GB2228394A - Image line rearrangement gives vdu security - Google Patents

Image line rearrangement gives vdu security Download PDF

Info

Publication number
GB2228394A
GB2228394A GB8900817A GB8900817A GB2228394A GB 2228394 A GB2228394 A GB 2228394A GB 8900817 A GB8900817 A GB 8900817A GB 8900817 A GB8900817 A GB 8900817A GB 2228394 A GB2228394 A GB 2228394A
Authority
GB
United Kingdom
Prior art keywords
order
data
cathode ray
sequence
ray tube
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
GB8900817A
Other versions
GB8900817D0 (en
Inventor
Arthur Maitland
Peter Frank Hirst
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
University of St Andrews
University of Dundee
Original Assignee
University of St Andrews
University of Dundee
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by University of St Andrews, University of Dundee filed Critical University of St Andrews
Priority to GB8900817A priority Critical patent/GB2228394A/en
Publication of GB8900817D0 publication Critical patent/GB8900817D0/en
Priority to PCT/GB1990/000036 priority patent/WO1990008376A1/en
Publication of GB2228394A publication Critical patent/GB2228394A/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G09EDUCATION; CRYPTOGRAPHY; DISPLAY; ADVERTISING; SEALS
    • G09GARRANGEMENTS OR CIRCUITS FOR CONTROL OF INDICATING DEVICES USING STATIC MEANS TO PRESENT VARIABLE INFORMATION
    • G09G1/00Control arrangements or circuits, of interest only in connection with cathode-ray tube indicators; General aspects or details, e.g. selection emphasis on particular characters, dashed line or dotted line generation; Preprocessing of data
    • G09G1/06Control arrangements or circuits, of interest only in connection with cathode-ray tube indicators; General aspects or details, e.g. selection emphasis on particular characters, dashed line or dotted line generation; Preprocessing of data using single beam tubes, e.g. three-dimensional or perspective representation, rotation or translation of display pattern, hidden lines, shadows
    • G09G1/14Control arrangements or circuits, of interest only in connection with cathode-ray tube indicators; General aspects or details, e.g. selection emphasis on particular characters, dashed line or dotted line generation; Preprocessing of data using single beam tubes, e.g. three-dimensional or perspective representation, rotation or translation of display pattern, hidden lines, shadows the beam tracing a pattern independent of the information to be displayed, this latter determining the parts of the pattern rendered respectively visible and invisible
    • G09G1/16Control arrangements or circuits, of interest only in connection with cathode-ray tube indicators; General aspects or details, e.g. selection emphasis on particular characters, dashed line or dotted line generation; Preprocessing of data using single beam tubes, e.g. three-dimensional or perspective representation, rotation or translation of display pattern, hidden lines, shadows the beam tracing a pattern independent of the information to be displayed, this latter determining the parts of the pattern rendered respectively visible and invisible the pattern of rectangular co-ordinates extending over the whole area of the screen, i.e. television type raster
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/82Protecting input, output or interconnection devices
    • G06F21/84Protecting input, output or interconnection devices output devices, e.g. displays or monitors

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Radar, Positioning & Navigation (AREA)
  • Remote Sensing (AREA)
  • Controls And Circuits For Display Device (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

An electronic security system for protecting visual display units (VDU's) and personal computers against remote electromagnetic surveillance of data displayed on cathode ray tubes (CRT's) operates by scrambling the scanning pattern of the CRT (26') such that it is scanned in a non-consecutive manner. A random sequence generator (36) scrambles the order in which data is read from the video RAM (12') of a VDU and a digital to analogue convertor (30) controls the scanning pattern of the CRT (26') such that the data output from the video RAM (12') is displayed on the CRT (26') at the correct position whilst the CRT (26') is scanned in a non-consecutive order. In the described embodiment complete horizontal lines are scanned in a random order, however the system could be adapted to scramble the order of vertical columns, portions of rows or columns, or individual pixels. In order to hinder decryption, the scanning order can be changed at random or periodic intervals, or whenever the displayed data is altered significantly.

