Data protection method and device, computer device, chip and chip module
By storing the image data in an unerasable SPI NOR Flash during the system burning process of the terminal device, the problems of data tampering and deletion are solved, and the secure solidification protection of the data is achieved, thereby improving the security and integrity of the data.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Applications(China)
- Current Assignee / Owner
- XIAMEN UNISOC TECH CO LTD
- Filing Date
- 2026-03-12
- Publication Date
- 2026-06-12
Smart Images

Figure CN122197104A_ABST
Abstract
Description
Technical Field
[0001] This application relates to the field of data processing technology, and in particular to a data protection method, apparatus, computer equipment, chip, and chip module. Background Technology
[0002] With the continuous development of software and hardware technologies and the increasing awareness of user data security, users' awareness of data confidentiality and prevention of data leakage has gradually increased. Attackers can attack data through network tampering, theft, malicious deletion and other methods, making data security issues extremely serious.
[0003] Currently, data protection is usually achieved by setting up firewalls, but this method also has certain drawbacks, and how to improve data security has become an urgent problem to be solved. Summary of the Invention
[0004] Therefore, it is necessary to provide a data protection method, device, computer equipment, chip, and chip module that can improve data security in response to the above-mentioned technical problems.
[0005] In a first aspect, this application provides a data protection method, comprising: receiving a target firmware package sent by a burning device, and burning the system according to the target firmware package; during the system burning process, receiving a hardening protection instruction sent by the burning device for target image data in the target firmware package; and in response to the hardening protection instruction, storing the target image data in the target flash memory space.
[0006] In one embodiment, before receiving the burning protection instruction sent by the burning device for the target image data in the target firmware package, the method further includes: performing burning initialization, and generating a handshake request after completing the burning initialization; and sending the handshake request to the burning device.
[0007] In one embodiment, the method further includes: generating feedback information and sending the feedback information to a programming device based on the size relationship between the storage space of the target flash memory and the first data volume of the target image data; wherein the feedback information includes solidification confirmation information or solidification failure information, the solidification confirmation information is used to indicate that the target image data has been stored in the target flash memory, and the solidification failure information indicates that the target image data has not been stored in the target flash memory, and the target flash memory includes SPI interface NOR flash memory.
[0008] In one embodiment, the method further includes: receiving a data protection instruction for target data based on a data protection interface; and, in response to the data protection instruction, performing hard-storage protection on the target data based on a second data volume of the target data and the remaining storage space of the target flash memory.
[0009] In one embodiment, the target data is solidified and protected based on the second data volume of the target data and the remaining storage space of the target flash memory, including: determining that the target flash memory is available based on the size relationship between the second data volume and the remaining storage space, and storing the target data in the target flash memory; generating solidification success information, and displaying the solidification success information on the data protection interface.
[0010] In one embodiment, the target data is solidified and protected based on the second data volume of the target data and the remaining storage space of the target flash memory, including: determining that the target flash memory is in an unavailable state based on the relationship between the second data volume and the remaining storage space; generating insufficient space information and displaying the insufficient space information on the data protection interface.
[0011] Secondly, this application also provides a data protection device, comprising: a firmware package receiving module, configured to receive a target firmware package sent by a burning device and perform system burning based on the target firmware package; a hardening instruction receiving module, configured to receive a hardening protection instruction sent by the burning device for the target image data in the target firmware package during the system burning process; and a hardening protection module, configured to store the target image data in the target flash memory in response to the hardening protection instruction.
[0012] Thirdly, this application also provides a computer device, including a memory and a processor, wherein the memory stores a computer program, and the processor executes the computer program to implement the steps of the method provided in the first aspect above.
[0013] Fourthly, this application also provides a chip, including a processor and a communication interface, wherein the processor is configured to enable the chip to implement the steps of the method provided in the first aspect above.
[0014] Fifthly, this application also provides a chip module, including a communication module, a power module, a storage module, and a chip, wherein: the power module is used to provide electrical energy to the chip module; the storage module is used to store data and instructions; the communication module is used for internal communication within the chip module, or for communication between the chip module and external devices; and the chip is used to perform the steps of the method provided in the first aspect above.
[0015] Sixthly, this application also provides a computer-readable storage medium having a computer program stored thereon, which, when executed by a processor, implements the steps of the method provided in the first aspect above.
[0016] In a seventh aspect, this application also provides a computer program product, including a computer program that, when executed by a processor, implements the steps of the method provided in the first aspect above.
[0017] The aforementioned data protection method, apparatus, computer equipment, chip, and chip module, during the system burning process of the terminal device, first receive the target firmware package sent by the burning device, and perform system burning based on the image file in the target firmware package. During the system burning process, the terminal device receives a hardening protection instruction sent by the burning device for the target image data in the target firmware package. The hardening protection instruction instructs the terminal device to harden and protect the target image data. In response to the hardening protection instruction, the terminal device stores the target image data in the target flash memory space for hardening protection. This achieves data protection through hardening protection, avoids the erasure of important data, and improves data security. Attached Figure Description
[0018] To more clearly illustrate the technical solutions in the embodiments of this application or related technologies, the drawings used in the description of the embodiments of this application or related technologies will be briefly introduced below. Obviously, the drawings described below are only some embodiments of this application. For those skilled in the art, other related drawings can be obtained based on these drawings without creative effort.
