[go: up one dir, main page]

TWI709875B - Data security maintenance method of display screen and information processing device using it - Google Patents

Data security maintenance method of display screen and information processing device using it Download PDF

Info

Publication number
TWI709875B
TWI709875B TW106142038A TW106142038A TWI709875B TW I709875 B TWI709875 B TW I709875B TW 106142038 A TW106142038 A TW 106142038A TW 106142038 A TW106142038 A TW 106142038A TW I709875 B TWI709875 B TW I709875B
Authority
TW
Taiwan
Prior art keywords
display screen
data
key
application processor
maintenance method
Prior art date
Application number
TW106142038A
Other languages
Chinese (zh)
Other versions
TW201926121A (en
Inventor
李坤
徐東
樊磊
張晉芳
Original Assignee
大陸商北京集創北方科技股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 大陸商北京集創北方科技股份有限公司 filed Critical 大陸商北京集創北方科技股份有限公司
Priority to TW106142038A priority Critical patent/TWI709875B/en
Publication of TW201926121A publication Critical patent/TW201926121A/en
Application granted granted Critical
Publication of TWI709875B publication Critical patent/TWI709875B/en

Links

Images

Landscapes

  • User Interface Of Digital Computer (AREA)
  • Controls And Circuits For Display Device (AREA)

Abstract

一種顯示屏的資料安全維護方法,其包含以下步驟:使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰;使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰;以及使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業。A method for maintaining data security of a display screen includes the following steps: a display screen and an application processor jointly execute a key initialization program to generate an initial key; The key performs an authentication procedure, and after the authentication procedure is successful, the display screen and the application processor jointly execute a time-varying key generation procedure to generate a time-varying key; and make the display screen at least An encryption operation is performed on a sensitive data.

Description

顯示屏的資料安全維護方法及利用其之資訊處理裝置Data safety maintenance method of display screen and information processing device using it

本發明係關於一種顯示屏的資料安全維護方法,特別是關於一種顯示屏的生物特徵傳感資料的安全維護方法。The present invention relates to a safety maintenance method for data of a display screen, in particular to a safety maintenance method for biometric sensor data of a display screen.

隨著各種智慧終端機的發展,螢幕成為人機交互的中心,顯示屏也整合了越來越多功能,例如從最基本的顯示、觸控,到壓力感測、指紋感測、聲紋感測和虹膜採集感測等等。這些感測資訊有些是不涉及安全的,有些則涉及到個人隱私安全,甚至於攸關支付安全。如果資訊的採集、傳輸、處理和存儲沒有得到很好的保護,則會存在非常大的安全隱患。也就說,在螢幕逐漸變成資訊輸入、輸出的採集或交互中心時,螢幕已等效為一個大的集成式感測器,因此其屏下積體電路便需要為這些輸入、輸出資訊提供高品質、穩定且安全的資訊管控,以為資訊的安全採集及安全傳輸提供基礎保障。With the development of various smart terminals, the screen has become the center of human-computer interaction, and the display screen has integrated more and more functions, for example, from the most basic display and touch control to pressure sensing, fingerprint sensing, and voiceprint sensing. Measurement and iris acquisition sensing, etc. Some of these sensed information are not related to security, and some are related to personal privacy security, and even related to payment security. If the collection, transmission, processing, and storage of information are not well protected, there will be very big security risks. In other words, when the screen gradually becomes the collection or interaction center of information input and output, the screen is equivalent to a large integrated sensor, so its under-screen integrated circuit needs to provide high-level information for these input and output information. Quality, stable and safe information management and control provide basic guarantee for the safe collection and safe transmission of information.

