JPH0231254A - Information processing terminal - Google Patents

Abstract

(57) [Summary] This bulletin contains application data before electronic filing, so abstract data is not recorded.

Description

[Detailed Description of the Invention] Industrial Application Field The present invention drives a plurality of built-in devices when providing each service to a user, and transmits the processing results of the service.
The present invention relates to an information processing terminal having a function of storing data in an internal memory.

BACKGROUND OF THE INVENTION In recent years, due to the diversification of service operations, a variety of portable and stationary information processing terminals have come into existence. This 1. Name of the invention Information processing terminal 2. Claims (1) Comprising a device control module that controls one or more devices and a memory management section that manages internal memory of the information processing terminal. , the memory management unit has a user usable area table, an access control unit having a function of permitting access to the available memory area, a user usable area, and a user unavailable area, and The unit has a function of exchanging data between the user available area 3. and the device control module, and permits data input/output only to the memory area described in the user available area table. An information processing terminal with functions.

(2) Claim 1, wherein the access control unit has a function of preventing generation of a memory control signal to a portion of the area that is unavailable to the user.
The information processing terminal described.

These terminal devices have the function of appropriately driving built-in devices according to a program, providing various services, and storing the processing results in a built-in memory or the like. A conventional information processing terminal has a configuration as shown in FIG. In FIG. 9, 60 is an information processing terminal described here, 69 is a device control module having a function of controlling built-in devices, 52 is a memory existing in the information processing terminal eo, and 65 is a memory. A memory management table 64 indicates the contents of the memory management table 66, and is a data input/output module having a function of inputting/outputting the device control module 69 and the memory 52 according to the contents of the memory management table 66.

The operation of this information processing terminal 60 will be explained below.

When driving a device when providing services,
Start the data input/output module 64, activate the corresponding device control module 59 via the data input/output module 64, read data from the memory 62, and write data to the memory 62 as necessary. there was. When reading from or writing to the memory 52, the contents of the memory management table 66 are read out, and the corresponding part of the memory 62 is read out.
It is configured to check whether reading and writing of data is permitted, and if it is prohibited, the input/output of data to the corresponding memory 62 is prohibited within the data input/output module 64.

Problems to be Solved by the Invention However, in the configuration of the information processing terminal as described above,
The following issues were encountered.

First, permission or disapproval of input/output into the memory can be determined only by referring to the memory management table, so it is possible to read and write to memory that is actually prohibited from reading and writing. In such cases, there is a risk that important internal data may be read out or partial data may be altered due to unauthorized use.

Second, when operating an information processing terminal, when parameters for driving the owned devices and system variables indicating the status of the operating devices are also configured in the memory, the contents of the system variables are If changed incorrectly, the terminal would no longer work properly, and in the worst case scenario, it would not only destroy the internal memory contents but also cause the device to malfunction.

The present invention solves these problems.When inputting/outputting internal memory, it is determined each time whether or not input/output of the corresponding memory is permitted, and only when permission is granted, the input/output of the corresponding memory is performed. The purpose of the present invention is to provide an information processing terminal that has a function of issuing control signals to the terminal, has high security, and takes system safety into consideration.

Means for Solving the Problem In order to solve the above problem, the device control module that controls the device and the memory management section that manages the internal memory are provided, and the memory management section has a user available area table and a an access control unit having a function of permitting access to a memory area, a user usable area, and a user unavailable area, and the access control unit exchanges data between the user available area and the device control module. It has a function that allows data input/output only to the memory areas described in the user-available area table.

Effect: With this configuration, access to areas other than those permitted is possible.
Since no memory control signal is generated, it is possible to provide an information processing terminal that is resistant to unauthorized use and usage troubles.

EXAMPLES The present invention will be described in detail below. FIG. 1 is a block diagram of an information processing terminal according to an embodiment of the present invention. In Figure 1, 1
1 is a program execution unit that executes a program that provides a service using the device; 2 is a memory management unit that has a function of managing memory within the information processing terminal 10; 3 is a device control module that directly controls the corresponding device; 4 is a data input/output execution module that executes input/output to and from the device control module 3 and memory management section 2; T is an area in the memory that can be used freely by the user; certain user available area, 8
is a user-unusable area where the user is prohibited from using it;
Reference numeral 6 denotes a user usable area table for managing which parts of the entire memory are usable or not for the user, and 6 is an access control unit having a function of permitting access only to the user usable area 7.

This information processing terminal 10 is used in the following manner (see FIG. 2). First, the program execution unit 1 sets parameters for driving the corresponding device. The device control module 3 determines whether or not these parameters are specified parameters. If the parameters are normal, the access control unit 6 checks the address where the result of operating the device is stored. conduct. If the data storage address is within the user-usable area T, the process is permitted, and after storing the result of the device execution process, access to the corresponding memory is prohibited again, and the process ends. When checking the data storage address first, if it points to area 8 that is not available to the user, access to the corresponding memory cannot be permitted, so the result of no access is sent to the data input/output execution module 4. Send it back. This operation is repeated each time the device is used to determine input/output to the memory.

FIG. 3 shows this example in detail.

In FIG. 3, an access control unit 6, a user usable area 7, a user unavailable area 8, and a device control module 3 are the same as in FIG. Reference numeral 21 is an input parameter for controlling the device and storing a data storage address for storing the result. This person's coolness meter 21 includes data indicating the device name 22 used,
Terms of use (1) Data indicating the number of input data as 23,
Terms of use? ) 24 is data for setting the entire operating time of the device, and usage condition (3) 25 is data for performing processing specific to the device. 26 is an input data storage address for storing data processed by the denomination (chair control module 3).

As shown in FIG. 3, among the input parameters 21, the data from the usage device name 22 to usage conditions (3) 25 are used to set the conditions for the device control module 30, and in the input parameters 21, the user usage The configuration is such that data corresponding to an address within the available area T is set, and the access control unit 6 is requested for permission to use the memory. At this time, if both the device control module 3 and the access control unit 6 are permitted, if the configuration is such that data is exchanged between these two, the data input/output execution module/I/4 is not used. With this configuration, when accessing the memory, the relevant data is examined by both the device control module 3 and the access control unit 6, and both results are determined to be valid, and the device control module 3 Since only data exchange between the user usable areas 7 via the access control unit 6 is permitted, the configuration can be strengthened to prevent access by unauthorized users.

At this time, the contents of the input parameter 21 may be stored in a specified register and then passed. Alternatively, if there are a large number of parameters, a general-purpose buffer may be prepared and the data may be always stored in it and passed. It may take any form, or it may be configured by putting data on a stack and passing the stack.

FIG. 4 shows the internal details of the access control unit 6 of this embodiment. In FIG. 4, reference numeral 31 indicates an availability determination unit that examines the contents of the user available area table 6 and determines whether it is possible or not, and 32 indicates a memory control signal having a function of generating a signal for accessing the corresponding memory. A generation unit 33 is a data exchange unit having a function of exchanging data between the corresponding device control module 3 and the memory in the corresponding user available area 7. A data exchange unit 34 grasps the state of the corresponding device control module 3 and determines whether the device operates. This is a device operation flag that stores whether the device is in a state or not.

The contents of the user available area table 5 are compared with the contents of the received data storage address, and the memory is configured to be accessible only when it is determined that the memory can be used. This memory control signal generation unit 32 is a part that depends on the hardware, and when available, generates and outputs a memory access signal for use permission, thereby connecting it to a normal memory access signal. This can be achieved by forming . Alternatively, this access signal may be used as an address data line, and if this signal is not output, an address signal for accessing the corresponding address may not be generated.

Alternatively, the configuration may be such that the corresponding address is generated by software. However, the software method
For external ones, the address generation method can be easily changed.
It needs to be configured so that it is not obvious.

In FIG. 6, the memory control signal generation section 32 is composed of an R/W determination section 42, an R/W signal generation section 44, and a chip selection signal generation section 43. By controlling the R/W (Rea4//Write) signal and OS (Chip 5elact) signal, which are control signals for the relevant memory, generation of signals to other than the permitted relevant memory is prohibited ( For simplicity, address signals are omitted). In this case, the configuration is such that the distinction between reading and writing to the corresponding memory is determined and, for example, only the read signal to the permitted memory and the C8 signal for selecting the memory chip can be output.

Also, the configuration for writing can be performed in the same manner as described above. However, if you specifically divide the write time, writing to unauthorized memory will be prohibited.
It is possible to prevent data from being changed by unauthorized users. In addition, even in the event of a program error or system failure, data destruction can be prevented because writing to unauthorized locations is prohibited.

