A kind of high in the clouds and local secure storage method and apparatusTechnical field
The invention belongs to mobile internet technical field, particularly relate to a kind of high in the clouds and local secure storageMethod and apparatus.
Background technology
Along with the fast development of mobile Internet, various safe storage events emerge in an endless stream, consumer pairMobile security storage demand is more and more urgent, the most safely, conveniently, is convenient for carrying that to become consumer firstWant demand.
Seeing Fig. 5, generic storage USB flash disk is to be connected to mobile phone, computer or PAD by usb 1On, as terminal unit memory expanding.
Seeing Fig. 6, wireless storage dish is to be connected to mobile phone, computer or PAD by wireless WIFI interfaceOn, as terminal unit spatial spread.
Seeing Fig. 7, fingerprint storage U disk is increase finger scan function on the basis of common U disk, realNow to USB flash disk data encryption and storage.
Above-mentioned common U disk cannot meet the privacy privacy requirements of user, and wireless storage dish is the most alsoCannot solve this problem, the common U disk of encrypting fingerprint can not meet again demand easy to use, especiallyFor increasing intelligent terminal, plug USB flash disk has a strong impact on Consumer's Experience.
Summary of the invention
The main object of the present invention is to provide a kind of high in the clouds and local secure storage data and the side of fileMethod, it can effectively solve the safety problem in storing process, and reliability is higher.
For achieving the above object, the present invention takes following design:
A kind of high in the clouds and local secure storage data and the method for file, including based on wave point and bandLocal intelligent terminal storage equipment, intelligent terminal and the cloud server of finger scan or recording device,Wherein, equipped with app software in this intelligent terminal, in order to control store data reading, upload and underCarry;It is characterized in that described method is as follows:
First user logs on local security intelligent storage equipment with fingerprint or voice;
Local security intelligent storage equipment is by the fingerprint detected or voice and registered fingerprint or voiceCompare:
It is registered fingerprint or voice as judged, then deciphers, authorize intelligent terminal to access local securityIntelligent storage equipment, read or download the data that are stored encrypted in local security intelligent storage equipment andFile, or continue to upload and encrypt the new data of storage and file to local security intelligent storage equipment,The new data uploading these and file carry out the encrypting fingerprint of correspondence simultaneously and process;
As through being judged as nonregistered (NR) fingerprint or voice, then refusal operates further.
In the method for described high in the clouds and local secure storage data and file, adding of described data and fileClose storage is through AES, MD5, RSA or des encryption algorithm for encryption.
In the method for described high in the clouds and local secure storage data and file, further local security intelligence is depositedThe encryption data of storage equipment and files passe backup on intelligent terminal or cloud server.
In the method for described high in the clouds and local secure storage data and file, soft by intelligent terminal appPart realizes the One-key recovery of this user data.
In the method for described high in the clouds and local secure storage data and file, described intelligent terminal (intelligenceTerminal APP) by wifi, bluetooth or nfc wireless connections local security intelligent storage equipment, pass throughWifi or at least 4g network connect cloud server.
In the method for described high in the clouds and local secure storage data and file, described intelligent terminal is for enteringIntelligent terminal's mobile phone of row app software operation or panel computer.
In the method for described high in the clouds and local secure storage data and file, described in intelligent storage terminalThe data of storage and file all process through encrypting fingerprint, all cannot be read by any third party storageTake intelligent storage terminal document.
In the method for described high in the clouds and local secure storage data and file, realize using by fingerprint characteristicThe safety encryption of user data, supports an one-key backup of local security intelligent storage equipment, cloud serverBackup, secured mobile payment, identity authentication and password retrieval function.
It is a further object of the present invention to provide a kind of high in the clouds and local secure storage data and the dress of filePut, for realizing above-mentioned high in the clouds and local secure storage data and the method for file.
For achieving the above object, the present invention takes following design:
A kind of for realizing described high in the clouds and local secure storage data and the device of file, it includes:
One local security intelligent storage equipment, with wave point and finger scan unit;
One intelligent terminal, an intelligent terminal, this intelligent terminal equipped with in order to control store data reading,The app software uploaded and download;
One cloud server;
Described local security intelligent storage equipment connects intelligent terminal, described intelligence by wave pointTerminal can connect cloud server by wifi or 4g network.
In the device of described high in the clouds and local secure storage data and file, described local security intelligenceStorage device is by wifi, bluetooth or nfc wireless connections intelligent terminal.
In the device of high in the clouds of the present invention and local secure storage data and file, can be by with wireless(wifi, bluetooth or nfc) interface and the local security intelligence with finger scan unit or recording deviceCan storage device make independent portable parts (as outward appearance make the most various types of portable hard drive orUSB flash disk type), carry with user friendly, user may utilize this local security intelligent storage equipment at any timeLogging in the mobile phone (or PAD) of oneself, instant calls the file stored or uploads the new literary composition of preservationPart.
The invention have the advantage that
1. the method security of the present invention is high, and particularly the feature coincidence factor of fingerprint is extremely low should be maybeDo not exist, therefore (encryption to storage data and file is encrypted algorithm to use dual cipher modeEncryption, calls it and needs fingerprint or speech verification), people can be met greatly to removable peaceThe demand of full storage;
2. the method for the present invention uses storage of getting online without being tethered to a cable, and has agreed with the trend of Developing, has had moreVast potential for future development;
3. assembly of the invention is convenient and portable, makes consumer be easier to accept.
Accompanying drawing explanation
Fig. 1 is the principle of device schematic diagram of high in the clouds of the present invention and local secure storage data and file.
