JP2004206660A - Detachable device, control circuit, firmware program of control circuit, information processing method in control circuit and circuit design pattern - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a detachable device which is compact and can automatically install a program. <P>SOLUTION: The detachable device is provided with a male connector 15, a control part 30 as a control means and a flash memory 40 as a main storage device. The device is provided with a USB port 25 (female connector) for connecting other peripherals (a digital camera 5 here). In addition, the control part 30 is provided with a function (Hub division function) for allocating data transfer with the computer side to the respective unit devices by defining the whole or a part of the flash memory 40 as a first unit device and defining other peripherals as a second unit device and a function (recognition control function) for transmitting a signal simulating a CD-ROM to a computer 1 about the first unit device first and for transmitting a prescribed signal for receiving recognition about the digital camera 5 to the computer at prescribed timing after that when the digital camera 5 is connected with the USB port. <P>COPYRIGHT: (C)2004,JPO&NCIPI

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
TECHNICAL FIELD The present invention relates to a detachable device excellent in usability and security.
[0002]
[Prior art]
2. Description of the Related Art In recent years, with the spread of semiconductor technology and the Internet, various computers such as personal computers (PCs) have been spread, and connection methods of peripheral devices have also been diversified. As a result, a general-purpose peripheral device interface that can be applied to any type of personal computer is required, and a USB (Universal Serial Bus) interface has been proposed as an example of a specific standard. In addition, with the reduction in size and weight of various computers and the expansion of portable (mobile) applications, removable external storage devices are also required. One of them is a USB memory, which is a device that can be easily connected to a personal computer through the USB interface. It is becoming popular (see, for example, Patent Document 1).
[0003]
The USB memory has various storage capacities such as 32 MB and 64 MB. Specifically, the USB memory is a detachable device having a flash memory element therein and about the size of a human thumb, and is provided at one end. When a connector is connected to a USB port (connection port) of a personal computer or the like, the device is recognized as a removable (detachable) disk drive or the like and can be accessed for reading and writing.
[0004]
In particular, with the spread of the Internet today, there are more opportunities to borrow and use computers different from the ones I usually use on the road, such as lending time in the city such as Internet cafes, workplaces, business partners, family, friends, I often send and receive my own e-mails on other people's personal computers, such as acquaintances.
[0005]
Such personal computers on the go usually do not have their own mail data and account information, and the type and version of mailers (e-mail software) are not always the same as those they use. Furthermore, it is conceivable to send and receive e-mails by setting your account information on such another person's computer, but in this case privacy problems will occur due to forgetting to erase such account information and sent / received e-mail data I do. Therefore, it has been devised that such account information, mailer, data of transmitted / received mail, etc. are recorded in a USB memory and carried.
[0006]
In other words, not only data but also software such as mailers and shortcuts to software can be placed in the USB memory. Using the USB memory, in addition to saving and browsing data, starting such software is also necessary. Can be.
[0007]
In recent years, in addition to peripheral devices such as an external storage device unique to the personal computer, various devices such as a digital camera can be connected to the personal computer, and various types of data are exchanged with the personal computer.
[0008]
When connecting a new peripheral device to a personal computer, it is often necessary to install a dedicated program such as a device driver or support software. Conventionally, such a program is provided to a user by a storage medium such as a CD-ROM or a flexible disk. Had been provided. There has also been a proposal to download such a program from a network (see Patent Document 2).
[0009]
[Patent Document 1]
JP-A-2002-41247
[Patent Document 2]
JP-A-2002-288110
[0010]
[Problems to be solved by the invention]
However, in order to use the target data and software stored in the USB memory, it is troublesome to perform operations until the user arrives at the data or software. In particular, the more frequently the USB memory is used, the more the complexity increases. .
[0011]
For example, to use the data in the USB memory, the user not only inserts the USB memory into the personal computer, but also selects “My Computer” → “Removable Disk” → “Objective” on the OS (Operating System; basic software) screen. A correspondingly complicated procedure, such as an operation of following options in order as in "operation" or executing by designating a file name using a keyboard, is required.
[0012]
In addition, if misplaced or stolen, the stored user data may be unexpectedly viewed by others, which raises security concerns.
[0013]
In addition, when installing a dedicated program from a storage medium, it is troublesome to attach / detach it to / from a personal computer, and it also takes up space for bundling with a product. was there. Further, depending on the type of the storage medium, it is necessary to repeat the selection of several layers before reaching the target file, and there is a problem that the operation is complicated. Further, there is a problem that downloading from a network cannot be used without a network connection.
[0014]
SUMMARY OF THE INVENTION The present invention has been proposed to solve the above-mentioned problems of the related art, and an object of the present invention is to provide a detachable device having excellent usability and security. Another object of the present invention is to realize particularly excellent information security in a removable device in USB and related technologies. It is another object of the present invention to provide a highly versatile control circuit for the present invention. Another object of the present invention is to provide a removable device in USB and a related technology which can be used in many OSs without a special device driver.
[0015]
It is another object of the present invention to provide a removable device that is compact and automatically installs a program. Another object of the present invention is to make it possible to simplify the system configuration and improve the response speed after installing a program such as a device driver of an externally connected device.
[0016]
[Means for Solving the Problems]
To achieve the above object, an invention according to claim 1 is a general-purpose peripheral device for a computer that executes a predetermined automatic start script or an automatic start program stored in a predetermined type of device when the device is connected. An attachable / detachable device having a control unit and a ROM or a readable / writable storage device as a main storage device, the control unit including a first unit device and a second unit device. A plurality of unit devices, a hub means for allocating data transfer between the computer side to each of the unit devices, and when connected to the general-purpose peripheral device interface, first, the first unit device is connected to the predetermined unit device. A signal simulating the type of equipment is sent to the computer, and at a predetermined timing thereafter, recognition of the second unit device is performed. A predetermined signal for kicking characterized by comprising a means for sending to said computer.
[0017]
The invention of claim 18 captures the invention of claim 1 from the viewpoint of a computer program, and when a predetermined type of device is connected, a predetermined automatic start script or automatic start program stored in the device. A firmware program for a control circuit of a detachable device including a control unit and a ROM or a readable and writable storage device as a main storage device, which is detachably attached to a general-purpose peripheral device interface of a computer that executes the program. Causes the control circuit to allocate data to and from the computer side to a plurality of unit devices including a first unit device and a second unit device, and when connected to the general-purpose peripheral device interface, A signal simulating the device of the predetermined type for the first unit device is sent to the computer. It was followed at a predetermined timing, characterized in that to send a predetermined signal to receive recognition for the second unit device to the computer.
[0018]
In these aspects, for a certain first unit device, a signal simulating a predetermined type of device (for example, a CD-ROM drive) to be automatically started, such as a program, is sent to a computer, so that a USB memory or the like is used. A desired script or program (hereinafter, referred to as a “program or the like”) is started to be executed even though the peripheral device is a peripheral device, and another second unit device is recognized at a predetermined timing thereafter. For this reason, the second unit device can be kept confidential by limiting access to only the program and the like. As described above, a detachable device excellent in usability and security can be provided due to the time difference between the automatic start of the program or the like and the recognition.
[0019]
Also, due to the time lag between the automatic activation and recognition of the program or the like as described above, another peripheral device such as a digital camera is used as the second unit device, and the installer of the device driver for that is executed in advance as the program or the like in advance. Since the flash memory can be used for miniaturization, a detachable device that is compact and automatically installs a program can be provided.
[0020]
According to a second aspect of the present invention, in the removable device according to the first aspect, the automatic activation program or an automatic activation program called from the automatic activation script is stored. Upon authentication, the control unit is instructed to recognize the second unit device by the computer, and when an incorrect password is input a predetermined number of times at the time of authentication, the control unit is notified of the second unit device. Data format instruction, and periodically transmits a predetermined recognition extension signal to the control means.The control means includes means for executing the format instruction, and when the recognition extension signal is interrupted for a predetermined time or more, the Means for canceling the recognition of the computer regarding the second unit device. And butterflies.
[0021]
In this embodiment, the second unit device is recognized under the condition of password authentication by the operation of the automatic start program, is formatted if the password is incorrectly repeated many times, and is canceled when the program is completed. It is difficult to refer from outside the program, and excellent security is maintained.