[0019] Figure 1 This is a diagram illustrating the application environment of a data protection method in one embodiment;
[0020] Figure 2 This is a flowchart illustrating a data protection method in one embodiment;
[0021] Figure 3 This is a flowchart illustrating the handshake interaction steps in one embodiment;
[0022] Figure 4 This is a flowchart illustrating the feedback information interaction steps in one embodiment;
[0023] Figure 5 This is a flowchart illustrating the human-computer interaction steps in one embodiment;
[0024] Figure 6 This is a flowchart illustrating step 502 in one embodiment;
[0025] Figure 7 This is a flowchart illustrating step 503 in one embodiment;
[0026] Figure 8 This is a flowchart illustrating a data protection method in another embodiment;
[0027] Figure 9 This is a flowchart illustrating a data protection method in another embodiment;
[0028] Figure 10 This is a structural block diagram of a data protection device in one embodiment;
[0029] Figure 11 This is an internal structural diagram of a computer device in one embodiment;
[0030] Figure 12 This is an internal structure diagram of a chip module in one embodiment. Detailed Implementation
[0031] To make the objectives, technical solutions, and advantages of this application clearer, the following detailed description is provided in conjunction with the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are merely illustrative and not intended to limit the scope of this application.
[0032] It should be noted that the terms "first," "second," etc., used in this application can be used to describe various elements, but these elements are not limited by these terms. These terms are only used to distinguish the first element from the second element. The terms "comprising" and "having," and any variations thereof, used in this application, are intended to cover non-exclusive inclusion. The term "multiple" used in this application refers to two or more. The term "and / or" used in this application refers to one of the embodiments, or any combination of multiple embodiments.
[0033] The data protection method provided in this application embodiment can be applied to, for example... Figure 1 The application environment shown includes at least a programming device 101 and a terminal device 102.
[0034] The burning device 101 is used to send the target firmware package to the terminal device 102, enabling the terminal device 102 to perform system burning. The burning device 101 is also used to generate a hardening protection instruction for the target image data, enabling the terminal device to perform hardening protection processing on the target image data. The burning device 101 can be a server, which can be a standalone physical server, a server cluster or distributed system composed of multiple physical servers, or a cloud server providing cloud computing services. The burning device 101 can also be configured with an interactive page, allowing the user to configure the target image data to be burned and / or the size of the target flash memory space through the interactive page.
[0035] Terminal device 102 receives the target firmware package sent by burning device 101, performs system burning based on the target firmware package, and during the burning process, receives a hardening protection command sent by burning device 101 for the target image data in the target firmware package, and in response to the hardening protection command, stores the target image data in the target flash memory space for hardening protection of the target image data. Terminal device 102 may be deployed with a chip / chip module capable of data processing, which can realize the above functions. Terminal device 102 may be, but is not limited to, various personal computers, laptops, smartphones, tablets, drones, low-altitude aircraft, IoT devices, and portable wearable devices. IoT devices may include smart speakers, smart TVs, smart air conditioners, smart vehicle devices, projection devices, etc. Portable wearable devices may include smartwatches, smart bracelets, head-mounted devices, etc. Head-mounted devices may include virtual reality (VR) devices, augmented reality (AR) devices, smart glasses, etc. A data protection program can be installed in the terminal device 102, and the terminal device can run the data protection program to protect the target data according to the instructions input by the user.
[0036] In real-world scenarios, data security is a crucial part of ensuring a healthy life and work. Data loss or corruption can lead to devices becoming unusable or users losing important information and assets. To protect critical data from modification or deletion and prevent damage to users' vital information, it is necessary to protect confidential data, ensure data integrity, and prevent data from being damaged or lost.
[0037] In response to this, this application implements solidified protection of important data during system flashing on the terminal device, and provides protection from the time the terminal device is not in use, preventing subsequent data tampering. Furthermore, through solidified protection, data tampering is fundamentally avoided, protecting data security and integrity, and thus preventing data damage or loss.
[0038] In one exemplary embodiment, such as Figure 2 As shown, a data protection method is provided, which is applied to... Figure 1 Terminal devices or applications Figure 1 The following steps are used as an example of a chip / chip module with data processing capabilities, including steps 201 to 203.
[0039] Step 201: Receive the target firmware package sent by the burning device, and burn the system according to the target firmware package.
[0040] In this application, the target firmware package refers to the file package required for system flashing. The target firmware package includes multiple image files, which can be in .img format. The terminal device can execute the image files in the target firmware package to flash the system, and the system can refer to the operating system of the terminal device.
[0041] During implementation, the burning device can establish a communication connection with the terminal device beforehand. This communication connection can be an electrical connection via cable or a wireless connection via Bluetooth, near-field communication, network, etc. Data is transmitted through the communication connection, and the burning device sends the target firmware package to the terminal device; the terminal device receives the target firmware package sent by the burning device through the communication connection.
[0042] During execution, the user can interact with the burning device and configure the target image data that needs to be solidified and protected on the burning device. After receiving the user's instruction, the burning device can generate a solidification and protection instruction for the target image data. This solidification and protection instruction can include the file identifier of the target image data and is used to instruct the terminal device to solidify and protect the target image data.
[0043] Furthermore, the user can configure the target flash memory space size on the programming device. The user can input the target flash memory space size on the interactive page, and the programming device can generate a firmware protection instruction that includes the target flash memory space size. The firmware protection instruction can also be used to instruct the terminal device to divide the target flash memory space into storage spaces.
