CN111859416A - Method and device for controlling safety display - Google Patents
Method and device for controlling safety display Download PDFInfo
- Publication number
- CN111859416A CN111859416A CN202010577609.0A CN202010577609A CN111859416A CN 111859416 A CN111859416 A CN 111859416A CN 202010577609 A CN202010577609 A CN 202010577609A CN 111859416 A CN111859416 A CN 111859416A
- Authority
- CN
- China
- Prior art keywords
- data
- display
- cpu core
- processed
- interface
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 29
- 238000012545 processing Methods 0.000 claims abstract description 11
- 238000005336 cracking Methods 0.000 abstract description 2
- 230000006870 function Effects 0.000 description 6
- 238000010586 diagram Methods 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 238000004519 manufacturing process Methods 0.000 description 3
- 238000003860 storage Methods 0.000 description 3
- 238000004364 calculation method Methods 0.000 description 2
- 230000004075 alteration Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/82—Protecting input, output or interconnection devices
- G06F21/84—Protecting input, output or interconnection devices output devices, e.g. displays or monitors
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
Abstract
The invention provides a method and a device for safety display control.A CPU processor of a safety control module adopts a multi-core architecture, the operation responsible for decryption and display sending is distributed to a special CPU core, the system CPU core cannot decrypt display data, the special CPU core is used for processing data of a network port or a host interface for display and is isolated from the system CPU core of a system task, and the system CPU core sends the data to the special CPU core if the display is needed, so that a multi-core structure is arranged in the system CPU of the safety control module, the safety function is completed by the special CPU core, and the risk caused by the cracking of the system CPU core is avoided.
Description
Technical Field
The invention relates to the technical field of information security, in particular to a method and a device for controlling security display.
Background
With the development of information technology, the security threat of information system security faces varies, and network information security faces a major challenge. The display is used as the output device of the computer, and the important way for human-computer interaction is the important peripheral hardware in the computer system. People operate the equipment correspondingly through the content displayed by the display. If there is a leak in the system program controlling the display, hackers can not only obtain the content data being displayed, but they can even manipulate it to display other information, so as to achieve the purpose of deceiving users. Therefore, phishing websites can be forged, people can fake banks, e-commerce websites and the like by imitating URLs, and hackers can even manufacture false alarm information in some important production systems, so that the normal production is influenced by wrong treatment.
The traditional display control is basically controlled by a system program, and if the system lacks a safe framework and hardware design, the display screen is likely to be hijacked in the running process.
Disclosure of Invention
The invention aims to solve the problem of insufficient safety of information display.
The invention mainly aims to provide a method for controlling safe display;
another object of the present invention is to provide a device for secure display control.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
one aspect of the present invention provides a method for secure display control, including: the method comprises the steps that an independent safety special CPU core different from a system CPU core is arranged in a CPU processor, the safety special CPU core is used for obtaining data received by the system CPU core through a first interface arranged on the CPU processor and controlling a display to display data to be displayed through a display interface arranged on the CPU processor, wherein the first interface is a network interface or a host interface; when the safety special CPU core is used for carrying out the safety display control, the method comprises the following steps: the secure special CPU core negotiates with an opposite terminal device for a first display key used for transmitting first display data, where the first display key includes a first home terminal display key and an opposite terminal display key, and stores the first home terminal display key, and the opposite terminal device is a device connected to a first interface of the CPU processor, and includes: a server connected to the network interface or a host connected to the host interface; the secure special CPU core negotiates with the system CPU core a second display key for transmitting second display data, wherein the second display key comprises a second home terminal display key and a CPU display key, and stores the second home terminal display key; the system CPU core receives first data to be processed through a first interface and judges whether the first data to be processed is display sending data or not; if the first data to be processed is the display data, the system CPU core sends the first data to be processed to the safety special CPU core; the secure special CPU core decrypts the first data to be displayed by using the first home terminal display key to obtain the first data to be displayed, and controls the display to display the first data to be displayed through the display interface, wherein the first data to be displayed is obtained by encrypting the first data to be displayed by using an opposite terminal display key by using opposite terminal equipment; if the first data to be processed is not the display data, the system CPU checks the first data to be processed for processing; the system CPU core acquires second data to be processed and judges whether the second data to be processed is display sending data or not; if the second data to be processed is the display data, the system CPU core sends the second data to be processed to the safety special CPU core; the secure special CPU core decrypts the second data to be processed by using the second home terminal display key to obtain second data to be displayed, and controls the display to display the second data to be displayed through the display interface, wherein the second data to be processed is obtained by encrypting the second data to be displayed by using the CPU display key by the system CPU core; and if the second data to be processed is not the display data, the system CPU core sends the second data to be processed through the first interface.
