主机100通知控制器102控制指纹传感器106读取授权使用者的模板指纹数据,并将模板指纹数据传送至终端主机100中(步骤235、245)。此时,终端主机100利用指纹应用程序处理模板指纹数据,并将处理过的模板指纹数据传输至隐藏区块104C中储存。或者,指纹应用程序可以利用金钥加密指纹模板数据(步骤255),然后将加密过的模板指纹数据传输至隐藏区块104C中储存(步骤265)。To enter the fingerprint login mode, the terminal host 100 notifies the controller 102 to control the fingerprint sensor 106 to read the template fingerprint data of the authorized user, and transmits the template fingerprint data to the terminal host 100 (steps 235, 245). At this time, the terminal host 100 uses the fingerprint application program to process the template fingerprint data, and transmits the processed template fingerprint data to the hidden block 104C for storage. Alternatively, the fingerprint application can use the key to encrypt the fingerprint template data (step 255), and then transmit the encrypted template fingerprint data to the hidden block 104C for storage (step 265).

若要进入指纹认证模式,则控制器102自隐藏区块104C读取模板指纹数据(步骤230),使模板指纹数据得以被传输至终端主机100中,然后以金钥解密指纹模板数据(步骤240)。接着,终端主机100通知控制器102控制指纹传感器106读取使用者的待辨识指纹数据,并将待辨识指纹数据传送至终端主机100中(步骤250)。然后,终端主机100利用应用程序处理待辨识指纹数据及模板指纹数据,并判断两者是否实质上吻合,并于实质上吻合时解开保密区块以使保密区块104B致能以供终端主机100存取(步骤280),否则使保密区块104B禁能以防止终端主机100存取,或者询问使用者是否再继续比对来进行认证(步骤270)。To enter the fingerprint authentication mode, the controller 102 reads the template fingerprint data from the hidden block 104C (step 230), so that the template fingerprint data can be transmitted to the terminal host 100, and then decrypts the fingerprint template data with the key (step 240 ). Next, the terminal host 100 notifies the controller 102 to control the fingerprint sensor 106 to read the fingerprint data to be identified of the user, and transmit the fingerprint data to be identified to the terminal host 100 (step 250 ). Then, the terminal host 100 uses the application program to process the fingerprint data to be identified and the template fingerprint data, and judges whether the two are substantially consistent, and when they are substantially identical, unlock the security block to enable the security block 104B for the terminal host 100 to access (step 280), otherwise disable the security block 104B to prevent the terminal host 100 from accessing, or ask the user whether to continue the comparison for authentication (step 270).

为了更清楚说明本发明装置如何自动下载指纹应用程序于终端系统执行,本发明发明人的3S专利清楚的描述了本发明装置中控制器102如何管理存储器模块104以及位于存储器模块内的数据或程序,在此将该3S专利案列为参考数据(附件),以供查询。In order to explain more clearly how the device of the present invention automatically downloads the fingerprint application program and executes it on the terminal system, the 3S patent of the inventor of the present invention clearly describes how the controller 102 in the device of the present invention manages the memory module 104 and the data or programs located in the memory module , the 3S patent case is listed here as reference data (attachment) for inquiry.

简而言之,本发明装置所使用的控制器102管理存储器模块104的方法,是可以将该存储器模块切割成不同的独立区块以分别储存不同的数据,以本发明实施例而言,该存储器模块104是被切割成一公用区块104A、一保密区块104B及一隐藏区块104C。请参见图3,其是为应用3S专利发明存储器管理方法,将本发明装置的存储器模块104切割成不同独立区域的说明。In short, the method used by the controller 102 in the device of the present invention to manage the memory module 104 is that the memory module can be divided into different independent blocks to store different data respectively. In the embodiment of the present invention, the The memory module 104 is divided into a public block 104A, a secret block 104B and a hidden block 104C. Please refer to FIG. 3 , which is an illustration of cutting the memory module 104 of the device of the present invention into different independent regions for applying the memory management method invented by the 3S patent.

