基于ARM9的安全保密U盘的实现
摘要
随着USB技术和闪存技术的飞速发展,一种结合这两种新技术的产品——U盘应运而生。它采用闪存存储介质(Flash Memory)和通用串行总线(USB)接口,可用于存储任何数据文件和在电脑间方便地交换文件,U盘的存储容量大,存储速度快,为软盘的20多倍,工作时不需要物理驱动器,也不需要外接电源,可热插拔,轻巧精致,携带使用简单方便。同时在Windows Me/2000/XP, Mac OS 9. x/Mac OS X/Linux2.4x等操作系统中已经预置了U盘驱动。
然而随着U盘的应用越来越广泛,由此带来的资料泄密时有发生。由此本文提出指纹识别的安全U盘以及配套windows平台软件的研发。其中U盘要求,使用前进行指纹识别认证,只有通过了指纹认证才能看到真正U盘的数据,否则是无法操作U盘的。同时在对U盘进行读写操作时,U盘内部要对数据进行AES-128加解密操作以进一步保证数据的安全。配套windows平台软件主要提供用户完成操作的良好人机界面以及通知U盘进入指纹识别状态。这样最大程度的保障了资料的安全性。
根据设计要求,本系统采用OKI公司的ML69Q6203为主控芯片,该芯片集成USB2.0控制器和512k的片内存储空间;采用AuthenTec的AES2510作为指纹识别模块,该指纹模块是基于Trueprint技术的新一代擦刮式指纹传感器,能够深入真皮层进行指纹识别,可探测到放在上面的是真的手指还是假的或死的手指。闪存芯片采用三星公司的K9F5608U0A芯片,该芯片具有32Mb容量,读写速度块,数据保存时间长,使用寿命长的优点。本文在深入研究USB2.0协议,USB大容量存储协议特别是其中的BULK ONLY传输协议和UFI协议的基础上,完成了整个系统的开发,基本达到设计要求,同时重点讨论了其中U盘固件程序的具体实现。解决了如何使U盘在连入系统后,识别为一个只读光驱和一个磁盘分区的问题,以及如何在没通过指纹识别的情况下,不允许系统对磁盘分区的访问等问题。
限于时间和精力,本课题还有需要进一步优化的地方,如windows配套应用程序拓展功能的开发,U盘数据传输性能的进一步优化。
With the rapidly developing of USB technology and flash memory technology, a kind of product named usb flash disk comes out, which is based on the two technologies. It can storage any data file and transport them between computers. It has mass storage capability, fast write/read speed and need no extern power supply during work, hot-plugging, legerity, easy to use. Some operation system such as Windows Me/2000/XP, Mac OS 9.x/Mac OS X/Linux2.4x etc. already have driver for it. So it can be used in these operation systems without installing new drivers.
With usb flash disk is used more and more widely,it also cause security problem. So we develop a new security usb flash disk system and windows program for it. Every time we use this usb flash disk, we have to verify our finger print first. Only when we pass the verification, the security usb flash disk can be used. And when we read/write on the disk, the firmware will decrypt/encrypt the data using AES-128 arithmetic. The windows program provides user a good HMI and notifies firmware for finger print verification. During these operations, the security of usb flash disk can be guaranteed.
According the purpose of design, our system uses OKI-ML69Q6203 as main control chipset. This chipset is based on ARM946E, integrates a USB2.0 chipset, has a 512k flash in it; use AuthenTec's AES2510 as finger verification chipset. This chipset is base on the“Trueprint”technology and can direct scan finger's corium layer. So it can sense the finger putting on it is true or fake. Our flash chipset uses Samsung's K9F5608U0A. It has 32 Mb capacities, fast write/read speed, long life for using. This article deeply research USB2.0 protocol, USB MASS STORAGE protocol especially BULK ONLY transport protocol and UFI protocol and introduce how to develop such finger print usb flash disk. It discuss how to make a usb flash disk to be considered as a cd-rom and a disk by operation system and prevent usb flash disk from operating by systerm without passing finger print verification.
Be limited by time and energy, the design no finish perfectly and some parts of it need mort thorough research, such as, adding more function of windows program, increasing data transport speed of usb flash disk etc.
