TWI709875B - Data security maintenance method of display screen and information processing device using it - Google Patents
Data security maintenance method of display screen and information processing device using it Download PDFInfo
- Publication number
- TWI709875B TWI709875B TW106142038A TW106142038A TWI709875B TW I709875 B TWI709875 B TW I709875B TW 106142038 A TW106142038 A TW 106142038A TW 106142038 A TW106142038 A TW 106142038A TW I709875 B TWI709875 B TW I709875B
- Authority
- TW
- Taiwan
- Prior art keywords
- display screen
- data
- key
- application processor
- maintenance method
- Prior art date
Links
Images
Landscapes
- User Interface Of Digital Computer (AREA)
- Controls And Circuits For Display Device (AREA)
Abstract
一種顯示屏的資料安全維護方法,其包含以下步驟:使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰;使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰;以及使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業。A method for maintaining data security of a display screen includes the following steps: a display screen and an application processor jointly execute a key initialization program to generate an initial key; The key performs an authentication procedure, and after the authentication procedure is successful, the display screen and the application processor jointly execute a time-varying key generation procedure to generate a time-varying key; and make the display screen at least An encryption operation is performed on a sensitive data.
Description
本發明係關於一種顯示屏的資料安全維護方法,特別是關於一種顯示屏的生物特徵傳感資料的安全維護方法。The present invention relates to a safety maintenance method for data of a display screen, in particular to a safety maintenance method for biometric sensor data of a display screen.
隨著各種智慧終端機的發展,螢幕成為人機交互的中心,顯示屏也整合了越來越多功能,例如從最基本的顯示、觸控,到壓力感測、指紋感測、聲紋感測和虹膜採集感測等等。這些感測資訊有些是不涉及安全的,有些則涉及到個人隱私安全,甚至於攸關支付安全。如果資訊的採集、傳輸、處理和存儲沒有得到很好的保護,則會存在非常大的安全隱患。也就說,在螢幕逐漸變成資訊輸入、輸出的採集或交互中心時,螢幕已等效為一個大的集成式感測器,因此其屏下積體電路便需要為這些輸入、輸出資訊提供高品質、穩定且安全的資訊管控,以為資訊的安全採集及安全傳輸提供基礎保障。With the development of various smart terminals, the screen has become the center of human-computer interaction, and the display screen has integrated more and more functions, for example, from the most basic display and touch control to pressure sensing, fingerprint sensing, and voiceprint sensing. Measurement and iris acquisition sensing, etc. Some of these sensed information are not related to security, and some are related to personal privacy security, and even related to payment security. If the collection, transmission, processing, and storage of information are not well protected, there will be very big security risks. In other words, when the screen gradually becomes the collection or interaction center of information input and output, the screen is equivalent to a large integrated sensor, so its under-screen integrated circuit needs to provide high-level information for these input and output information. Quality, stable and safe information management and control provide basic guarantee for the safe collection and safe transmission of information.