In another aspect, the present invention provides a device for secure display control, including: a secure dedicated CPU core and a system CPU core; wherein: the safety special CPU core is a safety special CPU core which is independently arranged in the CPU processor and is different from the system CPU core, the safety special CPU core is used for acquiring data received by the system CPU core through a first interface arranged on the CPU processor and controlling a display to display data to be displayed through a display interface arranged on the CPU processor, wherein the first interface is a network interface or a host interface; when the safe display control is carried out by utilizing the safe special CPU core, the safe special CPU core is used for negotiating a first display key for transmitting first display data with opposite terminal equipment, the first display key comprises a first local terminal display key and an opposite terminal display key and saves the first local terminal display key, wherein the opposite terminal equipment is equipment connected with a first interface of a CPU processor, and the safe special CPU core comprises: a server connected to the network interface or a host connected to the host interface; the safety special CPU core is also used for negotiating a second display key for transmitting second display data with the system CPU core, wherein the second display key comprises a second home terminal display key and a CPU display key, and the second home terminal display key is stored; the system CPU core is used for receiving the first data to be processed through the first interface and judging whether the first data to be processed is the display sending data or not; if the first data to be processed is the display data, the system CPU core sends the first data to be processed to the safety special CPU core; the secure special CPU core decrypts the first data to be displayed by using the first home terminal display key to obtain the first data to be displayed, and controls the display to display the first data to be displayed through the display interface, wherein the first data to be displayed is obtained by encrypting the first data to be displayed by using an opposite terminal display key by using opposite terminal equipment; if the first data to be processed is not the display data, the system CPU checks the first data to be processed for processing; the system CPU core is also used for acquiring second data to be processed and judging whether the second data to be processed is the display sending data; if the second data to be processed is the display data, the system CPU core sends the second data to be processed to the safety special CPU core; the secure special CPU core decrypts the second data to be processed by using the second home terminal display key to obtain second data to be displayed, and controls the display to display the second data to be displayed through the display interface, wherein the second data to be processed is obtained by encrypting the second data to be displayed by using the CPU display key by the system CPU core; and if the second data to be processed is not the display data, the system CPU core sends the second data to be processed through the first interface.
According to the technical scheme provided by the invention, by utilizing the method and the device for the safety display control, the CPU processor of the safety control module adopts a multi-core architecture, the operation responsible for decryption and display sending is distributed to the exclusive CPU core, the system CPU core cannot decrypt the display data, the exclusive CPU core is used for processing the data of the network port or the host interface for display, the data are isolated from the system CPU core of the system task, the system CPU core sends the display to the exclusive CPU core if necessary, therefore, the multi-core structure is arranged in the system CPU of the safety control module, the safety function is completed by the exclusive CPU core, and the risk caused by the fact that the system CPU core is cracked is avoided.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art to obtain other drawings based on the drawings without creative efforts.
Fig. 1 is a flowchart of a method for secure display control according to an embodiment of the present invention;
FIG. 2 is a schematic diagram of a system for secure display control according to an embodiment of the present invention;
FIG. 3 is another schematic diagram of a system for secure display control according to an embodiment of the present invention;
fig. 4 is a schematic structural diagram of a device for controlling security display according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention are clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments of the present invention without making any creative effort, shall fall within the protection scope of the present invention.
