[go: up one dir, main page]

TWI579774B - Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method - Google Patents

Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method Download PDF

Info

Publication number
TWI579774B
TWI579774B TW104130768A TW104130768A TWI579774B TW I579774 B TWI579774 B TW I579774B TW 104130768 A TW104130768 A TW 104130768A TW 104130768 A TW104130768 A TW 104130768A TW I579774 B TWI579774 B TW I579774B
Authority
TW
Taiwan
Prior art keywords
fingerprint
initial value
image information
integrated circuit
scrambling
Prior art date
Application number
TW104130768A
Other languages
Chinese (zh)
Other versions
TW201712598A (en
Inventor
Sun How Jiang
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed filed Critical
Priority to TW104130768A priority Critical patent/TWI579774B/en
Priority to CN201510754104.6A priority patent/CN106548122B/en
Publication of TW201712598A publication Critical patent/TW201712598A/en
Application granted granted Critical
Publication of TWI579774B publication Critical patent/TWI579774B/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06VIMAGE OR VIDEO RECOGNITION OR UNDERSTANDING
    • G06V40/00Recognition of biometric, human-related or animal-related patterns in image or video data
    • G06V40/10Human or animal bodies, e.g. vehicle occupants or pedestrians; Body parts, e.g. hands
    • G06V40/12Fingerprints or palmprints
    • G06V40/13Sensors therefor
    • G06V40/1318Sensors therefor using electro-optical elements or layers, e.g. electroluminescent sensing
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Human Computer Interaction (AREA)
  • Multimedia (AREA)
  • Image Input (AREA)
  • Collating Specific Patterns (AREA)
  • Image Analysis (AREA)

Description

指紋感測積體電路及其擾亂加密方法 Fingerprint sensing integrated circuit and its scrambling encryption method

本發明是有關一種指紋感測積體電路(Integrated Circuit;IC),特別是關於一種能夠對指紋擾亂加密的指紋感測積體電路及其擾亂加密方法。 The present invention relates to a fingerprint sensing integrated circuit (IC), and more particularly to a fingerprint sensing integrated circuit capable of encrypting fingerprints and its scrambling encryption method.

習知的指紋感測系統,是將指紋感測與身份辨識功能製作於同一積體電路中,將所有功能皆放進同一積體電路會使系統電路的製作較不靈活也會有晶片良率的問題。此外,在許多應用方面需要將指紋感測與身份辨識功能分離並分別配置在使用者端及系統主控端並以傳輸介面連接,如圖1所示,當指紋感測IC 13進行感測並取得手指的指紋圖像資訊,一傳輸介面(TX/RX interface)191將該指紋圖像資訊傳送至系統主控端15以辨識使用者的身份是否正確。然而,在傳輸介面191傳輸指紋圖像資訊時,指紋圖像資訊有可能被側錄,例如使用與傳輸介面191相同規格的傳輸介面193將指紋圖像資訊側錄至非法的系統主控端17。如圖2所示,已被側錄的指紋圖像資訊被存放在一儲存裝置18中,當非法使用者利用儲存裝置18取代指紋感測IC13送出指紋圖像資訊經由與傳輸介面191相同規格的傳輸介面195送達系統主控端15時,非法使用者即可通過判別。因此需要對指紋圖像資訊加密以加強指紋傳輸的安全性。但是,現有的加密電路受限於指紋 感測積體電路的面積,無法在整合成為單一IC的情形下增加靜態隨機存取記憶體(SRAM)、動態隨機存取記憶體(DRAM)或快閃記憶體來設計加密電路。 The conventional fingerprint sensing system is to make the fingerprint sensing and identification functions in the same integrated circuit, and putting all the functions into the same integrated circuit makes the system circuit less flexible and has the wafer yield. The problem. In addition, in many applications, fingerprint sensing and identity recognition functions need to be separated and respectively configured on the user end and the system main control end and connected by a transmission interface, as shown in FIG. 1 , when the fingerprint sensing IC 13 senses and The fingerprint image information of the finger is obtained, and a transmission interface (TX/RX interface) 191 transmits the fingerprint image information to the system host 15 to identify whether the identity of the user is correct. However, when the fingerprint interface information is transmitted by the transmission interface 191, the fingerprint image information may be recorded, for example, using the transmission interface 193 of the same specification as the transmission interface 191 to record the fingerprint image information to the illegal system host 17 . As shown in FIG. 2, the fingerprint image information that has been recorded is stored in a storage device 18, and the illegal user uses the storage device 18 instead of the fingerprint sensing IC 13 to send the fingerprint image information via the same specification as the transmission interface 191. When the transmission interface 195 is delivered to the system main control terminal 15, the illegal user can pass the discrimination. Therefore, fingerprint image information needs to be encrypted to enhance the security of fingerprint transmission. However, existing encryption circuits are limited by fingerprints Sensing the area of the integrated circuit, it is not possible to add a static random access memory (SRAM), a dynamic random access memory (DRAM) or a flash memory to design an encryption circuit when integrated into a single IC.

本發明的目的之一,在於提出一種能夠對指紋擾亂加密的指紋感測IC及其擾亂加密方法。 One of the objects of the present invention is to provide a fingerprint sensing IC capable of encrypting fingerprints and its scrambling encryption method.

根據本發明,一種指紋感測IC包括一指紋感測元件用以感測指紋並產生一第一指紋圖像資訊、一線性回授位移暫存器根據一初始值產生多個擾亂值以及一擾亂加密電路使用該多個擾亂值對該第一指紋圖像資訊進行擾亂加密以產生一加密的第二指紋圖像資訊。其中,該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,因此資料傳輸過程不會造成延遲或耽擱。 According to the present invention, a fingerprint sensing IC includes a fingerprint sensing component for sensing a fingerprint and generating a first fingerprint image information, and a linear feedback displacement register generates a plurality of disturbance values according to an initial value and a disturbance. The encryption circuit scrambles and encrypts the first fingerprint image information using the plurality of scrambling values to generate an encrypted second fingerprint image information. The data amount of the first fingerprint image information is the same as the data amount of the second fingerprint image information, so the data transmission process does not cause delay or delay.

根據本發明,一種指紋感測IC的擾亂加密方法包括感測指紋以產生一第一指紋圖像資訊,藉一初始值產生多個擾亂值,利用該多個擾亂值對該第一指紋圖像資訊進行擾亂加密以產生一加密的第二指紋圖像資訊經由該傳輸介面傳送至該系統主控端進行指紋認證。其中,該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,因此資料傳輸過程不會造成延遲或耽擱。 According to the present invention, a scrambling encryption method for a fingerprint sensing IC includes sensing a fingerprint to generate a first fingerprint image information, generating a plurality of scrambling values by using an initial value, and using the plurality of scrambling values to the first fingerprint image. The information is scrambled to generate an encrypted second fingerprint image information and transmitted to the system controller for fingerprint authentication via the transmission interface. The data amount of the first fingerprint image information is the same as the data amount of the second fingerprint image information, so the data transmission process does not cause delay or delay.

根據本發明,一種指紋感測IC包括一指紋感測元件、一線性回授位移暫存器及一擾亂加密電路。該指紋感測元件感測指紋並產生一第一指紋圖像資訊,該第一指紋圖像資訊分成多個區段,每一個區段包含多個第一像素資料。該線性回授位移暫存器根據目前要加密的區段所對應的 初始值產生多個擾亂值。該擾亂加密電路使用該多個擾亂值對該目前要加密的區段的多個第一像素資料進行擾亂加密以產生多個第二像素資料。其中,該多個區段全部進行擾亂加密後所產生的所有第二像素資料組成一第二指紋圖像資訊,該指紋感測積體電路將該第二指紋圖像資訊經由一傳輸介面傳送至遠端的一系統主控端進行指紋認證。第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,因此資料傳輸過程不會造成延遲或耽擱。 According to the present invention, a fingerprint sensing IC includes a fingerprint sensing component, a linear feedback shift register, and a scrambling encryption circuit. The fingerprint sensing component senses the fingerprint and generates a first fingerprint image information, the first fingerprint image information being divided into a plurality of segments, each segment comprising a plurality of first pixel data. The linear feedback displacement register is corresponding to the segment currently to be encrypted The initial value produces multiple scrambling values. The scrambling encryption circuit scrambles the plurality of first pixel data of the segment to be currently encrypted using the plurality of scrambling values to generate a plurality of second pixel data. The second fingerprint image information is formed by all the second pixel data generated by the scrambling and encrypting, and the fingerprint sensing integrated circuit transmits the second fingerprint image information to the second fingerprint image to the second fingerprint image. A remote control system performs fingerprint authentication. The amount of data of the first fingerprint image information is the same as the amount of data of the second fingerprint image information, so the data transmission process does not cause delay or delay.