請參照圖1,其為一習知智慧終端機的系統方塊圖。如圖1所示,該習知智慧終端機具有一顯示屏模組10及一應用處理器(application processor;AP) 20,其中,顯示屏模組10具有一面板11及一控制電路12,且應用處理器20具有一資料分類單元21、一非敏感資料處理單元22及一隱私資料處理單元23。另外,面板11具有一顯示單元11a、一觸控單元11b、一壓力傳感器11c、一指紋傳感器11d、一聲紋傳感器11e及一虹膜/人像攝像頭單元11f;而控制電路12具有一非敏感資料接收單元12a、一隱私資料接收單元12b及一資料集中管理單元12c。Please refer to FIG. 1, which is a system block diagram of a conventional smart terminal. As shown in FIG. 1, the conventional smart terminal has a
於操作時,面板11會將觸控單元11b和壓力傳感器11c所感測到的資料傳至控制電路12的非敏感資料接收單元12a中;將指紋傳感器11d、聲紋傳感器11e和虹膜/人像攝像頭單元11f所感測到的資料傳至控制電路12的隱私資料接收單元12b中;以及藉由資料集中管理單元12c將該些資料傳送至應用處理器20。在應用處理器20中,資料分類單元21會依該些資料的敏感程度(非敏感或隱私)將其傳送至非敏感資料處理單元22或隱私資料處理單元23中,以在非敏感資料處理單元22的一普通運行環境中處理非敏感的感測資料,及在隱私資料處理單元23的一可信運行環境中處理隱私的感測資料。During operation, the
然而,由於圖1的方案係將顯示屏模組10所輸出的觸控和壓力等非敏感資料,以及指紋、聲紋、虹膜等隱私資料都直接傳輸給應用處理器20處理,在資料傳遞過程中並沒有針對隱私資料或敏感性資料進行資訊安全處理,也就是說,隱私資料或敏感性資料在傳遞過程中並沒有獲得保護,以至於在進入到可信運行環境前有被竊取或篡改的風險。However, since the solution in FIG. 1 is to directly transmit the non-sensitive data such as touch and pressure output by the
為解決上述問題,本領域亟需一顯示屏的生物特徵傳感資料的安全維護方法。In order to solve the above-mentioned problems, there is an urgent need in the art for a safe maintenance method for the biometric sensor data of the display screen.
本發明之一目的在於揭露一種顯示屏的資料安全維護方法,其可在一顯示屏中針對該顯示屏的人機介面採集到的各種生物特徵資料進行一加密處理,以防止該些資料在傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。One purpose of the present invention is to disclose a data security maintenance method for a display screen, which can perform an encryption process on various biometric data collected by the human-machine interface of the display screen in a display screen to prevent the data from being transmitted. It is stolen or tampered by hackers in the process to an application processor, thereby ensuring the security of the various biometric data in an open application environment.
本發明之另一目的在於揭露一種資訊處理裝置,其係藉由使一顯示屏具有一資料安全維護機制以防止各種生物特徵資料在由該顯示屏傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。Another object of the present invention is to disclose an information processing device, which prevents various biometric data from being hacked during the transmission from the display to an application processor by enabling a display to have a data security maintenance mechanism Stealing or tampering to ensure the security of the various biometric data in an open application environment.
為達前述目的,一種顯示屏的資料安全維護方法乃被提出,其包含以下步驟:In order to achieve the aforementioned purpose, a data security maintenance method for display screens is proposed, which includes the following steps:
使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰;Enabling a display screen and an application processor to jointly execute a key initialization program to generate an initial key;
使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰;以及Enabling the display screen and the application processor to perform an authentication procedure based on the initial key, and after the authentication procedure is successful, causing the display screen and the application processor to jointly execute a time-varying key generation procedure to generate a time-varying key; as well as
使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業。The display screen performs an encryption operation on at least one sensitive data according to the time-varying key.
在一實施例中,該時變密鑰產生程序係一隨機密鑰產生程序。In one embodiment, the time-varying key generation program is a random key generation program.
在一實施例中,所述之顯示屏的資料安全維護方法進一步包含一敏感資料辨識程序以在該顯示屏中判斷一感測資料是否為所述的敏感資料。In one embodiment, the data security maintenance method of the display screen further includes a sensitive data identification process to determine whether a sensed data is the sensitive data in the display screen.
在一實施例中,所述之顯示屏的資料安全維護方法進一步包含一資料輸出程序,用以在該顯示屏中對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器。In one embodiment, the data security maintenance method of the display screen further includes a data output program for performing a packaging operation on the sensitive data processed by the encryption operation in the display screen for output to The application processor.
為達前述目的,本發明進一步提出一種資訊處理裝置,其係利用如前述之顯示屏的資料安全維護方法以防止其內含的敏感資訊被盜取。In order to achieve the foregoing objective, the present invention further provides an information processing device, which utilizes the aforementioned display data security maintenance method to prevent the sensitive information contained in it from being stolen.
為使 貴審查委員能進一步瞭解本發明之結構、特徵及其目的,茲附以圖式及較佳具體實施例之詳細說明如後。In order to enable your reviewer to further understand the structure, features and purpose of the present invention, drawings and detailed descriptions of preferred specific embodiments are attached as follows.