[0022]
According to a third aspect of the present invention, when a device of a predetermined type is connected, the computer that executes a predetermined automatic start script or an automatic start program stored in the device is detachably attached to a general-purpose peripheral device interface, and is connected to a control unit. A removable device including a ROM or a readable / writable storage device as a main storage device, including a unit for connecting another peripheral device, and the control unit includes: Or, a part is a first unit device, and the other peripheral device is a second unit device, and hub means for allocating data exchange with the computer to each of these unit devices and the general-purpose peripheral device interface. At this time, first, a signal simulating the device of the predetermined type for the first unit device is sent to the computer, and then a predetermined time In grayed, characterized by comprising a means for sending a predetermined signal to said computer for receiving recognition for said second unit device.
[0023]
In this embodiment, first, for the first unit device, a signal simulating a predetermined type of device (for example, a CD-ROM drive) to be automatically started, such as a program, is sent to the computer. Therefore, a desired program or the like can be automatically executed while being a peripheral device using a USB memory or the like, and recognition of another second unit device is performed at a predetermined timing thereafter. Therefore, the second unit device is another peripheral device such as a digital camera, and the removable device is provided with both male and female connectors to connect other peripheral devices to the personal computer via the removable device, Alternatively, integration with other peripheral devices as a member such as an embedded board or the like facilitates execution of an installer of a dedicated program such as a device driver for another peripheral device. For this reason, a bulky recording medium such as a genuine CD-ROM or a complicated work is not required for the dedicated program.
[0024]
For the second and subsequent connections, if the detachable device and other peripheral devices are integrated, the internal circuit is controlled by a changeover switch to allow the detachable device to pass straight through to make the PC and other peripheral devices directly connected. Otherwise, the dedicated program on the personal computer is confirmed by a program or the like for each connection, and if it is installed, the process immediately proceeds to the recognition of the second unit device. If the detachable device is separate from other peripheral devices, the personal computer and other peripheral devices may be directly connected without sandwiching the detachable device.
[0025]
The invention according to claim 4 is a detachable device that is detachably attached to a general-purpose peripheral device interface of a computer and includes a control unit and a ROM or a readable / writable storage device as a main storage device. A connection unit, and the control unit transmits / receives data to / from a computer using all or a part of the main storage device as a first unit device and the other peripheral device as a second unit device. First, when connected to the hub means for allocating to each of these unit devices and the general-purpose peripheral device interface, first sends a predetermined signal to the computer to receive recognition of the first unit device, and When the program read and executed from the first unit device sends a predetermined signal, the second unit device is recognized. Means for sending a predetermined signal to receive said computer, characterized by comprising a.
[0026]
In this aspect, the installation program stored in advance in the first unit device to be recognized first is manually started by the user, and a signal is sent when the installation is completed, so that the recognition of the second unit device is performed. Is As a result, a dedicated program such as a device driver can be easily provided to a user by a compact detachable device without using automatic start of the program.
[0027]
According to a fifth aspect of the present invention, in the removable device according to any one of the first to fourth aspects, the program acquires a drive letter of each of the unit devices on the computer and transmits the drive letter to the removable device. Features.
[0028]
Thereby, regardless of the environment such as the OS, a program such as an application can specify the position of data in the removable device, and smooth access to such data becomes possible.
[0029]
The detachable device according to claim 6, further comprising: a rewritable nonvolatile memory; and a control unit that mediates an access from a USB host side to the memory, wherein the control unit is connected to the host side. When connected, a part of the memory is connected to the host, and when a predetermined signal is received from the host, another part of the memory is connected to the host.
[0030]
By transmitting a signal after the user is authenticated by the host, the information stored in the other part of the memory is protected from a third party without a right, thereby realizing information security.
[0031]
According to a seventh aspect of the present invention, in a control circuit that mediates an access from a host via a USB to a rewritable nonvolatile memory as a USB client, a slave-side connection port for connecting an external device and a plurality of the memories are provided. Means for separately managing areas, external hubs connected to the slave-side connection ports and the respective areas, and pseudo-hub means for connecting and disconnecting from the host as a plurality of unit devices divided by a hub, Command interpreting means for detecting and executing a dedicated command transmitted from the host side and including at least one of the unit device connections.
[0032]
According to a nineteenth aspect of the present invention, the invention of the seventh aspect is viewed from the viewpoint of a computer program. As a USB client, a control circuit that mediates an access from a host via a USB to a rewritable nonvolatile memory is provided. In the firmware program, the program causes the control circuit to divide and manage the memory into a plurality of areas, and the external device connected to the slave-side connection port for external device connection and each of the areas are separated by a hub. A plurality of unit devices are connected to and disconnected from the host, and a dedicated command transmitted from the host and including at least one of the unit devices is detected and executed.
[0033]
According to an eighth aspect of the present invention, in the control circuit according to the seventh aspect, one of the areas is a pseudo CD-ROM format compatible area, and the pseudo CD-ROM format compatible area formed on the nonvolatile memory. When the host side accesses the area in the CD-ROM format, conversion is performed between the access and the access in the nonvolatile memory format.
[0034]
In these embodiments, since a plurality of areas obtained by dividing the memory and the external device can be connected to and disconnected from the host at a desired combination and timing, the device can be used for both the security drive and the device driver installation for the external peripheral device. A versatile control circuit that can be used is realized.
[0035]
According to a ninth aspect of the present invention, in the control circuit according to the seventh or eighth aspect, an invisible area different from each of the areas is provided on the non-volatile memory by the division management, and the dedicated instruction is used for information on the invisible area. It is characterized in that only access by the user is permitted.
[0036]
According to a twentieth aspect of the present invention, the invention of the ninth aspect is grasped from the viewpoint of a computer program. In the firmware program for a control circuit according to the nineteenth aspect, the program is stored in the control circuit and in the non-volatile memory. An invisible area different from each of the areas is provided by the division management, and only access by the dedicated command is allowed for information in the invisible area.
[0037]
In these aspects, particularly important information such as an ID, a password, a license key, and system information for sorting management can be effectively protected from threats such as cracking and failure.
[0038]
The invention according to claim 21 is a firmware program for a control circuit that mediates access from the host side via USB to a rewritable nonvolatile memory as a USB client, wherein the program stores the plurality of memories in the control circuit. Areas and invisible areas where a predetermined password is stored unlike these areas are separately managed, and when connected to the host side, one area is connected to the host side as one device connected to the hub. When a predetermined dedicated command is transmitted from the host or a password transmitted from the host matches the predetermined password stored in the invisible area, the other area is connected to the hub. It is characterized in that the device is connected to the host as another device.
[0039]
According to a tenth aspect of the present invention, in the control circuit according to any one of the seventh to ninth aspects, the instruction interpreting means stores the instruction type and the parameter in a predetermined register area provided in the memory. Is detected when a bit pattern corresponding to the instruction is stored, and an execution result of the instruction is set as a bit pattern in a predetermined register area.
[0040]
The invention of claim 22 captures the invention of claim 10 from the viewpoint of a computer program. In the firmware program for a control circuit according to any one of claims 19 to 21, the program is stored in the control circuit, A dedicated instruction is detected when a bit pattern corresponding to an instruction type and a parameter is stored in a predetermined register area provided in the memory, and an execution result of the instruction is stored as a bit pattern in a predetermined register area. It is characterized by being set.
[0041]
An invention according to claim 11 is the control circuit according to any one of claims 7 to 10, wherein the command interpreting means is configured to execute the dedicated command in the hub, any of the unit devices, or any of the unit devices. A pattern corresponding to the type of instruction and its parameter is detected from an access related to the predetermined physical address, predetermined file name, or predetermined content.
[0042]
According to a twenty-third aspect of the present invention, the invention of the eleventh aspect is grasped from the viewpoint of a computer program. In the firmware program for a control circuit according to any one of the nineteenth to twenty-second aspects, the program is stored in the control circuit, Regarding the dedicated command, from the hub, any of the unit devices, a predetermined physical address in the one of the unit devices, an access relating to a predetermined file name or predetermined content, the type of the command and a parameter thereof are determined. It is characterized in that a pattern is detected.
[0043]
According to a twelfth aspect of the present invention, in the control circuit according to any one of the seventh to eleventh aspects, at least one of the following is performed according to the type of the dedicated instruction.
(1) Connection, disconnection, and status acquisition of each unit device
(2) Reading and writing information in the invisible area
(3) Reading individual identification information
(4) Capacity change of each area
(5) Rewriting and updating of the pseudo CD-ROM format compatible area
[0044]
In these embodiments, the dedicated command can be transmitted from the host to the control circuit by general access such as read / write, so that it can be used in many OSs without a special device driver.
