摘要
针对特殊领域对大容量移动存储设备安全性的特殊要求,本文在SSX20-D安全芯片的基础上设计了存储数据安全保护、U盘密钥参数保护和U盘使用控制管理三层次的安全模型.采用了数据加密、U盘参数保护、加密密钥保护、口令硬件使用控制、U盘抗攻击等安全机制,将KEY的安全性拓展到大容量存储芯片中.特别是针对密钥参数保护这一安全薄弱环节设计了三级密钥保护方式,综合运用SM1算法、SHA-256算法和自定义函数确保密钥绝对安全.
Aiming at the special requriement of the mobile hing-capacity storage device's safety in the special field,based on SSX20-D security chip, we designed the security model with three levels: data storage security protection, usb flash disk key parameter protection and usb flash disk using management. The security chip uses many security mechanisms, including data encryption, usb flash disk parameter protection, encryption key protection,password-hardware using control, and the usb flash disk anti-attack ability. The mechanism expended the Key's safety to the hing-capacity storage chip. Especially it designed three-level key-protection method which can solve the safety weakness of the key parameter protection. We are using SM1, SHA-256 and self-defined function to make sure absolute security of the key.
出处
《计算机系统应用》
2014年第12期237-240,共4页
Computer Systems & Applications
基金
山东省科技支撑计划基金(2013GZ0017)