[0044] Step 202: During the system burning process, receive the hardening protection command sent by the burning device for the target image data in the target firmware package.
[0045] During implementation, the programming device generates a curing protection command; the terminal device receives the curing protection command sent by the programming device.
[0046] During the execution process, the terminal device can first perform programming initialization, and after programming initialization is completed, it can receive the solidification protection command sent by the programming device.
[0047] Step 203: In response to the hardening protection command, the target image data is stored in the target flash memory space.
[0048] In this application, the target flash memory space refers to a flash memory space with specific properties. The characteristic of the target flash memory space is that the data area is non-erasable and non-writable, which fundamentally avoids the risk of data stored in the target flash memory space being tampered with or deleted. The target flash memory space includes SPI interface NOR flash memory space, namely: SPI NOR Flash. SPI (Serial Peripheral Interface) is a synchronous serial communication protocol, and NOR Flash is a non-volatile flash memory technology that supports random byte-by-byte reads and has "eXecute In Place" (XIP) capability, which can store directly executable code (such as bootloader, firmware, etc.). It should be noted that the target flash memory space can be a data partition allocated by the terminal device based on the space size included in the firmware protection instructions.
[0049] During implementation, the terminal device responds to the firmware protection command by storing the target image data in the target flash memory. During execution, the terminal device can download the target image file from the target firmware package to its internal storage and then move the target image file to the target flash memory.
[0050] Furthermore, to enable users to intuitively perceive the burning and hardening / protection progress, the terminal device can send feedback information to the burning device after hardening / protection is completed. Upon receiving the feedback information, the burning device can display it on its interactive page. This feedback information includes hardening confirmation information or hardening failure information. Hardening confirmation information indicates that the target image data has been stored in the target flash memory space, while hardening failure information indicates that the target image data has not been stored in the target flash memory space.
[0051] In the above data protection method, during the system burning process of the terminal device, the target firmware package sent by the burning device is first received, and the system is burned according to the image file in the target firmware package. During the system burning process, the solidification protection instruction sent by the burning device for the target image data in the target firmware package is received. The solidification protection instruction instructs the terminal device to solidify and protect the target image data. In response to the solidification protection instruction, the terminal device stores the target image data in the target flash memory space for solidification protection. This realizes data protection through solidification protection, avoids the erasure of important data, and improves data security.
[0052] Based on the above exemplary embodiment, the following provides a data protection method in one or more exemplary embodiments, in which the method is applied to... Figure 1 Taking the terminal device in the example, the explanation includes the following content.
[0053] During the system flashing process on the terminal device, the system flashing can be performed in stages, namely, the initialization stage and the execution stage: FDL1 (First Download Agent Stage 1) and FDL2 (First Download Agent Stage 2). FDL2 can be used for firmware protection. In one optional implementation provided in this application, such as... Figure 3 As shown, before receiving the hardening protection command during the system programming process, the method further includes steps 301 to 302:
[0054] Step 301: Perform programming initialization and generate a handshake request after programming initialization is completed.
[0055] During implementation, after receiving the target firmware package, the terminal device first performs a burning initialization process, namely: first, FDL1 is performed, and after the initialization (FDL1) is completed, a handshake request for FDL2 is generated; the handshake request is used to indicate to the burning device that the burning initialization of the terminal device has been completed.
[0056] For example, the terminal device first enters download mode. Romcode downloads FDL1, and after FDL1 is completed, it downloads FDL2. FDL2 downloads each image to the device's internal storage. After Romcode finishes downloading FDL1, the PC pointer jumps to FDL1 to run. After FDL1 completes the initialization of CLK, Power, and DDR, FDL1 downloads FDL2 to DDR and jumps to FDL2 to run. FDL2 then interacts with the tool to download the images in the PAC package to the device's internal storage. Each image has a corresponding partition in a specific location in SPI NOR flash.
[0057] Step 302: Send a handshake request to the programming device.
[0058] During implementation, the terminal device generates a handshake request and sends it to the programming device; the programming device responds to the handshake request and generates a hardening protection command.
[0059] For example, during the FDL2 stage, the tool will handshake with FDL2. After a successful handshake, the burning device will issue a hardening protection command, requesting hardening protection for the specified img data. The terminal device executes the command, passing the specific data and the flag indicating whether hardening is required to the underlying driver software. The driver software recognizes the hardening protection flag and the img data, and based on the characteristics of SPI NOR Flash, performs data security protection measures on the corresponding data storage area according to the pre-allocated data partitions. After hardening protection, it returns the protected information to the download tool.
[0060] One optional implementation provided in this application is to perform handshake processing between the terminal device and the burning device after the system burning initialization is completed. Without affecting the system burning, the solidification protection process is performed in parallel, and important data is protected even when the terminal device is not in use, thereby improving the reliability of data protection.
[0061] During the hardening and protection process, there is a situation where the storage space of the target flash memory cannot meet the data volume of the target image data. To address this, feedback information can be generated based on the relationship between the storage space of the target flash memory and the data volume of the target image data. In one optional implementation provided in this application, such as... Figure 4 As shown, the method further includes step 401:
[0062] Step 401: Based on the relationship between the storage space of the target flash memory and the size of the first data volume of the target image data, generate feedback information and send the feedback information to the burning device.