[0045]
According to a thirteenth aspect of the present invention, in the control circuit according to any one of the eighth to twelfth aspects, a switch port for turning on / off a connection of the pseudo CD-ROM format compatible area to a host is provided. And
[0046]
As a result, the CD-ROM area can be cut off by the switch and kept off, so that the system configuration can be simplified and the response speed can be improved after installing a program such as a device driver of an externally connected device.
[0047]
According to a fourteenth aspect of the present invention, in the control circuit according to any one of the eighth to thirteenth aspects, the initialization of the external device connected to the slave side connection port from the host side within a certain time after the connection to the host side. When the instruction for the transmission is not sent, the CD-ROM format compatible area is connected to the host.
[0048]
This makes it possible to easily determine whether or not the device driver of the downstream peripheral device has been installed in the personal computer based on the presence or absence of the initialization instruction, and eliminates a complicated procedure such as switching a switch after installation.
[0049]
According to a fifteenth aspect of the present invention, in the control circuit according to any one of the sixth to fourteenth aspects, in a predetermined area on the nonvolatile memory, data to be recorded is encrypted, and read data is decrypted. And
[0050]
The invention of claim 24 captures the invention of claim 15 from the viewpoint of a computer program. In the firmware program for a control circuit according to any one of claims 19 to 23, the program is stored in the control circuit, For a predetermined area on the nonvolatile memory, data to be recorded is encrypted, and read data is decrypted.
[0051]
In these aspects, since the stored data of the part to be connected and recognized later after authentication or the like is protected by encryption such as a secret key method or a public key method, security is further enhanced.
[0052]
A detachable device according to a sixteenth aspect includes the control circuit according to any one of the seventh to fifteenth aspects, and a switch for determining whether to immediately connect a peripheral device connected to the slave-side connection port to the host. It is characterized by having.
[0053]
In this mode, when the external peripheral device is first connected, the external peripheral device is connected to the host side after the completion of the installation of the dedicated program such as the device driver, and the peripheral device is immediately connected to the host side by switch switching after the next time. This makes it possible to simplify the system configuration and improve the response speed. If this switch also serves as a switch for turning on / off the connection of the pseudo CD-ROM format compatible area to the host, the operation is further facilitated.
[0054]
According to a seventeenth aspect of the present invention, there is provided the detachable device according to any one of the first to sixth or sixteenth aspects, wherein the portable telephone terminal is connected by wire or wireless, and via a host computer-side IP connection. Means for connecting to a telephone network.
[0055]
This facilitates the use of an IP phone that is economical, easy to use, and secure from anytime and anywhere through the transmission and reception functions of a mobile phone and an IP network such as a personal computer and the Internet.
[0056]
According to a twenty-fifth aspect of the present invention, in the information processing method in the detachable device control circuit, the detachable device according to any one of claims 1 to 6, 16, and 17, and the control according to any one of claims 7 to 15 are provided. The present invention realizes any one of a circuit and a firmware program of the control circuit according to any one of claims 18 to 24.
[0057]
The circuit design pattern in the control circuit of the detachable device according to claim 26 is the detachable device according to any one of claims 1 to 6, 16, and 17, the control circuit according to any one of claims 7 to 15, and A firmware program for the control circuit according to any one of Items 18 to 24, wherein the firmware program is realized.
[0058]
BEST MODE FOR CARRYING OUT THE INVENTION
Next, a plurality of embodiments of the present invention (hereinafter referred to as “embodiments”) will be specifically described with reference to the drawings. Each embodiment can be realized by a wired logic, a program, or the like on a dedicated LSI. However, in this case, the manner of realizing the hardware and the program can be variously changed. A virtual circuit block that realizes each of the above functions is used.
[0059]
[0. Outline of the first embodiment]
In the first embodiment, in a USB memory type device for storing personal data such as e-mails, only a device owner can easily use data stored in a connected personal computer.
[0060]
To achieve this, the device according to the first embodiment has a CD-ROM compatible area for storing a dedicated program such as an application, and a so-called auto-run function for automatically starting the program from this area. It also has an HDD compatible area for storing data. The connection / disconnection of each of the areas can be switched in accordance with a predetermined command from the dedicated program, and the apparatus has an instruction transmitting unit and a storage area that can be used only from the dedicated program.
[0061]
[1. Configuration of First Embodiment]
First, FIG. 1 is a functional block diagram illustrating a schematic configuration of the first embodiment. That is, the first embodiment is a detachable composite device (hereinafter, referred to as “composite device”) 2 that is used by being detached from the computer 1, and the computer 1 includes a USB as a general-purpose peripheral device interface. That is, the computer 1 includes a USB port 10, a USB host controller, and a necessary device driver for USB, and the computer 1 is hereinafter also referred to as “host side” or “computer side” with respect to USB.
[0062]
The composite device 2 is attached to and detached from the USB port 10 of the computer. In this example, the composite device 2 includes a readable / writable flash memory 4 as a main storage device, but uses a small hard disk drive or ROM as the main storage device. Is also good. Further, the composite device 2 includes a USB device-side control unit 3 as a control unit.
[0063]
In the USB device-side control unit 3, each component acting as follows shown in FIG. 1 is realized by wired logic of a custom chip such as an ASIC or FPGA, or by a combination of a CPU and an embedded program or a microprogram. Further, in the computer 1, each component acting as follows shown in FIG. 1 is realized by the action of a program such as an OS.
[0064]
[2. Operation of First Embodiment]
That is, the first embodiment has the following operations and effects.
[2-1. Hub division)
The hub dividing unit 31 of the USB device-side control unit 3 has an operation of allocating data exchange with the computer 1 to a plurality of devices (each of which is called a “unit device”) in the single composite device 2 (hereinafter referred to as “hub division”). ), Thereby facilitating the realization of a plurality of functions. As a specific form of hub division,
(1) The USB general-purpose hub is miniaturized and provided inside the device.
(2) The USB controller of a single device manages a plurality of device components.
(3) Emulate each hub controller and each USB controller of each unit device by an LSI such as a custom chip such as an ASIC or a general-purpose CPU and an embedded program.
[0065]
It is also possible to combine them appropriately, but here, it is assumed that the emulator is a USB controller.
[0066]
By such hub division, a CD-ROM area R3 and readable / writable areas R4 and R5 are set in the storage area of the flash memory 4. Then, a CD-ROM drive (drive letter "H", which is a first unit device) set on the CD-ROM area R3, and a removable disk drive (drive letter "D") set on the readable / writable area R4. The second unit device) is each unit device, but these regions themselves may be the unit devices.
[0067]
In the readable / writable area R5, three removable disk drives (drive letters "E", "F", and "G") are set by the operation of the hub dividing unit 31, and these three removable disk drives "E" and "F" are set. "G" also constitutes one unit device. Note that the removable disk drives “E”, “F”, and “G” may be individually set as unit devices.
[0068]
Further, in the storage area of the flash memory 4, a management area that can be directly managed and read / written only from the access unit 34 of the USB device-side control unit 3 separately from the unit devices on the USB that can be accessed from the host side. R1 and the restricted area R2 are set.
[0069]
Here, for the regions R1 and R2, access from the OS such as normal recognition and writing / deletion is prohibited. For example, information for region management is placed in the management region R1. Further, in the restricted area R2, only the automatic start program P described later is allowed to access such as writing and deleting through the USB device side control unit 3, and application software such as a mailer is placed. This protects the software from accidental erasure and piracy.
[0070]
The information to be protected on the device may be set in a write-protected area that can be viewed from the host side as a unit device on the USB instead of the restricted area R2, for example. Good.
[0071]
The readable / writable area R4 is freely accessible as a normal removable disk, and stores e-mail data used by a mailer, an address book, word processor documents and presentation materials, and the like.
[0072]
Note that a password can be set to access each area, and verification information for authenticating the password is placed in an area that cannot be accessed from the OS side, such as the areas R1 and R2.
[0073]
As described above, by setting a plurality of areas that are handled differently as unit devices by the hub dividing unit 31, if it is desired to store data in a detachable device including a unit device that is handled as a CD-ROM by pseudo recognition, There is no need to consider the special file system of the CD-ROM, and the data can be easily stored in another unit device of a type that does not require data conversion, such as a removable disk or an HDD.
[0074]
[2-2. Pseudo recognition)
By the way, depending on the OS (for example, Windows (registered trademark) series of Microsoft (registered trademark)), when a medium is inserted into a predetermined type of device (for example, CD-ROM drive), a predetermined (For example, “Autorun.inf”). The computer 1 is assumed to be a computer including such an OS.
