Protection method and system for computer security

摘要

Provided is a protection method and system for computer security. The protection method for computer security includes the steps of storing portable storage device information in the portable storage device as a first password; storing the first password in BIOS firmware; generating a second password and storing the second password in the portable storage device and the BIOS firmware; and comparing the first password and second password of the portable storage device with those of the BIOS firmware. Accordingly, protection for computer security can be achieved. According to the present invention, a password is not required to remember. It is unnecessary to install any device drivers. Computer security and a user's identity can be protected simultaneously, and no additional chip or device is required to achieve password authentication. Therefore, the present invention can simplify the protection steps, reduce costs, and enhance the performance of computer security protection.

主权项

1. A protection method for computer security, comprising the steps of:
1) detecting a portable storage device that is connected to a computer via a communication interface and booting the computer via the communication interface; 2) determining the portable storage device as a bootable storage device; 3) reading portable storage device information from the portable storage device as a first password and storing the first password in Basic Input Output System (BIOS) firmware; 4) randomly generating a second password and storing the second password in the portable storage device and the BIOS firmware; 5) sending a first request to the portable storage device after finishing power-on self-test (POST) by booting the computer and before an operating system is loaded; 6) reading the portable storage device information from the portable storage device and determining whether the portable storage device information is equal to the first password stored in the BIOS firmware, wherein if the portable storage device information is equal to the first password stored in the BIOS firmware, the computer continues to boot; if the portable storage device information and the first password stored in the BIOS firmware are unequal, a second request is sent to the portable storage device; and 7) reading the second password of the portable storage device after the portable storage device information of the portable storage device is equal to the first password of the BIOS firmware, comparing the second password of the portable storage device with the second password of the BIOS firmware, and loading the operating system if the second password of the portable storage device is equal to the second password of the BIOS firmware.