RU2009140835A - KEY PROTECTION METHOD AND COMPUTER DEVICE - Google Patents

Abstract

 1. A way to protect keys, characterized by the following steps:! (a) installing the application control module (11) to generate a key confirmation request in response to receiving an access request; ! (b) installing the hardware control module (2) to generate a key input request through the application program control module (11) to prompt the user to quickly enter the key in response to receiving a key confirmation request; ! (c) upon receipt of the key input, the installation of the hardware control module (2) to determine whether the entered key matches the predefined key previously installed in the hardware control module (2); ! (d) installing the hardware control module (2) to enter the execution mode, if it is determined in step (c) that the entered key corresponds to a predefined key; ! (e) installing the hardware control module (2) to enter the failure mode if it is determined in step (c) that the key entered does not correspond to the predefined key. ! 2. The key protection method according to claim 1, characterized in that the hardware control module (2) comprises a hardware control device (21) that receives a key confirmation request from the application program control module (11), a key comparison device (22) and a processing device (23); wherein ! in step (c), the key comparison device (22) compares the entered key with a preset key, and! in step (d), the hardware control device (21) transmits the comparison result received from the comparison device

Claims (16)

1. A method for protecting keys, characterized by the following steps: (a) installing the application control module (11) to generate a key confirmation request in response to receiving an access request; (b) installing the hardware control module (2) to generate a key input request through the application program control module (11) to prompt the user to quickly enter the key in response to receiving a key confirmation request; (c) upon receipt of the key input, the installation of the hardware control module (2) to determine whether the entered key matches the predefined key previously installed in the hardware control module (2); (d) installing the hardware control module (2) to enter the execution mode, if it is determined in step (c) that the key entered corresponds to a predefined key; (e) installing the hardware control module (2) to enter the failure mode, if it is determined in step (c) that the key entered does not correspond to the predefined key. 2. The key protection method according to claim 1, characterized in that the hardware control module (2) comprises a hardware control device (21) that receives a key confirmation request from the application program control module (11), a key comparison device (22) and a processing device (23); wherein in step (c), the key comparison device (22) compares the entered key with a preset key, and in step (d), the hardware control device (21) transmits the comparison result received from the key comparison device (22) to the application control module (11) and allows the processing request to be transmitted from the application control module (11) to the hardware control module ( 2) for execution by the processing device (23). 3. The key protection method according to claim 2, characterized in that in step (d), the capabilities of the processing device (23) in runtime mode include reconstructing the file and converting the file to one of the following states: hidden, read-only, only records. 4. The key protection method according to claim 2, characterized in that, in step (e), the hardware control device (21) transmits a verification failure message to the application control module (11), and the execution route goes back to step (a) for waiting for another key confirmation request. 5. The key protection method according to claim 4, characterized in that, in step (e), the hardware control module monitors the number of entries in the failure mode, and when this number reaches a predetermined number of times, the operations of the application control module (11) and the module hardware controls (2) are terminated. 6. The key protection method according to claim 4, characterized in that in step (e) the hardware control module monitors the number of entries in the failure mode, and when this number reaches a predetermined number of times over a certain period of time, the operations of the application control module ( 11) and the hardware control module (2) are terminated. 7. The key protection method according to claim 2, characterized in that, in step (e), the hardware control device (21) transmits a key verification failure message to the application control module (11) and the operation of the application control module (11) and hardware control module (2) is terminated. 8. The key protection method according to claim 1, characterized in that the key input is interrupted by an input device (4) associated with the hardware control module (2). 9. The key protection method according to claim 2, characterized in that in step (d) the hardware control device (21) transmits a message about the success of the key verification to the application control module (11). 10. The key protection method according to claim 2, characterized in that the communication between the application program control module (11) and the hardware control device (21) is carried out via the universal serial bus (USB) interface. 11. A computing device characterized by the presence of: an operating system unit (1) installed with the application program control module (11) to receive an access request and generate a key confirmation request in response to the access request; and a hardware control module (2) comprising a hardware control device (21) in communication with said application control module (11) to receive a key confirmation request from him and generate, through the application program control module (11), a key input request to prompt the user to quickly enter the key into response to a key confirmation request, a key comparison device (22) associated with said hardware control device (21), determining, upon receipt of a key entered by the user, whether this key corresponds to a predefined key previously installed in said hardware control module (2) and transmitting the comparison result said hardware control device (21) for subsequent transmission to the application control module (11) by said hardware control device (21); and characterized in that said hardware control module (2) enters the execution mode if said comparison device (22) determines that the entered key corresponds to a predetermined key; and characterized in that said hardware control module (2) enters a failure mode if it is determined by said comparison device (22) that the entered key does not correspond to a predetermined key. 12. The device according to claim 11, characterized in that said hardware module (2) further comprises a processing device (23) associated with said hardware control device (21) and capable of executing a processing request, and said hardware control device ( 21) allows the transfer of a processing request from the specified application control module (11) for execution by the specified processing device (23) when the specified hardware control module (2) enters the execution mode. 13. The device according to claim 11, characterized in that said hardware control device (21) transmits to said application control module (11) a message about the key verification failure to display it on the display device (3) and waits for another key confirmation request from said application control module (11) when said hardware control module (2) enters a failure mode. 14. The device according to claim 11, characterized in that said key comparison device (22) is adapted to communicate with an input device (4) through which a key is entered into said comparison device (22). 15. The device according to claim 11, characterized in that said hardware control device (21) transmits to the application control module (11) a message about the success of checking the key for subsequent display on the display device (3) when said hardware control module (2) enters execution mode. 16. The device according to claim 11, characterized in that the communication between the specified application control module (11) of the specified operating system unit (1) and the specified hardware control unit (21) is via the universal serial bus (USB) interface.