[0075]
Further, in USB, the host side repeatedly sends a device type inquiry signal to the USB line periodically and repeatedly for devices that may have been attached to the USB. By responding to the inquiry signal with the type of the corresponding device, the host is made to recognize its own connection. Therefore, in the computer 1, when a predetermined type of device is connected, the script execution unit 11 executes the automatic startup script stored in the device.
[0076]
Therefore, the recognition control unit 32 of the USB device-side control unit 3, when connected to the USB, simulately returns a signal indicating that the device is a CD-ROM in response to a device type inquiry signal from the host. . This pseudo reply is performed only for the CD-ROM area R3 among the plurality of unit devices. Further, the CD-ROM drive H in the CD-ROM area R3 stores an automatic start program P started by the automatic start script S.
[0077]
That is, the detachable device 2, that is, the USB memory is a type of device that is not originally targeted for script execution. However, in response to an inquiry from the host, the recognition control unit 32 causes the CD-ROM drive or the like to execute an automatic startup script. A signal indicating that the device is a target device, that is, a device descriptor is returned in a pseudo manner.
[0078]
For this reason, a desired process such as execution of a program described in a script is automatically executed when a device is mounted, without the need to previously install the resident program for mounting detection on the computer side. As a result, various functions and usage of the device can be realized without manually installing dedicated software for the device. Further, even on a computer on which software cannot be installed because a user does not have administrator authority, automatic start of a desired program from a detachable device can be easily realized.
[0079]
It should be noted that in practice, the computer 1 sends the first unit device (CD-ROM drive) configured on the main storage device (flash memory 4) to the predetermined type of device. When there is an access in the form of (CD-ROM drive), the control means (USB device side control unit 3) converts between the access and the access in the form of the main storage device (flash memory 4). I do.
[0080]
[2-3. Media insertion)
In addition, the OS repeatedly inquires of the device about the presence / absence of the mounting of the medium and makes the device respond, and when the state that does not exist at a certain point in time changes to an existing state, the OS recognizes that the medium has been inserted. There are also things.
[0081]
Then, as described above, when a predetermined device (for example, a CD-ROM) which is a target of script execution by the computer and the recognition control unit 32 are answered, no media is inserted unlike an actual device. However, in response to an inquiry about the presence / absence of a medium, the insertion simulation section 33 returns a signal of the same pattern as the insertion in a pseudo manner, so that the script can be smoothly executed even when the medium insertion is a condition for executing the script. Is executed.
[0082]
That is, the insertion simulation unit 33 returns a signal indicating that there is no medium at least once in response to the inquiry signal about the presence or absence of the medium from the USB host controller via the USB, and then, for example, in response to the second inquiry, Then, a signal indicating that the medium is present is returned.
[0083]
Then, the OS on the computer 1 recognizes that the medium has been inserted, and the script execution unit 11 of the computer 1 executes the automatic start script S stored in the device. Here, the “predetermined type” device to be executed by the script is assumed to be a “CD-ROM”, but the target can be freely changed or expanded to another type of device. The program execution unit 12 is a means for executing an execution file having, for example, an extension ".exe". If the directory, name, parameters, and the like of the execution file are described in the script, the execution file is executed accordingly. Execute
[0084]
In the first embodiment, execution of the automatic start program P is specified in the automatic start script S. In addition, it is naturally possible to call other applications such as an application such as a mailer or a device driver installer of another peripheral device depending on the application from the application start function P1 of the automatic start program P. The program that is called derivatively is also referred to as an automatic activation program P below.
[0085]
[2-4. Security drive due to time difference in recognition)
Further, the timing control unit 35 is a unit that controls the recognition control unit 32 to cause the computer 1 to recognize each unit device at a predetermined later timing. That is, when connected to the USB, the recognition control unit 32 and the timing control unit 35 first send a signal simulating a CD-ROM for the first unit device to the computer 1, and thereafter, at a predetermined timing, It constitutes means for sending a predetermined signal to the computer 1 for receiving recognition of the second unit device.
[0086]
Therefore, in this case, immediately after the composite device 2 is inserted into the computer 1, the timing control unit 35 sends information indicating that only the first device has been connected to the host, and after a lapse of the predetermined time or When the predetermined exchange with the host has been completed, information indicating that the second unit device has been connected is sent to the host.
[0087]
Thus, the recognition of the second unit device is delayed by the set time or until the completion of the predetermined exchange, and the time difference can be secured. As for the timing for recognizing the second unit device, instead of judging the timing and conditions only on the composite device side as described above, the host device recognizes the second unit device after waiting for a predetermined instruction from a predetermined program executed on the host side. In this case, the timing at which the host-side program recognizes the second unit device can be managed, so that the completion of the desired processing can be confirmed. For example, the second unit device is recognized after the completion of the password authentication from the program or the notification of the completion of the device driver installation.
[0088]
The function of the timing control unit 35 may be replaced with the USB device-side control unit 3 by providing a USB controller for each unit device and having the USB controller.
[0089]
One use of the time difference is to secure necessary device driver installation time. Another use of the time difference as described above is to improve data security by preventing the contents of some devices from being easily referred to. That is, the timing control unit 35 is configured to cause the computer 1 to recognize the first unit device, and then cause the computer 1 to recognize the second unit device in accordance with an instruction from the automatic start program P. If P has a function of authenticating the user with a password or the like, the second unit device can be a security drive with excellent security.
[0090]
The security drive recognized in this manner can be manually released (“remove device”) by operating the task tray or the like provided in the OS, but is automatically started from the automatic start program or the automatic start program. If the recognition can be canceled as a function of another program, the usability is further improved.
[0091]
That is, the security drive as described above is processed as follows by the cooperation between the automatic start program P and the USB device-side control unit 3. First, when the user is authenticated by the password, the automatic start program P gives the USB device side control unit 3 an instruction to cause the computer 1 to recognize the readable / writable area R4, which is the second unit device. Is input a predetermined number of times, the USB device-side control unit 3 is instructed to format the data in the readable / writable area R4. In addition, the automatic activation program P periodically transmits a predetermined recognition extension signal to the USB device-side control unit 3.
[0092]
On the other hand, in the USB device-side control section 3, the format section 36 executes a format instruction from the automatic start program P, and the recognition release section 37 reads and writes when the recognition extension signal from the automatic start program P is interrupted for a predetermined time or more. The recognition of the computer 1 regarding the possible area R4 is canceled by changing the state of signal transmission to the computer 1. Hereinafter, a more specific description will be given.
[0093]
[2-5. Data deletion due to wrong password)
That is, in the first embodiment, when the device is lost, the data is formatted or the password is authenticated when the password is incorrect a predetermined number of times so that the data cannot be seen or misused by others. To make password analysis difficult.
[0094]
That is, the authentication function P2 of the automatic start-up program P authenticates the password and, when an incorrect password is input a predetermined number of times, sends an instruction to the formatting unit 36 of the USB device-side control unit 3 to thereby allow the removable device 2 Format the entire upper predetermined area and the data on it. Note that the processing when the password is incorrect a predetermined number of times may be simply termination or deletion of the automatic start program P.
[0095]
In this way, even if the composite device 2 is lost, misplaced, stolen, or the like, if the password is incorrect for a predetermined number of times, the data is protected from unauthorized reference by a data format or the like.
[0096]
Furthermore, if the allowable number of errors before terminating the program is randomized, password analysis can be made more difficult. If a certain period of time, such as 0.1 to 0.5 seconds, is used for password authentication, it does not cause a problem when the user uses the password normally, but it is necessary to input a brute force input using a word dictionary or the like. Password analysis is also difficult.
[0097]
Note that the automatic start program P has a function of rewriting information in the management area R1 so that attributes such as the size and write protection of each area can be changed and a new area can be created. May be. When the area is changed, the data may need to be moved. For example, when the size of each area is changed by moving the boundary between the two areas, the automatic start-up program P Is temporarily backed up in the free space of the memory or HDD of the multifunction device 2 or the computer 1 and the area information of the area R1 is rewritten. return.
[0098]
[2-6. Release of recognition)
Further, the recognition canceling unit 37 receives a predetermined recognition extension signal periodically transmitted from the automatic start program P, and cancels the recognition of the computer regarding a predetermined unit device when the signal is interrupted.
[0099]
That is, if a program that uses a unit device that requires confidentiality of its contents, such as the security drive, for example, an automatic start program P terminates for some reason, the recognition of the unit device is released, and the composite device 2 Until the user disconnects from the personal computer, security is enhanced by prohibiting access to the composite device 2 from the personal computer.