In the description of the present invention, it is to be understood that the terms "center", "longitudinal", "lateral", "up", "down", "front", "back", "left", "right", "vertical", "horizontal", "top", "bottom", "inner", "outer", and the like, indicate orientations or positional relationships based on those shown in the drawings, and are used only for convenience in describing the present invention and for simplicity in description, and do not indicate or imply that the referenced devices or elements must have a particular orientation, be constructed and operated in a particular orientation, and thus, are not to be construed as limiting the present invention. Furthermore, the terms "first," "second," and the like are used for descriptive purposes only and are not to be construed as indicating or implying a relative importance or quantity or location.
In the description of the present invention, it should be noted that, unless otherwise explicitly specified or limited, the terms "mounted," "connected," and "connected" are to be construed broadly, e.g., as meaning either a fixed connection, a removable connection, or an integral connection; can be mechanically or electrically connected; they may be connected directly or indirectly through intervening media, or they may be interconnected between two elements. The specific meanings of the above terms in the present invention can be understood in specific cases to those skilled in the art.
Embodiments of the present invention will be described in further detail below with reference to the accompanying drawings.
Fig. 1 is a flowchart illustrating a method for controlling a security display according to an embodiment of the present invention, and referring to fig. 1, the method for controlling a security display according to an embodiment of the present invention includes:
the method comprises the steps that an independent safe special CPU core different from a system CPU core is arranged in a CPU processor, the safe special CPU core is used for obtaining data received by the system CPU core through a first interface arranged on the CPU processor and controlling a display to display data to be displayed through a display interface arranged on the CPU processor, and the first interface is a network interface or a host interface.
Specifically, a first interface and a display interface are arranged on the CPU processor, the first interface is configured as a network interface or a host interface and is used for receiving data sent by the server through the network interface or data sent by the host through the host interface, and the display interface is used for connecting a display to display data to be displayed.
Referring to fig. 2 and fig. 3, as two optional implementations of the embodiment of the present invention, the first interface is a network interface or a host interface, so that data sent by the server through the network interface or data sent by the host through the host interface can be processed by the security coprocessor and then sent to the display, so as to ensure that the security of the data sending and displaying can be ensured by the security coprocessor provided in the present invention in both a network mode and a stand-alone mode.
When the safety special CPU core is used for carrying out the safety display control, the method comprises the following steps:
s1, the secure dedicated CPU core negotiates with an opposite terminal device for a first display key used for transmitting first display data, where the first display key includes a first home terminal display key and an opposite terminal display key, and stores the first home terminal display key, and the opposite terminal device is a device connected to a first interface of the CPU processor, and includes: a server interfaced with a network or a host interfaced with a host.
Specifically, before the display operation is executed, a secret key for display is negotiated between the secure dedicated CPU core and the opposite-end device, the opposite-end device is a server connected to the network interface or a host connected to the host interface, and data to be transmitted and displayed between the secure dedicated CPU core and the opposite-end device is encrypted using the negotiated specific secret key, so that the leakage of secret caused by intercepting the data to be transmitted and displayed is avoided.
And S2, the secure special CPU core negotiates with the system CPU core a second display key for transmitting second display data, wherein the second display key comprises a second home terminal display key and a CPU display key, and stores the second home terminal display key.
Specifically, before the display operation is executed, the secure special CPU core also negotiates a key for display with the system CPU core, and data to be sent and displayed transmitted between the secure special CPU core and the system CPU core is encrypted using the negotiated specific key, thereby avoiding a disclosure caused by intercepting the data to be sent and displayed.
After the safety control module is powered on, the safety special CPU core negotiates and stores a display key with the server or the host, and negotiates and stores a display key with the system CPU core, so that data to be displayed can be processed through different groups of display keys, and the safety of the data to be displayed from different sources is ensured.
S3, the system CPU core receives the first data to be processed through the first interface, and judges whether the first data to be processed is the display sending data;
s4, if the first data to be processed is the display data, the system CPU core sends the first data to be processed to the safety special CPU core; the secure special CPU core decrypts the first data to be displayed by using the first home terminal display key to obtain the first data to be displayed, and controls the display to display the first data to be displayed through the display interface, wherein the first data to be displayed is obtained by encrypting the first data to be displayed by using an opposite terminal display key by using opposite terminal equipment;
s5, if the first data to be processed is not the display sending data, the system CPU checks the first data to be processed for processing.