Fig. 2 is that the method one embodiment principle of high in the clouds of the present invention and local secure storage data and file is shownIt is intended to.
Fig. 3 is local security intelligent storage equipment structural representation of the present invention.
Fig. 4 is local security intelligent storage equipment internal operation module composition principle square frame of the present invention signalFigure.
Fig. 5 is the structural representation of prior art common U disk.
Fig. 6 is the structural representation of prior art wireless storage dish.
Fig. 7 is the structural representation of prior art encrypting fingerprint common U disk.
Below in conjunction with the accompanying drawings and specific embodiment the present invention is described further.
Detailed description of the invention
See shown in Fig. 1 and Fig. 2, high in the clouds of the present invention and local secure storage data and the device of fileBasis is constituted: have 1, local security intelligent storage equipment of a cloud server 2 (mainStorage data and file) and a mobile intelligent terminal being provided with APP software 3 (can be installationThere are intelligent terminal's mobile phone or the panel computer of APP software).
The APP software of the upper installation of intelligent terminal mainly control intelligent terminal's (mobile phone or panel computer),The data in high in the clouds and the operating platform of file, intelligent terminal APP is wireless by wifi, bluetooth or nfcConnect local security intelligent storage equipment, connect cloud server by wifi/4g network;Pass throughThe operation of app application program, the encryption data of local security intelligent storage equipment can be uploaded and backup toOn intelligent terminal or cloud server, intelligent terminal and cloud server can be encryption datas simultaneouslyLocally downloading safe and intelligent storage device.
One concrete grammar of high in the clouds of the present invention and local secure storage data and file be (as in figure 2 it is shown,The method of the present embodiment uses fingerprint authentication):
User is typing finger print information on local security intelligent storage equipment, by wireless connections intelligence eventuallyEnd, intelligent terminal shows registration or checking fingerprint, and end user is logged in by fingerprint.
Data and the file of storage are passed through AES (Advanced by local security intelligent storage equipmentEncryption Standard) and encryption (but it is not limited only to this encryption method, it is also possible to it is MD5, RSAOr des encryption algorithm for encryption), AES is that a new encryption that may be used for protecting electronic data is calculatedMethod, it is an iteration, the password of symmetric key packet, it is possible to use 128,192 and 256Key, and conciliate ciphertext data with 128 (16 byte) block encryptions.Data after encryption andFile can backup on cloud server or intelligent terminal's (mobile phone or panel computer), backupData and file are also encryptions, and only fingerprint authentication has passed through just can carry out data manipulation, otherAny third party cannot read this data file encryption, though therefore local security intelligent storage equipmentLost, still have on cloud server and intelligent terminal and have the data of backup to be available for user's use, userAgain do not worry storing the leakage of data.
On intelligent terminal's (mobile phone or panel computer) by app application program operation storage data orFile, including storage data or the reading of file, uploads and downloads.
User data One-key recovery is supported: by former backup by intelligent terminal (APP of intelligent terminal)Storage data or file are returned to this locality by cloud server or intelligent terminal's (mobile phone or panel computer)In safe and intelligent storage device.
Local security intelligent storage equipment is the core component that the present invention innovates, and sees Fig. 3, main groupOne-tenth part is: 1) wave point part (wifi, bluetooth, nfc or other interface);2) refer toStricture of vagina scanning window (or voice typing module), it is achieved fingerprint or the typing of voice and utilize it to encrypt;3) data storage cell.
Fingerprint passes through scanning record, anti-through intelligent terminal's (mobile phone or panel computer) of wireless connectionsFeedback typing success or not, typing success, then authorized user continue operation: to encryption storage data orFile conducts interviews or accesses.
Fig. 4 shows that local security intelligent storage equipment internal operation module one embodiment of the present invention is constitutedThe block diagram of principle, specifically comprises in local security intelligent storage equipment of the present invention:
1) speech recognition, image recognition, fingerprint recognition together constitute many plus modules such as hardware encryptionsThe safe ciphering unit of weight is to realize the high in the clouds of the present invention and local secure storage data and the method for file
2) wifi module, keeps contacting with extraneous WLAN wlan.
3) Double Data Rate synchronous DRAM DDR3 and FLASH module composition system storage partPoint.
4) master control IC, is responsible for being encrypted the data received or file, storing and WIFI access.
Master control IC in local security intelligent storage equipment of the present invention controls wifi and intelligent terminal's (handsMachine or panel computer) connect, APP on intelligent terminal's (mobile phone or panel computer) controls to access,The operation such as backup and download.The scanning record fingerprint being identified by fingerprint identification module of fingerprint, master controlIC identifies that fingerprint is correct, then can be written and read the storage data in flash module, master control ICThe DDR3 by two-forty is needed data are processed when.For the storage data master control write intoIC carries out AES encryption.These concrete processing methods can be realized by prior art, does not repeats.
Preferred embodiment of the present invention is to use fingerprint recognition (embodiment as shown in Figure 2), and fingerprint hasThe advantage that following two is prominent: stability and uniqueness.Fingerprint has the strongest relative stability, andThe most also can not find two identical people of fingerprint.The reliability of its encryption and checking is better than itHis mode (such as pin mode).
First the sample of input fingerprint can be compared by the present invention with employing fingerprint identification module, according toThe minutiae point number of coupling determines that it is the most consistent with fingerprint registered in advance.
The various embodiments described above can be in the most some changes, therefore above sayingBright comprised should be regarded as exemplary, and be not used to limit the present patent application patent protection domain.