如图3所示,本发明的存储器储存装置10中的控制器102将存储器模块104的逻辑空间200分割成三个完全独立区块,其中包含第0至P个逻辑区块的公用区块104A、第Q至M-1个逻辑区块的保密区块104B以及第M个逻辑区块的隐藏区块104C。分区信息是储存在特定的信息区块内。逻辑空间200是映像至实体空间202,而实体空间202包含了信息区块及第1至N个实体区块。As shown in FIG. 3 , the controller 102 in the memory storage device 10 of the present invention divides the logical space 200 of the memory module 104 into three completely independent blocks, including the public block 104A of the 0th to P logical blocks , the secret block 104B of the Qth to M-1 logical blocks, and the hidden block 104C of the M logical block. Partition information is stored in specific information blocks. The logical space 200 is mapped to the physical space 202, and the physical space 202 includes information blocks and 1st to Nth physical blocks.

当本发明装置与终端系统连接后,终端系统会将本装置视为一独立的磁盘600,并且自动连接存储器模块104中的独立公用区块104A,以在终端系统的显示装置上显现出指纹应用程序的档案选项,并且由使用者选择以执行该指纹应用程序,例如出现一指纹登录画面。When the device of the present invention is connected to the terminal system, the terminal system will regard the device as an independent disk 600, and automatically connect the independent public block 104A in the memory module 104 to display the fingerprint application on the display device of the terminal system The file option of the program is selected by the user to execute the fingerprint application program, for example, a fingerprint login screen appears.

当使用者执行完该公用区块104A的指纹应用程序后,控制器102会自动切换区块,由公用区块104A切换至保密区块104B。相对应的,在终端系统显示装置上会出现画面的切换,亦即切换至受保护的保密区块104B,以显示出该区块内受保护的数据,使使用者可以自由存取。After the user finishes executing the fingerprint application program of the public block 104A, the controller 102 will automatically switch blocks from the public block 104A to the confidential block 104B. Correspondingly, there will be a screen switch on the display device of the terminal system, that is, switch to the protected security block 104B to display the protected data in this block, so that the user can freely access it.

简而言之,使用本发明装置时,控制器102会先切换至公用区块自动下载指纹应用程序,待执行完指纹应用程序后再切换至保密区块。而这样的自动下载及画面切换的功能,也是因为本发明申请人的3S专利专有控制器102设计有存储器独立切割及管理的功能,而致使本发明装置可以有别于现有习知技术,藉由终端系统的微处理器作指纹的处理及识别,同时也兼顾自动下载含指纹应用程序在内的各种应用程序。In short, when using the device of the present invention, the controller 102 will first switch to the public block to automatically download the fingerprint application program, and then switch to the private block after the fingerprint application program is executed. And the function of such automatic downloading and screen switching is also because the 3S patent proprietary controller 102 of the applicant of the present invention is designed with the function of memory independent cutting and management, so that the device of the present invention can be different from the prior art. Use the microprocessor of the terminal system to process and identify fingerprints, and also take into account the automatic download of various applications including fingerprint applications.

值得说明的是,本发明的公共区块的任何应用程序都是只读文件,无法作任何更动。It is worth noting that any application program of the public block of the present invention is a read-only file and cannot be changed in any way.

在本发明中,另外有一隐藏区块104C,此区块需通过特殊程序直接与控制器102沟通,系统无从察觉此区块,隐藏区块104C的大小可根据设计调整。隐藏区块存放模板指纹数据、加密金钥、电子凭证…等私密数据。根据需要,亦可将隐藏区块的大小设置为零,这时,终端系统面对本装置所映像的磁盘600仅仅显现磁盘中保密区块104B及公用区块104A而已。In the present invention, there is another hidden block 104C. This block needs to communicate directly with the controller 102 through a special program. The system cannot detect this block. The size of the hidden block 104C can be adjusted according to the design. The hidden block stores private data such as template fingerprint data, encryption key, electronic certificate, etc. According to needs, the size of the hidden block can also be set to zero. At this time, facing the disk 600 mapped by the device, the terminal system only shows the confidential block 104B and the public block 104A in the disk.