Description

"Security System for Visual Display Units and Personal Computers" The present invention relates to an electronic security system for protecting visual display units (VDU's) and personal computers against remote electromagnetic surveillance techniques employed by electronic eavesdroppers.
All electronic circuitry is a source of electromagnetic radiation. Electromagnetic emissions from personal computers and visual display units can be detected at some distance and decoded to give an intelligible copy of the information being displayed. Of all the sources of radiation in a desk top computer system, the video display unit represents the greatest security risk as the information being displayed is not generally encrypted - it must be readily understood by the operator. Text, for example, usually appears on the screen in plain language numbers in plain numerals, and graphics as an accurate image. Furthermore, the standard technology of VDU's makes the detection and decoding of electromagnetic emissions from them particularly easy.
The high voltage signal across the electron gun of the cathode ray tube (CRT) gives rise to strong radiation, typically between about lMHz and 30MHz depending on the pixel density of the graphic display. By monitoring radiation of a sufficiently short wavelength with a directional antenna the emissions from one particular VDU can be resolved and then decoded. Even at longer wavelengths, interferometric techniques could be used to obtain the required resolution.
The radio waves emitted from the electron gun and the screen may be complex in detail, but essentially form a simple pulsed signal. The electron beam in the CRT scans across the screen in a linear fashion, line by line.
Whenever the beam is allowed to strike the screen a pixel of information is displayed at that point. At this time, an associated burst of electromagnetic radiation is produced.
The linear scanning technique means that the delay between these pulses of radiation gives information about the position on the screen of the pixel. All the eavesdropper has to do is to synchronise his display, which scans in the same manner as the target display, with the incoming pulses, and then use these pulses as the basic input for his display. Surveillance equipment which performs this task at a range of up to a few hundred metres outside the building where the target VDU is situated is commercially available at a cost comparable to that of a personal computer system.
At present, the commercially available equipment which gives protection against illicit surveillance, still known by its NATO codename of "Tempest" involves heavily screening the VDU by encasing it in metal and covering the screen with wire mesh. This process is expensive - protected equipment can cost 50 - 200% more than the equivalent, unprotected system. However, theory and experiment show that screening is not a trivial task and it is actually exceedingly difficult (if not impossible) to effectively reduce all electromagnetic emissions from the screened system to zero.
Tempest standards actually do allow some leakage to occur and, whilst it is claimed that Tempest equipment is protected from surveillance at distances greater than about one metre, equipment for surveillance at much greater distances, nevertheless, is available.
It is an object of the present invention to provide a security system for VDU's and personal computers which provides enhanced security at a greatly reduced cost in comparison with existing techniques.
A security device embodying the invention and described herein is divided, conceptionally, into two parts - an "encoder" and a "decoder". The encoder is installed at some point in the VDU circuitry in an integrated circuit and scrambles the order in which the data is sent to the screen.
The decoder does not actually decode the data (which is sent in its scrambled order to the screen) but consists of circuitry which causes the CRT screen to be scanned in the same scrambled order in which the data is being sent to it.
Thus, for instance, instead of scanning lines 1 to, say, 500 consecutively they are scanned in some other order:- line 10, line 358, line 45, etc. Alternatively, a more complex scanning pattern can be achieved by parsing the data into more units (ie parts of lines, groups of pixels or even individual pixels) and encoding the order of these units.
These different scanning orders do not significantly alter the appearance of the VDU picture to the operator since all data appears at the correct location on the screen, but they do break up the normal, linear data flow which allows the radiation from the screen to be easily decoded. Anyone monitoring the emissions from the screen who has no knowledge of the "random" scanning order is faced with a major decryption problem before they can visualise the information can be made intelligible.
If the coding system is updated periodically (optimally every time the information on the display changes) then the decryption can be rendered even more arduous or even impossible. This continuous update of the coding system may be achieved by the encoder producing a new random code and programing the decoder with this code before the visual data is sent.
Accordingly, the invention provides a security apparatus for a visual display unit comprising a cathode ray tube including an electron gun, a cathode ray tube controller and a video memory adapted to hold data representing individual pixels of an image to be displayed on the cathode ray tube, said apparatus comprising means for scrambling the order in which said data are output from the video memory to the cathode ray tube controller, such that the video signal applied to the electron gun from the cathode ray tube controller is non-consecutive, and means for controlling the scanning pattern of the electron gun such that the image displayed on the cathode ray tube appears as it would if the video data were output from the video memory and the cathode ray tube scanned in a normal, consecutive manner.
Preferably, the order in which the data are output from the video memory and the corresponding scanning pattern of the electron gun are altered from time to time. It is particularly preferred that the order is altered whenever the image represented by the data in the video memory is changed significantly. Alternatively, the order can be changed periodically at predetermined or random time intervals.
Preferably also, the visual display unit further includes a horizontal address counter and a vertical address counter which select the video memory locations of pixels which are to be displayed, and said scrambling means comprises a random sequence generator for applying a random sequence of addresses to at least one of said address counters.
Preferably also, said means for controlling the scanning pattern of the electron gun comprises a digital-toanalogue convertor connected to receive a digital signal corresponding to the random sequence applied to the address counter and to output an analogue signal to control the scanning of the cathode ray tube such that the image is scanned in an order corresponding to the order in which the data are output from the video memory.
In the embodiment described herein, the scrambling means generates a random sequence of vertical addresses and the scanning control means replaces the conventional vertical voltage-ramp generator of the visual display unit such that complete horizontal lines of the image are scanned in a random order.
Preferably, the sequence of the addresses produced by the scrambling means is stored in a line sequence memory, and said line sequence memory comprises at least two memory banks, each capable of holding a complete sequence of addresses to be applied to the address counter, one of which holds the current sequence of addresses and the other of which holds a new sequence to be applied to the address counter when the order of data output and the scanning pattern are to be altered, the apparatus further including switching means for selectively connecting one or other of the memory banks to the address counter.