請參照圖1,其為一習知智慧終端機的系統方塊圖。如圖1所示,該習知智慧終端機具有一顯示屏模組10及一應用處理器(application processor;AP) 20,其中,顯示屏模組10具有一面板11及一控制電路12,且應用處理器20具有一資料分類單元21、一非敏感資料處理單元22及一隱私資料處理單元23。另外,面板11具有一顯示單元11a、一觸控單元11b、一壓力傳感器11c、一指紋傳感器11d、一聲紋傳感器11e及一虹膜/人像攝像頭單元11f;而控制電路12具有一非敏感資料接收單元12a、一隱私資料接收單元12b及一資料集中管理單元12c。Please refer to FIG. 1, which is a system block diagram of a conventional smart terminal. As shown in FIG. 1, the conventional smart terminal has a display module 10 and an application processor (AP) 20. The display module 10 has a panel 11 and a control circuit 12, and The application processor 20 has a data classification unit 21, a non-sensitive data processing unit 22 and a private data processing unit 23. In addition, the panel 11 has a display unit 11a, a touch unit 11b, a pressure sensor 11c, a fingerprint sensor 11d, a voiceprint sensor 11e, and an iris/portrait camera unit 11f; and the control circuit 12 has a non-sensitive data receiver Unit 12a, a private data receiving unit 12b, and a data centralized management unit 12c.

於操作時,面板11會將觸控單元11b和壓力傳感器11c所感測到的資料傳至控制電路12的非敏感資料接收單元12a中;將指紋傳感器11d、聲紋傳感器11e和虹膜/人像攝像頭單元11f所感測到的資料傳至控制電路12的隱私資料接收單元12b中;以及藉由資料集中管理單元12c將該些資料傳送至應用處理器20。在應用處理器20中,資料分類單元21會依該些資料的敏感程度(非敏感或隱私)將其傳送至非敏感資料處理單元22或隱私資料處理單元23中,以在非敏感資料處理單元22的一普通運行環境中處理非敏感的感測資料,及在隱私資料處理單元23的一可信運行環境中處理隱私的感測資料。During operation, the panel 11 transmits the data sensed by the touch unit 11b and the pressure sensor 11c to the non-sensitive data receiving unit 12a of the control circuit 12; the fingerprint sensor 11d, the voiceprint sensor 11e and the iris/portrait camera unit The data sensed by 11f is transmitted to the private data receiving unit 12b of the control circuit 12; and the data is transmitted to the application processor 20 through the data centralized management unit 12c. In the application processor 20, the data classification unit 21 will send the data to the non-sensitive data processing unit 22 or the privacy data processing unit 23 according to the sensitivity (non-sensitive or privacy) of the data, so as to be used in the non-sensitive data processing unit. The non-sensitive sensing data is processed in a normal operating environment of 22, and the private sensing data is processed in a trusted operating environment of the privacy data processing unit 23.

然而,由於圖1的方案係將顯示屏模組10所輸出的觸控和壓力等非敏感資料,以及指紋、聲紋、虹膜等隱私資料都直接傳輸給應用處理器20處理,在資料傳遞過程中並沒有針對隱私資料或敏感性資料進行資訊安全處理,也就是說,隱私資料或敏感性資料在傳遞過程中並沒有獲得保護,以至於在進入到可信運行環境前有被竊取或篡改的風險。However, since the solution in FIG. 1 is to directly transmit the non-sensitive data such as touch and pressure output by the display module 10, as well as the privacy data such as fingerprints, voiceprints, and iris, to the application processor 20 for processing, during the data transmission process There is no information security processing for private or sensitive data. That is to say, private or sensitive data is not protected during the transmission process, so that it may be stolen or tampered with before entering the trusted operating environment risk.

為解決上述問題,本領域亟需一顯示屏的生物特徵傳感資料的安全維護方法。In order to solve the above-mentioned problems, there is an urgent need in the art for a safe maintenance method for the biometric sensor data of the display screen.

本發明之一目的在於揭露一種顯示屏的資料安全維護方法,其可在一顯示屏中針對該顯示屏的人機介面採集到的各種生物特徵資料進行一加密處理,以防止該些資料在傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。One purpose of the present invention is to disclose a data security maintenance method for a display screen, which can perform an encryption process on various biometric data collected by the human-machine interface of the display screen in a display screen to prevent the data from being transmitted. It is stolen or tampered by hackers in the process to an application processor, thereby ensuring the security of the various biometric data in an open application environment.

