System and method for a secure display module

Abstract

A system for a secure display module includes a display element array, a driver controller, a communication interface, a host controller and a cryptographic engine. The display element array includes one or more segments, and the driver outputs are configured to drive the one or more segments, respectively. The host controller is configured to send commands and data to the driver controller via the communication interface and the cryptographic engine is configured to encrypt communication data between the display element array and the host controller.

Claims

.[.1. A display module comprising: a control interface configured to receive encrypted commands and encrypted data for display; a cryptographic engine coupled to the control interface, the encrypted commands and data received by the control interface being decrypted by the cryptographic engine to produce decrypted commands and decrypted data, the decrypted commands being executed by the control interface to control a plurality of display driver outputs; the plurality of driver outputs coupled to the control interface, the plurality of display driver outputs using the decrypted data to update the display array element with a randomized number grid; and a PIN pad for entering positional information corresponding to the randomized number grid..].

.[.2. The display module of claim 1 further comprising a display memory, the display memory storing the status of a portion of the display array element..].

.[.3. The display module of claim 1 wherein the status of a portion of the display array element is stored within a state of the display array element..].

.[.4. The display module of claim 1 wherein the cryptographic engine stores a key used for data encryption of the encrypted commands and data..].

.[.5. A method for operating a display module comprising: establishing, by a cryptographic engine, a key for data encryption between a control interface and an external device; receiving encrypted commands and encrypted data by the control interface; decrypting the encrypted commands using the key, by the cryptographic engine, to produce decrypted commands and decrypted data; executing the decrypted commands, by the control interface, to control a plurality of driver outputs to update a display array element using the decrypted data, the decrypted commands defining a randomized number grid; and receiving positional information input on a PIN pad corresponding to the randomized number grid..].

.[.6. The method of claim 5 further comprising storing in a display memory a status of a portion of the display array element..].

.[.7. The method of claim 5 further comprising storing within a state of the display array element a status of a portion of the display array element..].

.[.8. The method of claim 5 further comprising storing the key used for data encryption of the encrypted commands and data within the cryptographic engine..].

.Iadd.9. A method for a display module comprising: providing a control interface to receive encrypted commands and encrypted data for display; providing a cryptographic engine; performing one of: enabling the provided cryptographic engine to decrypt the encrypted commands and data received by the control interface to produce decrypted commands and decrypted data, or configuring the provided cryptographic engine to decrypt the encrypted commands and data received by the control interface to produce decrypted commands and decrypted data; performing one of: enabling the provided control interface to control a plurality of display driver outputs based on the decrypted commands, or configuring the provided control interface to control the plurality of display driver outputs based on the decrypted commands; enabling a display array element to display a randomized number grid based on the plurality of display driver outputs using the decrypted data; enabling positional information corresponding to the randomized number grid to be input using a personal identification number (PIN) pad; enabling the positional information to be received and decoded into PIN digits; enabling generation of an encrypted PIN based on the PIN digits; and enabling transmission of the encrypted PIN to the PIN pad..Iaddend.

.Iadd.10. A system comprising: a display module comprising: a control interface to receive encrypted commands and encrypted data for display, and a cryptographic engine coupled to the control interface, the encrypted commands and data received by the control interface being decrypted by the cryptographic engine to produce decrypted commands and decrypted data, the control interface controls a plurality of display driver outputs based on the decrypted commands; the plurality of display driver outputs coupled to the control interface, the plurality of display driver outputs using the decrypted data to update a display array element with a randomized number grid; and the display module receives positional information corresponding to the randomized number grid entered at a personal identification number (PIN) pad, the display module decodes the received positional information into PIN digits, the cryptographic engine generates an encrypted PIN based on the PIN digits, and the display module transmits the encrypted PIN to the PIN pad..Iaddend.

.Iadd.11. The display module of claim 10 further comprising a display memory, the display memory storing a status of a portion of the display array element..Iaddend.

.Iadd.12. The display module of claim 10 wherein a status of a portion of the display array element is stored within a state of the display array element..Iaddend.

.Iadd.13. The display module of claim 10 wherein the cryptographic engine stores a key for data encryption of the encrypted commands and data..Iaddend.

.Iadd.14. A method for operating a display module comprising: establishing, by a cryptographic engine, a key for data encryption between a control interface and a host controller; receiving, by the control interface, encrypted commands and encrypted data sent by the host controller; decrypting, by the cryptographic engine, the encrypted commands and encrypted data using the key to produce decrypted commands and decrypted data; controlling, by the control interface, a plurality of driver outputs to update a display array element using the decrypted data, wherein: the controlling is based on the decrypted commands, and the decrypted commands defining a randomized number grid; receiving positional information input on a PIN pad corresponding to the randomized number grid; decoding the received positional information into PIN digits; generating an encrypted PIN based on the PIN digits; and transmitting the encrypted PIN to the PIN pad..Iaddend.

.Iadd.15. The method of claim 14 further comprising storing in a display memory a status of a portion of the display array element..Iaddend.

.Iadd.16. The method of claim 14 further comprising storing within a state of the display array element a status of a portion of the display array element..Iaddend.

.Iadd.17. The method of claim 14 further comprising storing the key for data encryption of the encrypted commands and data within the cryptographic engine..Iaddend.

Description

BRIEF DESCRIPTION OF THE DRAWINGS

(1) FIG. 1 shows a typical display module 100 with display memory, command interface and the driver outputs;

(2) FIG. 2 shows a secure display module 300 according to this invention with display memory, command interface, driver outputs and a cryptographic unit;

(3) FIG. 3 shows a randomized key grid 201 and its numbered positions 202 shown on the secure display 101 and a standard PIN Pad 105.

DETAILED DESCRIPTION OF THE INVENTION

(4) Referring to FIG. 1, in a typical display module 100, there is a display element array 101 where segments 101A, 101B, 101C are turned on or off by a set of driver outputs 112 according to a set of commands and data received from a host controller 120 through the control interface 111. The status of an element can either be stored in a display memory 113 or it can be stored in the state of the display element itself In one example, the state of a mechanical flip disc and electronic ink element retains its state unless altered. In this prior art display module 100, commands and data are sent to the display module 100 from the host controller 120 in plain text unencrypted form. Therefore, it is possible to deduce the image or text message displayed by looking at the sequence of commands and data.

(5) In the present invention, commands and data are encrypted so that they are rendered incomprehensible without the proper cryptographic keys. Referring to FIG. 2, display module 300 includes a display element array 301 and a display controller 310. Display controller 310 includes driver outputs 312, a control interface 311, display memory 313 and a cryptographic engine 314. Cryptographic engine 314 provides a secure communication channel between the display controller 310 and the host controller 320. The cryptographic engine 314 stores a set of symmetric or asymmetric cryptographic keys that are used for key exchange, data encryption and data hashing.

(6) In operation, the host controller 1320 and the display controller 310 first establish a key for data encryption. Different key schemes can be used including Fixed key, Master-Session key or Derived Unique Key Per Transaction (DUKPT). Next, data and commands are encrypted by the host controller 320 before sending them to the display controller 310. The display controller 310, upon receiving the encrypted commands and data, decrypts the encrypted commands and data and then carries out the intended operations such as updating the display memory and driver outputs.

(7) One of the applications of the secure display module 300 is in the design of a personal identification number (PIN) entry device. Instead of strengthening the security level of the PIN pad, one can now rely on the security of the display. In the design, a randomized number grid 200 is displayed in display element array 301 and a PIN Pad 105 is used to enter positional information corresponding to the randomized number grid 200 instead of the PIN digits 102. In this way, a PIN can be captured securely in a standard PIN pad, keyboard or touch screen. The positional information, in combination with the displayed information on the secure display module, can give the entered digits and thus the PIN.

(8) Several embodiments of the present invention have been described. Nevertheless, it will be understood that various modifications may be made without departing from the spirit and scope of the invention. Accordingly, other embodiments are within the scope of the following claims.

System and method for a secure display module

Assignee

Inventors

Cpc classification

Classification Explorer

G09G2358/00

PHYSICS

Classification Explorer

H04L9/0866

ELECTRICITY

Classification Explorer

G06F21/445

PHYSICS

Classification Explorer

G06F2221/031

PHYSICS

Classification Explorer

G09G5/393

PHYSICS

Classification Explorer

H04L9/0894

ELECTRICITY

Classification Explorer

G06F21/606

PHYSICS

Classification Explorer

G06F21/84

PHYSICS

Classification Explorer

H04L9/3273

ELECTRICITY

International classification

Classification Explorer

H04L9/00

ELECTRICITY

Classification Explorer

G06F21/84

PHYSICS

Classification Explorer

H04L9/08

ELECTRICITY

Classification Explorer

G06F21/44

PHYSICS

Classification Explorer

G06F21/60

PHYSICS

Classification Explorer

G09G5/393

PHYSICS

Classification Explorer

H04L9/32

ELECTRICITY

Abstract

Claims

Description