Preferably also, means are provided for monitoring the data input to the video memory, activating the scrambling means to generate a new address sequence, which is entered in the currently inactive one of the two memory banks, and for operating said switching means whenever the monitoring of the data input into the video memory indicates that a complete or predetermined fractional change of the data stored therein has taken place.
An embodiment of the invention will now be described, by way of example only, with reference to the accompanying drawings, in which: Fig. 1 is a schematic block diagram of the video circuitry of a conventional VDU; and Fig. 2 is a schematic block diagram of the video circuitry of a VDU incorporating a security system embodying the present invention.
Fig. 1 shows schematically the arrangement of the video circuitry of a typical VDU, comprising a graphic generator 10, which provides the basic input data for the VDU, video random access memory (RAM) 12, vertical and horizontal address counters 14 and 16, clock 18, CRT controller 20, vertical and horizontal voltage-ramp generators 22 and 24, and cathode ray tube 26. The video RAM 12 is a block memory which has a memory location associated with each individual pixel of the display. It is convenient to draw the memory as a two dimensional array in order to emphasise the one-to-one bit-mapping between a memory location and the pixel that it controls. Thus, the video RAM 12 stores an exact, pixel by pixel copy of the picture to be displayed on the screen.The address counters 14 and 16 are driven by the clock 18 to address the data stored in the video RAM 12 in sequence, which is output sequentially to the CRT controller 20. The horizontal address counter 16 is incremented on each clock pulse and the vertical address counter 14 is incremented at the end of each complete horizontal line. The CRT controller 20 resets the counters at the end of each complete horizontal line and each complete vertical scan, respectively.
The CRT controller 20 thus reads off the data stored in the video RAM and also adds horizontal and vertical synchronisation pulses to mark the beginning of each new line and each new frame, respectively. The signal derived from the video RAM 12 may contain monochrome or colour information and is used to control the electron gun (not shown) in the CRT 26. The horizontal and vertical synchronisation pulses are used to trigger the voltage-ramp generators 22 and 24 which drive the scanning apparatus in the CRT.
The electron gun only writes on the screen when the electron beam is scanning from, say, left to right along one of the horizontal lines. During the finite time that the electron beam takes to return to the left hand side of the screen and the beginning of the next horizontal line (the flyback period) the CRT controller 20 sends a horizontal blanking pulse which ensures that the electron gun does not write on the screen and thus cause a spurious trace. If the beam is scanning vertically from the top to the bottom of the screen, then when the beam has reached the bottom righthand corner of the screen the CRT controller sends a vertical or frame blanking pulse which allows the beam to return to the top left hand corner of the screen without the production of spurious traces.The orientation of the scanning lines is arbitrary (they may be left-to-right or top-to-bottom), as is the direction of scanning (left-toright or right-to-left) but the scheme described above is, by far, the most common.
An implementation of a coding system, embodying the invention, which scrambles the order in which the horizontal lines of the display are scanned is shown schematically in Fig. 2, wherein parts corresponding to those of Fig. 1 are designated 10', 12', etc. There are two main modifications to the operation of the CRT controller 20' as described above. Firstly, the vertical address counter 14' can be programmed with any address, rather than simply incrementing up to some address and then resetting. A sequence of vertical addresses in random order is produced by a random sequence generator 36, and is loaded into the line sequence memory 28A, 28B. The randomly ordered list of addresses then defines the order in which the lines are to be scanned.
The vertical address counter 14' is programmed with the random list from the line sequence memory 28A, 28B during the horizontal flyback period given by the horizontal blanking pulse. Each horizontal line is still scanned sequentially, as in the conventional system of Fig. 1, using the horizontal address counter 16' and the clock 18'.
Secondly, the vertical voltage-ramp generator 22 of Fig. 1 is replaced with a digital-to-analogue (D/A) convertor 30 which is also programmed from the line sequence memory 28A, 28B to produce the electron beam deflection appropriate to the particular horizontal line being displayed. The D/A convertor 30 is also programmed during the horizontal flyback period. The horizontal flyback period will always be of sufficient duration to allow time for the electron beam to move to the beginning of the next line to be scanned.
In order to provide the maximum degree of encryption the line sequence memory is periodically reprogrammed with a new sequence. The use of more than one line sequence for a given set of information displayed on the screen, however, provides alternative coding which tends to ease decryption of the information. Thus, the optimum coding is achieved if the line sequence memory is reprogrammed every time there is a significant change in the information displayed on the screen. This timing can be derived from digital circuitry 32 (comprising a bit counter) which counts the number of bits written to the video RAM 12' and initiates reprogramming of the line sequence memory when this number corresponds to the amount of information displayed in one complete screen (or some fraction of a screen).
Alternatively, the timing can simply be derived from a clock and set at, say, a few seconds - this system being preferred when, for instance, graphics are being displayed and a processor external to the CRT controller is directly programming the video memory.
The actual reprogramming of the line sequence memory must be fast enough to be completed within the vertical flyback time. The simplest way of achieving this is to have two banks 28A and 28B of line sequence memory and switch between memory banks 28A and 28B during vertical flyback.
In Fig. 2 the necessary switching circuitry is represented by the "bank select" block 34. The memory bank which has just been switched out can then be reprogrammed from the random sequence generator 36 during the relatively long period between line sequence memory reprogramming. In the case where there is more than one scan line per pixel, circuitry, represented by a "divide by i" block 40, may be introduced between the bank select circuitry 34 and the vertical address register 14', which gives the pixel line number appropriate to the current scan line ( being equal to the number of scan lines per pixel).
A line scrambling system, based upon an integrated circuit, may be fitted easily at the design stage of a personal computer or VDU and can also be retrospectively fitted to existing equipment, replacing parts of the original circuitry, to provide a cheaper and more secure alternative to Tempest equipment. For even greater security the system could be installed in Tempest equipment. The embodiment described herein only randomises the order in which complete horizontal lines are scanned, however it will be appreciated that a similar approach could be applied to randomise the order in which individual pixels or groups of pixels are scanned within each horizontal line.