本發明之另一目的在於揭露一種資訊處理裝置,其係藉由使一顯示屏具有一資料安全維護機制以防止各種生物特徵資料在由該顯示屏傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。Another object of the present invention is to disclose an information processing device, which prevents various biometric data from being hacked during the transmission from the display to an application processor by enabling a display to have a data security maintenance mechanism Stealing or tampering to ensure the security of the various biometric data in an open application environment.

為達前述目的,一種顯示屏的資料安全維護方法乃被提出,其包含以下步驟:In order to achieve the aforementioned purpose, a data security maintenance method for display screens is proposed, which includes the following steps:

使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰;Enabling a display screen and an application processor to jointly execute a key initialization program to generate an initial key;

使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰;以及Enabling the display screen and the application processor to perform an authentication procedure based on the initial key, and after the authentication procedure is successful, causing the display screen and the application processor to jointly execute a time-varying key generation procedure to generate a time-varying key; as well as

使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業。The display screen performs an encryption operation on at least one sensitive data according to the time-varying key.

在一實施例中,該時變密鑰產生程序係一隨機密鑰產生程序。In one embodiment, the time-varying key generation program is a random key generation program.

在一實施例中,所述之顯示屏的資料安全維護方法進一步包含一敏感資料辨識程序以在該顯示屏中判斷一感測資料是否為所述的敏感資料。In one embodiment, the data security maintenance method of the display screen further includes a sensitive data identification process to determine whether a sensed data is the sensitive data in the display screen.

在一實施例中,所述之顯示屏的資料安全維護方法進一步包含一資料輸出程序,用以在該顯示屏中對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器。In one embodiment, the data security maintenance method of the display screen further includes a data output program for performing a packaging operation on the sensitive data processed by the encryption operation in the display screen for output to The application processor.

為達前述目的,本發明進一步提出一種資訊處理裝置,其係利用如前述之顯示屏的資料安全維護方法以防止其內含的敏感資訊被盜取。In order to achieve the foregoing objective, the present invention further provides an information processing device, which utilizes the aforementioned display data security maintenance method to prevent the sensitive information contained in it from being stolen.

為使 貴審查委員能進一步瞭解本發明之結構、特徵及其目的,茲附以圖式及較佳具體實施例之詳細說明如後。In order to enable your reviewer to further understand the structure, features and purpose of the present invention, drawings and detailed descriptions of preferred specific embodiments are attached as follows.

請參照圖2,其為應用本發明之方法之一資訊處理裝置的方塊圖,其中該資訊處理裝置可為一智慧型手機。如圖2所示,該資訊處理裝置包含具有一顯示屏模組100及一應用處理器200,其中,顯示屏模組100具有一面板110及一控制電路120,且應用處理器200具有一非敏感資料處理單元210、一安全模組220及一隱私資料處理單元230。另外,面板110具有一顯示單元110a、一觸控單元110b、一壓力傳感器110c、一指紋傳感器110d、一聲紋傳感器110e及一虹膜/人像攝像頭單元110f;而控制電路120具有一非敏感資料接收單元120a、一隱私資料接收單元120b、一安全模組120c及一資料集中管理單元120d。Please refer to FIG. 2, which is a block diagram of an information processing device applying the method of the present invention, wherein the information processing device may be a smart phone. As shown in FIG. 2, the information processing device includes a display module 100 and an application processor 200. The display module 100 has a panel 110 and a control circuit 120, and the application processor 200 has a non- The sensitive data processing unit 210, a security module 220 and a private data processing unit 230. In addition, the panel 110 has a display unit 110a, a touch unit 110b, a pressure sensor 110c, a fingerprint sensor 110d, a voiceprint sensor 110e, and an iris/portrait camera unit 110f; and the control circuit 120 has a non-sensitive data receiver Unit 120a, a private data receiving unit 120b, a security module 120c, and a data centralized management unit 120d.

於操作時,面板110會將觸控單元110b和壓力傳感器110c所感測到的資料傳至控制電路120的非敏感資料接收單元120a中;將指紋傳感器110d、聲紋傳感器110e和虹膜/人像攝像頭單元110f所感測到的資料傳至控制電路120的隱私資料接收單元120b中。非敏感資料接收單元120a的輸出資料係直接傳送至資料集中管理單元120d,而隱私資料接收單元120b則是經由安全模組120c加密處理後再傳送至資料集中管理單元120d。資料集中管理單元120d負責將該些資料傳送至應用處理器200。應用處理器200會將非敏感的資料傳送至非敏感資料處理單元210以使非敏感的資料在一普通運行環境中被處理;及將隱私資料傳送至安全模組220進行一解密作業,並將解密後的資料傳送至隱私資料處理單元230,以使隱私資料在一可信運行環境中被處理。During operation, the panel 110 transmits the data sensed by the touch unit 110b and the pressure sensor 110c to the non-sensitive data receiving unit 120a of the control circuit 120; the fingerprint sensor 110d, the voiceprint sensor 110e and the iris/portrait camera unit The data sensed by 110f is transmitted to the privacy data receiving unit 120b of the control circuit 120. The output data of the non-sensitive data receiving unit 120a is directly transmitted to the data centralized management unit 120d, and the private data receiving unit 120b is encrypted by the security module 120c and then transmitted to the data centralized management unit 120d. The data centralized management unit 120d is responsible for transmitting the data to the application processor 200. The application processor 200 transmits the non-sensitive data to the non-sensitive data processing unit 210 so that the non-sensitive data is processed in a normal operating environment; and transmits the private data to the security module 220 for a decryption operation, and The decrypted data is sent to the private data processing unit 230 so that the private data can be processed in a trusted operating environment.

本發明的方法係藉由在顯示屏100和應用處理器200之間建立一套加、解密規則,並依該套加、解密規則對顯示屏100所感測到的敏感資料進行一加密作業,以防止有心人士竊取所述的敏感資料,從而確保該資訊處理裝置的資訊安全。The method of the present invention establishes a set of encryption and decryption rules between the display screen 100 and the application processor 200, and performs an encryption operation on the sensitive data sensed by the display screen 100 according to the set of encryption and decryption rules. Prevent interested persons from stealing the sensitive data, thereby ensuring the information security of the information processing device.

請參照圖3,其為本發明之顯示屏的資料安全維護方法之一實施例流程圖。如圖3所示,該顯示屏的資料安全維護方法主要包含:使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰(步驟a);使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰(步驟b);使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業(步驟c);以及在該顯示屏中執行一資料輸出程序以對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器(步驟d)。Please refer to FIG. 3, which is a flowchart of an embodiment of a method for maintaining data security of a display screen of the present invention. As shown in Figure 3, the data security maintenance method of the display screen mainly includes: making a display screen and an application processor jointly execute a key initialization program to generate an initial key (step a); The application processor performs an authentication procedure according to the initial key, and after the authentication procedure is successful, causes the display screen and the application processor to jointly execute a time-varying key generation procedure to generate a time-varying key (step b); The display screen performs an encryption operation on at least one type of sensitive data according to the time-varying key (step c); and executes a data output process in the display screen to perform a packaging operation on the sensitive data processed by the encryption operation For output to the application processor (step d).

另外,該顯示屏的資料安全維護方法可進一步包含:在該顯示屏中執行一敏感資料辨識程序以判斷一感測資料是否為所述的敏感資料。In addition, the data security maintenance method of the display screen may further include: executing a sensitive data identification process in the display screen to determine whether a sensed data is the sensitive data.

在一可能的實施例中,該密鑰初始化程序可為根據一品牌類型、生產批次、平臺類型設定一共用密鑰,再依該共用密鑰與一產品ID序列號的一填充後雜湊值進行一加密運算,其中,該填充後雜湊值係該ID序列號經一填充函式(padding function)及一雜湊函式(hash function)處理後而產生,而該加密運算可包含任一對稱密碼演算法。In a possible embodiment, the key initialization procedure may be to set a common key according to a brand type, production batch, and platform type, and then to fill in a hash value based on the common key and a product ID serial number Perform an encryption operation, where the padded hash value is generated after the ID serial number is processed by a padding function and a hash function, and the encryption operation can include any symmetric password Algorithm.