[0100]
More specifically, each time the recognition canceling unit 37 receives the recognition extension signal transmitted from the automatic start program P, the recognition cancel unit 37 causes the host to recognize a unit device that is to be a security drive for a predetermined time limit thereafter, and The program P continues to transmit the recognition extension signal to the recognition canceling unit 37 every cycle shorter than the time limit.
[0101]
[3. Effect of First Embodiment]
As described above, in the first embodiment, for a certain first unit device, a signal simulating a predetermined type of device (for example, a CD-ROM drive) to be automatically started, such as a program, is sent to the computer. , Start execution of a desired program or the like while being a peripheral device using a USB memory or the like, and then recognize another second unit device at a predetermined timing. For this reason, the second unit device can be kept confidential by limiting access to only the program and the like. As described above, a detachable device excellent in usability and security can be provided due to the time difference between the automatic start of the program or the like and the recognition.
[0102]
In particular, in the first embodiment, the second unit device is recognized under the condition of password authentication by the operation of the automatic start program, formatted if the password is incorrectly repeated many times, and released when the program ends. Therefore, it is difficult to refer from other than the automatic start program, and excellent security is maintained.
[0103]
Also, due to the time lag between the automatic activation and recognition of the program or the like as described above, another peripheral device such as a digital camera is used as the second unit device, and the installer of the device driver for that is executed in advance as the program or the like in advance. Since a flash memory can be used for downsizing, a removable device that is compact and automatically installs a program can be provided.
[0104]
[4. Second Embodiment]
In the above-described first embodiment, a plurality of devices are handled by dividing the hub, and the computer 1 recognizes the devices with a time lag for each device. However, the first embodiment is partially changed to implement the following second embodiment. be able to. Here, FIG. 2 shows a simplified configuration of the second embodiment.
[0105]
That is, in the second embodiment, when a CD-ROM is connected, a male connector 15 for attaching and detaching to and from the USB port 10 of the computer 1 that executes an automatic startup script stored in the device, A detachable device 20 including a unit 30 and a flash memory 40 as a main storage device, including a USB port 25 (female connector) for connecting another peripheral device (here, the digital camera 5). .
[0106]
The control unit 30 has a function of assigning all or a part of the flash memory 40 as a first unit device and using the other peripheral device as a second unit device to exchange data with the computer side for each of these unit devices. (Hub division function), when connected to the USB port, first send a signal simulating a CD-ROM for the first unit device to the computer 1, and then recognize the digital camera 5 at a predetermined timing. (A recognition control function) for transmitting a predetermined signal to the computer to receive the signal.
[0107]
That is, the two unit devices are divided into hubs, and the first unit device operates with a standard driver provided as standard by the OS, while the other second unit device installs a dedicated program D such as a dedicated device driver. If the dedicated program D for the second unit device exists in the first unit device, the order of recognition of the first unit device → installation of the dedicated program → recognition of the second unit device If it is not recognized, it will not work properly.
[0108]
Therefore, another peripheral device is connected to the detachable device of the second embodiment as one of the unit devices. Specifically, as shown in FIG. 2, both the male and female connectors are provided on the detachable device 20, and the digital camera 5 is connected to the personal computer 1 via the detachable device 20. 5 and the detachable device 20 are integrated as shown by a broken line in FIG. In this case, the detachable device 20 is manufactured as a module board provided in the digital camera body case, and is connected to the digital camera body board by a connector or the like.
[0109]
Further, the types of other devices referred to here are not limited to digital cameras, but are various types of drives such as USB-connected printers, scanners, and removable disks sold by respective device manufacturers, various card reader / writers, portable terminals, and the like. The communication device is free.
[0110]
Many of these devices do not operate with the OS standard driver. Conventionally, it is necessary to separately install a dedicated program such as a device driver from a medium such as a CD-ROM. In the second embodiment, such a device is used. Since the installation of the device driver is performed automatically, it is not necessary for the user to prepare such a medium or perform an operation for installation.
[0111]
That is, conventionally, when a device was used for the first time, a driver had to be installed in a personal computer using an attached CD-ROM or the like. However, such a driver was used for each unit device divided into hubs. Of these, the driver is saved in advance in a device that operates with a driver that is provided as a standard component of the OS, and the driver installation operation is automatically started using the automatic startup described in the first embodiment, or the user manually completes the installation. By recognizing the peripheral device, the installation work of the driver which is troublesome for the user can be omitted.
[0112]
After the execution program P of the device driver, which is an executable file in the EXE format, is executed as the automatic start program, recognition of other peripheral devices using the driver can be started.
[0113]
As described above, in the second embodiment, first, for the first unit device, a signal simulating a predetermined type of device (for example, a CD-ROM drive) to be automatically started, such as a program, is sent to the computer. . Therefore, a desired program or the like can be automatically executed while being a peripheral device using a USB memory or the like, and recognition of another second unit device is performed at a predetermined timing thereafter. Therefore, the second unit device is another peripheral device such as a digital camera, and both the male and female connectors are provided on the detachable device 20 to connect other peripheral devices to the personal computer via the detachable device 20, Alternatively, integration with other peripheral devices as a member such as an embedded board or the like facilitates execution of an installer of a dedicated program such as a device driver for another peripheral device. For this reason, a bulky recording medium such as a genuine CD-ROM or a complicated work is not required for the dedicated program.
[0114]
For the second and subsequent connections, if the detachable device 20 and other peripheral devices are integrated, the internal circuit is controlled by a changeover switch to allow the detachable device 20 to pass through, and the personal computer and other peripheral devices to be directly connected. Otherwise, the dedicated program on the personal computer is confirmed by a program or the like for each connection, and if it is installed, the process immediately proceeds to the recognition of the second unit device. If the detachable device 20 is separate from other peripheral devices, the personal computer and other peripheral devices may be directly connected without sandwiching the detachable device 20.
[0115]
[5. Other embodiments]
In each of the above embodiments, the example has been described on the premise that the computer executes the automatic start script and executes the automatic start program if specified therein, but the computer directly executes some program without passing through the script. Of course, the present invention is also applicable.
[0116]
Also, instead of providing device drivers and device-dedicated software etc. for individual in-house products on a CD-ROM or the Internet, device manufacturers may replace all or part of device drivers or device-dedicated software for various in-house products. Is recorded on a USB device and provided, all the devices of the maker can be easily used and become a tool for enclosing customers.
[0117]
It is also conceivable that a program such as an installer is manually activated by a user. That is, this aspect is a detachable device which is detachably attached to a general-purpose peripheral device interface of a computer and includes a control unit and a ROM or a readable / writable storage device as a main storage device, and connects other peripheral devices. The control means, the whole or a part of the main storage device as a first unit device, the other peripheral device as a second unit device, data exchange with the computer side, When connected to the hub means for allocating each of these unit devices and the general-purpose peripheral device interface, first, a predetermined signal for receiving recognition of the first unit device is sent to the computer, and the recognized signal is sent to the computer. When a program read and executed from the first unit device sends a predetermined signal, the second unit device Means for sending a predetermined signal to receive the identification to the computer, characterized by comprising a.
[0118]
In this aspect, the installation program stored in advance in the first unit device to be recognized first is manually started by the user, and a signal is sent when the installation is completed, so that the recognition of the second unit device is performed. Is As a result, a dedicated program such as a device driver can be easily provided to a user by a compact detachable device without using automatic start of the program.
[0119]
[6. Third Embodiment]
In the detachable devices 2 and 20 in the first and second embodiments, the control units 3 and 30 play an important role, but in the third embodiment, the detachable device having the functions of the detachable devices 2 and 20 is used. (Hereinafter referred to as “this device”) 200 is taken as an example to supplement the specific implementation of the control unit. By combining the features shown in the first to third embodiments as appropriate, more excellent effects such as ease of use and security can be obtained.
[0120]
[6-1. Hardware configuration)
First, FIG. 3 shows a configuration example of hardware of the device 200. That is, the USB microcomputer 300 such as the RISC microcomputer provides the role of the control unit and the function of the hub according to the firmware 310, and plays the role of the control units 3 and 30 in the first and second embodiments. The device 200 includes a flash memory 400 having a predetermined capacity such as 32 MB, 64 MB, 128 MB, or 256 MB as a main storage device. The flash memory is a representative of a rewritable nonvolatile memory, but may be another type of memory element. Further, since the nonvolatile memory is a main storage device in the present invention, the flash memory is not limited to a memory element and is not limited to a memory element. The concept also includes a storage device such as a drive, and the same applies to the first and second embodiments.