Claims (10)

1. A security apparatus for a visual display unit comprising a cathode ray tube including an electron gun, a cathode ray tube controller and a video memory adapted to hold data representing individual pixels of an image to be displayed on the cathode ray tube, said apparatus comprising means for scrambling the order in which said data are output from the video memory to the cathode ray tube cpntroller, such that the video signal applied to the electron gun from the cathode ray tube controller is non-consecutive, and means for controlling the scanning pattern of the electron gun such that the image displayed on the cathode ray tube appears as it would if the video data were output from the video memory and the cathode ray tube scanned in a normal, consecutive manner.
2. The apparatus of claim 1, wherein the order in which the data are output from the video memory and the corresponding scanning pattern of the electron gun are altered from time to time.
3. The apparatus of claim 2, wherein the order is altered whenever the image represented by the data in the video memory is changed significantly.
4. The apparatus of claim 2, wherein the order is changed periodically at predetermined or random time intervals.
5. The apparatus of any of claims 1 to 4, wherein the visual display unit further includes a horizontal address counter and a vertical address counter which select the video memory locations of pixels which are to be displayed, and said scrambling means comprises a random sequence generator for applying a random sequence of addresses to at least one of said address counters.
6. The apparatus of claim 5, wherein said means for controlling the scanning pattrern of the electron gun comprises a digital-to-analogue convertor connected to receive a digital signal corresponding to the random sequence applied to the address counter and to output an analogue signal to control the scanning of the cathode ray tube such that the image is scanned in an order corresponding to the order in which the data are output from the video memory.
7. The apparatus of claim 6, wherein the scrambling means generates a random sequence of vertical addresses and the scanning control means controls the vertical position at which the cathode ray tube is scanned such that complete horizontal lines of the image are scanned in an order corresponding to the order in which the data are output from the video memory.
8. The apparatus of any of claims 5, 6 or 7, wherein the sequence of the accresses produced by the scrambling means is stored in a line sequence memory, and said line sequence memory comprises at least two memory banks, each capable of holding a complete sequence of addresses to be applied to the address counter, one of which holds the current sequence of addresses and the other of which holds a new sequence to be applied to the address counter when the order of data output and the scanning pattern are to be altered, the apparatus further including switching means for selectively connecting one or other of the memory banks to the address counter.
9. The apparatus of claim 8, wherein means are provided for monitoring the data input to the video memory, activating the scrambling means to generate a new address sequence, which is entered in the currently inactive one of the two memory banks, and for operating said switching means whenever the monitoring of the data input into the video memory indicates that a complete or predetermined fractional change of the data staored therein has taken place.
10. A security apparatus for a visual display unit substantially as hereinbefore described with reference to the accompanying drawings.
GB8900817A 1989-01-14 1989-01-14 Image line rearrangement gives vdu security Withdrawn GB2228394A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
GB8900817A GB2228394A (en) 1989-01-14 1989-01-14 Image line rearrangement gives vdu security
PCT/GB1990/000036 WO1990008376A1 (en) 1989-01-14 1990-01-11 Security system for visual display units and personal computers