然而随着U盘的应用越来越广泛,由此带来的资料泄密时有发生。由此本文提出指纹识别的安全U盘以及配套windows平台软件的研发。其中U盘要求,使用前进行指纹识别认证,只有通过了指纹认证才能看到真正U盘的数据,否则是无法操作U盘的。同时在对U盘进行读写操作时,U盘内部要对数据进行AES-128加解密操作以进一步保证数据的安全。配套windows平台软件主要提供用户完成操作的良好人机界面以及通知U盘进入指纹识别状态。这样最大程度的保障了资料的安全性。
根据设计要求,本系统采用OKI公司的ML69Q6203为主控芯片,该芯片集成USB2.0控制器和512k的片内存储空间;采用AuthenTec的AES2510作为指纹识别模块,该指纹模块是基于Trueprint技术的新一代擦刮式指纹传感器,能够深入真皮层进行指纹识别,可探测到放在上面的是真的手指还是假的或死的手指。闪存芯片采用三星公司的K9F5608U0A芯片,该芯片具有32Mb容量,读写速度块,数据保存时间长,使用寿命长的优点。本文在深入研究USB2.0协议,USB大容量存储协议特别是其中的BULK ONLY传输协议和UFI协议的基础上,完成了整个系统的开发,基本达到设计要求,同时重点讨论了其中U盘固件程序的具体实现。解决了如何使U盘在连入系统后,识别为一个只读光驱和一个磁盘分区的问题,以及如何在没通过指纹识别的情况下,不允许系统对磁盘分区的访问等问题。
限于时间和精力,本课题还有需要进一步优化的地方,如windows配套应用程序拓展功能的开发,U盘数据传输性能的进一步优化。
With the rapidly developing of USB technology and flash memory technology, a kind of product named usb flash disk comes out, which is based on the two technologies. It can storage any data file and transport them between computers. It has mass storage capability, fast write/read speed and need no extern power supply during work, hot-plugging, legerity, easy to use. Some operation system such as Windows Me/2000/XP, Mac OS 9.x/Mac OS X/Linux2.4x etc. already have driver for it. So it can be used in these operation systems without installing new drivers.
With usb flash disk is used more and more widely,it also cause security problem. So we develop a new security usb flash disk system and windows program for it. Every time we use this usb flash disk, we have to verify our finger print first. Only when we pass the verification, the security usb flash disk can be used. And when we read/write on the disk, the firmware will decrypt/encrypt the data using AES-128 arithmetic. The windows program provides user a good HMI and notifies firmware for finger print verification. During these operations, the security of usb flash disk can be guaranteed.
According the purpose of design, our system uses OKI-ML69Q6203 as main control chipset. This chipset is based on ARM946E, integrates a USB2.0 chipset, has a 512k flash in it; use AuthenTec's AES2510 as finger verification chipset. This chipset is base on the“Trueprint”technology and can direct scan finger's corium layer. So it can sense the finger putting on it is true or fake. Our flash chipset uses Samsung's K9F5608U0A. It has 32 Mb capacities, fast write/read speed, long life for using. This article deeply research USB2.0 protocol, USB MASS STORAGE protocol especially BULK ONLY transport protocol and UFI protocol and introduce how to develop such finger print usb flash disk. It discuss how to make a usb flash disk to be considered as a cd-rom and a disk by operation system and prevent usb flash disk from operating by systerm without passing finger print verification.
Be limited by time and energy, the design no finish perfectly and some parts of it need mort thorough research, such as, adding more function of windows program, increasing data transport speed of usb flash disk etc.
引文
[1] Universal Serial Bus Specification Reversion1.1. http://www.usb.org, 1998
[2] Universal Serial Bus Specification Reversion2.0. http://www.usb.org, 2000
[3]严家喜.指纹采集系统中的USB接口的软硬件设计.西北工业大学, 2005
[4] Wooi Ming Tan. Developing USB PC Peripherals. Annabooks, 1997
[5] USB in a Nutshell. http://www.beyondlogic.org
[6] Ankeer Communication Technology Co.Ltd. USB技术应用介绍. http://www.ankeer.com, 2001. 10
[7] Don Anderson. USB System Architecture. ADDISON-WESLEY DEVELOPER’S PRES, 2001, 167-241
[8]萧世文. USB2.0硬件设计.北京,清华大学出版社, 2002
[9]姚成虎. USB协议浅析和USB设备设计简介.微型机与应用, 2004年09期
[10] Jan Axelson. USB Complete 3rd. Independent Publishers Group, 2005, 94-98
[11] John Hyde. Usb Design by example. Intel University Press, 1999, 43-66
[12] Universal Serial Bus Mass Storage Class Specification Overview. http://www.usb.org, 1999
[13] USB Mass Storage Class Control/Bulk/Interrupt ( CBI ) Transport Reversionl.0. http://www.usb.org, 1999
[14] USBMass Storage Class Bulk-Only Transport Reversionl.0. http://www.usb.org, 1999
[15] USB Mass Storage Class UFI Command Specification Reversion1.0. http://www.usb.org, 1999
[16] Jan Axelson. USB Mass Storage Designing and Programming Devices and Embedded Hosts. Independent Publishers Group, 2006, 79-91
[17]王成儒李英伟. USB 2.0原理与工程开发.北京国防工业出版社, 2004.1
[18]肖踞雄翁铁成宋中庆. USB技术及应用设计,清华大学出版社, 2003.11
[19]刘建存廖峰等. USB接口技术.国防工业出版社, 2004.6
[20]边海龙贾少华. USB2.0设备的设计与开发.人民邮电出版社, 2004.1
[21] ARM公司. ARM公司背景资料.2001, http://www.arm.com/chinese
[22]马忠梅等编著. ARM嵌入式处理器结构与应用基础.北京航空航天大学出版社, 2002.1
[23]杜春雷. ARM体系结构与编程.北京,清华大学出版社, 2003
[24] Andrew. Sloss, Dominic Symes, Chris Wright. ARM System Developer’s Guide:Design andOptimizing System Software.北京航空航天大学出版社, 2005.