Specifically, the system CPU core screens the data packet received at the first interface, and if the type of the data packet is the display sending type, sends the received data packet to the security-dedicated CPU core, and the security-dedicated CPU core performs decryption calculation using a key negotiated in advance and sends the decrypted data packet to the display interface for display. If the data is common data, the CPU core of the system directly processes the data.
S6, the system CPU core obtains the second data to be processed, and judges whether the second data to be processed is the display sending data;
S7, if the second data to be processed is the display data, the system CPU core sends the second data to be processed to the safety special CPU core; the secure special CPU core decrypts the second data to be processed by using the second home terminal display key to obtain second data to be displayed, and controls the display to display the second data to be displayed through the display interface, wherein the second data to be processed is obtained by encrypting the second data to be displayed by using the CPU display key by the system CPU core;
and S8, if the second data to be processed is not the display data, the system CPU core sends the second data to be processed through the first interface.
Specifically, the system CPU core determines that the data needs to be sent to the system CPU core, and sends the data to the security-dedicated CPU core, and the security-dedicated CPU core performs decryption calculation on the sent display content by using a pre-negotiated key and sends the decrypted display content to the display interface to perform display. And if the data is judged to be the common data, the data is sent out through the first interface.
It should be noted that the sequence of the above steps S1 and S2 may be arbitrarily set, for example, step S2 may be executed first and then step S1 is executed, or steps S1 and S2 may be executed at the same time. In any order, they shall fall within the scope of the present invention.
The sequence of the above steps S3-S5 and steps S6-S8 may be set arbitrarily, for example, steps S6-S8 may be executed first and then steps S3-S5 may be executed, or steps S3-S5 and steps S6-S8 may be executed at the same time. In any order, they shall fall within the scope of the present invention.
Therefore, by utilizing the method for controlling the safety display, provided by the invention, the CPU processor of the safety control module adopts a multi-core architecture, the operation responsible for decryption and display sending is distributed to the exclusive CPU core, the system CPU core cannot decrypt the display data, the exclusive CPU core is used for processing the data of the network port or the host interface for display, the data is isolated from the system CPU core of the system task, and the system CPU core sends the display if needed, and also sends the data to the exclusive CPU core, so that the multi-core structure is arranged in the system CPU of the safety control module, the safety function is completed by the exclusive CPU core, and the risk caused by the system CPU core being cracked is avoided.
Fig. 4 is a schematic structural diagram of a security display control apparatus according to an embodiment of the present invention, and the following only briefly describes the structure of the security display control apparatus according to the embodiment of the present invention, and please refer to the related description of the security display control method, which is not repeated herein, referring to fig. 4, the security display control apparatus according to the embodiment of the present invention includes: a secure dedicated CPU core and a system CPU core; wherein:
The safety special CPU core is a safety special CPU core which is independently arranged in the CPU processor and is different from the system CPU core, the safety special CPU core is used for acquiring data received by the system CPU core through a first interface arranged on the CPU processor and controlling a display to display data to be displayed through a display interface arranged on the CPU processor, wherein the first interface is a network interface or a host interface;
when the safety special CPU core is used for carrying out the safety display control, the method comprises the following steps:
the special safety CPU core is used for negotiating a first display key used for transmitting first display data with opposite terminal equipment, the first display key comprises a first local terminal display key and an opposite terminal display key, and the first local terminal display key is stored, wherein the opposite terminal equipment is equipment connected with a first interface of the CPU processor, and the special safety CPU core comprises: a server connected to the network interface or a host connected to the host interface;
the safety special CPU core is also used for negotiating a second display key for transmitting second display data with the system CPU core, wherein the second display key comprises a second home terminal display key and a CPU display key, and the second home terminal display key is stored;
the system CPU core is used for receiving the first data to be processed through the first interface and judging whether the first data to be processed is the display sending data or not;
If the first data to be processed is the display data, the system CPU core sends the first data to be processed to the safety special CPU core; the secure special CPU core decrypts the first data to be displayed by using the first home terminal display key to obtain the first data to be displayed, and controls the display to display the first data to be displayed through the display interface, wherein the first data to be displayed is obtained by encrypting the first data to be displayed by using an opposite terminal display key by using opposite terminal equipment;
if the first data to be processed is not the display data, the system CPU checks the first data to be processed for processing;
the system CPU core is also used for acquiring second data to be processed and judging whether the second data to be processed is the display sending data;
if the second data to be processed is the display data, the system CPU core sends the second data to be processed to the safety special CPU core; the secure special CPU core decrypts the second data to be processed by using the second home terminal display key to obtain second data to be displayed, and controls the display to display the second data to be displayed through the display interface, wherein the second data to be processed is obtained by encrypting the second data to be displayed by using the CPU display key by the system CPU core;
And if the second data to be processed is not the display data, the system CPU core sends the second data to be processed through the first interface.