請參照圖2,其為應用本發明之方法之一資訊處理裝置的方塊圖,其中該資訊處理裝置可為一智慧型手機。如圖2所示,該資訊處理裝置包含具有一顯示屏模組100及一應用處理器200,其中,顯示屏模組100具有一面板110及一控制電路120,且應用處理器200具有一非敏感資料處理單元210、一安全模組220及一隱私資料處理單元230。另外,面板110具有一顯示單元110a、一觸控單元110b、一壓力傳感器110c、一指紋傳感器110d、一聲紋傳感器110e及一虹膜/人像攝像頭單元110f;而控制電路120具有一非敏感資料接收單元120a、一隱私資料接收單元120b、一安全模組120c及一資料集中管理單元120d。Please refer to FIG. 2, which is a block diagram of an information processing device applying the method of the present invention, wherein the information processing device may be a smart phone. As shown in FIG. 2, the information processing device includes a
於操作時,面板110會將觸控單元110b和壓力傳感器110c所感測到的資料傳至控制電路120的非敏感資料接收單元120a中;將指紋傳感器110d、聲紋傳感器110e和虹膜/人像攝像頭單元110f所感測到的資料傳至控制電路120的隱私資料接收單元120b中。非敏感資料接收單元120a的輸出資料係直接傳送至資料集中管理單元120d,而隱私資料接收單元120b則是經由安全模組120c加密處理後再傳送至資料集中管理單元120d。資料集中管理單元120d負責將該些資料傳送至應用處理器200。應用處理器200會將非敏感的資料傳送至非敏感資料處理單元210以使非敏感的資料在一普通運行環境中被處理;及將隱私資料傳送至安全模組220進行一解密作業,並將解密後的資料傳送至隱私資料處理單元230,以使隱私資料在一可信運行環境中被處理。During operation, the
本發明的方法係藉由在顯示屏100和應用處理器200之間建立一套加、解密規則,並依該套加、解密規則對顯示屏100所感測到的敏感資料進行一加密作業,以防止有心人士竊取所述的敏感資料,從而確保該資訊處理裝置的資訊安全。The method of the present invention establishes a set of encryption and decryption rules between the
請參照圖3,其為本發明之顯示屏的資料安全維護方法之一實施例流程圖。如圖3所示,該顯示屏的資料安全維護方法主要包含:使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰(步驟a);使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰(步驟b);使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業(步驟c);以及在該顯示屏中執行一資料輸出程序以對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器(步驟d)。Please refer to FIG. 3, which is a flowchart of an embodiment of a method for maintaining data security of a display screen of the present invention. As shown in Figure 3, the data security maintenance method of the display screen mainly includes: making a display screen and an application processor jointly execute a key initialization program to generate an initial key (step a); The application processor performs an authentication procedure according to the initial key, and after the authentication procedure is successful, causes the display screen and the application processor to jointly execute a time-varying key generation procedure to generate a time-varying key (step b); The display screen performs an encryption operation on at least one type of sensitive data according to the time-varying key (step c); and executes a data output process in the display screen to perform a packaging operation on the sensitive data processed by the encryption operation For output to the application processor (step d).
另外,該顯示屏的資料安全維護方法可進一步包含:在該顯示屏中執行一敏感資料辨識程序以判斷一感測資料是否為所述的敏感資料。In addition, the data security maintenance method of the display screen may further include: executing a sensitive data identification process in the display screen to determine whether a sensed data is the sensitive data.
在一可能的實施例中,該密鑰初始化程序可為根據一品牌類型、生產批次、平臺類型設定一共用密鑰,再依該共用密鑰與一產品ID序列號的一填充後雜湊值進行一加密運算,其中,該填充後雜湊值係該ID序列號經一填充函式(padding function)及一雜湊函式(hash function)處理後而產生,而該加密運算可包含任一對稱密碼演算法。In a possible embodiment, the key initialization procedure may be to set a common key according to a brand type, production batch, and platform type, and then to fill in a hash value based on the common key and a product ID serial number Perform an encryption operation, where the padded hash value is generated after the ID serial number is processed by a padding function and a hash function, and the encryption operation can include any symmetric password Algorithm.
另外,可將該共用密鑰寫入該顯示屏底下的積體電路的一快閃記憶體(Flash)中。In addition, the shared key can be written into a flash memory (Flash) of the integrated circuit under the display screen.
另外,在可能的實施例中,該時變密鑰產生程序可為一隨機密鑰產生程序以產生一隨機密鑰,以供安全模組120c和安全模組220完成資料的安全交換。In addition, in a possible embodiment, the time-varying key generation process may be a random key generation process to generate a random key for the
依上述的原理,本發明即可將圖3的方法流程應用至一資訊處理裝置中,從而提供一可嚴密確保敏感資訊安全的資訊處理裝置。Based on the above-mentioned principle, the present invention can apply the method flow of FIG. 3 to an information processing device, thereby providing an information processing device that can strictly ensure the security of sensitive information.
藉由前述所揭露的設計,本發明乃可提供以下優點:With the design disclosed above, the present invention can provide the following advantages:
1.本發明之顯示屏的資料安全維護方法可在一顯示屏中針對該顯示屏的人機介面採集到的各種生物特徵資料進行一加密處理,以防止該些資料在傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。1. The data security maintenance method of the display screen of the present invention can perform an encryption processing on various biometric data collected by the human-machine interface of the display screen in a display screen to prevent the data from being transmitted to an application processor During the process of being stolen or tampered with by hackers, the security of the various biometric data in an open application environment is ensured.
2.本發明之資訊處理裝置可藉由使一顯示屏具有一資料安全維護機制以防止各種生物特徵資料在由該顯示屏傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。2. The information processing device of the present invention can prevent various biometric data from being stolen or tampered by hackers in the process of transmitting from the display to an application processor by enabling a display to have a data security maintenance mechanism, thereby ensuring The security of the various biometric data in an open application environment.
本案所揭示者,乃較佳實施例,舉凡局部之變更或修飾而源於本案之技術思想而為熟習該項技藝之人所易於推知者,俱不脫本案之專利權範疇。The disclosure in this case is a preferred embodiment, and any partial changes or modifications that are derived from the technical ideas of the case and can be easily inferred by those who are familiar with the art do not deviate from the scope of the patent right of the case.
綜上所陳,本案無論就目的、手段與功效,在在顯示其迥異於習知之技術特徵,且其首先發明合於實用,亦在在符合發明之專利要件,懇請 貴審查委員明察,並祈早日賜予專利,俾嘉惠社會,實感德便。In summary, regardless of the purpose, means, and effects of this case, it is showing its technical characteristics that are very different from conventional knowledge, and its first invention is suitable for practical use, and it is also in line with the patent requirements of the invention. I urge your examiner to observe and pray. Granting patents as soon as possible will benefit the society and feel the virtues.
10、100‧‧‧顯示屏模組
11、110‧‧‧面板
11a、110a‧‧‧顯示單元
11b、110b‧‧‧觸控單元
11c、110c‧‧‧壓力傳感器
11d、110d‧‧‧指紋傳感器
11e、110e‧‧‧聲紋傳感器
11f、110f‧‧‧虹膜/人像攝像頭單元
12、120‧‧‧控制電路
12a、120a‧‧‧非敏感資料接收單元
12b、120b‧‧‧隱私資料接收單元
12c、120d‧‧‧資料集中管理單元
20、200‧‧‧應用處理器
21‧‧‧資料分類單元
22、210‧‧‧非敏感資料處理單元
23、230‧‧‧隱私資料處理單元
120c、220‧‧‧安全模組
步驟a‧‧‧使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰
步驟b‧‧‧使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰
步驟c‧‧‧使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業
步驟d‧‧‧在該顯示屏中執行一資料輸出程序以對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器10, 100‧‧‧Display module
11.110‧‧‧
圖1為一習知智慧終端機的系統方塊圖。 圖2為應用本發明之方法之一資訊處理裝置的方塊圖。 圖3為本發明之顯示屏的資料安全維護方法之一實施例流程圖。Figure 1 is a system block diagram of a conventional smart terminal. Fig. 2 is a block diagram of an information processing device applying the method of the present invention. 3 is a flowchart of an embodiment of a method for maintaining data security of a display screen of the present invention.
步驟a‧‧‧使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰 Step a‧‧‧A display screen and an application processor jointly execute a key initialization procedure to generate an initial key
步驟b‧‧‧使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰 Step b‧‧‧ Make the display screen and the application processor perform an authentication procedure based on the initial key, and after the authentication procedure is successful, make the display screen and the application processor jointly execute a time-varying key generation procedure to generate Temporary Key
步驟c‧‧‧使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業 Step c‧‧‧The display screen performs an encryption operation on at least one sensitive data according to the time-varying key
步驟d‧‧‧在該顯示屏中執行一資料輸出程序以對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器 Step d‧‧‧Execute a data output program in the display screen to perform a packaging operation on the sensitive data processed by the encryption operation for output to the application processor
Claims (5)
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| TW106142038A TWI709875B (en) | 2017-11-30 | 2017-11-30 | Data security maintenance method of display screen and information processing device using it |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| TW106142038A TWI709875B (en) | 2017-11-30 | 2017-11-30 | Data security maintenance method of display screen and information processing device using it |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| TW201926121A TW201926121A (en) | 2019-07-01 |
| TWI709875B true TWI709875B (en) | 2020-11-11 |
Family
ID=68048901
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| TW106142038A TWI709875B (en) | 2017-11-30 | 2017-11-30 | Data security maintenance method of display screen and information processing device using it |
Country Status (1)
| Country | Link |
|---|---|
| TW (1) | TWI709875B (en) |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TW201239851A (en) * | 2011-01-31 | 2012-10-01 | Global Oled Technology Llc | Display with secure decryption of image signals |
| CN107004146A (en) * | 2014-10-28 | 2017-08-01 | 波因特公司 | Payment terminal system and application method |
-
2017
- 2017-11-30 TW TW106142038A patent/TWI709875B/en active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| TW201239851A (en) * | 2011-01-31 | 2012-10-01 | Global Oled Technology Llc | Display with secure decryption of image signals |
| CN107004146A (en) * | 2014-10-28 | 2017-08-01 | 波因特公司 | Payment terminal system and application method |
Also Published As
| Publication number | Publication date |
|---|---|
| TW201926121A (en) | 2019-07-01 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107592933B (en) | Methods, systems, devices, apparatuses and media for secure biometric data capture, processing and management | |
| US12079350B2 (en) | Secure public key acceleration | |
| US11449598B2 (en) | Method and system for securing user access, data at rest, and sensitive transactions using biometrics for mobile devices with protected local templates | |
| CN113902446B (en) | Face payment security method based on secure unit and trusted execution environment | |
| US10440019B2 (en) | Method, computer program, and system for identifying multiple users based on their behavior | |
| CN205721792U (en) | Electronic equipment | |
| US9531710B2 (en) | Behavioral authentication system using a biometric fingerprint sensor and user behavior for authentication | |
| WO2013091532A1 (en) | Image sensor and payment authentication method | |
| US11449631B2 (en) | Electronic device for managing personal information and operating method thereof | |
| CN104954132A (en) | Information processing apparatus, information processing method, and recording medium | |
| CN117009928A (en) | Software authorization verification method, computer device and storage medium | |
| TWI709875B (en) | Data security maintenance method of display screen and information processing device using it | |
| CN119475321A (en) | Virtual keyboard management method, device, computer equipment, readable storage medium and program product | |
| US12455951B2 (en) | Systems and methods for entangled authentication of biosensors and biosensor outputs | |
| TWI651626B (en) | Biometric data encryption method and information processing device using same | |
| TWI649669B (en) | Method for safely transmitting PIN code of touch screen and information processing device using same | |
| TWI664555B (en) | Key pairing method between display screen and motherboard of handheld device and handheld device using same | |
| TWI906543B (en) | Decentralized zero-trust identity verification-authentication system and method |