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
GB8900817A GB2228394A (en) 1989-01-14 1989-01-14 Image line rearrangement gives vdu security

Publications (2)

Publication Number Publication Date
GB8900817D0 GB8900817D0 (en) 1989-07-05
GB2228394A true GB2228394A (en) 1990-08-22

Family

ID=10650042

Family Applications (1)

Application Number Title Priority Date Filing Date
GB8900817A Withdrawn GB2228394A (en) 1989-01-14 1989-01-14 Image line rearrangement gives vdu security

Country Status (2)

Country Link
GB (1) GB2228394A (en)
WO (1) WO1990008376A1 (en)

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0168861A2 (en) * 1984-06-22 1986-01-22 Staat der Nederlanden (Staatsbedrijf der Posterijen, Telegrafie en Telefonie) Video terminal with image line disarrangement
EP0235947A2 (en) * 1986-02-28 1987-09-09 International Computers Limited Video display unit

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4566002A (en) * 1979-03-30 1986-01-21 Canon Kabushiki Kaisha Data output apparatus capable of rotating data output therefrom relative to data input thereto
US4352100A (en) * 1980-11-24 1982-09-28 Ncr Corporation Image formatting apparatus for visual display

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0168861A2 (en) * 1984-06-22 1986-01-22 Staat der Nederlanden (Staatsbedrijf der Posterijen, Telegrafie en Telefonie) Video terminal with image line disarrangement
EP0235947A2 (en) * 1986-02-28 1987-09-09 International Computers Limited Video display unit

Also Published As

Publication number Publication date
WO1990008376A1 (en) 1990-07-26
GB8900817D0 (en) 1989-07-05

Similar Documents

Publication Publication Date Title
US4303986A (en) Data processing system and apparatus for color graphics display
US3471848A (en) Pattern generator
US4222048A (en) Three dimension graphic generator for displays with hidden lines
US4764885A (en) Minimum parallax stylus detection subsystem for a display device
CA1229931A (en) Video terminal with image line disarrangement
CA1090463A (en) Image transmission method and apparatus
US3423749A (en) Character positioning control
EP0063865B1 (en) Digital scan converter with randomized decay function
US3631457A (en) Display apparatus
GB2228394A (en) Image line rearrangement gives vdu security
US6721423B1 (en) Lost cost countermeasures against compromising electromagnetic computer emanations
US3671957A (en) Character generation display system
CA1274028A (en) Programmable interlace with skip and contrast enhancement in long persistence display systems
US3729730A (en) Display system
EP0235947B1 (en) Video display unit
US5068651A (en) Image display apparatus
US3827041A (en) Display apparatus with visual segment indicia
US3559207A (en) Data display system
US3803584A (en) Display system
US3671956A (en) Display system
JPH0258635B2 (en)
EP0012811B1 (en) Apparatus for producing hard copy of an image
US5068647A (en) Digital blanker for scanned displays
SU943783A2 (en) Device for displaying data on cathode ray tube screen
SU1195344A1 (en) Device for displaying graphic information on televison receiver screen

Legal Events

Date Code Title Description
WAP Application withdrawn, taken to be withdrawn or refused ** after publication under section 16(1)