Therefore, by utilizing the device for the safety display control provided by the invention, the CPU processor of the safety control module adopts a multi-core architecture, the operation responsible for decryption and display sending is distributed to the exclusive CPU core, the system CPU core cannot decrypt the display data, the exclusive CPU core is used for processing the data of the network port or the host interface for display, the data is isolated from the system CPU core of the system task, and the system CPU core sends the display if needed, and also sends the data to the exclusive CPU core, so that the multi-core structure is arranged in the system CPU of the safety control module, the safety function is completed by the exclusive CPU core, and the risk caused by the cracking of the system CPU core is avoided.
Any process or method descriptions in flow charts or otherwise described herein may be understood as representing modules, segments, or portions of code which include one or more executable instructions for implementing specific logical functions or steps of the process, and alternate implementations are included within the scope of the preferred embodiment of the present invention in which functions may be executed out of order from that shown or discussed, including substantially concurrently or in reverse order, depending on the functionality involved, as would be understood by those reasonably skilled in the art of the present invention.
It should be understood that portions of the present invention may be implemented in hardware, software, firmware, or a combination thereof. In the above embodiments, the various steps or methods may be implemented in software or firmware stored in memory and executed by a suitable instruction execution system. For example, if implemented in hardware, as in another embodiment, any one or combination of the following techniques, which are known in the art, may be used: a discrete logic circuit having a logic gate circuit for implementing a logic function on a data signal, an application specific integrated circuit having an appropriate combinational logic gate circuit, a Programmable Gate Array (PGA), a Field Programmable Gate Array (FPGA), or the like.
It will be understood by those skilled in the art that all or part of the steps carried by the method for implementing the above embodiments may be implemented by hardware related to instructions of a program, which may be stored in a computer readable storage medium, and when the program is executed, the program includes one or a combination of the steps of the method embodiments.
In addition, functional units in the embodiments of the present invention may be integrated into one processing module, or each unit may exist alone physically, or two or more units are integrated into one module. The integrated module can be realized in a hardware mode, and can also be realized in a software functional module mode. The integrated module, if implemented in the form of a software functional module and sold or used as a stand-alone product, may also be stored in a computer readable storage medium.
The storage medium mentioned above may be a read-only memory, a magnetic or optical disk, etc.
In the description herein, references to the description of the term "one embodiment," "some embodiments," "an example," "a specific example," or "some examples," etc., mean that a particular feature, structure, material, or characteristic described in connection with the embodiment or example is included in at least one embodiment or example of the invention. In this specification, the schematic representations of the terms used above do not necessarily refer to the same embodiment or example. Furthermore, the particular features, structures, materials, or characteristics described may be combined in any suitable manner in any one or more embodiments or examples.
Although embodiments of the present invention have been shown and described above, it is understood that the above embodiments are exemplary and should not be construed as limiting the present invention, and that variations, modifications, substitutions and alterations can be made in the above embodiments by those of ordinary skill in the art without departing from the principle and spirit of the present invention. The scope of the invention is defined by the appended claims and equivalents thereof.