[0063] During implementation, the terminal device detects whether the storage space of the target flash memory is greater than the first data volume of the target image data, obtains the size relationship between the storage space of the target flash memory and the first data volume of the target image data, generates feedback information based on the size relationship, and sends the feedback information to the burning device.
[0064] During execution, if the storage space of the target flash memory is greater than the first data volume of the target image data, the terminal device generates a solidification confirmation message and sends it to the burning device to indicate that the terminal device has stored the target image data in the target flash memory; if the storage space of the target flash memory is less than the first data volume of the target image data, the terminal device generates a solidification failure message and sends it to the burning device to indicate that the target flash memory cannot store the target image data.
[0065] Furthermore, when the burning device receives and displays the burning failure information, the user can reconfigure the size of the target flash memory space and regenerate the burning protection command to send to the terminal device. The terminal device can respond to the updated burning protection command, repartition the data partition of the target flash memory space, and perform the burning protection process of the target image data again.
[0066] One optional implementation provided in this application displays the result of the hardening protection to the user through feedback information during the system burning process on the terminal device. This allows the user to intuitively perceive the result of the hardening protection, improving user awareness. At the same time, in the event of hardening failure, the user can reconfigure, improving the timeliness of hardening protection and thus enhancing data security.
[0067] In real-world scenarios, the target flash memory may still have remaining space to store additional data. During use of the terminal device, the user can also select target data for hardening protection through a data protection program. In one optional implementation provided in this application, such as... Figure 5 As shown, the method further includes steps 501 to 502:
[0068] Step 501: Receive data protection instructions for the target data based on the data protection interface.
[0069] In this application, the data protection interface is the program interface of the data protection program, where users can select or upload target data that needs to be protected.
[0070] During implementation, users can input data protection commands for target data into the terminal device through the data protection interface; the terminal device can receive data protection commands for target data input by users through the data protection interface.
[0071] The target data can be at least one of the following: text data, image data, audio data, video data, and executable code data.
[0072] Step 502: In response to the data protection instruction, the target data is solidified for protection based on the second data volume of the target data and the remaining storage space of the target flash memory.
[0073] During implementation, the terminal device responds to the data protection command, calculates the relationship between the second data volume of the target data and the remaining storage space of the target flash memory, and performs solid-state protection on the target data according to the size relationship.
[0074] For example, during the client-side usage phase of a data protection program, the user selects the data file to be protected through the data interaction interface. The file system identifies the location of the file and performs an integrity check. After confirming that it is correct, the location information and the identifier that needs to be permanently protected are passed to the underlying software execution flow. The underlying driver implements the following logic: the file to be protected is migrated to the target flash memory space in the flash memory. Then, based on the location information and the amount of data, the driver implements permanent protection with a minimal scope, protecting the file while avoiding affecting more data areas that cannot be erased or rewritable, thereby achieving permanent protection of the corresponding important files.
[0075] One optional implementation provided in this application offers a method for solidifying and protecting data during the user's use of the terminal device, enabling the user to solidify and protect important target data while using the terminal device, thereby further enhancing data security.
[0076] During the process of solidifying and protecting the target data, a successful solidification message can be returned to the user and displayed after the solidification and protection are completed; in one optional implementation method provided by this application, such as Figure 6 As shown, step 502 includes steps 601 to 602:
[0077] Step 601: Based on the relationship between the second data volume and the remaining storage space, determine that the target flash memory space is available, and store the target data in the target flash memory space.
[0078] During implementation, the terminal device detects whether the second data volume is greater than the remaining storage space of the target flash memory. If the second data volume is greater than or equal to the remaining storage space of the target flash memory, the target flash memory is determined to be available, indicating that the target flash memory can store the target data, and the target data is stored in the target flash memory.
[0079] Step 602: Generate a successful curing message and display the successful curing message on the data protection interface.
[0080] During implementation, the terminal device generates a successful solidification message and displays it on the data interaction interface to show the user.
[0081] For example, regarding data security protection during the user's usage phase, when a user needs to protect important data to prevent accidental formatting, deletion, or malicious modification, they can submit a security protection request through the data protection interface settings. The data protection program will then transmit the file data to be protected and the protection instructions to the underlying storage driver software through the file system to implement the corresponding solidification protection measures and generate a solidification success message displayed on the data interaction page.
[0082] In addition, there are cases where protection fails. To address this, this application provides an optional implementation method, such as... Figure 7 As shown, step 502 includes steps 701 to 702:
[0083] Step 701: Based on the relationship between the second data volume and the remaining storage space, determine that the target flash memory space is in an unavailable state.
[0084] During implementation, the terminal device detects whether the second data volume is greater than the remaining storage space of the target flash memory. If the second data volume is less than the remaining storage space, it indicates that the remaining storage space of the target flash memory is insufficient to store the target data, and the target flash memory is determined to be unusable.
[0085] Step 702: Generate insufficient space information and display the insufficient space information on the data protection interface.
[0086] During implementation, the terminal device generates insufficient space information in response to the unavailable state and displays the insufficient space information on the data protection interface to show the user.
[0087] Furthermore, during implementation, users can further expand the target flash memory space through the data protection interface. Users can input the space value and confirm; the terminal device responds to the input space expansion command and expands the target flash memory space to store the target data.