另外,可將該共用密鑰寫入該顯示屏底下的積體電路的一快閃記憶體(Flash)中。In addition, the shared key can be written into a flash memory (Flash) of the integrated circuit under the display screen.

另外,在可能的實施例中,該時變密鑰產生程序可為一隨機密鑰產生程序以產生一隨機密鑰,以供安全模組120c和安全模組220完成資料的安全交換。In addition, in a possible embodiment, the time-varying key generation process may be a random key generation process to generate a random key for the security module 120c and the security module 220 to complete the secure exchange of data.

依上述的原理,本發明即可將圖3的方法流程應用至一資訊處理裝置中,從而提供一可嚴密確保敏感資訊安全的資訊處理裝置。Based on the above-mentioned principle, the present invention can apply the method flow of FIG. 3 to an information processing device, thereby providing an information processing device that can strictly ensure the security of sensitive information.

藉由前述所揭露的設計,本發明乃可提供以下優點:With the design disclosed above, the present invention can provide the following advantages:

1.本發明之顯示屏的資料安全維護方法可在一顯示屏中針對該顯示屏的人機介面採集到的各種生物特徵資料進行一加密處理,以防止該些資料在傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。1. The data security maintenance method of the display screen of the present invention can perform an encryption processing on various biometric data collected by the human-machine interface of the display screen in a display screen to prevent the data from being transmitted to an application processor During the process of being stolen or tampered with by hackers, the security of the various biometric data in an open application environment is ensured.

2.本發明之資訊處理裝置可藉由使一顯示屏具有一資料安全維護機制以防止各種生物特徵資料在由該顯示屏傳送至一應用處理器的過程中被駭客竊取或篡改,從而確保所述各種生物特徵資料在一開放式應用環境中的安全性。2. The information processing device of the present invention can prevent various biometric data from being stolen or tampered by hackers in the process of transmitting from the display to an application processor by enabling a display to have a data security maintenance mechanism, thereby ensuring The security of the various biometric data in an open application environment.

本案所揭示者,乃較佳實施例,舉凡局部之變更或修飾而源於本案之技術思想而為熟習該項技藝之人所易於推知者,俱不脫本案之專利權範疇。The disclosure in this case is a preferred embodiment, and any partial changes or modifications that are derived from the technical ideas of the case and can be easily inferred by those who are familiar with the art do not deviate from the scope of the patent right of the case.

綜上所陳,本案無論就目的、手段與功效,在在顯示其迥異於習知之技術特徵,且其首先發明合於實用,亦在在符合發明之專利要件,懇請 貴審查委員明察,並祈早日賜予專利,俾嘉惠社會,實感德便。In summary, regardless of the purpose, means, and effects of this case, it is showing its technical characteristics that are very different from conventional knowledge, and its first invention is suitable for practical use, and it is also in line with the patent requirements of the invention. I urge your examiner to observe and pray. Granting patents as soon as possible will benefit the society and feel the virtues.

10、100‧‧‧顯示屏模組 11、110‧‧‧面板 11a、110a‧‧‧顯示單元 11b、110b‧‧‧觸控單元 11c、110c‧‧‧壓力傳感器 11d、110d‧‧‧指紋傳感器 11e、110e‧‧‧聲紋傳感器 11f、110f‧‧‧虹膜/人像攝像頭單元 12、120‧‧‧控制電路 12a、120a‧‧‧非敏感資料接收單元 12b、120b‧‧‧隱私資料接收單元 12c、120d‧‧‧資料集中管理單元 20、200‧‧‧應用處理器 21‧‧‧資料分類單元 22、210‧‧‧非敏感資料處理單元 23、230‧‧‧隱私資料處理單元 120c、220‧‧‧安全模組 步驟a‧‧‧使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰 步驟b‧‧‧使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰 步驟c‧‧‧使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業 步驟d‧‧‧在該顯示屏中執行一資料輸出程序以對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器10, 100‧‧‧Display module 11.110‧‧‧Panel 11a, 110a‧‧‧display unit 11b, 110b‧‧‧touch unit 11c、110c‧‧‧Pressure sensor 11d、110d‧‧‧Fingerprint sensor 11e、110e‧‧‧Voiceprint sensor 11f、110f‧‧‧iris/portrait camera unit 12.120‧‧‧Control circuit 12a, 120a‧‧‧Insensitive data receiving unit 12b, 120b‧‧‧Privacy data receiving unit 12c, 120d‧‧‧Data centralized management unit 20, 200‧‧‧application processor 21‧‧‧Data Classification Unit 22, 210‧‧‧Non-sensitive data processing unit 23, 230‧‧‧Privacy data processing unit 120c、220‧‧‧Security module Step a‧‧‧A display screen and an application processor jointly execute a key initialization procedure to generate an initial key Step b‧‧‧ Make the display screen and the application processor perform an authentication procedure based on the initial key, and after the authentication procedure is successful, make the display screen and the application processor execute a time-varying key generation procedure together to generate Temporary Key Step c‧‧‧The display screen performs an encryption operation on at least one sensitive data according to the time-varying key Step d‧‧‧Execute a data output program in the display to perform a packaging operation on the sensitive data processed by the encryption operation for output to the application processor

圖1為一習知智慧終端機的系統方塊圖。 圖2為應用本發明之方法之一資訊處理裝置的方塊圖。 圖3為本發明之顯示屏的資料安全維護方法之一實施例流程圖。Figure 1 is a system block diagram of a conventional smart terminal. Fig. 2 is a block diagram of an information processing device applying the method of the present invention. 3 is a flowchart of an embodiment of a method for maintaining data security of a display screen of the present invention.

步驟a‧‧‧使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰 Step a‧‧‧A display screen and an application processor jointly execute a key initialization procedure to generate an initial key

步驟b‧‧‧使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰 Step b‧‧‧ Make the display screen and the application processor perform an authentication procedure based on the initial key, and after the authentication procedure is successful, make the display screen and the application processor jointly execute a time-varying key generation procedure to generate Temporary Key

步驟c‧‧‧使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業 Step c‧‧‧The display screen performs an encryption operation on at least one sensitive data according to the time-varying key

步驟d‧‧‧在該顯示屏中執行一資料輸出程序以對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器 Step d‧‧‧Execute a data output program in the display screen to perform a packaging operation on the sensitive data processed by the encryption operation for output to the application processor

Claims (5)

一種顯示屏的資料安全維護方法,其包含以下步驟:使一顯示屏和一應用處理器共同執行一密鑰初始化程序以產生一初始密鑰;使該顯示屏和該應用處理器依該初始密鑰進行一認證程序,並在該認證程序成功後使該顯示屏和該應用處理器共同執行一時變密鑰產生程序以產生一時變密鑰;以及使該顯示屏依該時變密鑰對至少一種敏感資料進行一加密作業;其中,所述密鑰初始化程序具有以下步驟:根據一產品類型、一產品生產批次、及/或一操作平臺類型設定一共用密鑰;將一產品ID序列號轉換成一填充後雜湊值,且對該填充後雜湊值與所述共用密鑰進行一加密運算;其中,該填充後雜湊值係該產品ID序列號經一填充函式(padding function)及一雜湊函式(hash function)處理後而產生,而該加密運算包含任一對稱密碼演算法。 A method for maintaining data security of a display screen includes the following steps: a display screen and an application processor jointly execute a key initialization program to generate an initial key; The key performs an authentication procedure, and after the authentication procedure is successful, the display screen and the application processor jointly execute a time-varying key generation procedure to generate a time-varying key; and make the display screen at least An encryption operation for sensitive data; wherein the key initialization program has the following steps: set a common key according to a product type, a product production batch, and/or an operating platform type; and a product ID serial number Is converted into a stuffed hash value, and an encryption operation is performed on the stuffed hash value and the shared key; wherein, the stuffed hash value is the product ID serial number through a padding function and a hash The hash function is processed and generated, and the encryption operation includes any symmetric cryptographic algorithm. 如申請專利範圍第1項所述之顯示屏的資料安全維護方法,其中該時變密鑰產生程序係一隨機密鑰產生程序。 For example, in the data security maintenance method of the display screen described in item 1 of the scope of patent application, the time-varying key generation program is a random key generation program. 如申請專利範圍第1項所述之顯示屏的資料安全維護方法,其進一步包含一敏感資料辨識程序以在該顯示屏中判斷一感測資料是否為所述的敏感資料。 For example, the data security maintenance method of the display screen described in the scope of the patent application further includes a sensitive data identification program to determine whether a sensed data is the sensitive data in the display screen. 如申請專利範圍第1項所述之顯示屏的資料安全維護方法,其進一步包含一資料輸出程序,用以在該顯示屏中對經該加密作業處理過的所述敏感資料進行一打包作業以供輸出至該應用處理器。 For example, the data security maintenance method of the display screen described in item 1 of the scope of patent application further includes a data output program for performing a packaging operation on the sensitive data processed by the encryption operation in the display screen. For output to the application processor. 一種資訊處理裝置,其係利用如申請專利範圍第1-4項中之任一項所述之顯示屏的資料安全維護方法而防止其內含的敏感資訊被盜取。 An information processing device uses the data security maintenance method of the display screen as described in any one of items 1-4 in the scope of patent application to prevent the sensitive information contained in it from being stolen.
TW106142038A 2017-11-30 2017-11-30 Data security maintenance method of display screen and information processing device using it TWI709875B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
TW106142038A TWI709875B (en) 2017-11-30 2017-11-30 Data security maintenance method of display screen and information processing device using it