FIG. 6, FIG. 7, and FIG. 8 are configuration examples of the user available area table 6. FIG. 6 shows a user available area table 5 configured such that the entire memory is divided into areas of a certain specified size and a usable flag is set for each divided area. With this configuration, usage settings can be set for each area and detailed memory management is possible, but if the memory capacity increases and the number of areas increases, the table size will also increase, so if a large If you have enough memory capacity, it is not suitable. It is necessary to set the area size appropriately as necessary.

FIG. 7 stores the start address and end address of the usable area and the start address and end address of the unusable area. If the usable areas and unusable areas are configured discontinuously, the configuration may be such that the start and end addresses of a plurality of usable areas can be stored.

With this configuration, it is possible to dynamically change the size of each area. However, if you set too many discontinuous areas, you will have to go through all the information to search for an available area, resulting in a configuration that takes time to search the table. Caution is required.

In FIG. 8, the usable range is set according to the security level available to the user. In this case, the terminal is configured to determine the security level using the user available area table 6 and a security module (not shown), and permit use of only areas that match the level. . Only when there are multiple service providers and the memory available for each service provider is configured differently or for maintenance purposes,
This is effective when you want to configure so that all memory is released. In this case, you need to be careful about the configuration of the security module. The system has different keys depending on the security level, and is configured so that the level cannot be raised unless the lock is opened.

Further, FIG. 1 shows an apparatus provided with a table contents changing section 9 having a function of changing the contents of the table in the user usable area 6. When changing the contents of the user available area table 5, it has a table contents changing section 9 that allows changes only when specific conditions are permitted. detection, at the highest level of the security level, etc.), optionally,
The user usable area 7 and the user unavailable area 8
It is possible to change the contents of With this configuration, it becomes possible to perform processing such as changing the memory format when there is a major change in the applied service. Also, if you want to change the importance of internal data, you can respond to this request.

To summarize the features of the present invention as described above, first, a usage permission determination is made for each input/output to the memory, and a memory access signal is generated only when permission is granted, so it can be configured to prevent unauthorized use. Ta. Second, the system is designed to protect data even in the event of a system problem such as a runaway program. Third, the usable area can be set according to the security level, and a configuration can be created in which multiple service providers can protect each other's data.

Effects of the Invention As described above, the present invention uses a device of an information processing terminal, performs device processing, and performs input/output of internal memory. Since the information processing terminal has a function of determining the status every time and issuing a control signal to the corresponding memory only when permission is granted, it is possible to provide an information processing terminal with high security and consideration of system safety.

[Brief explanation of the drawing]

Fig. 1 is a configuration diagram of the information processing terminal of this embodiment, Fig. 2 is a processing procedure diagram of the information processing terminal of Fig. 1, and Fig. 3 is details of device parameters of the information processing terminal of this embodiment. 4 is a detailed configuration diagram of the access control section in FIG. 1, FIG. 6 is a detailed configuration diagram of the memory control signal generation section in FIG.
7 and 8 are configuration examples of the user available area table of this embodiment, and FIG. 9 is a configuration diagram of a conventional information processing terminal. 2...Memory management unit, 3...Device control module, 6...User available area table, 6...Access control unit, 7...・・・
-User usable area, 8...User unavailable area, 10...Information processing terminal. Name of agent Patent attorney Shigetaka Awano and 1 other person

Claims (5)

[Claims] (1) It has a device control module that controls one or more devices, and a memory management unit that manages internal memory of the information processing terminal, and the memory management unit has a user available area table and a usable area table. an access control unit having a function of permitting access to the memory area, a user usable area, and a user unavailable area, and the access control unit controls data between the user usable area and the device control module. It has the function of exchanging
and an information processing terminal device having a function of permitting data input/output only to memory areas described in the user available area table. (2) Claim 1, wherein the access control unit has a function of preventing generation of a memory control signal to a portion of the area that is unavailable to the user.
The information processing terminal described. (3) The information processing terminal device according to claim 1, further comprising a function of preventing generation of a memory write signal to an area unavailable to the user. (4) The information processing terminal device according to claim 1, further comprising a table content changing section that allows changing the contents of the user available area table only when specific conditions are permitted. (5) The information processing terminal device according to claim 1, wherein the user available area table is provided with a function of holding contents according to the security level of the user.