[0088] One optional implementation method provided in this application generates corresponding information to be displayed to the user after the data is solidified, and realizes interaction with the user through the data protection interface, thereby improving the user's perception and enhancing the reliability and usability of the data protection program.
[0089] In one embodiment, see Figure 8 The diagram illustrates a flowchart of a data protection method provided in an embodiment of this application, which can be applied to... Figure 1 In the terminal device shown. For example... Figure 8 As shown, the data protection method may include the following steps:
[0090] Step 801: Receive the target firmware package sent by the burning device, and burn the system according to the target firmware package.
[0091] Step 802: During the system flashing process, flashing initialization is performed, and a handshake request is generated after the flashing initialization is completed.
[0092] Step 803: Send a handshake request to the burning device and receive a hardening protection instruction sent by the burning device for the target image data in the target firmware package.
[0093] Step 804: In response to the hardening protection command, the target image data is stored in the target flash memory space.
[0094] Step 805: Based on the relationship between the storage space of the target flash memory and the size of the first data volume of the target image data, generate feedback information and send the feedback information to the burning device.
[0095] It should be noted that any one or more of steps 801 to 805, or any combination of steps 201 to 203 provided in the above embodiments, can be selected to form a new implementation method according to the needs of implementation and deployment. Furthermore, any one or more technical features in the technical solution composed of steps 801 to 805 can also be selected to form a new implementation method according to the actual deployment needs, or technical features in one or more optional implementations provided in one or more of the above embodiments can be selected to form a new implementation method. These will not be elaborated on here.
[0096] In one embodiment, see Figure 9 It illustrates a flowchart of a data protection method provided in another embodiment of this application, which can be applied to... Figure 1 In the terminal device shown. For example... Figure 9 As shown, the data protection method may include the following steps:
[0097] Step 901: Receive data protection instructions for the target data based on the data protection interface.
[0098] Step 902: Based on the relationship between the second data volume and the remaining storage space, determine that the target flash memory space is available, and store the target data in the target flash memory space.
[0099] Step 903: Generate a successful curing message and display the successful curing message on the data protection interface.
[0100] It should be understood that although the steps in the flowcharts of the embodiments described above are shown sequentially according to the arrows, these steps are not necessarily executed in the order indicated by the arrows. Unless explicitly stated herein, there is no strict order restriction on the execution of these steps, and they can be executed in other orders. Moreover, at least some steps in the flowcharts of the embodiments described above may include multiple steps or multiple stages. These steps or stages are not necessarily completed at the same time, but can be executed at different times. The execution order of these steps or stages is not necessarily sequential, but can be performed alternately or in turn with other steps or at least some of the steps or stages in other steps. It is understood that the steps in different embodiments can be freely combined as needed, and all non-contradictory solutions formed by such combinations are within the scope of protection of this application.
[0101] Based on the same inventive concept, this application also provides a data protection device for implementing the data protection method described above. This device can be applied to or integrated into a chip or chip module, for example. The solution provided by this device is similar to the solution described in the above method; therefore, the specific limitations in one or more data protection device embodiments provided below can be found in the limitations of the data protection method described above, and will not be repeated here.
[0102] In one exemplary embodiment, such as Figure 10 As shown, a data protection device is provided, including: a firmware package receiving module 1001, a firmware instruction receiving module 1002, and a firmware protection module 1003, wherein: the firmware package receiving module 1001 is used to receive a target firmware package sent by a burning device and perform system burning based on the target firmware package; the firmware instruction receiving module 1002 is used to receive a firmware protection instruction sent by the burning device for the target image data in the target firmware package during the system burning process; and the firmware protection module 1003 is used to store the target image data into the target flash memory space in response to the firmware protection instruction.
[0103] In one embodiment, the apparatus further includes a handshake module and a handshake request sending module, wherein: the handshake module is used to perform programming initialization and generate a handshake request after the programming initialization is completed; the handshake request sending module is used to send the handshake request to the programming device.
[0104] In one embodiment, the apparatus further includes a feedback module, configured to generate feedback information and send the feedback information to the programming device based on the relationship between the storage space of the target flash memory and the first data volume of the target image data; wherein the feedback information includes solidification confirmation information or solidification failure information, the solidification confirmation information is used to indicate that the target image data has been stored in the target flash memory, and the solidification failure information indicates that the target image data has not been stored in the target flash memory, the target flash memory including SPI interface NOR flash memory.
[0105] In one embodiment, the apparatus further includes a data protection instruction receiving module and a solidified protection module, wherein: the data protection instruction receiving module is used to receive a data protection instruction for the target data based on a data protection interface; and the solidified protection module is used to solidify and protect the target data according to a second data volume of the target data and the remaining storage space of the target flash memory in response to the data protection instruction.
[0106] In one embodiment, the data preservation protection module includes a first state determination unit and a first display unit, wherein: the first state determination unit is used to determine that the target flash memory space is in an available state based on the relationship between the second data volume and the remaining storage space, and to store the target data in the target flash memory space; the first display unit is used to generate a data preservation success message and display the data preservation success message on the data protection interface.
[0107] In one embodiment, the solidification protection module includes a second state determination unit and a second display unit, wherein: the second state determination unit is used to determine that the target flash memory space is in an unavailable state based on the relationship between the second data volume and the remaining storage space; the second display unit is used to generate insufficient space information and display the insufficient space information on the data protection interface.