Claims (2)
1. A method of secure display control, comprising:
The method comprises the steps that an independent safe special CPU core different from a system CPU core is arranged in a CPU processor, the safe special CPU core is used for obtaining data received by the system CPU core through a first interface arranged on the CPU processor and controlling a display to display data to be displayed through a display interface arranged on the CPU processor, wherein the first interface is a network interface or a host interface;
when the safety special CPU core is used for carrying out safety display control, the method comprises the following steps:
the secure dedicated CPU core negotiates with an opposite terminal device for a first display key used for transmitting first display data, where the first display key includes a first home terminal display key and an opposite terminal display key, and stores the first home terminal display key, and the opposite terminal device is a device connected to a first interface of the CPU processor, and includes: a server connected to the network interface or a host connected to the host interface;
the secure special CPU core negotiates with the system CPU core for a second display key used for transmitting second display data, wherein the second display key comprises a second home terminal display key and a CPU display key, and stores the second home terminal display key;
The system CPU core receives first data to be processed through the first interface and judges whether the first data to be processed is display sending data or not;
if the first data to be processed is the display data, the system CPU core sends the first data to be processed to the safety special CPU core; the secure special CPU core decrypts the first data to be displayed by using the first home terminal display key to obtain first data to be displayed, and controls the display to display the first data to be displayed through the display interface, wherein the first data to be displayed is obtained by encrypting the first data to be displayed by using an opposite terminal display key by the opposite terminal equipment;
if the first data to be processed is not the display data, the system CPU checks the first data to be processed for processing;
the system CPU core acquires second data to be processed and judges whether the second data to be processed is display sending data or not;
if the second data to be processed is the display data, the system CPU core sends the second data to be processed to the safety special CPU core; the secure special CPU core decrypts the second data to be processed by using the second home terminal display key to obtain second data to be displayed, and controls the display to display the second data to be displayed through the display interface, wherein the second data to be processed is obtained by encrypting the second data to be displayed by using the CPU display key by the system CPU core;
And if the second data to be processed is not the display data, the system CPU core sends the second data to be processed through the first interface.
2. An apparatus for secure display control, comprising: a secure dedicated CPU core and a system CPU core; wherein:
the special safety CPU core is a special safety CPU core which is independently arranged in a CPU processor and is different from the system CPU core, and is used for acquiring data received by the system CPU core through a first interface arranged on the CPU processor and controlling a display to display the data to be displayed through a display interface arranged on the CPU processor, wherein the first interface is a network interface or a host interface;
when the safety special CPU core is used for carrying out safety display control,
the secure dedicated CPU core is configured to negotiate, with an opposite-end device, a first display key used for transmitting first display data, where the first display key includes a first home-end display key and an opposite-end display key, and stores the first home-end display key, where the opposite-end device is a device connected to a first interface of the CPU processor, and includes: a server connected to the network interface or a host connected to the host interface;
The secure special CPU core is further configured to negotiate a second display key for transmitting second display data with the system CPU core, where the second display key includes a second home terminal display key and a CPU display key, and stores the second home terminal display key;
the system CPU core is used for receiving first data to be processed through the first interface and judging whether the first data to be processed is display sending data or not;
if the first data to be processed is the display data, the system CPU core sends the first data to be processed to the safety special CPU core; the secure special CPU core decrypts the first data to be displayed by using the first home terminal display key to obtain first data to be displayed, and controls the display to display the first data to be displayed through the display interface, wherein the first data to be displayed is obtained by encrypting the first data to be displayed by using an opposite terminal display key by the opposite terminal equipment;
if the first data to be processed is not the display data, the system CPU checks the first data to be processed for processing;
the system CPU core is also used for acquiring second data to be processed and judging whether the second data to be processed is display sending data or not;