于本发明另一实施例中,如图4所示,存储器储存装置10除了包含类似于图1的控制器102、存储器模块104、指纹传感器106及主机接口108以外,可以更包含一存储器扩充插槽103,该存储器扩充插槽103是实质上用以扩充本发明装置的存储器的容量,亦或藉由将本装置视为一外接存储器105的读取器(memory reader),该外接存储器譬如智能型媒体(smart media)或存储卡(memory stick)或其它标准接口的外接存储器。扩充插槽103是通过存储器接口110而与控制器102电连接,用以与一外接存储器105电连接,藉以增加存储器储存装置的存储器容量。当外接存储器105被插入扩充插槽103后,控制器102将外接存储器105规划为单一扩充保密区块,用以储存额外的待保护数据。如此一来本装置可以提供任何外接存储器105数据保护的方法。In another embodiment of the present invention, as shown in FIG. 4 , in addition to the controller 102, memory module 104, fingerprint sensor 106 and host interface 108 similar to FIG. 1, the memory storage device 10 may further include a memory expansion plug. Slot 103, the memory expansion slot 103 is substantially used to expand the capacity of the memory of the device of the present invention, or by treating the device as a reader (memory reader) of an external memory 105, the external memory such as smart Type media (smart media) or memory card (memory stick) or other external memory with standard interface. The expansion slot 103 is electrically connected to the controller 102 through the memory interface 110 for electrically connecting with an external memory 105 to increase the memory capacity of the memory storage device. After the external memory 105 is inserted into the expansion slot 103, the controller 102 plans the external memory 105 into a single extended security block for storing additional data to be protected. In this way, the device can provide any data protection method for the external memory 105 .

以下再次参见图1与图2来说明本发明的应用系统流程。Referring to FIG. 1 and FIG. 2 again below, the application system flow of the present invention will be described.

首先,存储器储存装置10插入主机100的插槽,控制器102在初始电源开启后,控制器102通过主机接口108而与主机100沟通,控制器102将信息区块读入控制器的SRAM内。根据装载入SRAM的信息区块数据,控制器将对主机发出的请求做出反应,对存储器模块104进行配置,并将其视为逻辑磁盘。主机100将读到存储器模块104的公用区块104A的应用程序并执行。此动作是由控制器102控制而自动执行,使用者不需手动安装驱动程序与应用程序。First, the memory storage device 10 is inserted into the slot of the host 100. After the controller 102 is initially powered on, the controller 102 communicates with the host 100 through the host interface 108, and the controller 102 reads the information block into the SRAM of the controller. Based on the information block data loaded into the SRAM, the controller will respond to the request from the host to configure the memory module 104 and treat it as a logical disk. The host 100 will read and execute the application program in the common block 104A of the memory module 104 . This action is automatically executed under the control of the controller 102, and the user does not need to manually install the driver program and application program.

然后,主机100通过直接执行应用程序并由应用程序接收来自授权使用者的一指令(可以用弹跳窗口的方式引导使用者进行),以通知控制器102控制指纹传感器106读取授权使用者的模板指纹数据,并将模板指纹数据传送至该主机100中。Then, the host 100 directly executes the application program and receives an instruction from the authorized user through the application program (the user may be guided by a pop-up window), so as to notify the controller 102 to control the fingerprint sensor 106 to read the authorized user's template fingerprint data, and transmit the template fingerprint data to the host 100.

接着,主机100利用此应用程序处理此模板指纹数据,并将处理过的模板指纹数据传输至隐藏区块104C中储存。然后,使用者可以将私密数据储存到保密区块104B中。Next, the host 100 uses the application program to process the template fingerprint data, and transmits the processed template fingerprint data to the hidden block 104C for storage. Then, the user can store the private data in the security block 104B.