根據本發明,一種指紋感測IC的擾亂加密方法包括感測指紋以產生一第一指紋圖像資訊;將該第一指紋圖像資訊分割成多個區段,每一個區段包含多個第一像素資料;根據目前要加密的區段提供一初始值;藉該初始值產生多個擾亂值;以及利用該多個擾亂值對該目前要加密的區段的該多個第一像素資料進行擾亂加密以產生加密的多個第二像素資料。其中,該多個區段全部進行擾亂加密後所產生的所有第二像素資料組成一第二指紋圖像資訊,該第二指紋圖像資訊經由傳輸介面傳送至系統主控端進行指紋認證。該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,因此資料傳輸過程不會造成延遲或耽擱。 According to the present invention, a scrambling encryption method for a fingerprint sensing IC includes sensing a fingerprint to generate a first fingerprint image information; dividing the first fingerprint image information into a plurality of segments, each segment including a plurality of segments a pixel data; providing an initial value according to the segment currently to be encrypted; generating a plurality of scrambling values by using the initial value; and using the plurality of scrambling values to perform the plurality of first pixel data of the segment to be currently encrypted The encryption is scrambled to produce an encrypted plurality of second pixel data. The second fingerprint image information is formed by all the second pixel data generated by the scrambling and encrypting, and the second fingerprint image information is transmitted to the system controller for fingerprint authentication via the transmission interface. The data amount of the first fingerprint image information is the same as the data amount of the second fingerprint image information, so the data transmission process does not cause delay or delay.

本發明無需使用SRAM、DRAM或快閃記憶體來對指紋進行加密,故不影響整合後之指紋感測IC的面積。 The invention does not need to use SRAM, DRAM or flash memory to encrypt the fingerprint, so it does not affect the area of the integrated fingerprint sensing IC.

13‧‧‧指紋感測晶片 13‧‧‧Fingerprinting Wafer

15‧‧‧系統主控端 15‧‧‧System master

17‧‧‧非法系統主控端 17‧‧‧Illegal system master

18‧‧‧儲存裝置 18‧‧‧Storage device

191‧‧‧傳輸介面 191‧‧‧Transport interface

193‧‧‧傳輸介面 193‧‧‧Transport interface

195‧‧‧傳輸介面 195‧‧‧Transport interface

20‧‧‧指紋感測IC 20‧‧‧Fingerprint Sensing IC

21‧‧‧指紋感測元件 21‧‧‧ Fingerprint sensing components

213‧‧‧第一指紋圖像資訊 213‧‧‧First fingerprint image information

23‧‧‧線性回授位移暫存器 23‧‧‧Linear feedback shift register

231‧‧‧初始值 231‧‧‧ initial value

233‧‧‧擾亂值 233‧‧‧Disruption value

25‧‧‧擾亂加密電路 25‧‧‧Disrupted encryption circuit

253‧‧‧第二指紋圖像資訊 253‧‧‧Second fingerprint image information

27‧‧‧傳輸介面 27‧‧‧Transport interface

29‧‧‧系統主控端 29‧‧‧System master

31‧‧‧互斥或閘 31‧‧‧ Mutual exclusion or gate

33‧‧‧互斥或閘 33‧‧‧ Mutual exclusion or gate

35‧‧‧互斥或閘 35‧‧‧mutual exclusion or gate

37‧‧‧互斥或閘 37‧‧‧Exclusive or gate

39‧‧‧互斥或閘 39‧‧‧ Mutual exclusion or gate

40‧‧‧初始值產生器 40‧‧‧Initial value generator

41‧‧‧種子 41‧‧‧ Seeds

43‧‧‧互斥或閘 43‧‧‧ Mutual exclusion or gate

45‧‧‧互斥或閘 45‧‧‧mutual exclusion or gate

47‧‧‧互斥或閘 47‧‧‧Exclusive or gate

49‧‧‧互斥或閘 49‧‧‧Exclusive or gate

圖1是習知的指紋認證系統;圖2顯示習知使用側錄的指紋圖像資訊進行認證的方式;圖3顯示本發明指紋感測積體電路之實施例; 圖4是圖3中線性回授位移暫存器之實施例;圖5是圖3中擾亂加密電路之實施例;圖6顯示初始值產生器的第一實施例;圖7顯示初始值產生器的第二實施例;圖8顯示初始值產生器的第三實施例;圖9顯示初始值產生器的第四實施例;圖10顯示第一指紋圖像資訊的區段分割的第一實施例;圖11顯示第一指紋圖像資訊的區段分割的第二實施例;以及圖12顯示第一指紋圖像資訊的區段分割的第三實施例。 1 is a conventional fingerprint authentication system; FIG. 2 shows a conventional manner of using fingerprint image information for side recording; FIG. 3 shows an embodiment of the fingerprint sensing integrated circuit of the present invention; Figure 4 is an embodiment of the linear feedback shift register of Figure 3; Figure 5 is an embodiment of the scrambling encryption circuit of Figure 3; Figure 6 shows a first embodiment of the initial value generator; Figure 7 shows the initial value generator Second Embodiment; FIG. 8 shows a third embodiment of the initial value generator; FIG. 9 shows a fourth embodiment of the initial value generator; FIG. 10 shows a first embodiment of the segmentation of the first fingerprint image information. FIG. 11 shows a second embodiment of segmentation of first fingerprint image information; and FIG. 12 shows a third embodiment of segmentation of first fingerprint image information.

參照圖3,本發明的指紋感測IC 20包含了一指紋感測元件21、一線性回授位移暫存器23(linear feedback shift register;LFSR)以及一擾亂加密電路25。當使用者的手指觸碰指紋感測IC 20時,指紋感測元件21感測手指指紋以產生一第一指紋圖像資訊,線性回授位移暫存器23根據一初始值231產生多個擾亂值233,擾亂加密電路25使用線性回授位移暫存器23提供的多個擾亂值233將指紋感測元件21提供之第一指紋圖像資訊213擾亂加密產生加密的第二指紋圖像資訊253,指紋感測IC 20再把第二指紋圖像資訊253經由傳輸介面27傳輸至系統主控端29進行指紋認證。此例中,即使第二指紋圖像資訊253在傳輸中被側錄,但若無初始值231及擾亂值233等解碼關鍵也無法在系統主控端獲得真正的指紋,另一方面,即使從其它管道取得使用者的指紋,若無初始值231及擾亂值233,也無法正確加密之後經由傳輸介面送達系統主控端29進行解密,因而提高指紋傳輸的安全性。 Referring to FIG. 3, the fingerprint sensing IC 20 of the present invention includes a fingerprint sensing component 21, a linear feedback shift register (LFSR), and a scrambling encryption circuit 25. When the user's finger touches the fingerprint sensing IC 20, the fingerprint sensing component 21 senses the finger fingerprint to generate a first fingerprint image information, and the linear feedback displacement register 23 generates a plurality of disturbances according to an initial value 231. The value 233, the scrambling encryption circuit 25 uses the plurality of scrambling values 233 provided by the linear feedback shift register 23 to scramble the first fingerprint image information 213 provided by the fingerprint sensing element 21 to generate an encrypted second fingerprint image information 253. The fingerprint sensing IC 20 then transmits the second fingerprint image information 253 to the system host 29 via the transmission interface 27 for fingerprint authentication. In this example, even if the second fingerprint image information 253 is side-recorded in the transmission, if there is no decoding key such as the initial value 231 and the scramble value 233, the real fingerprint cannot be obtained at the system master, on the other hand, even if The other pipeline obtains the fingerprint of the user. If there is no initial value 231 and the scramble value 233, it cannot be correctly encrypted and then sent to the system host 29 for decryption via the transmission interface, thereby improving the security of fingerprint transmission.

圖4為圖3中線性回授位移暫存器23之實施例,其包括多個暫存器R0-R15以及多個互斥或閘31、33、35及37。圖3的線性回授位移暫存器23可以用線性多項式P(x)=x16+x15+x12+x7+x3+1來表示。初始值231在載入線性回授位移暫存器23後,初始值231的每一個位元各自儲存至對應的暫存器R0-R15中,在此實施例中,初始值231具有16位元,在其他實施例中,可依需求改變線性多項式P(x)以改變線性回授位移暫存器23之型態,亦改變初始值231的位元數。線性回授位移暫存器23可以根據一時脈信號來位移暫存器R0-R15中儲存的位元值,例如時脈信號每觸發一次脈衝時,便進行一次位移,時脈信號可以由線性回授位移暫存器23內部或外部的電路提供。在此實施例的線性回授位移暫存器23進行位移時,互斥或閘37根據暫存器R14及R15目前的位元值產生位元值XOR1,互斥或閘35根據暫存器R11目前的位元值及位元值XOR1產生位元值XOR2,互斥或閘33根據暫存器R6目前的位元值及位元值XOR2產生位元值XOR3,互斥或閘31根據暫存器R2目前的位元值及位元值XOR3產生位元值XOR4給暫存器R0,暫存器R0中原有的位元值會位移至下一個暫存器R1中,同時暫存器R1中原有的位元值會位移至下一個暫存器R2中,依此類推,暫存器R2-R14中原有的位元值都會位移至下一個暫存器R3-R15。在圖3中,互斥或閘的數量以及其輸入端所連接的暫存器或互斥或閘是可根據需求而改變的,即改變線性回授位移暫存器23之型態,此外在其他實施例中,也可以用其他邏輯運算電路來取代互斥或閘。由於線性回授位移暫存器有其週期特性,因此為了避免出現相同擾亂值,而被逆推解密,最好限制位移次數。 4 is an embodiment of the linear feedback shift register 23 of FIG. 3 including a plurality of registers R0-R15 and a plurality of mutually exclusive gates 31, 33, 35 and 37. The linear feedback shift register 23 of Fig. 3 can be represented by a linear polynomial P(x) = x 16 + x 15 + x 12 + x 7 + x 3 +1. After the initial value 231 is loaded into the linear feedback shift register 23, each bit of the initial value 231 is stored in the corresponding register R0-R15. In this embodiment, the initial value 231 has 16 bits. In other embodiments, the linear polynomial P(x) can be changed as needed to change the type of the linear feedback shift register 23, and also the number of bits of the initial value 231. The linear feedback shift register 23 can shift the bit value stored in the register R0-R15 according to a clock signal. For example, when the pulse signal triggers a pulse, the displacement is performed once, and the clock signal can be linearly returned. The circuit is provided internally or externally to the shift register 23. When the linear feedback shift register 23 of this embodiment performs displacement, the mutex or gate 37 generates the bit value XOR1 according to the current bit value of the registers R14 and R15, and the exclusive or gate 35 is based on the register R11. The current bit value and the bit value XOR1 generate the bit value XOR2, and the mutex or gate 33 generates the bit value XOR3 according to the current bit value of the register R6 and the bit value XOR2, and the mutual exclusion or gate 31 is temporarily stored. The current bit value and bit value XOR3 of the device R2 generates the bit value XOR4 to the register R0, and the original bit value in the register R0 is shifted to the next register R1, and the register R1 is in the original Some bit values are shifted to the next register R2, and so on, the original bit values in the scratchpad R2-R14 are shifted to the next register R3-R15. In FIG. 3, the number of mutually exclusive or gates and the register or mutual exclusion or gate to which the input is connected can be changed as needed, that is, the type of the linear feedback shift register 23 is changed, and In other embodiments, other logic operations may be used in place of the mutex or gate. Since the linear feedback shift register has its periodic characteristics, it is preferable to limit the number of shifts in order to avoid the same scrambled value and to be reverse-deciphered.

圖4的線性回授位移暫存器23在載入初始值231後,在進行位 移前或進行至少一次位移後,線性回授位移暫存器23提供包含暫存器R0的位元值的第一個擾亂值S0={R0,R1,R2,R4,R8,R10,R11,R13},接著再經過至少一次位移後,線性回授位移暫存器23提供第二個擾亂值S1={R0,R1,R2,R4,R8,R10,R11,R13},以此類推,每經至少一次位移後產生一個擾亂值Sn。在圖4的實施例中,是選擇暫存器R0、R1、R2、R4、R8、R10、R11、R13來獲得8位元的擾亂值Sn,但在其他實施例中,除了暫存器R0是必須的之外,其餘的暫存器可以自由選擇來決定擾亂值,而擾亂值Sn的位元數也可以增加或減少。 The linear feedback shift register 23 of FIG. 4 is performing bit after loading the initial value 231. After shifting or performing at least one displacement, the linear feedback shift register 23 provides the first scrambled value S0={R0, R1, R2, R4, R8, R10, R11, including the bit value of the register R0, R13}, after at least one displacement, the linear feedback shift register 23 provides a second scrambled value S1={R0, R1, R2, R4, R8, R10, R11, R13}, and so on, each A disturbance value Sn is generated after at least one displacement. In the embodiment of FIG. 4, the registers R0, R1, R2, R4, R8, R10, R11, R13 are selected to obtain an 8-bit scrambled value Sn, but in other embodiments, in addition to the register R0. In addition to being necessary, the remaining registers can be freely selected to determine the scrambling value, and the number of bits of the scrambled value Sn can be increased or decreased.

圖5為圖3中擾亂加密電路25的實施例,其包括互斥或閘39。第一指紋圖像資訊213包含多個第一像素資料PBn,互斥或閘39將每一個第一像素資料PBn與一個擾亂值Sn進行互斥或運算產生組成第二指紋圖像資訊的第二像素資料Dn=PBn ⊕ Sn,其中,n為整數,根據圖4的線性回授位移暫存器23所得到的線性方程式P(x)=x16+x15+x12+x7+x3+1,n的範圍是0至4095之整數。如圖4及圖5所示,本發明的加密方式只需要暫存器R0-R15以及邏輯運算電路,無需使用SRAM、DRAM或快閃記憶體。另外加密前的第一像素資料PBn與加密後的第二像素資料Dn的位元數相同,皆為8位元,因此加密前的資料總數量與加密後的資料總數量相同,在處理指紋圖像資訊的加解密過程中,不會造成資料傳輸的延遲(latency)或耽擱(delay),而能流暢地(smoothly)傳遞指紋圖像資訊。 5 is an embodiment of the scrambling encryption circuit 25 of FIG. 3 including a mutex or gate 39. The first fingerprint image information 213 includes a plurality of first pixel data PBn, and the mutual exclusion or gate 39 mutually exclusiveizes or operates each of the first pixel data PBn and a scramble value Sn to generate a second fingerprint image information. Pixel data Dn=PBn ⊕ Sn, where n is an integer, and the linear equation P(x)=x 16 +x 15 +x 12 +x 7 +x 3 obtained according to the linear feedback shift register 23 of Fig. 4 +1, n ranges from 0 to 4095. As shown in FIG. 4 and FIG. 5, the encryption method of the present invention requires only the scratchpads R0-R15 and the logic operation circuit, and does not require the use of SRAM, DRAM or flash memory. In addition, the first pixel data PBn before encryption and the encrypted second pixel data Dn have the same number of bits, which are all 8-bit, so the total number of data before encryption is the same as the total number of encrypted data, and the fingerprint is processed. In the process of encryption and decryption of information, there is no delay or delay in data transmission, and the fingerprint image information can be smoothly transmitted.

在圖3中之初始值231,可以由系統主控端29直接產生後經由傳輸介面提供至指紋感測IC 20,也可以由指紋感測IC 20直接產生,或是由系統主控端29及指紋感測IC 20雙方協定直接產生。初始值231可以是固定值 也可以是變動值,固定的初始值231需要埋藏於指紋感測IC 20及系統主控端29的硬體中,防止軟體破解,若是變動的初始值231則可設定是隨機變動或是條件變動。 The initial value 231 in FIG. 3 can be directly generated by the system main control terminal 29 and then provided to the fingerprint sensing IC 20 via the transmission interface, or directly generated by the fingerprint sensing IC 20, or by the system main control terminal 29 and The fingerprint sensing IC 20 is directly generated by the agreement. The initial value 231 can be a fixed value It may also be a variable value. The fixed initial value 231 needs to be buried in the hardware of the fingerprint sensing IC 20 and the system main control terminal 29 to prevent the software from being cracked. If the initial value of the change 231 is set, the random variation or the conditional change may be set. .

初始值231除了直接產生之外,還可以間接產生。間接產生初始值231的方式需要定義一或多個的種子(seed),種子為固定值,可埋藏於系統主控端以及指紋感測IC的硬體中,防止軟體破解,系統主控端29以及指紋感測IC 20皆需要另一個線性回授位移暫存器作為初始值產生器40用以產生初始值231,如圖3所示。如此一來,初始值231就不會在傳輸介面27中傳遞,取代初始值231在傳輸介面27傳遞的是一組有規範的位元序列,因此非法使用者從傳輸介面中只能盜取位元序列,無法得到正確的初始值231。位元序列可以由系統主控端29定義傳給指紋感測IC 20,也可以由指紋感測IC 20定義傳給系統主控端29,更可以雙方協定之後相互傳遞。雙方協定的方式是由指紋感測IC 20傳給系統主控端29一組資訊,例如00000001,同時系統主控端29也傳給指紋感測IC 20另一組資訊,例如10000000,系統主控端29與指紋感測IC 20將這兩組資訊排列組合或運算後得到一位元序列,例如10000001。系統主控端29以及指紋感測電路20同步取得位元序列之後,系統主控端29以及指紋感測IC 20雙方各自的初始值產生器40根據此位元序列選用種子以及進行位移以產生初始值231,系統主控端29以及指紋感測IC 20雙方產生的初始值必須一致。系統主控端29的初始值產生器40可以用硬體實現,以避免規範的位元序列格式被得知後,被回推得到種子。 The initial value 231 can be generated indirectly in addition to being directly generated. The method of indirectly generating the initial value 231 needs to define one or more seeds, and the seed is a fixed value, which can be buried in the hardware of the system main control terminal and the fingerprint sensing IC to prevent the software from being cracked, and the system main control terminal 29 And the fingerprint sensing IC 20 needs another linear feedback shift register as the initial value generator 40 for generating the initial value 231, as shown in FIG. In this way, the initial value 231 is not transmitted in the transmission interface 27. Instead of the initial value 231, a set of standardized bit sequences is transmitted in the transmission interface 27, so the illegal user can only steal bits from the transmission interface. The meta-sequence cannot get the correct initial value of 231. The bit sequence can be transmitted to the fingerprint sensing IC 20 by the system master 29 or can be transmitted to the system host 29 by the fingerprint sensing IC 20, or can be transmitted to each other after agreement. The agreement between the two parties is transmitted by the fingerprint sensing IC 20 to the system host 29 for a group of information, such as 00000001, and the system master 29 is also transmitted to the fingerprint sensing IC 20 for another group of information, for example, 10000000, the system master The terminal 29 and the fingerprint sensing IC 20 combine or operate the two sets of information to obtain a one-bit sequence, for example, 10000001. After the system main control terminal 29 and the fingerprint sensing circuit 20 synchronously obtain the bit sequence, the initial value generator 40 of each of the system main control terminal 29 and the fingerprint sensing IC 20 selects a seed according to the bit sequence and performs displacement to generate an initial. The initial value generated by both the system 231 and the fingerprint sensing IC 20 must be the same. The initial value generator 40 of the system master 29 can be implemented in hardware to avoid the normalized bit sequence format being known and then pushed back to obtain the seed.

位元序列的資訊包括位移次數與選用的種子,以16位元的位元序列為例,前面的2位元用以選擇種子,後面的14位元代表初始值產生器 40的位移次數,在此例中假設有4個種子:16’h5500,16’h5400,16’h0020,16’h0080,而位元序列若為16’hC800,其中16’代表16個位元數,h代表後面的資料為16進位制,因此位元序列16’hC800以2進位表示為1100100000000000,前兩位元11代表取用第四個種子16’h0080,而後14位元則代表位移2048次,所以系統主控端29以及指紋感測IC 20雙方的初始值產生器40經此運作即可得到一致的初始值。 The information of the bit sequence includes the number of shifts and the selected seed. Taking a 16-bit bit sequence as an example, the first 2 bits are used to select the seed, and the next 14 bits represent the initial value generator. The number of displacements of 40, in this case, assumes 4 seeds: 16'h5500, 16'h5400, 16'h0020, 16'h0080, and the bit sequence is 16'hC800, where 16' represents 16 bits , h represents the following data is hexadecimal system, so the bit sequence 16'hC800 is represented by 2 digits as 1100100000000000, the first two elements 11 represent the fourth seed 16'h0080, and the last 14 bits represent the displacement 2048 times Therefore, the initial value generator 40 of both the system main control terminal 29 and the fingerprint sensing IC 20 can obtain a consistent initial value by this operation.

圖6顯示初始值產生器40的第一實施例,其包括多個暫存器G0-G15以及多個互斥或閘43、45及47。在根據一位元序列從預設的多個種子中選擇其中一個種子41載入初始值產生器40後,種子41包括多個位元值分別儲存至暫存器G0-G15,接著再依據位元序列所設定的位移次數位移後產生初始值231。圖6的初始值產生器40的位移操作與圖4的線性回授位移暫存器23相同,暫存器G0-G14的位元會位移至下一個暫存器G1-G15,互斥或閘43、45及47根據部分暫存器G3、G8、G11及G14目前的位元值產生新的位元值NB0至暫存器G0。在其他實施例中,暫存器G0-G15的數量是可以改變的,而互斥或閘43、45及47的數量及位置也是可以改變的,此外互斥或閘43、45及47也可以使用其他邏輯運算電路來取代 6 shows a first embodiment of an initial value generator 40 that includes a plurality of registers G0-G15 and a plurality of mutually exclusive gates, 43, and 47. After selecting one of the seeds 41 from the preset plurality of seeds to be loaded into the initial value generator 40 according to the one-bit sequence, the seed 41 includes a plurality of bit values respectively stored to the registers G0-G15, and then according to the bits. The initial value 231 is generated after the displacement of the number of displacements set by the meta-sequence. The displacement operation of the initial value generator 40 of FIG. 6 is the same as that of the linear feedback shift register 23 of FIG. 4, and the bits of the registers G0-G14 are shifted to the next register G1-G15, mutually exclusive or gated. 43, 45 and 47 generate a new bit value NB0 to the scratchpad G0 according to the current bit values of the partial registers G3, G8, G11 and G14. In other embodiments, the number of registers G0-G15 can be changed, and the number and location of the mutex or gates 43, 45, and 47 can also be changed, and the mutex or gates 43, 45, and 47 can also be used. Replace with other logic circuits

另外也可以將初始值231的數個位元設定為預設的固定值,不受線性回授位移暫存器40的位移影響,以避免軟體回推。圖7顯示初始值產生器40的第二實施例,圖7的電路類似圖6,差異在於暫存器G15的位元並不會輸出作為初始值231的最後一個位元,而是用預設的固定值”0”作為初始值231的最後一個位元。在圖7的實施例中,只設定初始值231的一個位元為預設的固定值,在其他實施例中,也可以設定初始值231中一個以上的位元 為預設的固定值。 In addition, the number of bits of the initial value 231 can also be set to a preset fixed value, which is not affected by the displacement of the linear feedback shift register 40 to avoid software pushback. Fig. 7 shows a second embodiment of the initial value generator 40. The circuit of Fig. 7 is similar to Fig. 6. The difference is that the bit of the register G15 does not output the last bit as the initial value 231, but is preset. The fixed value "0" is taken as the last bit of the initial value 231. In the embodiment of FIG. 7, only one bit of the initial value 231 is set to a preset fixed value. In other embodiments, more than one bit of the initial value 231 may be set. Is a fixed value for the preset.

除了將初始值231的數個位元設定為預設的固定值之外,也可以運算部分暫存器G0-G15中的位元值產生一特定位元作為初始值的其中一個位元。圖8顯示初始值產生器40的第三實施例,其與圖6的電路類似,差別在於圖8的初始值產生器40並非使用暫存器G15的位元作為初始值231的最後一個位元,而使用互斥或閘49將暫存器G3及G15的位元值進行互斥或運算後產生的特定位元Kn作為初始值231的最後一個位元。特定位元Kn的指定可以程式化,例如此次是指定暫存器G3及G15的位元來產生特定位元Kn,但下次再產生初始值時,可以改指定暫存器G2及G8的位元來產生特定位元Kn。在其他實施例中,互斥或閘49也可以使用其他邏輯運算電路來取代。 In addition to setting a plurality of bits of the initial value 231 to a preset fixed value, the bit values in the partial registers G0-G15 may be operated to generate a specific bit as one of the initial values. 8 shows a third embodiment of the initial value generator 40, which is similar to the circuit of FIG. 6, with the difference that the initial value generator 40 of FIG. 8 does not use the bit of the register G15 as the last bit of the initial value 231. The specific bit Kn generated by mutually exclusive OR operation of the bit values of the registers G3 and G15 using the mutex or gate 49 is taken as the last bit of the initial value 231. The designation of the specific bit Kn can be programmed. For example, this time, the bits of the registers G3 and G15 are specified to generate the specific bit Kn, but when the initial value is generated next time, the registers G2 and G8 can be specified. The bit is used to generate a specific bit Kn. In other embodiments, the mutex or gate 49 may be replaced with other logic operations.

圖9顯示初始值產生器40的第四實施例,其與圖8的電路類似,差別在圖9的暫存器G0-G3的位元在初始值231中的對應位置被改變,其中暫存器G0-G2的位元分別作為初始值231的第二、第三和第四位元,而暫存器G3的位元則作為初始值231的第一個位元。 9 shows a fourth embodiment of the initial value generator 40, which is similar to the circuit of FIG. 8, with the difference in the corresponding position of the bits of the registers G0-G3 of FIG. 9 in the initial value 231 being changed, wherein the temporary storage is performed. The bits of the G0-G2 are respectively used as the second, third and fourth bits of the initial value 231, and the bit of the register G3 is taken as the first bit of the initial value 231.

第一指紋圖像資訊213可以分割成多個區段之後使用不同的初始值231加密,一來可以降低整張圖像被非法解密的可能性,另一方面也可以符合線性回授位移暫存器的週期特性的限制。圖10顯示一具有160×160個像素資料的第一指紋圖像資訊213,其中每10行連續像素資料為一個區段,每個區段各自使用不同的初始值231所產生的擾亂值Sn來加密,例如區段0使用初始值0,區段1使用初始值1,依此類推。 The first fingerprint image information 213 can be divided into a plurality of segments and then encrypted with different initial values 231, which can reduce the possibility that the entire image is illegally decrypted, and can also conform to the linear feedback displacement temporary storage. Limitation of the periodic characteristics of the device. Figure 10 shows a first fingerprint image information 213 having 160 x 160 pixel data, wherein each 10 lines of consecutive pixel data is a segment, each segment using a different initial value 231 resulting in a scrambled value Sn. Encryption, for example, segment 0 uses an initial value of 0, segment 1 uses an initial value of 1, and so on.

圖11顯示第一指紋圖像資訊213的另一種分割方法,其與圖 10的第一指紋圖像資訊213同樣包含160×160個像素資料,在此實施例中,第一指紋圖像資訊213被分割成16個區段使用不同的初始值231來加密,但區段中像素資料的行數是不連續的,例如區段0的第0行為第一指紋圖像資訊213中的第0行像素資料,區段0的第1行為第一指紋圖像資訊213中的第16行像素資料,區段0的第2行為第一指紋圖像資訊213中的第32行像素資料,以此類推。即同一區段中的像素資料的行數,在第一指紋圖像資訊213中是等距離分散的。 FIG. 11 shows another segmentation method of the first fingerprint image information 213, and a diagram thereof The first fingerprint image information 213 of 10 also contains 160×160 pixel data. In this embodiment, the first fingerprint image information 213 is divided into 16 segments and encrypted with different initial values 231, but the segments are encrypted. The number of rows of the pixel data is discontinuous. For example, the 0th segment of the segment 0 acts on the 0th row of the first fingerprint image information 213, and the segment 1 has the first behavior in the first fingerprint image information 213. The 16th row of pixel data, the 2nd row of segment 0 acts as the 32th row of pixel data in the first fingerprint image information 213, and so on. That is, the number of rows of pixel data in the same segment is equidistantly dispersed in the first fingerprint image information 213.

圖12顯示第一指紋圖資訊213的又一種分割方法,在此實施例中,第一指紋圖像資訊213的160×160個像素資料被分割成16個40×40的區段0-15,這16個區段0-15各自使用不同的初始值0-15所產生的擾亂值Sn來加密,例如區段0使用初始值0,區段1使用初始值1,依此類推。 FIG. 12 shows still another method for segmenting the first fingerprint information 213. In this embodiment, 160×160 pixel data of the first fingerprint image information 213 is divided into 16 40×40 segments 0-15. These 16 segments 0-15 are each encrypted using a different scrambling value Sn generated by initial values 0-15, such as segment 0 using an initial value of 0, segment 1 using an initial value of 1, and so on.

以上對於本發明之較佳實施例所作的敘述係為闡明之目的,而無意限定本發明精確地為所揭露的形式,基於以上的教導或從本發明的實施例學習而作修改或變化是可能的,實施例係為解說本發明的原理以及讓熟習該項技術者以各種實施例利用本發明在實際應用上而選擇及敘述,本發明的技術思想企圖由以下的申請專利範圍及其均等來決定。 The above description of the preferred embodiments of the present invention is intended to be illustrative, and is not intended to limit the scope of the invention to the disclosed embodiments. It is possible to make modifications or variations based on the above teachings or learning from the embodiments of the present invention. The embodiments are described and illustrated in the practical application of the present invention in various embodiments, and the technical idea of the present invention is intended to be equivalent to the scope of the following claims. Decide.

20‧‧‧指紋感測IC 20‧‧‧Fingerprint Sensing IC

21‧‧‧指紋感測元件 21‧‧‧ Fingerprint sensing components

213‧‧‧第一指紋圖像資訊 213‧‧‧First fingerprint image information

23‧‧‧線性回授位移暫存器 23‧‧‧Linear feedback shift register

231‧‧‧初始值 231‧‧‧ initial value

233‧‧‧擾亂值 233‧‧‧Disruption value

25‧‧‧擾亂加密電路 25‧‧‧Disrupted encryption circuit

253‧‧‧第二指紋圖像資訊 253‧‧‧Second fingerprint image information

27‧‧‧傳輸介面 27‧‧‧Transport interface

29‧‧‧系統主控端 29‧‧‧System master

40‧‧‧初始值產生器 40‧‧‧Initial value generator

Claims (40)

一種指紋感測積體電路,包含:一指紋感測元件,用以感測指紋並產生一第一指紋圖像資訊;一線性回授位移暫存器,根據所輸入的初始值產生多個擾亂值;以及一擾亂加密電路,連接該線性回授位移暫存器與該指紋感測元件,使用該多個擾亂值對該第一指紋圖像資訊進行擾亂加密以產生一加密的第二指紋圖像資訊;其中,該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,而且該指紋感測積體電路將該第二指紋圖像資訊經由一傳輸介面傳送至遠端的一系統主控端進行指紋認證。 A fingerprint sensing integrated circuit includes: a fingerprint sensing component for sensing a fingerprint and generating a first fingerprint image information; and a linear feedback displacement register for generating a plurality of disturbances according to the input initial value And a scrambling encryption circuit, connected to the linear feedback displacement register and the fingerprint sensing component, using the plurality of scrambling values to scramble the first fingerprint image information to generate an encrypted second fingerprint The image information of the first fingerprint image information is the same as the data amount of the second fingerprint image information, and the fingerprint sensing integrated circuit transmits the second fingerprint image information to the second fingerprint image information via a transmission interface to A remote control system performs fingerprint authentication. 如請求項1的指紋感測積體電路,其中該第一指紋圖像資訊包含多個第一像素資料,該第二指紋圖像資訊包含多個第二像素資料,該多個擾亂值分別對該多個第一像素資料進行擾亂加密產生該多個第二像素資料。 The fingerprint sensing integrated circuit of claim 1, wherein the first fingerprint image information comprises a plurality of first pixel data, and the second fingerprint image information comprises a plurality of second pixel data, wherein the plurality of scrambling values are respectively The plurality of first pixel data are scrambled to generate the plurality of second pixel data. 如請求項1的指紋感測積體電路,其中該擾亂加密電路包含一互斥或閘。 The fingerprint sensing integrated circuit of claim 1, wherein the scrambling encryption circuit comprises a mutual exclusion or gate. 如請求項1的指紋感測積體電路,其中該初始值,是由該系統主控端提供,或是由該指紋感測積體電路提供,或是由該系統主控端與該指紋感測積體電路協定運算產生。 The fingerprint sensing integrated circuit of claim 1, wherein the initial value is provided by the system main control terminal, or is provided by the fingerprint sensing integrated circuit, or the system controller and the fingerprint sense The quadrature circuit is calculated by the operation of the circuit. 如請求項1的指紋感測積體電路,更包括一初始值產生器產生該初始值。 The fingerprint sensing integrated circuit of claim 1 further includes an initial value generator for generating the initial value. 如請求項5的指紋感測積體電路,其中該初始值產生器包含另一線性回授位移暫存器用以產生該初始值。 The fingerprint sensing integrated circuit of claim 5, wherein the initial value generator includes another linear feedback shift register for generating the initial value. 如請求項5的指紋感測積體電路,其中該初始值產生器根據一位元序列從預設的多個種子中選擇其中之一,並根據該位元序列所決定之位移次 數對所選擇的種子進行位移以產生該初始值。 The fingerprint sensing integrated circuit of claim 5, wherein the initial value generator selects one of the plurality of preset seeds according to the one-bit sequence, and determines the displacement according to the sequence of the bit. The pair of selected seeds are displaced to produce the initial value. 如請求項7的指紋感測積體電路,其中該位元序列是由該指紋感測積體電路提供,或是由該系統主控端提供,或是由該系統主控端與該指紋感測積體電路協定產生。 The fingerprint sensing integrated circuit of claim 7, wherein the bit sequence is provided by the fingerprint sensing integrated circuit, or provided by the system controller, or the system controller and the fingerprint sense The integration of the body circuit is generated. 如請求項5的指紋感測積體電路,其中該初始值是由多個位元構成,且該多個位元的一部分為預設的固定值。 The fingerprint sensing integrated circuit of claim 5, wherein the initial value is composed of a plurality of bits, and a part of the plurality of bits is a preset fixed value. 如請求項5的指紋感測積體電路,其中該初始值產生器包括多個暫存器,其中至少二個暫存器所儲存的位元值經邏輯運算後作為該初始值的其中一個位元。 The fingerprint sensing integrated circuit of claim 5, wherein the initial value generator comprises a plurality of registers, wherein the bit values stored by at least two of the registers are logically operated as one of the initial values. yuan. 如請求項5的指紋感測積體電路,其中該初始值產生器包括一暫存器,該暫存器所儲存的位元值作為該初始值的其中一個位元。 The fingerprint sensing integrated circuit of claim 5, wherein the initial value generator comprises a temporary register, and the bit value stored by the temporary register is one of the initial values. 如請求項1的指紋感測積體電路,其中該第一指紋圖像資訊分成多個區段,該多個區段分別根據不同的該初始值所產生的該多個擾亂值進行擾亂加密以產生該第二指紋圖像資訊。 The fingerprint sensing integrated circuit of claim 1, wherein the first fingerprint image information is divided into a plurality of segments, and the plurality of segments are respectively scrambled and encrypted according to the plurality of scrambled values generated by the different initial values. The second fingerprint image information is generated. 一種指紋感測積體電路的擾亂加密方法,該指紋感測積體電路經一傳輸介面連接一系統主控端,該擾亂加密方法包括下列步驟:感測指紋以產生一第一指紋圖像資訊;藉一初始值產生多個擾亂值;以及利用該多個擾亂值對該第一指紋圖像資訊進行擾亂加密以產生一加密的第二指紋圖像資訊經由該傳輸介面傳送至該系統主控端進行指紋認證; 其中,該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同。 A method for scrambling encryption of a fingerprint sensing integrated circuit, wherein the fingerprint sensing integrated circuit is connected to a system main control terminal via a transmission interface, the scrambling encryption method comprising the steps of: sensing a fingerprint to generate a first fingerprint image information Generating a plurality of scrambling values by using an initial value; and scrambling and encrypting the first fingerprint image information by using the plurality of scrambling values to generate an encrypted second fingerprint image information to be transmitted to the system master through the transmission interface Fingerprint authentication; The data amount of the first fingerprint image information is the same as the data amount of the second fingerprint image information. 如請求項13的擾亂加密方法,其中該利用該多個擾亂值對該第一指紋圖像資訊進行擾亂加密的步驟包括利用該多個擾亂值分別對該第一指紋圖像資訊的多個第一像素資料進行擾亂加密產生多個第二像素資料,其中該多個第二像素資料構成該第二指紋圖像資訊。 The scrambling encryption method of claim 13, wherein the step of scrambling and encrypting the first fingerprint image information by using the plurality of scrambling values comprises separately using the plurality of scrambling values to respectively perform the first fingerprint image information The one pixel data is scrambled to generate a plurality of second pixel data, wherein the plurality of second pixel data constitute the second fingerprint image information. 如請求項13的擾亂加密方法,其中該利用該多個擾亂值對該第一指紋圖像資訊進行擾亂加密的步驟包括使用互斥或運算進行擾亂加密。 The scrambling encryption method of claim 13, wherein the step of scrambling and encrypting the first fingerprint image information by using the plurality of scrambling values comprises performing scrambling encryption using a mutual exclusion or operation. 如請求項13的擾亂加密方法,更包括由該系統主控端提供該初始值,或是由該指紋感測積體電路提供該初始值,或是由該系統主控端與該指紋感測積體電路協定運算產生該初始值。 The scrambling encryption method of claim 13, further comprising providing the initial value by the system host, or providing the initial value by the fingerprint sensing integrated circuit, or sensing by the system host and the fingerprint The integrated circuit agreement operation produces the initial value. 如請求項13的擾亂加密方法,更包括藉由一位元序列從預設的多個種子中選擇其中之一,並依據該位元序列所決定的位移次數對所選擇的種子進行位移以產生該初始值,其中該位元序列是由該指紋感測積體電路提供,或是由該系統主控端提供,或是由該系統主控端與該指紋感測積體電路協定產生。 The scrambling encryption method of claim 13, further comprising: selecting one of the plurality of preset seeds by a one-bit sequence, and displacing the selected seed according to the number of displacements determined by the sequence of the bit to generate The initial value, wherein the bit sequence is provided by the fingerprint sensing integrated circuit, or provided by the system host, or is generated by the system master and the fingerprint sensing integrated circuit. 如請求項17的擾亂加密方法,更包括使用包含線性回授位移暫存器的初始值產生器提供該初始值。 The scrambling encryption method of claim 17, further comprising providing the initial value using an initial value generator including a linear feedback shift register. 如請求項18的擾亂加密方法,更包括將該初始值的一部分位元設定為預設的固定值。 The scrambling encryption method of claim 18 further includes setting a part of the bit of the initial value to a preset fixed value. 如請求項18的擾亂加密方法,更包括將該初始值產生器中的至少二個暫存器所儲存的位元值經邏輯運算後作為該初始值的其中一個位元。 For example, the scrambling encryption method of claim 18 further includes logically calculating a bit value stored in at least two of the initial value generators as one of the initial values. 如請求項18的擾亂加密方法,更包括將該初始值產生器中的一暫存器所儲存的位元值作為該初始值的其中一個位元。 The scrambling encryption method of claim 18, further comprising using the bit value stored in a register in the initial value generator as one of the initial values. 如請求項13的擾亂加密方法,其中該利用該多個初始值對該第一指紋圖像資訊進行擾亂加密的步驟包括將該第一指紋圖像資訊分割成多個區段分別由不同的該初始值所產生的該多個擾亂值進行擾亂加密。 The scrambling encryption method of claim 13, wherein the step of scrambling and encrypting the first fingerprint image information by using the plurality of initial values comprises dividing the first fingerprint image information into a plurality of segments respectively different from the The plurality of scrambled values generated by the initial value are scrambled and encrypted. 一種指紋感測積體電路,包含:一指紋感測元件,用以感測指紋並產生一第一指紋圖像資訊,該第一指紋圖像資訊分成多個區段,每一個區段包含多個第一像素資料;一線性回授位移暫存器,根據目前要加密的區段所對應的初始值產生多個擾亂值;以及一擾亂加密電路,連接該線性回授位移暫存器與該指紋感測元件,使用該多個擾亂值對該目前要加密的區段的多個第一像素資料進行擾亂加密以產生多個第二像素資料;其中,該多個區段全部進行擾亂加密後所產生的所有第二像素資料組成一第二指紋圖像資訊,該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,而且該指紋感測積體電路將該第二指紋圖像資訊經由一傳輸介面傳送至遠端的一系統主控端進行指紋認證。 A fingerprint sensing integrated circuit includes: a fingerprint sensing component for sensing a fingerprint and generating a first fingerprint image information, wherein the first fingerprint image information is divided into a plurality of segments, each segment comprising a plurality of segments a first pixel data; a linear feedback displacement register, generating a plurality of scrambling values according to initial values corresponding to the segments to be currently encrypted; and a scrambling encryption circuit connecting the linear feedback displacement register and the a fingerprint sensing component, using the plurality of scrambling values, scrambling and encrypting a plurality of first pixel data of the segment to be currently encrypted to generate a plurality of second pixel data; wherein the plurality of segments are all scrambled and encrypted The generated second pixel data constitutes a second fingerprint image information, the data amount of the first fingerprint image information is the same as the data amount of the second fingerprint image information, and the fingerprint sensing integrated circuit The second fingerprint image information is transmitted to a remote system controller through a transmission interface for fingerprint authentication. 如請求項23的指紋感測積體電路,其中該擾亂加密電路包含一互斥或閘。 The fingerprint sensing integrated circuit of claim 23, wherein the scrambling encryption circuit comprises a mutex or a gate. 如請求項23的指紋感測積體電路,其中該初始值,是由該系統主控端提供,或是由該指紋感測積體電路提供,或是由該系統主控端與該指紋感測積體電路協定運算產生。 The fingerprint sensing integrated circuit of claim 23, wherein the initial value is provided by the system main control terminal, or is provided by the fingerprint sensing integrated circuit, or the system controller and the fingerprint sense The quadrature circuit is calculated by the operation of the circuit. 如請求項23的指紋感測積體電路,更包括一初始值產生器產生該初始值。 The fingerprint sensing integrated circuit of claim 23 further includes an initial value generator for generating the initial value. 如請求項26的指紋感測積體電路,其中該初始值產生器包含另一線性回授位移暫存器用以產生該初始值。 The fingerprint sensing integrated circuit of claim 26, wherein the initial value generator includes another linear feedback shift register for generating the initial value. 如請求項26的指紋感測積體電路,其中該初始值產生器根據一位元序列從預設的多個種子中選擇其中之一,並根據該位元序列所決定之位移次數對所選擇的種子進行位移以產生該初始值。 The fingerprint sensing integrated circuit of claim 26, wherein the initial value generator selects one of the plurality of preset seeds according to the one-bit sequence, and selects according to the number of displacements determined by the sequence of the bit The seeds are displaced to produce the initial value. 如請求項28的指紋感測積體電路,其中該位元序列是由該指紋感測積體電路提供,或是由該系統主控端提供,或是由該系統主控端與該指紋感測積體電路協定產生。 The fingerprint sensing integrated circuit of claim 28, wherein the bit sequence is provided by the fingerprint sensing integrated circuit, or provided by the system controller, or by the system controller and the fingerprint sense The integration of the body circuit is generated. 如請求項26的指紋感測積體電路,其中該初始值是由多個位元構成,且該多個位元的一部分為預設的固定值。 The fingerprint sensing integrated circuit of claim 26, wherein the initial value is composed of a plurality of bits, and a part of the plurality of bits is a preset fixed value. 如請求項26的指紋感測積體電路,其中該初始值產生器包括多個暫存器,其中至少二個暫存器所儲存的位元值經邏輯運算後作為該初始值的其中一個位元。 The fingerprint sensing integrated circuit of claim 26, wherein the initial value generator comprises a plurality of registers, wherein the bit values stored by at least two of the registers are logically operated as one of the initial values yuan. 如請求項26的指紋感測積體電路,其中該初始值產生器包括一暫存器,該暫存器所儲存的位元值作為該初始值的其中一個位元。 The fingerprint sensing integrated circuit of claim 26, wherein the initial value generator comprises a temporary register, and the bit value stored by the temporary register is one of the initial values. 一種指紋感測積體電路的擾亂加密方法,該指紋感測積體電路經一傳輸介面連接一系統主控端,該擾亂加密方法包括下列步驟:感測指紋以產生一第一指紋圖像資訊;將該第一指紋圖像資訊分割成多個區段,每一個區段包含多個第一像素資料; 根據目前要加密的區段提供一初始值;藉該初始值產生多個擾亂值;以及利用該多個擾亂值對該目前要加密的區段的該多個第一像素資料進行擾亂加密以產生加密的多個第二像素資料;其中,該多個區段全部進行擾亂加密後所產生的所有第二像素資料組成一第二指紋圖像資訊,該第一指紋圖像資訊的資料量與該第二指紋圖像資訊的資料量相同,而且該第二指紋圖像資訊經由該傳輸介面傳送至該系統主控端進行指紋認證。 A method for scrambling encryption of a fingerprint sensing integrated circuit, wherein the fingerprint sensing integrated circuit is connected to a system main control terminal via a transmission interface, the scrambling encryption method comprising the steps of: sensing a fingerprint to generate a first fingerprint image information Dividing the first fingerprint image information into a plurality of segments, each segment comprising a plurality of first pixel data; Providing an initial value according to the segment currently to be encrypted; generating a plurality of scrambling values by using the initial value; and performing scrambling encryption on the plurality of first pixel data of the segment to be currently encrypted by using the plurality of scrambling values to generate Encrypting a plurality of second pixel data; wherein all the second pixel data generated by the plurality of segments are scrambled and encrypted to form a second fingerprint image information, and the data amount of the first fingerprint image information The data amount of the second fingerprint image information is the same, and the second fingerprint image information is transmitted to the system control terminal for fingerprint authentication via the transmission interface. 如請求項33的擾亂加密方法,其中該利用該多個擾亂值對該目前要加密的區段的該多個第一像素資料進行擾亂加密的步驟包括使用互斥或運算進行擾亂加密。 The scrambling encryption method of claim 33, wherein the step of scrambling the plurality of first pixel data of the segment to be currently encrypted using the plurality of scrambling values comprises performing scrambling encryption using a mutual exclusion or operation. 如請求項33的擾亂加密方法,更包括由該系統主控端提供該初始值,或是由該指紋感測積體電路提供該初始值,或是由該系統主控端與該指紋感測積體電路協定運算產生該初始值。 The scrambling encryption method of claim 33 further includes providing the initial value by the system host, or providing the initial value by the fingerprint sensing integrated circuit, or sensing by the system host and the fingerprint. The integrated circuit agreement operation produces the initial value. 如請求項33的擾亂加密方法,更包括藉由一的位元序列從預設的多個種子中選擇其中之一,並依據該位元序列所決定的位移次數對所選擇的種子進行位移以產生該初始值,其中該位元序列是由該指紋感測積體電路提供,或是由該系統主控端提供,或是由該系統主控端與該指紋感測積體電路協定產生。 The scrambling encryption method of claim 33, further comprising: selecting one of the plurality of preset seeds by a bit sequence, and displacing the selected seed according to the number of shifts determined by the bit sequence The initial value is generated, wherein the bit sequence is provided by the fingerprint sensing integrated circuit, or is provided by the system host, or is generated by the system master and the fingerprint sensing integrated circuit. 如請求項36的擾亂加密方法,更包括使用包含線性回授位移暫存器的初始值產生器提供該初始值。 The scrambling encryption method of claim 36 further includes providing the initial value using an initial value generator including a linear feedback shift register. 如請求項37的擾亂加密方法,更包括將該初始值的一部分位元設定為預 設的固定值。 The scrambling encryption method of claim 37, further comprising setting a part of the bit of the initial value as a pre- Set a fixed value. 如請求項37的擾亂加密方法,更包括將該初始值產生器中的至少二個暫存器所儲存的位元值經邏輯運算後作為該初始值的其中一個位元。 The scrambling encryption method of claim 37, further comprising logically calculating a bit value stored in at least two of the initial value generators as one of the initial values. 如請求項37的擾亂加密方法,更包括將該初始值產生器中的一暫存器所儲存的位元值作為該初始值的其中一個位元。 The scrambling encryption method of claim 37, further comprising using the bit value stored in a register in the initial value generator as one of the initial values.
TW104130768A 2015-09-17 2015-09-17 Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method TWI579774B (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
TW104130768A TWI579774B (en) 2015-09-17 2015-09-17 Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method
CN201510754104.6A CN106548122B (en) 2015-09-17 2015-11-09 Fingerprint sensing integrated circuit and scrambling encryption method thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW104130768A TWI579774B (en) 2015-09-17 2015-09-17 Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method

Publications (2)

Publication Number Publication Date
TW201712598A TW201712598A (en) 2017-04-01
TWI579774B true TWI579774B (en) 2017-04-21

Family

ID=58364850

Family Applications (1)

Application Number Title Priority Date Filing Date
TW104130768A TWI579774B (en) 2015-09-17 2015-09-17 Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method

Country Status (2)

Country Link
CN (1) CN106548122B (en)
TW (1) TWI579774B (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI648664B (en) * 2017-11-30 2019-01-21 大陸商北京集創北方科技股份有限公司 Display screen with security unit, display device and information processing device

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI666569B (en) * 2017-04-19 2019-07-21 映智科技股份有限公司 Bridge chip and fingerprint encryption method applied between fingerprint sensor and main control terminal, fingerprint detection and encryption circuit and method
TWI635413B (en) * 2017-07-18 2018-09-11 義隆電子股份有限公司 Fingerprint sensing integrated circuit
TWI651626B (en) * 2017-11-30 2019-02-21 大陸商北京集創北方科技股份有限公司 Biometric data encryption method and information processing device using same

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101751576A (en) * 2009-09-02 2010-06-23 中国科学院自动化研究所 Protection method of fingerprint minutiae feature templates
TW201324373A (en) * 2011-12-15 2013-06-16 Yi-Fong Yan Fingerprint inputting direction control system and the control method thereof
CN104321786A (en) * 2012-06-29 2015-01-28 苹果公司 Enrollment and Fingerprint Sensing System Using Synthetic Fingerprint Image
TW201528120A (en) * 2013-09-09 2015-07-16 蘋果公司 Device, method and graphical user interface for manipulating user interface based on fingerprint sensor input

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7779268B2 (en) * 2004-12-07 2010-08-17 Mitsubishi Electric Research Laboratories, Inc. Biometric based user authentication and data encryption
CN101005603A (en) * 2006-01-18 2007-07-25 华中科技大学 Method and device for enciphering, deenciphering and transfer code of image data
CN103458316B (en) * 2013-07-22 2016-05-04 太原理工大学 A kind of image encryption method
CN104778393A (en) * 2015-04-16 2015-07-15 电子科技大学 Security fingerprint identification method for intelligent terminal

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101751576A (en) * 2009-09-02 2010-06-23 中国科学院自动化研究所 Protection method of fingerprint minutiae feature templates
TW201324373A (en) * 2011-12-15 2013-06-16 Yi-Fong Yan Fingerprint inputting direction control system and the control method thereof
CN104321786A (en) * 2012-06-29 2015-01-28 苹果公司 Enrollment and Fingerprint Sensing System Using Synthetic Fingerprint Image
TW201528120A (en) * 2013-09-09 2015-07-16 蘋果公司 Device, method and graphical user interface for manipulating user interface based on fingerprint sensor input

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TWI648664B (en) * 2017-11-30 2019-01-21 大陸商北京集創北方科技股份有限公司 Display screen with security unit, display device and information processing device

Also Published As

Publication number Publication date
TW201712598A (en) 2017-04-01
CN106548122A (en) 2017-03-29
CN106548122B (en) 2019-06-07

Similar Documents

Publication Publication Date Title
TWI739090B (en) Puf-based true random number generator
KR102447476B1 (en) Crypto device, storage device having the same, and enc/decryption method thereof
US10491372B2 (en) Protection method and device against a side-channel analysis
US20160197899A1 (en) Method of Dynamically Encrypting Fingerprint Data and Related Fingerprint Sensor
TWI652930B (en) Device and method for generating identification key
US11728967B2 (en) Dynamic masking
CN103608820B (en) Computer realizing method and hardware for enabling a software application to be executed on a hardware device
JP6714735B2 (en) Random code generator
CN111008407B (en) Cryptographic circuitry for performing virtual cryptographic operations
TWI579774B (en) Fingerprint Sensing Integral Circuit and Its Disturbing Encryption Method
US20180270205A1 (en) Fingerprint-sensing integrated circuit and scrambling encryption method thereof
EP3200173B1 (en) Method of protecting electronic circuit against eavesdropping by power analysis and electronic circuit using the same
JP4758904B2 (en) Confidential information processing method
CN111147685B (en) Random sequence-based multiple image encryption method, system and intelligent terminal
Tralic et al. Robust image encryption based on balanced cellular automaton and pixel separation
US20160380766A1 (en) Encryption system with a generator of one-time keys and a method for generating one time-keys
US7707431B2 (en) Device of applying protection bit codes to encrypt a program for protection
CN113408012A (en) Fault detection
CN106529322A (en) Automatic storage security
TWI802783B (en) Method of protecting sensitive data in integrated circuit and integrated circuit
TWI696111B (en) Random code generator
CN119740245A (en) Device data encryption method, computer device, storage medium and program product