[25] steveFurbu著,田泽等译, ARM Soc体系结构,北京航空航天大学出版社, 2002.10
[26] David Seal. ARM architecture Refrence Manual 2nd. Addison Wesley
[27] ML696201/69Q6203 Series Design Tips, http://www.oki.com
[28] ML69Q6203 CPU Board Quick Start Guide, http://www.oki.com
[29]佟雨兵张其善. USB型指纹采集仪的设计与实现.光电技术应用, 2004年第1期
[30]指纹取像的几种技术和特点. http://www.xmqs-tech.com/
[31] Fraser AES2510 Processor Interface and Hardware Integration, http://www.authentec.com
[32] SAMSUNG ELECTRONICS. APPLICATION NOTE for NAND Flash Memory, 1999.12.
[33] Sumsung Electronics.K9F5608U0A-YCB0 32M x 8 Bit NAND Flash Memory.2000
[34]古道热肠. Bus Hound 5.0使用说明书, http://www.21ic.com
[35] BusHound代码分析. http://bbs.driverdevelop.com/read.php?tid-73379-keyword-bushound.html
[36]北航frank. USB项目技术报告. 2002.12
[37]周立功等. PDIUSBDI2 USB固件编程与驱动开发.北京航空航天大学出版社, 2003
[38]孙庚蒋国强. USB块传输设备的设计与实现.计算机工程, 2003. 6
[39] 3011_EntrePad2510_Glossy_LR, http://www.authentec.com
[40] Embedded Integrator's Guide. http://www.authentec.com
[41] Embedded Programmer's Guide. http://www.authentec.com
[42] Interfacing the AuthenTec Fingerprint Sensor to the ML696201/69Q6203 Series. http://www.oki.com
[43] (美)Chris Cant著孙义、马莉波等译. Windows WDM设备驱动程序开发指南.机械工业出版社, 2000.10
[44] Art Baker Jerry Lozano(美). Windows2000设备驱动程序设计指南.机械工业出版社, 2001
[45]陈启美丁传锁.计算机USB接口技术,南京大学出版社, 2003.1, 286-294
[46]陈升来郭立红谭振江. Win2000下USB数据采集系统驱动程序开发.吉林大学学报, 2003年第2期
[47]王建国. PCI设备WDM驱动程序的设计.雷达与对抗, 2001年第4期
[48]陈曙东. USB移动硬盘驱动系统设计与开发.西南交通大学硕士学位论文, 2002.6
[49]王志强. USB设备驱动程序开发技术研究.微计算机信息, 2006年02期
[50]刘新峰王友仁. USB接口通讯系统应用开发.计算机测量与控制, 2003年第11期
[51] Windows 2000 DDK DOCUMENT,http://www.microsoft.com/ddk
[2] Universal Serial Bus Specification Reversion2.0. http://www.usb.org, 2000
[3]严家喜.指纹采集系统中的USB接口的软硬件设计.西北工业大学, 2005
[4] Wooi Ming Tan. Developing USB PC Peripherals. Annabooks, 1997
[5] USB in a Nutshell. http://www.beyondlogic.org
[6] Ankeer Communication Technology Co.Ltd. USB技术应用介绍. http://www.ankeer.com, 2001. 10
[7] Don Anderson. USB System Architecture. ADDISON-WESLEY DEVELOPER’S PRES, 2001, 167-241
[8]萧世文. USB2.0硬件设计.北京,清华大学出版社, 2002
[9]姚成虎. USB协议浅析和USB设备设计简介.微型机与应用, 2004年09期
[10] Jan Axelson. USB Complete 3rd. Independent Publishers Group, 2005, 94-98
[11] John Hyde. Usb Design by example. Intel University Press, 1999, 43-66
[12] Universal Serial Bus Mass Storage Class Specification Overview. http://www.usb.org, 1999
[13] USB Mass Storage Class Control/Bulk/Interrupt ( CBI ) Transport Reversionl.0. http://www.usb.org, 1999