当使用者将存储器储存装置10携带至另一台主机100中使用时,控制器102通过主机接口108而与主机100交握沟通,控制器102将对主机100发出的请求做出反应,对存储器模块104进行配置,并将其视为逻辑磁盘,并将其中一个应用程序加载安装至主机100中执行。然后,主机100的应用程序判断出存储器模块104的隐藏区块104C中已经储存有模板指纹数据,或者控制器102将隐藏区块104C中已经储存有模板指纹数据的状况通知主机100。于此情况下,控制器102将模板指纹数据传输至主机100中。主机100通过直接执行应用程序并由应用程序接收来自使用者的一指令,以通知控制器102控制指纹传感器106读取使用者的待辨识指纹数据,并将待辨识指纹数据传送至主机100中。主机100利用应用程序处理待辨识指纹数据及模板指纹数据,并判断两者是否实质上吻合,并于实质上吻合时使保密区块104B致能以供主机100存取,否则使保密区块104B禁能以防止主机100存取。When the user carries the memory storage device 10 to another host 100 for use, the controller 102 communicates handshake with the host 100 through the host interface 108, and the controller 102 will respond to the request sent by the host 100, and the memory The module 104 performs configuration, treats it as a logical disk, and loads and installs one of the application programs to the host computer 100 for execution. Then, the application program of the host 100 determines that the template fingerprint data has been stored in the hidden block 104C of the memory module 104, or the controller 102 notifies the host 100 of the status that the template fingerprint data has been stored in the hidden block 104C. In this case, the controller 102 transmits the template fingerprint data to the host 100 . The host 100 directly executes the application program and receives an instruction from the user through the application program to notify the controller 102 to control the fingerprint sensor 106 to read the user's fingerprint data to be identified and transmit the fingerprint data to be identified to the host 100 . The host 100 uses the application program to process the fingerprint data to be identified and the template fingerprint data, and judges whether the two are substantially identical, and enables the security block 104B to be accessed by the host 100 if they are substantially identical, otherwise the security block 104B is enabled Disable to prevent the host 100 from accessing.

为了更进一步保护存储器模块104的保密区块104B的私密数据,可以在隐藏区块104C中的加密金钥将对保密区块104B的私密数据做储存加/解密动作(由应用程序处理)。在控制器102控制下,加/解密金钥可以被传输至主机100中。藉此,主机100的应用程序就可以通过加/解密金钥来将从保密区块104B存取的待保护数据予以加密/解密处理。In order to further protect the private data in the security block 104B of the memory module 104, the encryption key in the hidden block 104C will store and encrypt/decrypt the private data in the security block 104B (processed by the application program). Under the control of the controller 102 , the encryption/decryption key can be transmitted to the host 100 . In this way, the application program of the host 100 can encrypt/decrypt the data to be protected accessed from the security block 104B through the encryption/decryption key.

为了表示本发明的可实施性,以下提供将本发明应用于拇指盘的实体外观图(图5),以及实体分解图(图6)以兹证明。In order to show the practicability of the present invention, a physical appearance diagram ( FIG. 5 ) and a physical exploded view ( FIG. 6 ) of applying the present invention to a thumb tray are provided below to prove it.

藉由本发明的上述构造,从计算机系统上所看到的联机装置,不再包含一个非挥发性存储器以及一个指纹传感器,所以不需要同时安装适用于该非挥发性存储器以及该指纹传感器的驱动程序,所以计算机系统不需多任务控制两个装置的运作。取而代之的是,从计算机系统上所看到的联机装置,仅有一个可携式储存装置,所以计算机系统仅需控制一个装置的运作。至于可携式储存装置内的非挥发性存储器与指纹传感器的运作,可以由控制器来控制。值得注意的是,本发明所指的控制器,是可以宽广地包含控制非挥发性存储器与指纹传感器的运作的其它组件,譬如只读存储器(ROM)、随机存取存储器(RAM)等。With the above-mentioned structure of the present invention, the online device seen from the computer system no longer includes a non-volatile memory and a fingerprint sensor, so there is no need to install drivers suitable for the non-volatile memory and the fingerprint sensor at the same time , so the computer system does not need to multitask to control the operation of the two devices. Instead, the connected device seen from the computer system has only one portable storage device, so the computer system only needs to control the operation of one device. As for the operation of the non-volatile memory and the fingerprint sensor in the portable storage device, it can be controlled by the controller. It should be noted that the controller referred to in the present invention can broadly include other components that control the operation of the non-volatile memory and the fingerprint sensor, such as read-only memory (ROM), random access memory (RAM), and so on.