[0108] Regarding the modules / units included in the various devices and products described in the above embodiments, they can be software modules / units, hardware modules / units, or a combination of both. For example, for various devices and products applied to or integrated into a chip, all of their modules / units can be implemented using hardware methods such as circuits, or at least some modules / units can be implemented using software programs that run on a processor integrated within the chip, while the remaining (if any) modules / units can be implemented using hardware methods such as circuits; for various devices and products applied to or integrated into a chip module, all of their modules / units can be implemented using hardware methods such as circuits, and different modules / units can be located in the same component (e.g., chip, circuit module, etc.) or different components of the chip module, or at least some modules / units can be implemented using hardware methods such as circuits. The components can be implemented using software programs that run on the processor integrated within the chip module. The remaining (if any) modules / units can be implemented using hardware methods such as circuits. For various devices and products applied to or integrated into the terminal, each of its components / units can be implemented using hardware methods such as circuits. Different modules / units can be located in the same component (e.g., chip, circuit module, etc.) or in different components within the terminal. Alternatively, at least some modules / units can be implemented using software programs that run on the processor integrated within the terminal, while the remaining (if any) modules / units can be implemented using hardware methods such as circuits.
[0109] In one exemplary embodiment, a computer device is provided, which may be a terminal, and its internal structure diagram may be as follows: Figure 11As shown, the computer device includes a processor, memory, input / output interfaces, a communication interface, a display unit, and an input device. The processor, memory, and input / output interfaces are connected via a system bus, and the communication interface, display unit, and input device are also connected to the system bus via the input / output interfaces. The processor provides computing and control capabilities. The memory includes non-volatile storage media and internal memory. The non-volatile storage media stores the operating system and computer programs. The internal memory provides an environment for the operation of the operating system and computer programs stored in the non-volatile storage media. The input / output interfaces are used for exchanging information between the processor and external devices. The communication interface is used for wired or wireless communication with external terminals; wireless communication can be achieved through Wi-Fi, mobile cellular networks, Near Field Communication (NFC), or other technologies. When the computer program is executed by the processor, it implements a data protection method. The display unit is used to form a visually visible image and can be a display screen, a projection device, or a virtual reality imaging device. The display screen can be an LCD screen or an e-ink screen. The input device of the computer device can be a touch layer covering the display screen, or buttons, trackballs, or touchpads set on the casing of the computer device, or external keyboards, touchpads, or mice, etc.
[0110] Those skilled in the art will understand that Figure 11 The structure shown is merely a block diagram of a portion of the structure related to the present application and does not constitute a limitation on the computer device to which the present application is applied. Specific computer devices may include more or fewer components than those shown in the figure, or combine certain components, or have different component arrangements.
[0111] In one exemplary embodiment, a computer device is provided, including a memory and a processor. The memory stores a computer program, and the processor executes the computer program to perform the following steps: receiving a target firmware package sent by a burning device, and burning the system according to the target firmware package; during the system burning process, receiving a hardening protection instruction sent by the burning device for target image data in the target firmware package; and in response to the hardening protection instruction, storing the target image data in a target flash memory space.
[0112] In one embodiment, when the processor executes the computer program, it further performs the following steps: performs programming initialization and generates a handshake request after completing programming initialization; and sends the handshake request to the programming device.
[0113] In one embodiment, when the processor executes the computer program, it further performs the following steps: generating feedback information and sending the feedback information to the programming device based on the relationship between the storage space of the target flash memory and the size of the first data volume of the target image data; wherein the feedback information includes solidification confirmation information or solidification failure information, the solidification confirmation information is used to indicate that the target image data has been stored in the target flash memory, and the solidification failure information indicates that the target image data has not been stored in the target flash memory, and the target flash memory includes SPI interface NOR flash memory.
[0114] In one embodiment, when the processor executes the computer program, it further performs the following steps: receiving a data protection instruction for target data based on a data protection interface; and in response to the data protection instruction, performing hard-coded protection on the target data according to a second data volume of the target data and the remaining storage space of the target flash memory.
[0115] In one embodiment, when the processor executes the computer program, it further performs the following steps: determining that the target flash memory space is available based on the relationship between the second data volume and the remaining storage space, and storing the target data in the target flash memory space; generating a successful hardening message, and displaying the successful hardening message on the data protection interface.
[0116] In one embodiment, when the processor executes the computer program, it further performs the following steps: determining that the target flash memory space is unavailable based on the relationship between the second data volume and the remaining storage space; generating insufficient space information and displaying the insufficient space information on the data protection interface.
[0117] Based on the same inventive concept, this application also provides a chip, including a processor and a communication interface; the communication interface is used to receive or send data; the processor is configured to cause the chip to perform the following steps: receiving a target firmware package sent by a programming device, and programming the system according to the target firmware package; during the system programming process, receiving a hardening protection instruction sent by the programming device for the target image data in the target firmware package; and in response to the hardening protection instruction, storing the target image data in the target flash memory space.
[0118] In one embodiment, the processor is configured to cause the chip to perform the following steps: perform programming initialization and generate a handshake request after the programming initialization is completed; and send the handshake request to the programming device.
[0119] In one embodiment, the processor is configured to cause the chip to perform the following steps:
[0120] In one embodiment, the processor is configured to cause the chip to perform the following steps: generating feedback information and sending the feedback information to a programming device based on the relationship between the storage space of the target flash memory and the size of a first data volume of the target image data; wherein the feedback information includes a curing confirmation message or a curing failure message, the curing confirmation message indicating that the target image data has been stored in the target flash memory, and the curing failure message indicating that the target image data has not been stored in the target flash memory, the target flash memory including an SPI interface NOR flash memory.
[0121] In one embodiment, the processor is configured to cause the chip to perform the following steps: receiving a data protection instruction for target data based on a data protection interface; and, in response to the data protection instruction, performing hard-coded protection on the target data according to a second data amount of the target data and the remaining storage space of the target flash memory.
[0122] In one embodiment, the processor is configured to cause the chip to perform the following steps: determine that the target flash memory space is available based on the relationship between the second data volume and the remaining storage space, and store the target data in the target flash memory space; generate a successful hardening message, and display the successful hardening message on the data protection interface.
[0123] In one embodiment, the processor is configured to cause the chip to perform the following steps: determine that the target flash memory space is unavailable based on the relationship between the second data volume and the remaining storage space; generate insufficient space information and display the insufficient space information on the data protection interface.
[0124] It is understood that the chip involved in the embodiments of this application may be a field-programmable gate array (FPGA), may be an application-specific integrated circuit (ASIC), may be a system on chip (SoC), may be a central processor unit (CPU), may be a network processor (NP), may be a digital signal processor (DSP), may be a microcontroller unit (MCU), may be a programmable logic device (PLD), or other integrated chips, etc.
[0125] Based on the same inventive concept, this application also provides a chip module, such as... Figure 12As shown, the chip module includes a communication module, a power module, a storage module, and a chip. Among them:
[0126] The power module is used to provide power to the chip module; the storage module is used to store data and instructions; the communication module is used for internal communication within the chip module, or for communication between the chip module and external devices; this chip corresponds to the chip in the above chip embodiment.
[0127] The implementation method of this chip module can be found in the relevant content of the above chip embodiment, and will not be repeated here.
[0128] In one embodiment, a computer-readable storage medium is provided having a computer program stored thereon. When the computer program is executed by a processor, it performs the following steps: receiving a target firmware package sent by a burning device, and burning the system according to the target firmware package; during the system burning process, receiving a hardening protection instruction sent by the burning device for target image data in the target firmware package; and in response to the hardening protection instruction, storing the target image data in the target flash memory space.
[0129] In one embodiment, when the processor executes the computer program, it further performs the following steps: performs programming initialization and generates a handshake request after completing programming initialization; and sends the handshake request to the programming device.
[0130] In one embodiment, when the processor executes the computer program, it further performs the following steps: generating feedback information and sending the feedback information to the programming device based on the relationship between the storage space of the target flash memory and the size of the first data volume of the target image data; wherein the feedback information includes solidification confirmation information or solidification failure information, the solidification confirmation information is used to indicate that the target image data has been stored in the target flash memory, and the solidification failure information indicates that the target image data has not been stored in the target flash memory, and the target flash memory includes SPI interface NOR flash memory.
[0131] In one embodiment, when the processor executes the computer program, it further performs the following steps: receiving a data protection instruction for target data based on a data protection interface; and in response to the data protection instruction, performing hard-coded protection on the target data according to a second data volume of the target data and the remaining storage space of the target flash memory.
[0132] In one embodiment, when the processor executes the computer program, it further performs the following steps: determining that the target flash memory space is available based on the relationship between the second data volume and the remaining storage space, and storing the target data in the target flash memory space; generating a successful hardening message, and displaying the successful hardening message on the data protection interface.
[0133] In one embodiment, when the processor executes the computer program, it further performs the following steps: determining that the target flash memory space is unavailable based on the relationship between the second data volume and the remaining storage space; generating insufficient space information and displaying the insufficient space information on the data protection interface.
[0134] In one embodiment, a computer program product is provided, including a computer program that, when executed by a processor, performs the following steps: receiving a target firmware package sent by a burning device, and burning the system according to the target firmware package; during the system burning process, receiving a hardening protection instruction sent by the burning device for target image data in the target firmware package; and in response to the hardening protection instruction, storing the target image data in the target flash memory space.
[0135] In one embodiment, when the processor executes the computer program, it further performs the following steps: performs programming initialization and generates a handshake request after completing programming initialization; and sends the handshake request to the programming device.
[0136] In one embodiment, when the processor executes the computer program, it further performs the following steps: generating feedback information and sending the feedback information to the programming device based on the relationship between the storage space of the target flash memory and the size of the first data volume of the target image data; wherein the feedback information includes solidification confirmation information or solidification failure information, the solidification confirmation information is used to indicate that the target image data has been stored in the target flash memory, and the solidification failure information indicates that the target image data has not been stored in the target flash memory, and the target flash memory includes SPI interface NOR flash memory.
[0137] In one embodiment, when the processor executes the computer program, it further performs the following steps: receiving a data protection instruction for target data based on a data protection interface; and in response to the data protection instruction, performing hard-coded protection on the target data according to a second data volume of the target data and the remaining storage space of the target flash memory.
[0138] In one embodiment, when the processor executes the computer program, it further performs the following steps: determining that the target flash memory space is available based on the relationship between the second data volume and the remaining storage space, and storing the target data in the target flash memory space; generating a successful hardening message, and displaying the successful hardening message on the data protection interface.