If the second data to be processed is the display data, the system CPU core sends the second data to be processed to the safety special CPU core; the secure special CPU core decrypts the second data to be processed by using the second home terminal display key to obtain second data to be displayed, and controls the display to display the second data to be displayed through the display interface, wherein the second data to be processed is obtained by encrypting the second data to be displayed by using the CPU display key by the system CPU core;
and if the second data to be processed is not the display data, the system CPU core sends the second data to be processed through the first interface.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010577609.0A CN111859416A (en) | 2020-06-23 | 2020-06-23 | Method and device for controlling safety display |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010577609.0A CN111859416A (en) | 2020-06-23 | 2020-06-23 | Method and device for controlling safety display |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111859416A true CN111859416A (en) | 2020-10-30 |
Family
ID=72988050
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010577609.0A Pending CN111859416A (en) | 2020-06-23 | 2020-06-23 | Method and device for controlling safety display |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111859416A (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103532876A (en) * | 2013-10-23 | 2014-01-22 | 中国科学院声学研究所 | Processing method and system of data stream |
| CN103607279A (en) * | 2013-11-14 | 2014-02-26 | 中国科学院数据与通信保护研究教育中心 | Multi-core processor-based secret key protection method and system |
| US20140258734A1 (en) * | 2013-03-08 | 2014-09-11 | Samsung Electronics Co., Ltd. | Data security method and electronic device implementing the same |
| CN105391673A (en) * | 2014-09-04 | 2016-03-09 | 华为技术有限公司 | Safe access method and device |
| US20170005990A1 (en) * | 2015-07-01 | 2017-01-05 | Ari Birger | Systems, Methods and Computer Readable Medium To Implement Secured Computational Infrastructure for Cloud and Data Center Environments |
| CN110737926A (en) * | 2018-07-19 | 2020-01-31 | 华为技术有限公司 | display method, device and storage medium |
-
2020
- 2020-06-23 CN CN202010577609.0A patent/CN111859416A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20140258734A1 (en) * | 2013-03-08 | 2014-09-11 | Samsung Electronics Co., Ltd. | Data security method and electronic device implementing the same |
| CN103532876A (en) * | 2013-10-23 | 2014-01-22 | 中国科学院声学研究所 | Processing method and system of data stream |
| CN103607279A (en) * | 2013-11-14 | 2014-02-26 | 中国科学院数据与通信保护研究教育中心 | Multi-core processor-based secret key protection method and system |
| CN105391673A (en) * | 2014-09-04 | 2016-03-09 | 华为技术有限公司 | Safe access method and device |
| US20170005990A1 (en) * | 2015-07-01 | 2017-01-05 | Ari Birger | Systems, Methods and Computer Readable Medium To Implement Secured Computational Infrastructure for Cloud and Data Center Environments |
| CN110737926A (en) * | 2018-07-19 | 2020-01-31 | 华为技术有限公司 | display method, device and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10182255B2 (en) | Method, terminal, and system for communication pairing of a digital television terminal and a mobile terminal | |
| CN108833101B (en) | Data transmission method of Internet of things equipment, internet of things equipment and authentication platform | |
| WO2019120091A1 (en) | Identity authentication method and system, and computing device | |
| JP6656157B2 (en) | Network connection automation | |
| US10868801B2 (en) | Method and system for establishing connection | |
| US7284278B2 (en) | Secured KVM switch | |
| CN109996114B (en) | Method and device for controlling video output and control circuit | |
| CN103220145B (en) | Method and system for electronic signature token to respond to operation request, and electronic signature token | |
| US7559092B2 (en) | Secured KVM switch | |
| WO2014145417A1 (en) | Method and apparatus for secure interaction with a computer service provider | |
| EP3195219A1 (en) | Point of sale system with secure and unsecure modes | |
| US20200045540A1 (en) | Method and system for securing communication links using enhanced authentication | |
| CN112131590A (en) | Database connection establishing method and device, computer equipment and storage medium | |
| US20210211293A1 (en) | Systems and methods for out-of-band authenticity verification of mobile applications | |
| CN108011867B (en) | Safe encryption method and system for railway signals | |
| CN108985095A (en) | A kind of non-public file access method, system and electronic equipment and storage medium | |
| CN104899497A (en) | Identity card reading apparatus having no SAM module, SAM apparatus and system | |
| CN111859416A (en) | Method and device for controlling safety display | |
| CN111859417B (en) | Method and device for controlling safe display | |
| CN107437997A (en) | A kind of frequency communication devices and method | |
| CN114793178B (en) | Network distribution method, device, equipment and storage medium | |
| CN116738503A (en) | Collaborative encryption method for hardware system and operating system and electronic equipment | |
| CN116366364A (en) | Terminal data processing method and system for cloud computer | |
| US11968189B2 (en) | Methods and systems for generating a secure communication channel interface for video streaming of sensitive content | |
| CN105813076A (en) | Communication method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |