移动存储设备的硬件加密系统
摘要
随着计算机网络和通信技术的发展,信息安全已经成为一个国家信息技术水平的一个重要标志,各国投入大量的人力、物力、财力打造信息安全,个人和普通公司、企业对安全的需求也日益迫切。密码技术作为信息安全的核心,也越来越受到人们的普遍重视,成为一个热门的课题。
密码产品应该自主研制和生产,是每一届政府和密码学界的共识,也是信息安全的根本。本论文结合硬件加密和软件加密的特点,设计了一个基于DSP芯片的移动存储设备的硬件加密系统。为普通用户提供了一种通用的安全性较好、性能较高的加解密解决方案。
本课题设计的加密系统在PC机与U盘之间加入一个嵌入式系统,密钥存放在智能卡上,根据其中的密钥在预置的硬件加解密算法控制下,写盘时,实现数据加密;读盘时,实现数据解密。在算法的选择上,采用对称加密DES算法,为了得到更高的保密性,设计了三重DES算法,3-DES是DES的一个更安全的变形。为了获得更高的安全性,密钥是不相同的。这样,本质上就相当于用一个长为168位的密钥进行加密。在硬件架构中,选用计算和控制能力都比较出色的TMS320VC54X DSP作为主处理器,CH375芯片作为与USB接口通信的主控芯片,较好的完成了通信和加密的功能。在密钥处理中,随机序列发生器产生随机密钥,在IC卡初始化时存入,通过读卡电路读取,作为打开加密平台的钥匙。
The development of computer networks and communication technology has raised the requirement for information security. The advance of information security reflects a country's level in information technology. A significant amount of resources and money have been invested in information security worldwide. The demand for information security by individuals, companies and enterprises is increasing. Cryptologic technology, the core of the information security, has attracted a great deal of attention and it be comes a research area of interest.
It has been widely accepted by each government and cryptologic experts that cryptologic product is the foundation of the information security and should be developed and manufactured by individual organization. This paper details the design of a hardware encryption system of Mobile storage devices based on DSP chip. The design provided a cryptologic solution with safer and higher protection level for the customer.
This project added a embedded systems between the PC and the U-. The Keywords are storaged in the IC card. are prearranged m the outer raaio chip. According to the given Keywords, data encryption is carried out while writing disk, and data decryption is carried out while reading disk, under the preset algorithm of hardware encryption/decryption. In this article, it was adopt symmetric encryption DES (data encryption standard) algorithm, To achieve higher security, developed triple DES algorithm,3-DES is an upgrading of DES. To achieve higher safety, three keywords are set different from each other. Thus, in fact it equals encrypting with a 168-bit keyword. In hardware framework, adopted the TMS320VC54X DSP which is excellent in the calculating and controlling area as the main processor,CH375 as the control chip communicating with the USB interface, finished the communications and the encryption successfully. In dealing with the keyword,the Random Number Generators produced the Keywords,storaged in the IC card when initializtion,read through the card read circuit,as the key unclosed the encryption flat roof.
密码产品应该自主研制和生产,是每一届政府和密码学界的共识,也是信息安全的根本。本论文结合硬件加密和软件加密的特点,设计了一个基于DSP芯片的移动存储设备的硬件加密系统。为普通用户提供了一种通用的安全性较好、性能较高的加解密解决方案。
本课题设计的加密系统在PC机与U盘之间加入一个嵌入式系统,密钥存放在智能卡上,根据其中的密钥在预置的硬件加解密算法控制下,写盘时,实现数据加密;读盘时,实现数据解密。在算法的选择上,采用对称加密DES算法,为了得到更高的保密性,设计了三重DES算法,3-DES是DES的一个更安全的变形。为了获得更高的安全性,密钥是不相同的。这样,本质上就相当于用一个长为168位的密钥进行加密。在硬件架构中,选用计算和控制能力都比较出色的TMS320VC54X DSP作为主处理器,CH375芯片作为与USB接口通信的主控芯片,较好的完成了通信和加密的功能。在密钥处理中,随机序列发生器产生随机密钥,在IC卡初始化时存入,通过读卡电路读取,作为打开加密平台的钥匙。
The development of computer networks and communication technology has raised the requirement for information security. The advance of information security reflects a country's level in information technology. A significant amount of resources and money have been invested in information security worldwide. The demand for information security by individuals, companies and enterprises is increasing. Cryptologic technology, the core of the information security, has attracted a great deal of attention and it be comes a research area of interest.
It has been widely accepted by each government and cryptologic experts that cryptologic product is the foundation of the information security and should be developed and manufactured by individual organization. This paper details the design of a hardware encryption system of Mobile storage devices based on DSP chip. The design provided a cryptologic solution with safer and higher protection level for the customer.
This project added a embedded systems between the PC and the U-. The Keywords are storaged in the IC card. are prearranged m the outer raaio chip. According to the given Keywords, data encryption is carried out while writing disk, and data decryption is carried out while reading disk, under the preset algorithm of hardware encryption/decryption. In this article, it was adopt symmetric encryption DES (data encryption standard) algorithm, To achieve higher security, developed triple DES algorithm,3-DES is an upgrading of DES. To achieve higher safety, three keywords are set different from each other. Thus, in fact it equals encrypting with a 168-bit keyword. In hardware framework, adopted the TMS320VC54X DSP which is excellent in the calculating and controlling area as the main processor,CH375 as the control chip communicating with the USB interface, finished the communications and the encryption successfully. In dealing with the keyword,the Random Number Generators produced the Keywords,storaged in the IC card when initializtion,read through the card read circuit,as the key unclosed the encryption flat roof.
引文
[1]冯登国,国内外信息安全研究现状及其发展趋势,网络安全技术与用,2001.NO.1
[2](美)Charles P.Pfleeger、Shari Lawrence Pfleeger著,李毅超、蔡洪斌、谭浩等译,信息安全原理与应用,电子工业出版社,2004年7月.
[3]冯登国、裴定一,密码学导引,科学出版社,1999年4月.
[4]National Instituteof Standardand Technology,Data Encryption Standard(DES)Reaffirmed、Federal Information Processing Standards,Publication 46-3(FIPS PUB 46-3),1999.
[5]彭德明,DES数据加密标准算法的程序设计,物探化探计算技术,1992年第14卷,第1-4期.
[6]张清华、邓亚平,基于一种DES算法改进体制的研究,计算机应用与软件,2003年第20卷第8期.
[7]V.Pasham and S.Trimberger,High-Speed DES and Triple DES EncryptorlDecryptor,Xilinx Inc.,2001.
[8]张雄伟、曹铁勇,DSP芯片的原理与开发应用,电子工业出版社,2000,9:1-304.
[9]郑红、吴冠,TMS320C54xdsp应用系统设计,北京航空航天大学出版社,2002,5:1-168.
[10]戴明祯、周建江,TMS320c54xDSP结构、原理及应用,北京航空航天大学出版社,2001年11月.
[11]李刚,数字信号处理器的原理及其开发应用,天津大学出版社,2000,1:15-50.
[12]北京瑞泰创新科技有限责任公司,ICETEK-S IOOPP和ICETEK-S 100USB系列通用DSP开发系统使用说明书,北京瑞泰创新科技有限责任公司,2002:1-2.
[13]彭启琮、管庆等,DSP集成开发环境-CCS及DSP/BIOS的原理与应用,电子工业出版社,2004.6:1-10.
[14]肖踞雄、翁铁成、宋中庆,USB技术及应用设计,清华大学出版社,2003:1-10.
[15]张弘,USB接口设计,西安电子科技大学出版,2004:1-2.
[16]On-The-Go Supplement to the USB2.0 Specification,www.usb.org,2001.
[17]宁波,数据采集与处理系统的USB接口技术研究,机械设计及理论,2004,3:1-5.
[18]张志远,一种USB延长器的研究与设计,密码学,2004.3:1-5.
[19]王云飞,USB系统研究,清华大学硕士论文,2001,5:90-92.
[20]赵志勇、侯继光、浦晓波,USB2.0通信接口设计,网络信息技术,2002,4(3):56-57.
[21]马伟,计算机USB系统原理及其主/从机设计,北京航大航空大学出版社,2004,第一版:1-100.
[22]杨晶晶,嵌入式系统中USB设备驱动的研究与实现,成都电子科技大学硕士学位论文,2006:1-26.
[23]USB(Universal Serial Bus)Specification 1.1[M],www.usb.org.com,1998.
[24]Universal Serial Bus Mass Storage Class-Specification Overview Revisionl.1.USB Implementers Forum,2000.
[25]SwansonMD,Kobanyshi AH.Multimedia data embedding and watermarking techniques[J],Proc.IEEE 1998(8):1064-1087.
[26]Universal Serial Bus Specification2.0,www.usb.org.com,September 1999.
[27]Universal Serial Bus Mass Storage Class-Specification Revisio2.0,Compaq Hewlett-Packard Intel Lucent Microsoft NEC Philips,2000.
[28]Compaq、Microsoft、National Semiconductor,Open Host Controller Interface Specification for USB[M],1999.
[29]Intel,Enhanced Host Controller Interface Specification for USB[M],2001.
[30]陈曙东,USB移动硬盘驱动系统设计与开发,计算机应用,2002.6:22-27.
[31]吕琳,闪存盘结构分析及其扩展功能应用研究,计算机应用技术,2004,3:30-35.
[32]廖里,USB移动存储器备份工具的设计与实现,电脑开发应用,2005.
[33]李肇庆、韩涛,串行端口技术,国防工业出版社,2004.1.
[34]TI公司TMS320VC5409芯片使用手册,Ti公司,2004:11-15.
[2](美)Charles P.Pfleeger、Shari Lawrence Pfleeger著,李毅超、蔡洪斌、谭浩等译,信息安全原理与应用,电子工业出版社,2004年7月.
[3]冯登国、裴定一,密码学导引,科学出版社,1999年4月.
[4]National Instituteof Standardand Technology,Data Encryption Standard(DES)Reaffirmed、Federal Information Processing Standards,Publication 46-3(FIPS PUB 46-3),1999.
[5]彭德明,DES数据加密标准算法的程序设计,物探化探计算技术,1992年第14卷,第1-4期.
[6]张清华、邓亚平,基于一种DES算法改进体制的研究,计算机应用与软件,2003年第20卷第8期.
[7]V.Pasham and S.Trimberger,High-Speed DES and Triple DES EncryptorlDecryptor,Xilinx Inc.,2001.
[8]张雄伟、曹铁勇,DSP芯片的原理与开发应用,电子工业出版社,2000,9:1-304.
[9]郑红、吴冠,TMS320C54xdsp应用系统设计,北京航空航天大学出版社,2002,5:1-168.
[10]戴明祯、周建江,TMS320c54xDSP结构、原理及应用,北京航空航天大学出版社,2001年11月.
[11]李刚,数字信号处理器的原理及其开发应用,天津大学出版社,2000,1:15-50.
[12]北京瑞泰创新科技有限责任公司,ICETEK-S IOOPP和ICETEK-S 100USB系列通用DSP开发系统使用说明书,北京瑞泰创新科技有限责任公司,2002:1-2.
[13]彭启琮、管庆等,DSP集成开发环境-CCS及DSP/BIOS的原理与应用,电子工业出版社,2004.6:1-10.
[14]肖踞雄、翁铁成、宋中庆,USB技术及应用设计,清华大学出版社,2003:1-10.
[15]张弘,USB接口设计,西安电子科技大学出版,2004:1-2.
[16]On-The-Go Supplement to the USB2.0 Specification,www.usb.org,2001.
[17]宁波,数据采集与处理系统的USB接口技术研究,机械设计及理论,2004,3:1-5.
[18]张志远,一种USB延长器的研究与设计,密码学,2004.3:1-5.
[19]王云飞,USB系统研究,清华大学硕士论文,2001,5:90-92.
[20]赵志勇、侯继光、浦晓波,USB2.0通信接口设计,网络信息技术,2002,4(3):56-57.
[21]马伟,计算机USB系统原理及其主/从机设计,北京航大航空大学出版社,2004,第一版:1-100.
[22]杨晶晶,嵌入式系统中USB设备驱动的研究与实现,成都电子科技大学硕士学位论文,2006:1-26.
[23]USB(Universal Serial Bus)Specification 1.1[M],www.usb.org.com,1998.
[24]Universal Serial Bus Mass Storage Class-Specification Overview Revisionl.1.USB Implementers Forum,2000.
[25]SwansonMD,Kobanyshi AH.Multimedia data embedding and watermarking techniques[J],Proc.IEEE 1998(8):1064-1087.
[26]Universal Serial Bus Specification2.0,www.usb.org.com,September 1999.
[27]Universal Serial Bus Mass Storage Class-Specification Revisio2.0,Compaq Hewlett-Packard Intel Lucent Microsoft NEC Philips,2000.
[28]Compaq、Microsoft、National Semiconductor,Open Host Controller Interface Specification for USB[M],1999.
[29]Intel,Enhanced Host Controller Interface Specification for USB[M],2001.
[30]陈曙东,USB移动硬盘驱动系统设计与开发,计算机应用,2002.6:22-27.
[31]吕琳,闪存盘结构分析及其扩展功能应用研究,计算机应用技术,2004,3:30-35.
[32]廖里,USB移动存储器备份工具的设计与实现,电脑开发应用,2005.
[33]李肇庆、韩涛,串行端口技术,国防工业出版社,2004.1.
[34]TI公司TMS320VC5409芯片使用手册,Ti公司,2004:11-15.