[0139] In one embodiment, when the processor executes the computer program, it further performs the following steps: determining that the target flash memory space is unavailable based on the relationship between the second data volume and the remaining storage space; generating insufficient space information and displaying the insufficient space information on the data protection interface.
[0140] It should be noted that the user information (including but not limited to user device information, user personal information, etc.) and data (including but not limited to data used for analysis, data stored, data displayed, etc.) involved in this application are all information and data authorized by the user or fully authorized by all parties, and the collection, use and processing of the relevant data must comply with relevant regulations.
[0141] Those skilled in the art will understand that all or part of the processes in the methods of the above embodiments can be implemented by a computer program instructing related hardware. The computer program can be stored in a non-volatile computer-readable storage medium, and when executed, it can include the processes of the embodiments of the above methods. Any references to memory, databases, or other media used in the embodiments provided in this application can include at least one of non-volatile memory and volatile memory. Non-volatile memory can include read-only memory (ROM), magnetic tape, floppy disk, flash memory, optical memory, high-density embedded non-volatile memory, resistive random access memory (ReRAM), magnetic random access memory (MRAM), ferroelectric random access memory (FRAM), phase change memory (PCM), graphene memory, etc. Volatile memory can include random access memory (RAM) or external cache memory, etc. By way of illustration and not limitation, RAM can take many forms, such as Static Random Access Memory (SRAM) or Dynamic Random Access Memory (DRAM). The databases involved in the embodiments provided in this application may include at least one type of relational database and non-relational database. Non-relational databases may include, but are not limited to, blockchain-based distributed databases. The processors involved in the embodiments provided in this application may be general-purpose processors, central processing units, graphics processing units, digital signal processors, programmable logic devices, quantum computing-based data processing logic devices, artificial intelligence (AI) processors, etc., and are not limited to these.
[0142] The technical features of the above embodiments can be combined in any way. For the sake of brevity, not all possible combinations of the technical features in the above embodiments are described. However, as long as there is no contradiction in the combination of these technical features, they should be considered to be within the scope of this application.
[0143] The embodiments described above are merely illustrative of several implementation methods of this application, and while the descriptions are specific and detailed, they should not be construed as limiting the scope of this patent application. It should be noted that those skilled in the art can make various modifications and improvements without departing from the concept of this application, and these all fall within the protection scope of this application. Therefore, the protection scope of this application should be determined by the appended claims.
Claims
1. A data protection method, characterized in that, The method includes: Receive the target firmware package sent by the burning device, and burn the system according to the target firmware package; During the system burning process, the system receives a hardening protection command sent by the burning device for the target image data in the target firmware package; In response to the solidification protection command, the target image data is stored in the target flash memory space.
2. The method according to claim 1, characterized in that, Before receiving the burning device's burning protection instruction for the target image data in the target firmware package, the method further includes: Perform the programming initialization and generate a handshake request after the programming initialization is completed; The handshake request is sent to the programming device.
3. The method according to claim 1, characterized in that, The method further includes: Based on the relationship between the storage space of the target flash memory and the size of the first data volume of the target image data, feedback information is generated and sent to the burning device; The feedback information includes solidification confirmation information or solidification failure information. The solidification confirmation information indicates that the target image data has been stored in the target flash memory space, and the solidification failure information indicates that the target image data has not been stored in the target flash memory space. The target flash memory space includes SPI interface NOR flash memory space.
4. The method according to any one of claims 1-3, characterized in that, The method further includes: Based on the data protection interface, receive data protection instructions for the target data; In response to the data protection instruction, the target data is permanently protected based on the second data volume of the target data and the remaining storage space of the target flash memory.
5. The method according to claim 4, characterized in that, The step of solidifying and protecting the target data based on the second data volume of the target data and the remaining storage space of the target flash memory includes: Based on the relationship between the second data volume and the remaining storage space, the target flash memory space is determined to be in an available state, and the target data is stored in the target flash memory space; Generate a successful curing message and display the successful curing message on the data protection interface.
6. The method according to claim 4, characterized in that, The step of solidifying and protecting the target data based on the second data volume of the target data and the remaining storage space of the target flash memory includes: Based on the relationship between the second data volume and the remaining storage space, the target flash memory space is determined to be in an unavailable state; An insufficient space information is generated and displayed on the data protection interface.
7. A data protection device, characterized in that, The device includes: The firmware package receiving module is used to receive the target firmware package sent by the burning device and to burn the system according to the target firmware package. The solidification instruction receiving module is used to receive solidification protection instructions sent by the burning device for the target image data in the target firmware package during the system burning process. The solidification protection module is used to store the target image data to the target flash memory space in response to the solidification protection command.
8. A computer device comprising a memory and a processor, wherein the memory stores a computer program, characterized in that, When the processor executes the computer program, it implements the steps of the method according to any one of claims 1 to 6.
9. A chip, characterized in that, The device includes a processor and a communication interface, wherein the processor is configured to cause the chip to perform the steps of the method described in any one of claims 1 to 6.
10. A chip module, characterized in that, This includes communication modules, power modules, storage modules, and chips, among which: The power module is used to provide power to the chip module; The storage module is used to store data and instructions; The communication module is used for internal communication within the chip module, or for communication between the chip module and external devices. The chip is used to perform the steps of the method according to any one of claims 1 to 6.