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
TW106142038A TWI709875B (en) 2017-11-30 2017-11-30 Data security maintenance method of display screen and information processing device using it

Publications (2)

Publication Number Publication Date
TW201926121A TW201926121A (en) 2019-07-01
TWI709875B true TWI709875B (en) 2020-11-11

Family

ID=68048901

Family Applications (1)

Application Number Title Priority Date Filing Date
TW106142038A TWI709875B (en) 2017-11-30 2017-11-30 Data security maintenance method of display screen and information processing device using it

Country Status (1)

Country Link
TW (1) TWI709875B (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW201239851A (en) * 2011-01-31 2012-10-01 Global Oled Technology Llc Display with secure decryption of image signals
CN107004146A (en) * 2014-10-28 2017-08-01 波因特公司 Payment terminal system and application method

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
TW201239851A (en) * 2011-01-31 2012-10-01 Global Oled Technology Llc Display with secure decryption of image signals
CN107004146A (en) * 2014-10-28 2017-08-01 波因特公司 Payment terminal system and application method

Also Published As

Publication number Publication date
TW201926121A (en) 2019-07-01

Similar Documents

Publication Publication Date Title
CN107592933B (en) Methods, systems, devices, apparatuses and media for secure biometric data capture, processing and management
US12079350B2 (en) Secure public key acceleration
US11449598B2 (en) Method and system for securing user access, data at rest, and sensitive transactions using biometrics for mobile devices with protected local templates
CN113902446B (en) Face payment security method based on secure unit and trusted execution environment
US10440019B2 (en) Method, computer program, and system for identifying multiple users based on their behavior
CN205721792U (en) Electronic equipment
US9531710B2 (en) Behavioral authentication system using a biometric fingerprint sensor and user behavior for authentication
WO2013091532A1 (en) Image sensor and payment authentication method
US11449631B2 (en) Electronic device for managing personal information and operating method thereof
CN104954132A (en) Information processing apparatus, information processing method, and recording medium
CN117009928A (en) Software authorization verification method, computer device and storage medium
TWI709875B (en) Data security maintenance method of display screen and information processing device using it
CN119475321A (en) Virtual keyboard management method, device, computer equipment, readable storage medium and program product
US12455951B2 (en) Systems and methods for entangled authentication of biosensors and biosensor outputs
TWI651626B (en) Biometric data encryption method and information processing device using same
TWI649669B (en) Method for safely transmitting PIN code of touch screen and information processing device using same
TWI664555B (en) Key pairing method between display screen and motherboard of handheld device and handheld device using same
TWI906543B (en) Decentralized zero-trust identity verification-authentication system and method