[14] USBMass Storage Class Bulk-Only Transport Reversionl.0. http://www.usb.org, 1999
[15] USB Mass Storage Class UFI Command Specification Reversion1.0. http://www.usb.org, 1999
[16] Jan Axelson. USB Mass Storage Designing and Programming Devices and Embedded Hosts. Independent Publishers Group, 2006, 79-91
[17]王成儒李英伟. USB 2.0原理与工程开发.北京国防工业出版社, 2004.1
[18]肖踞雄翁铁成宋中庆. USB技术及应用设计,清华大学出版社, 2003.11
[19]刘建存廖峰等. USB接口技术.国防工业出版社, 2004.6
[20]边海龙贾少华. USB2.0设备的设计与开发.人民邮电出版社, 2004.1
[21] ARM公司. ARM公司背景资料.2001, http://www.arm.com/chinese
[22]马忠梅等编著. ARM嵌入式处理器结构与应用基础.北京航空航天大学出版社, 2002.1
[23]杜春雷. ARM体系结构与编程.北京,清华大学出版社, 2003
[24] Andrew. Sloss, Dominic Symes, Chris Wright. ARM System Developer’s Guide:Design andOptimizing System Software.北京航空航天大学出版社, 2005.
[25] steveFurbu著,田泽等译, ARM Soc体系结构,北京航空航天大学出版社, 2002.10
[26] David Seal. ARM architecture Refrence Manual 2nd. Addison Wesley
[27] ML696201/69Q6203 Series Design Tips, http://www.oki.com
[28] ML69Q6203 CPU Board Quick Start Guide, http://www.oki.com
[29]佟雨兵张其善. USB型指纹采集仪的设计与实现.光电技术应用, 2004年第1期
[30]指纹取像的几种技术和特点. http://www.xmqs-tech.com/
[31] Fraser AES2510 Processor Interface and Hardware Integration, http://www.authentec.com
[32] SAMSUNG ELECTRONICS. APPLICATION NOTE for NAND Flash Memory, 1999.12.
[33] Sumsung Electronics.K9F5608U0A-YCB0 32M x 8 Bit NAND Flash Memory.2000
[34]古道热肠. Bus Hound 5.0使用说明书, http://www.21ic.com
[35] BusHound代码分析. http://bbs.driverdevelop.com/read.php?tid-73379-keyword-bushound.html
[36]北航frank. USB项目技术报告. 2002.12
[37]周立功等. PDIUSBDI2 USB固件编程与驱动开发.北京航空航天大学出版社, 2003
[38]孙庚蒋国强. USB块传输设备的设计与实现.计算机工程, 2003. 6
[39] 3011_EntrePad2510_Glossy_LR, http://www.authentec.com
[40] Embedded Integrator's Guide. http://www.authentec.com
[41] Embedded Programmer's Guide. http://www.authentec.com
[42] Interfacing the AuthenTec Fingerprint Sensor to the ML696201/69Q6203 Series. http://www.oki.com
[43] (美)Chris Cant著孙义、马莉波等译. Windows WDM设备驱动程序开发指南.机械工业出版社, 2000.10
[44] Art Baker Jerry Lozano(美). Windows2000设备驱动程序设计指南.机械工业出版社, 2001
[45]陈启美丁传锁.计算机USB接口技术,南京大学出版社, 2003.1, 286-294
[46]陈升来郭立红谭振江. Win2000下USB数据采集系统驱动程序开发.吉林大学学报, 2003年第2期
[47]王建国. PCI设备WDM驱动程序的设计.雷达与对抗, 2001年第4期
[48]陈曙东. USB移动硬盘驱动系统设计与开发.西南交通大学硕士学位论文, 2002.6
[49]王志强. USB设备驱动程序开发技术研究.微计算机信息, 2006年02期
[50]刘新峰王友仁. USB接口通讯系统应用开发.计算机测量与控制, 2003年第11期
[51] Windows 2000 DDK DOCUMENT,http://www.microsoft.com/ddk