[0121]
The flash memory 400 provides a CD-ROM area 410, an HDD area 420, and an invisible area 430 according to the division management performed by the USB microcomputer 300. The flash memory 400 preferably has a circuit configuration and a board layout that can be mounted on the same board as the USB microcomputer 300.
[0122]
The device 200 has at least a male plug 150 of a USB series A type as an external connection, and is directly connected to a host-side connector, that is, a socket such as a personal computer (referred to as a PC) or a PDA. Further, as an option, a series A type female socket 250 connected to the hub realized by the USB microcomputer 300 may be mounted. The female socket 250 is connected to a slave-side connection port provided on the USB microcomputer 300 for connecting an external device.
[0123]
The USB interface of the device 200 conforms to USB 2.0, and the hub generally operates on bus power. However, as an option, it is possible to connect a self-powered power supply, or to support both bus power and self-powered power. Good. How to realize the switching between the self power and the bus power is usually determined, for example, by a hub-dedicated LSI, but it is freely determined according to the realization mode, such as adding a circuit or firmware to a CPU with a hub. it can. Further, for convenience of operation or the like, an access LED 210 and a write protect switch 220 may be provided.
[0124]
The device 200 requires device drivers for a CD-ROM and a USB storage on an OS, and operates as it is on an OS provided as a standard, and operates after installing these device drivers on other OSs. . Even if a device driver is required, complicated restarting of the OS can be avoided in principle by making the device driver compliant with so-called plug and play.
[0125]
The USB microcomputer 300 in the third embodiment as described above is a control circuit that mediates access from the host side via USB to a rewritable nonvolatile memory as a USB client, and serves as the following units. Have.
(1) A CD-ROM area 410, which is a pseudo-CD-ROM format compatible area by providing a slave connection port for connecting an external device and managing the flash memory 400 in a plurality of areas, and a removable drive format compatible area Means for realizing the HDD area 420.
(2) Pseudo-hub means for connecting and disconnecting the external device connected to the slave-side connection port and the respective areas to and from the host as a plurality of unit devices divided by a hub.
(3) Command interpreting means for detecting and executing a dedicated command transmitted from the host side including a connection command for at least one of the unit devices.
(4) When the host side accesses the CD-ROM area 410 configured on the nonvolatile memory in the CD-ROM format, conversion between the access and the access in the flash memory 400 format is performed. Means to do.
[0126]
With such a USB microcomputer 300, a plurality of areas obtained by dividing the memory and external devices can be connected to and disconnected from the host at desired combinations and timings. A highly versatile control circuit that can be used for both installation of a device driver for an external peripheral device as described in the second embodiment is realized. However, the number of semiconductor chips such as ICs and LSIs for realizing the control circuit is not limited to one, but may be plural.
[0127]
[6-2. Software configuration)
More specifically, in the device 200 as described above, as a software configuration, as shown in FIG. 4, the CD-ROM area 410 and the HDD The area 420 is recognized by the PC in a connected state. Further, when an external peripheral device is connected to the female socket 250, the external peripheral device is also recognized as a configuration connected via the hub H.
[0128]
Each unit device under the hub H is operated by the USB microcomputer 300 and the firmware 310, by a special command which is a special command from a program such as an application, or by a physical switch provided in the device 200. Connection to and disconnection from the upstream PC, that is, the upstream host PC via H is performed. The connection / disconnection of a device connected downstream (slave side) can be performed by turning on / off the power supply to the device bus using an IC or a transistor.
[0129]
The CD-ROM area 410 is equivalent to the CD-ROM area R3 in the first embodiment, is recognized as compatible with the standard CD-ROM drive by the host, and is indispensable when using the autorun (automatic start) of the stored program. Become. Note that the “CD-ROM” is merely an example, and the specific format is free, such as a CD-ROM (models 1 and 2), a CD-RW, a CD-DA, a CD-XA, and a CD-I.
[0130]
Regarding the CD-ROM area 410, the USB microcomputer 300 responds to a read request by storing a disk image on the flash memory 400, or a read request signal sent from the host in a CD-ROM format and a flash memory A conversion process is performed with the data on 400 each time. The conversion process of mediating the access from the host side to the CD-ROM to the flash memory in this manner is referred to as CD-ROM conversion.
[0131]
Next, the HDD area 420 is recognized by the host as an HDD-compatible standard removable disk drive, and connected to a PC after authentication, so that the HDD area 420 is similar to the read / write area R4 which is the second unit device in the first embodiment. , And provides a storage area in which security is ensured.
[0132]
Further, an invisible area 430 different from the CD-ROM area 410 and the HDD area 420 is provided on the non-volatile memory (flash memory 400) by the division management, and information stored in the invisible area 430 is provided by the dedicated instruction. Only access by is allowed. As a result, particularly important information such as an ID, a password, a license key, and system information for classification management can be effectively protected from threats such as cracking and failure.
[0133]
The invisible area 430 cannot be directly accessed from the host in the form of a drive or the like, but can be accessed only from a program corresponding to the device 200 that can issue the dedicated command. Although the contents of the information stored in the invisible area are arbitrary, for example, an identification ID or the like unique to the device individual, a password, partition information indicating a capacity or a boundary address of each area on the flash memory 400, and other management information 435 and the like.
[0134]
The types of the dedicated instructions that can be used by the program corresponding to the device 200 and the processing executed by the USB microcomputer 300 in response to the types are as follows.
(1) Connection / disconnection of each unit device and status acquisition
(2) Reading and writing information in the invisible area
(3) Reading the identification number (ID) unique to the individual
(4) Capacity change of each area
(5) Rewriting and updating of CD-ROM area
[0135]
The size of the CD-ROM area 410 may automatically change according to the size of the CD-ROM image, and the remainder may be the HDD area 420. Further, for example, as shown in the second embodiment, in order to cope with the case where the device driver installation of the external peripheral device is completed, the CD-ROM for turning on / off the connection of the CD-ROM area 410 to the host side is provided. A ROM switch 230 (FIG. 3) may be provided. The switch 230 is connected to a switch port of the USB microcomputer 300. As a result, the CD-ROM area can be cut off by the switch and kept off, so that the system configuration can be simplified and the response speed can be improved after installing a program such as a device driver of an externally connected device.
[0136]
Further, a switch for turning on / off whether or not to add a time difference, that is, a delay to the recognition of the connection of the external peripheral device may be provided. That is, this is a switch for determining whether or not the peripheral device connected to the slave connection port is immediately connected to the host.
[0137]
If such a switch is provided, at the time of the first connection of the external peripheral device, the external peripheral device is connected to the host side after the completion of the installation of the dedicated program such as the device driver, and the peripheral device is immediately switched by the switch after the next time. It is possible to connect to the host side, thereby simplifying the system configuration and improving the response speed. If this switch also serves as a switch for turning on / off the connection of the CD-ROM area 410 to the host, the operation is further facilitated.
[0138]
Also, regarding whether or not the driver for the external peripheral device connected downstream is already installed on the PC, it is determined that the driver has not been installed if the PC does not send an instruction to initialize the device within a certain time after connection. Alternatively, the CD-ROM area 410 may be connected to the host and the installer may be auto-run.
[0139]
[6-3. About security login processing)
In this device 200 as described above, in order to protect the data of the owner and allow the data to be viewed on any connected PC, as described in detail in the first embodiment, the following security login function is provided. Implement.
[0140]
That is, when the device 200 is connected to a host such as a personal computer, first, only the CD-ROM area 410 is connected to the hub. At this point, the HDD area 420 is still disconnected. Then, the authentication program on the CD-ROM area 410 is automatically started, and when the password input by the user matches the password data and ID on the invisible area 430, the HDD area 420 is connected to the hub H and recognized as a drive. Thus, desired data on the HDD area 420 can be browsed and edited by a desired program.
[0141]
[6-4. Example of processing procedure]
Next, a processing procedure when the device 200 is mounted on a PC is shown in a flowchart of FIG. That is, if the CD-ROM switch 230 is on (step 10), the PC is made to recognize the connection of the CD-ROM area (step 11), and a response to the access is started by the CD-ROM conversion (step 12). Using this response, the PC executes an auto-run program calling process (step 20), and if there is an auto-run program (step 21), it is started (step 22). The autorun program is typically an authentication program using a password or the like, or a menu program such as a so-called launcher.
[0142]
Instead of the HDD area 420 shown in FIG. 3, a removable disk area which is unconditionally connected to the PC side and a security area which is similarly compatible with the removable disk but whose connection is not recognized until authentication may be provided. . In this case, as shown in FIG. 5, on the device 200 side, the connection of the removable disk area to the PC is recognized (step 13), so that the authentication program as described above is placed in the removable disk area and started manually. May be. Subsequently, if there is a device connected to the downstream side, that is, the slave side (hereinafter, referred to as “downstream device”) (step 14), the PC is made to recognize the connection (step 15).
[0143]
In the authentication process using a password or the like by the above-described authentication program (step 26), for example, the password input by the user on the PC side is transferred to the device 200 side and included in the management information 435 in the invisible area 430. The password is checked against the password, and the authentication result is returned to the PC (step 16). If the authentication is OK (steps 17 and 27), the device 200 causes the PC to recognize the connection of the security area (step 18), and accepts access to each connected area (step 19). If the authentication is OK on the PC side (step 27), a target application program such as a mailer is started (step 28), and the device 200 accesses the connected areas as necessary (step 29). In addition, each element shown in FIGS. 3 to 5 is appropriately omitted depending on the application.
[0144]
[6-5. About drive letters)
On a PC, each drive is identified by a drive letter such as A, C, or D. Such a drive letter changes according to the environment such as the type of the OS and the hardware configuration. Also, drive letters of a plurality of unit devices included in the present device 200 are not always continuous, and there is a possibility that a problem may occur in which the position of data cannot be specified from an application.
[0145]
As a solution to this, a function of acquiring a drive letter from the OS of the PC is incorporated in an application such as an automatic start-up program, and drive information indicating an access destination is updated in a setting file of the application with the information acquired in this manner. Thereby, regardless of the environment such as the OS, a program such as an application can specify the position of data in the removable device, and smooth access to such data becomes possible.
[0146]
[6-6. How to access the invisible area]
Means for transmitting a special access signal such as the dedicated command from the host side such as a dedicated program to the firmware 310 of the USB microcomputer 300 separately from normal reading and writing is free. Can be illustrated.
[0147]
For example, a part of the invisible area is set as one or more setting registers, and when a code stored in a certain setting register is stored, the code is interpreted and executed as a predetermined dedicated instruction. Depending on the type of the instruction, as a result, the code is read from the invisible area. The value, the return code, and the like appear as a bit string in the register or another predetermined register.
[0148]
In addition, according to the type and parameter of the command, the hub, any of the unit devices, a predetermined physical address in any of the unit devices, a predetermined file name or an access related to predetermined content, the command and its A pattern corresponding to the parameter is detected.
[0149]
According to these, the dedicated command can be transmitted from the host to the control circuit through general read / write access or the like, so that it can be used by many OSs without a special device driver.
[0150]
Each is described below. First, reading and writing of a specific physical address, file name, and contents in any of the unit devices are interpreted and executed as instructions by a check function on the control unit side. For example, a fixed byte or a file of size 0 is arranged at a predetermined position in the CD-ROM area, and an invisible area is accessed by accessing the file. In addition, the CD-ROM area is recognized as a CD-R, CD-RW, CD-R / W, or the like, and a write request that reaches the device is a dedicated command. In addition, by using a spindle speed setting command of the CD drive, for example, access to the invisible area is realized by interpreting a rotation speed of 4 times as a begin () command and an 8 times speed as an end () command.
[0151]
Also, among instruction sets for the removable disk and the hub, those which are not normally issued from the Windows (registered trademark) GUI or a standard API (application program interface) or are meaningless are interpreted as special access signals so as to be invisible. Provide access to the area. Similarly, a combination of a specific instruction and a parameter such as a specific character string that is not normally used may be used as the access signal. In addition, an instruction code for firmware version upgrade included as a standard in the USB interface class code is used, and access information to the invisible area such as a dedicated instruction is passed to the firmware program data portion. The distinction from the genuine firmware program data is made on the USB microcomputer 300 side depending on the presence or absence of a predetermined bit pattern.
[0152]
Further, a fourth device is added in addition to the CD-ROM area 410, the HDD (removable disk) area 420, and the invisible area 430, and all instructions for the device are dedicated instructions for the invisible area. Also, desired data is sent to the USB microcomputer 300 by directly calling the lower layer driver from the higher-level IoCallDriver (). An access signal such as a dedicated instruction may be considered by reading and writing a value to a specific endpoint.
[0153]
[6-7. Still other forms of implementation]
The present invention is not limited to the above-described first to third embodiments, but includes other embodiments as exemplified below. For example, in the present application, USB is a concept that is not limited to USB as a specific standard for a general-purpose peripheral device interface, but includes other standards that play an equivalent role, including those that will appear in the future. In addition, the automatic start and the hub division may be performed by only one of them. When the automatic start is not used, elements related to the CD-ROM are unnecessary. Further, an embodiment is possible in which hub division is performed but recognition is not delayed. Further, if a plurality of passwords corresponding to the security drive are provided, it is possible for a plurality of persons to use one detachable device.
[0154]
Further, for a predetermined area on the nonvolatile memory, data to be recorded may be encrypted, and read data may be decrypted. In this way, the stored data of the part for which connection is recognized later after authentication or the like is protected by encryption such as a secret key method or a public key method, so that security is further enhanced.
[0155]
In addition, a portable telephone terminal such as a cellular phone or PHS as an external peripheral device is connected to this device through infrared communication, wireless communication, plug insertion into a USB female socket, a dedicated connection terminal, etc., and the transmission and reception functions of the cellular phone , An IP phone may be used from the device through an IP network such as a personal computer and the Internet. This makes it easy to use an IP phone that is economical, easy to use, and secure anytime, anywhere.
[0156]
Further, as shown in FIG. 6, the security drive can be realized with a simple configuration using a plurality of flash memories with a control circuit. For example, the USB microcomputer 350 and the flash memory with control circuit 450 always directly connect the data line and the bus power, but the USB microcomputer 350 and another flash memory with control circuit 460 connect the data line but the bus power. Is separated by a switch SW such as a transistor or an IC, and when the password authentication is OK, the switch SW is connected and the connection of the flash memory 460 with a control circuit is recognized to realize a security drive.
[0157]
Incidentally, a simpler example of the present invention is a detachable device including a rewritable nonvolatile memory and control means for mediating an access from a USB host side to the memory, wherein the control means includes: When connected to the host, a part of the memory is connected to the host, and when a predetermined signal such as a kind of the dedicated instruction is received from the host, the other part of the memory is connected to the host, so that Is to realize the information security of the part connected from.
[0158]
In other words, the slave-side connection port for connecting an external device can be omitted, and security is not limited to a device unit divided by a hub, but can be realized by concealment of media and files.
[0159]
For example, in media concealment, a device is a multifunction device having both a CD-ROM drive and a removable hard disk drive. In its initial state, no disk is inserted in the disk drive. After authentication, the disk is operated by a control circuit such as a USB microcomputer. Is inserted, and can be accessed from the PC. By doing so, different data can be shown as if the discs were replaced before and after authentication, so that the application range is expanded. In file hiding, before the authentication, the existence of the protection target file is hidden from the file management area of the hard disk, and after the authentication, the existence of all the files including the protection target is disclosed to the host. Also in these cases, important information is protected from unauthorized third parties, so that information security is realized.
[0160]
【The invention's effect】
As described above, according to the present invention, a detachable device excellent in usability and security can be provided.
[Brief description of the drawings]
FIG. 1 is a functional block diagram showing a configuration of a first embodiment of the present invention.
FIG. 2 is a functional block diagram showing a configuration of a second embodiment of the present invention.
FIG. 3 is a block diagram showing a hardware configuration according to a third embodiment of the present invention.
FIG. 4 is a diagram showing a software configuration according to a third embodiment of the present invention.
FIG. 5 is a flowchart illustrating a processing procedure according to a third embodiment of the present invention.
FIG. 6 is a block diagram showing another embodiment of the present invention.
[Explanation of symbols]
1. Computer
2,20 ... Removable device
3: USB device side control unit
4: Flash memory
5 ... Digital camera
10, 25… USB port
11 Script execution unit
12 Program execution unit
31 ... hub division
32 ... Recognition control unit
33 ... Insert simulation part
34 access unit
35 ... Timing control unit
36 ... Format section
37 ... Recognition release unit
S: Automatic start script
P: Automatic start program
R1 to R5 ... area
200… Device
210 ... LED
220: Write protect switch
230 ... CD-ROM switch
300, 350 ... USB microcomputer
310, 360 ... firmware
400 ... Flash memory
410 ... CD-ROM area
420: HDD area
430 ... invisible area
435 ... management information
450, 460: Flash memory with control circuit
SW ... Switch

Claims (26)

When a device of a predetermined type is connected, it is attached to and detached from a general-purpose peripheral device interface of a computer that executes a predetermined automatic start script or an automatic start program stored in the device. Or a readable and writable storage device, comprising:
The control means,
A plurality of unit devices including a first unit device and a second unit device;
Hub means for allocating data exchange with the computer side to each of the unit devices,
When connected to the general-purpose peripheral device interface, first, a signal simulating the device of the predetermined type for the first unit device is sent to the computer, and then, at a predetermined timing, the second unit device Means for sending a predetermined signal to the computer to be recognized about,
A detachable device comprising: Store the automatic start program or the automatic start program called from the automatic start script,
The automatic start program is executed from the computer.