在较佳实施例的详细说明中所提出的具体实施例仅用以方便说明本发明的技术内容,而非将本发明狭义地限制于上述实施例,在不超出本发明的精神及以下申请专利范围的情况,所做的种种变化实施,皆属于本发明的范围。The specific embodiments proposed in the detailed description of the preferred embodiments are only used to facilitate the description of the technical content of the present invention, rather than restricting the present invention to the above-mentioned embodiments in a narrow sense, without exceeding the spirit of the present invention and applying for a patent below The circumstances of the range, the implementation of various changes, all belong to the scope of the present invention.

Claims (17)

1, a kind of memorizer memory devices that contains fingerprint sensor in order to be connected with an end host, is characterized in that comprising:
One host interface is in order to be connected with described end host;
One controller is connected to described host interface, be connected with described end host by described host interface so that with a template fingerprint data transmission to the described end host;
One fingerprint sensor is connected to described controller, in order to sensing one user's a finger print data to be identified; And
One memory module is connected to described controller, and described memory module is split into:
One public block is in order to store a plurality of application programs;
One secret block is in order to store data to be protected; And
One hidden blocks, in order to store described template fingerprint data, wherein:
Described end host is carried out one of them described application program, and by the instruction of described application program reception from described user, notifying described controller to control the finger print data described to be identified that described fingerprint sensor reads described user, and described finger print data to be identified is sent in the described end host; And utilize described application program to handle described finger print data to be identified and described template fingerprint data, and judge whether both are identical in fact, and when coincideing in fact, make described secret block can supply described end host access, otherwise described secret block is forbidden to prevent described end host access.
2, the memorizer memory devices that contains fingerprint sensor according to claim 1 is characterized in that: described hidden blocks also stores enciphering/deciphering gold key, and transfers in the described end host by described controller.
3, the memorizer memory devices that contains fingerprint sensor according to claim 2 is characterized in that: the described application program of described end host gives encrypt/decrypt by described enciphering/deciphering gold key with the data described to be protected from the block access of described closed security zone.
4, the memorizer memory devices that contains fingerprint sensor according to claim 1 is characterized in that: described host interface is a USB (universal serial bus), a pcmcia interface, a PCI high-speed interface or an IEEE1394 interface.
5, the memorizer memory devices that contains fingerprint sensor according to claim 1 is characterized in that: described fingerprint sensor is area-type fingerprint sensor or sweep fingerprint sensor.
6, the memorizer memory devices that contains fingerprint sensor according to claim 1 is characterized in that: also comprise:
One expansion slot is electrically connected with described controller, in order to be electrically connected with an external memorizer, uses the memory span that increases described memorizer memory devices.
7, the memorizer memory devices that contains fingerprint sensor according to claim 6 is characterized in that: described external memorizer is the secret block of single expansion, in order to store extra data to be protected.
8, a kind of memorizer memory devices that contains fingerprint sensor in order to be connected with an end host, is characterized in that comprising:
One host interface is in order to be connected with described end host;
One controller is connected to described host interface, links to each other with described end host by described host interface;
One fingerprint sensor is connected to described controller, in order to sensing one authorized user's template fingerprint data; And
One memory module is connected to described controller, and described memory module is split into:
One public block is in order to store a plurality of application programs;
One secret block is in order to store data to be protected; And
One hidden blocks, in order to store template fingerprint data, wherein:
Described end host is carried out one of them described application program, and by the instruction of described application program reception from described authorized user, notifying described controller to control the described template fingerprint data that described fingerprint sensor reads described authorized user, and described template fingerprint data are sent in the described end host; And utilize described application program to handle described template fingerprint data, and the described template fingerprint data transmission that will handle stores to described hidden blocks.
9, the memorizer memory devices that contains fingerprint sensor according to claim 8 is characterized in that: described hidden blocks also stores enciphering/deciphering gold key, and transfers in the described end host by described controller.
10, the memorizer memory devices that contains fingerprint sensor according to claim 9 is characterized in that: the described application program of described end host gives encrypt/decrypt by described enciphering/deciphering gold key with the data described to be protected from the block access of described closed security zone.
11, the memorizer memory devices that contains fingerprint sensor according to claim 8 is characterized in that: described host interface is a USB (universal serial bus), a pcmcia interface, a PCI high-speed interface or an IEEE 1394 interfaces.
12, the memorizer memory devices that contains fingerprint sensor according to claim 8 is characterized in that: described fingerprint sensor is area-type fingerprint sensor or sweep fingerprint sensor.
13, the memorizer memory devices that contains fingerprint sensor according to claim 8 is characterized in that: also comprise:
One expansion slot is electrically connected with described controller, in order to be electrically connected with an external memorizer, uses the memory span that increases described memorizer memory devices.
14, the memorizer memory devices that contains fingerprint sensor according to claim 13 is characterized in that: described external memorizer is the secret block of single expansion, in order to store extra data to be protected.
15, a kind of guard method of storage data of the memorizer memory devices that contains fingerprint sensor, described memorizer memory devices comprises a host interface, in order to be connected with an end host; One controller is connected to described host interface; One fingerprint sensor is connected to described controller, in order to sensing one authorized user's template fingerprint data; And a memory module, being connected to described controller, described memory module is split into: a public block, in order to store a plurality of application programs; One secret block is in order to store data to be protected; And a hidden blocks, wherein, with described memorizer memory devices with after an end host is electrically connected, the feature of described guard method is to comprise following steps:
Described controller links to each other with described end host by described host interface, and makes described end host carry out one of them the described application program that is suitable for described end host; And
Enter a fingerprint and login a pattern or a finger print identifying pattern,
Login in the pattern in described fingerprint:
Described end host notifies described controller to control the described template fingerprint data that described fingerprint sensor reads described authorized user, and described template fingerprint data are sent in the described end host; And
Described end host utilizes described application program to handle described template fingerprint data, and the described template fingerprint data transmission that will handle stores to described hidden blocks; And
In described finger print identifying pattern:
Described controller with described template fingerprint data transmission to the described end host;
Described end host notifies described controller to control the finger print data to be identified that described fingerprint sensor reads a user, and described finger print data to be identified is sent in the described end host; And
Described end host utilizes described application program to handle described finger print data to be identified and described template fingerprint data, and judge whether both are identical in fact, and when coincideing in fact, make described secret block can supply described end host access, otherwise described secret block is forbidden to prevent described end host access.
16, the guard method of the storage data of the memorizer memory devices that contains fingerprint sensor according to claim 15; it is characterized in that: described hidden blocks is more in order to store enciphering/deciphering gold key; and described controller transfers to described enciphering/deciphering gold key in the described end host, and the described application program of described end host is by described enciphering/deciphering gold key the data described to be protected from the block access of described closed security zone to be given encrypt/decrypt.
17, the guard method of the storage data of the memorizer memory devices that contains fingerprint sensor according to claim 15; wherein; described memorizer memory devices also comprises an expansion slot; be electrically connected with described controller; in order to be electrically connected with an external memorizer; use the memory span that increases described memorizer memory devices, it is characterized in that described guard method also comprises following steps:
After described external memorizer was inserted into described expansion slot, described controller was planned to the secret block of single expansion with described external memorizer, in order to store extra data to be protected.
CN 200310116995 2003-12-05 2003-12-05 Memory storage device with fingerprint sensor and protection method for stored data Expired - Fee Related CN1284090C (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200310116995 CN1284090C (en) 2003-12-05 2003-12-05 Memory storage device with fingerprint sensor and protection method for stored data

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200310116995 CN1284090C (en) 2003-12-05 2003-12-05 Memory storage device with fingerprint sensor and protection method for stored data

Publications (2)

Publication Number Publication Date
CN1624667A CN1624667A (en) 2005-06-08
CN1284090C true CN1284090C (en) 2006-11-08

Family

ID=34760839

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200310116995 Expired - Fee Related CN1284090C (en) 2003-12-05 2003-12-05 Memory storage device with fingerprint sensor and protection method for stored data

Country Status (1)

Country Link
CN (1) CN1284090C (en)

Families Citing this family (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI265442B (en) 2005-06-03 2006-11-01 Lightuning Tech Inc Portable storage device capable of automatically running biometrics application programs and methods of automatically running the application programs
CN100428108C (en) * 2005-09-30 2008-10-22 联想(北京)有限公司 A method for encrypting and storing data
CN1987832B (en) * 2005-12-20 2012-03-14 鸿富锦精密工业(深圳)有限公司 Input device with finger print identifying function and its finger print identifying method
CN100476764C (en) * 2006-01-18 2009-04-08 神盾股份有限公司 Storage device and protection method of storage data thereof
CN100452000C (en) * 2006-03-09 2009-01-14 祥群科技股份有限公司 Portable storage device and method for automatically executing biological identification application program
CN101276310B (en) * 2007-03-30 2011-03-16 中华电信股份有限公司 Portable data access device
CN101676888A (en) * 2008-09-18 2010-03-24 茂晖科技股份有限公司 Data storage protection device
CN101989239B (en) * 2009-07-31 2013-03-27 慧帝科技(深圳)有限公司 Device and method for controlling at least one electronic device
CN102707901B (en) * 2012-03-30 2017-10-24 惠州Tcl移动通信有限公司 A kind of terminal data access method and device
CN105320903B (en) * 2015-09-30 2018-07-06 杨毅 A kind of electronic equipment and the data read-write method based on the electronic equipment
CN107563171B (en) * 2017-09-11 2020-08-28 英业达科技有限公司 Storage device with biological characteristic identification module

Also Published As

Publication number Publication date
CN1624667A (en) 2005-06-08

Similar Documents

Publication Publication Date Title
US7519203B2 (en) Portable encrypted storage device with biometric identification and method for protecting the data therein
US7447911B2 (en) Electronic identification key with portable application programs and identified by biometrics authentication
US7496763B2 (en) Memory storage device with a fingerprint sensor and method for protecting the data therein
US9047486B2 (en) Method for virtualizing a personal working environment and device for the same
US8528096B2 (en) Secure universal serial bus (USB) storage device and method
US7447895B2 (en) BIOS locking device, computer system with a BIOS locking device and control method thereof
EP2212801B1 (en) System and method for resizing a drive's partition and exchanging partition sizes between a flash memory controller and a smart card
JP2003510714A (en) Removable active personal storage device, system and method
CN101326483A (en) Media card with command pass-through mechanism
CN1284090C (en) Memory storage device with fingerprint sensor and protection method for stored data
US7461266B2 (en) Storage device and method for protecting data stored therein
TWI326846B (en)
JP2006338670A (en) Portable storage device capable of automatically executing biometrics application and method for automatically executing biometrics application
US20070113097A1 (en) [storage media]
US20080126810A1 (en) Data protection method for optical storage media/device
CN1696960A (en) Portable encrypted storage device with biometric identification and protection method for stored data
CN100451999C (en) Storage device and protection method of storage data thereof
CN101017462A (en) Portable memory devices having biological date protection mechanism and protection method thereof
EP3832515B1 (en) Storage device including memory controller, and non-volatile memory system including the same and operating method thereof
US7519829B2 (en) Storage device and method for protecting data stored therein
CN1627226A (en) Identity electronic key and its control method
KR101936194B1 (en) SD Memory Control Method having Authentication-based Selective-Activation Function of Multi-Partitioned Memory
US20070150746A1 (en) Portable storage with bio-data protection mechanism & methodology
CN100452000C (en) Portable storage device and method for automatically executing biological identification application program
CN100476764C (en) Storage device and protection method of storage data thereof

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20061108

Termination date: 20191205