When the user is authenticated by a password, the control unit is given an instruction to make the computer recognize the second unit device,
When an incorrect password is input a predetermined number of times at the time of the authentication, the control means is given a format instruction of data on the second unit device,
Periodically transmitting a predetermined recognition extension signal to the control means,
The control means,
Means for executing the format instruction;
Means for canceling recognition of the computer regarding the second unit device when the recognition extension signal is interrupted for a predetermined time or more,
The removable device according to claim 1, further comprising: When a device of a predetermined type is connected, it is attached to and detached from a general-purpose peripheral device interface of a computer that executes a predetermined automatic start script or an automatic start program stored in the device. Or a readable and writable storage device, comprising:
Including means for connecting other peripherals,
The control means,
Hub means for allocating data exchange with the computer side to each of these unit devices, with all or a part of the main storage device as a first unit device and the other peripheral device as a second unit device;
When connected to the general-purpose peripheral device interface, first, a signal simulating the device of the predetermined type for the first unit device is sent to the computer, and then, at a predetermined timing, the second unit device Means for sending a predetermined signal to the computer to be recognized about,
A detachable device comprising: A removable device comprising a control unit and a ROM or a readable / writable storage device as a main storage device, which is detachably attached to a general-purpose peripheral device interface of a computer,
Including means for connecting other peripherals,
The control means,
Hub means for allocating data exchange with the computer side to each of these unit devices, with all or a part of the main storage device as a first unit device and the other peripheral device as a second unit device;
When connected to the general-purpose peripheral device interface, first, a predetermined signal for receiving recognition of the first unit device is sent to the computer, and read and executed from the recognized first unit device. Means for sending a predetermined signal to the computer for receiving recognition of the second unit device when the program sent a predetermined signal signal;
A detachable device comprising: The removable device according to any one of claims 1 to 4, wherein the program acquires a drive letter of each unit device on the computer and transmits the drive letter to the removable device. A detachable device including a rewritable nonvolatile memory and control means for mediating an access from the USB host side to the memory;
The control means,
When connected to the host, a part of the memory is connected to the host,
A detachable device, wherein upon receiving a predetermined signal from the host, the other part of the memory is connected to the host. As a USB client, in a control circuit that mediates access from the host side via USB to a rewritable nonvolatile memory,
A slave connection port for connecting external devices,
Means for classifying and managing the memory into a plurality of areas;
Pseudo hub means for connecting and disconnecting the external device connected to the slave side connection port and each of the areas as a plurality of unit devices divided by a hub with respect to the host side,
A command interpreting means for detecting and executing a dedicated command transmitted from the host side and including at least one of the unit device connections,
A control circuit comprising: One of the areas is a pseudo CD-ROM format compatible area,
When the host side accesses the pseudo CD-ROM format compatible area configured on the nonvolatile memory in the CD-ROM format, conversion between the access and the access in the nonvolatile memory format is performed. The control circuit according to claim 7, wherein 9. The control according to claim 7, wherein an invisible area different from each of the areas is provided on the non-volatile memory by the division management, and access to information on the invisible area by only the dedicated command is permitted. circuit. The command interpreting means,
Detecting the dedicated instruction when a bit pattern corresponding to the type and parameter of the instruction is stored in a predetermined register area provided in the memory;
10. The control circuit according to claim 7, wherein an execution result of the instruction is set as a bit pattern in a predetermined register area. The command interpreting means,
For the dedicated command, the hub, any one of the unit devices, a predetermined physical address in any one of the unit devices, a predetermined file name or an access related to predetermined content, according to a type of the command and a parameter thereof. The control circuit according to claim 7, wherein the control circuit detects a pattern. 12. The control circuit according to claim 7, wherein at least one of the following is performed according to the type of the dedicated instruction.
(1) Connection, disconnection and status acquisition of each unit device (2) Reading and writing of information in invisible area (3) Reading of individual identification information (4) Changing capacity of each area (5) Pseudo CD-ROM format compatibility Rewrite area update 13. The control circuit according to claim 8, further comprising a switch port for turning on / off connection of the pseudo CD-ROM format compatible area to a host. When a command for initializing an external device connected to the slave side connection port is not sent from the host side within a certain time after connection to the host side, the CD-ROM format compatible area is sent to the host side. 14. The control circuit according to claim 8, wherein the control circuit is connected. 15. The control circuit according to claim 6, wherein, for a predetermined area on the nonvolatile memory, data to be recorded is encrypted, and read data is decrypted. 16. A detachable type comprising: the control circuit according to claim 7; and a switch for determining whether to immediately connect a peripheral device connected to the slave connection port to the host. device. 17. The apparatus according to claim 1, further comprising: means for connecting a portable telephone terminal by wire or wirelessly; and means for connecting to a telephone network via an IP connection provided in a host computer. A detachable device according to claim 1. When a device of a predetermined type is connected, it is attached to and detached from a general-purpose peripheral device interface of a computer that executes a predetermined automatic start script or an automatic start program stored in the device. Or a readable and writable storage device, comprising a firmware program for a control circuit of a detachable device comprising:
The program is sent to the control circuit,
Allocating data exchange with the computer to a plurality of unit devices including a first unit device and a second unit device;
When connected to the general-purpose peripheral device interface, first, a signal simulating the device of the predetermined type for the first unit device is sent to the computer, and then, at a predetermined timing, the second unit A firmware program for a control circuit for a detachable device, wherein the computer sends a predetermined signal for receiving recognition of a device to the computer. As a USB client, in a firmware program of a control circuit that mediates access from the host side via USB to a rewritable nonvolatile memory,
The program is sent to the control circuit,
The memory is divided and managed in a plurality of areas,
External devices connected to the slave-side connection port for external device connection and each of the areas are connected to and disconnected from the host side as a plurality of unit devices divided by a hub,
A firmware program for a control circuit for detecting and executing a dedicated command transmitted from a host side and including at least one of the unit devices. The program is provided to the control circuit,
20. The control according to claim 19, wherein an invisible area different from each of the areas is provided on the non-volatile memory by the division management, and only information by the dedicated command is allowed to access information on the invisible area. Circuit firmware program. As a USB client, in a firmware program of a control circuit that mediates access from the host side via USB to a rewritable nonvolatile memory,
The program is sent to the control circuit,
Dividing and managing the memory into a plurality of areas and an invisible area in which a predetermined password is stored unlike these areas,
When connected to the host, one area is connected to the host as one device connected to the hub,
If a predetermined dedicated command has been transmitted from the host side, or if the password transmitted from the host side matches the predetermined password stored in the invisible area, the other area is connected to the hub. A firmware program for a control circuit, which is connected to the host as another device. The program is provided to the control circuit,
The dedicated instruction is detected when a bit pattern corresponding to the type and parameter of the instruction is stored in a predetermined register area provided in the memory,
22. The firmware program according to claim 19, wherein an execution result of the instruction is set as a bit pattern in a predetermined register area. The program is provided to the control circuit,
For the dedicated command, the hub, any one of the unit devices, a predetermined physical address in any one of the unit devices, a predetermined file name or an access related to predetermined content, according to a type of the command and a parameter thereof. 23. The firmware program for a control circuit according to claim 19, wherein a pattern is detected. The program is provided to the control circuit,
24. The firmware program for a control circuit according to claim 19, wherein data to be recorded is encrypted and read data is decrypted in a predetermined area on the nonvolatile memory. A detachable device according to any one of claims 1 to 6, 16, and 17, a control circuit according to any one of claims 7 to 15, a firmware program for a control circuit according to any of claims 18 to 24, An information processing method in a control circuit of a detachable device, which implements any one of the following. A detachable device according to any one of claims 1 to 6, 16, and 17, a control circuit according to any one of claims 7 to 15, a firmware program for a control circuit according to any of claims 18 to 24, A circuit design pattern in a control circuit of a detachable device, wherein the circuit design pattern realizes any one of the following.

Images