Patent Application
20120166817
1. Field of the Invention
The present invention relates to a secured data display method, a secured data storage device and an encryption chip card, and more particularly, a secured data display method, a secured data storage device and an encryption chip card capable of non-intrusively and non-destructively displaying secured data.
2. Description of the Prior Art
Generally, current encryption systems on market include a data access device and a secured data storage device. The data access device is capable of transmitting a secured data to the secured data storage device for storage via a predefined encryption mechanism, and when a user intends to operate according to the stored secured data, it is necessary to first utilize the data access device or other data access devices with the same predefined encryption mechanism to decrypt the secured data, so as to proceed with subsequent operations. In other words, writing or reading the secured data are required to be executed via the predefined encryption mechanism, to prevent malicious third parties from modifying the secured data.
For example, please refer to
However, since encryption chip cards (or other secured data storage devices) usually do not have display functionalities, when the user intends to query a remaining credit, etc, of the encryption chip card, it is required to read the encryption chip card on predefined readers at certain predefined locations via a predefined encryption mechanism, in order to query an internal data of the encryption chip card, and thus lacking in convenience of usage. Moreover, general encryption systems are subject to regulations and limitations imposed by certifying institutions of encryption security, i.e. it is required to perform read or other operations on the secured data stored in the secured data storage device via predefined encryption mechanisms, and thus lacking in extensibility due to difficult integration with external components. Hence, it is necessary to improve over prior art techniques.
Therefore, the primary objective of the present invention is to provide a secured data display method, secured data storage device and encryption chip card capable of non-intrusively and non-destructively displaying secured data.
The present invention discloses a secured data display method for a secured data storage device of an encryption system, capable of non-intrusively and non-destructively displaying secured data. The secured data display method comprises receiving and storing a secured data transmitted via a first encryption mechanism according to a first communication protocol; and receiving an output data transmitted by a data access device of the encryption system according to a second communication protocol; wherein the secured data and the output data contain a same content.
The present invention further discloses a secured data storage device capable of non-intrusively and non-destructively displaying secured data for an encryption system. The secured data storage device comprises an encryption unit for receiving and storing a secured data transmitted via a first encryption mechanism according to a first communication protocol; and an output unit, for receiving an output data transmitted by a data access device of the encryption system according to a second communication protocol; wherein the secured data and the output data contain a same content.
The present invention further discloses an encryption chip card, capable of non-intrusively and non-destructively displaying secured data in an encryption/decryption environment. The encryption chip card comprises an encryption chip, for receiving and storing a secured data transmitted via a first encryption mechanism according to a first communication protocol and an output chip, for receiving an output data transmitted by the reader according to a second communication protocol, wherein the secured data and the output data contain a same content.
These and other objectives of the present invention will no doubt become obvious to those of ordinary skill in the art after reading the following detailed description of the preferred embodiment that is illustrated in the various figures and drawings.
Please refer to
Step 200: Start.
Step 202: Receive and store a secured data transmitted via a first encryption mechanism according to a first communication protocol.
Step 204: Receive an output data transmitted by a data access device of the encryption system according to a second communication protocol; wherein the secured data and the output data comprise a same content.
Step 206: Output in a predefined form according to the output data.
Step 208: End.
According to the secured data display process 20, the secured data storage device receives and stores the secured data transmitted via the first encryption mechanism according to the first communication protocol, then receives the output data, which comprises the same content as the secured data, transmitted by the data access device according to the second communication protocol, then outputs in a predefined form (e.g. visual display or audio) according to the output data. The data access device transmits the output data to the secured data storage device according to the second communication protocol and not via the first encryption mechanism. Consequently, when integrating the secured data storage device with other components to extend functions unrelated to modification of the secured data, e.g. query or display the secured data, etc, since the secured data and the output data comprise the same content, the output data may be directly utilized to perform operations, without the first encryption mechanism, thus enabling non-intrusive and non-destructive operations such as displaying data, without involving the secured data.
Specifically, please refer to
In more detail, when the data access device 32 is performing a write operation on the encryption unit 302, the data access device 32 can transmit the secured data Enc1Data to the encryption unit 302 for storage via an encryption mechanism Enc1 according to the communication protocol Pro1, and since the content of the secured data Enc1Data is known, the data access device 32 may simultaneously transmit the output data OutData, which comprises the same content as the secured data Enc1Data, to the output unit 304 according to communication protocol Pro2. On the other hand, when the data access device 32 is performing a read operation on the encryption unit 302, since another reader which has previously written the secured data Enc1Data to the encryption unit 302 may not have simultaneously transmitted data comprising the same content to the output unit 304, the data access device 32 may read the secured data Enc1Data stored in the encryption unit 302 via an encryption mechanism Enc1 according to communication protocol Pro1; and since the content of the secured data Enc1Data is known, the data access device 32 may simultaneously transmit the output data OutData, which comprise a the same content as the secured data Enc1Data, to the output unit 304 according to communication protocol Pro2. In this way, the output data OutData and the secured data Enc1Data may be ensured to comprise the same content, facilitating subsequent operations.
Note that, the spirit of the present invention is to further transmit an output data which comprise a same content as the secured data to the secured data storage device for storage, without the original encryption mechanism applied for the secured data, thus the output data may be directly utilized for performing operations such as query, display, etc without involving the original encryption mechanism. Therefore it is possible to non-intrusively and non-destructively display data without involving the secured data, ensuring data integrity and security of the secured data. Those skilled in the art can make modifications or alterations accordingly and are not limited thereto. For instance, the secured data storage device 30 can further include a module for operations such as querying or displaying the secured data Enc1Data, or for extending functionalities of the secured data storage device 30 unrelated to modification of the secured data Enc1Data, to extend functions of the secured data storage device 30 while ensuring data integrity and security of the secured data Enc1Data.
Specifically, the secured data storage device 30 may further include an output module 306, for outputting in a predefined form according to the output data OutData, allowing the user to know the content of the output data OutData (i.e. the content of the secured data Enc1Data). For example, the output module 306 may be a liquid crystal display (LCD), a screen or an electronic paper or any device capable of outputting in a visual display form, to directly display the content of the output data OutData, or to indirectly indicate the content of the output data OutData through light or color patterns with predefined meanings; for another example, the output module 306 may be an audio speaker or any other device capable of outputting an audio form, to indirectly indicate the content of the output data OutData to the user through sounds with predefined meanings. The output module 306 may output in any predefined form, not limited to above-mentioned embodiment, so long as the user knows the content of the output data OutData. In this way, the user does not need to utilize predefined data access devices and the secured data storage device 30 at predefined locations communicating through the encryption mechanism Enc1, and is capable of non-intrusively and non-destructively querying the internal data of the secured data storage device 30 at any time (e.g. an encryption chip card capable of displaying remaining credit at any time), thus improving convenience of usage.
Moreover, to ensure secure transmission of the output data OutData from the data access device 32 to the output unit 304, the data access device 32 may further transmit via an encryption mechanism Enc2, for the output unit 304 to receive the output data OutData transmitted by the data access device 32 via the encryption mechanism Enc2 according to the communication protocol Pro2, so long as the encryption mechanism Enc2 differs from the encryption mechanism Enc1. Additionally, the communication protocol Pro1 and the communication protocol Pro2 may be contactless communication protocols, or contact-based communication protocols; and the communication protocol Pro1 and the communication protocol Pro2 may be a same communication protocol, or different communication protocols, so long as the data access device 32 is capable of transmitting the output data OutData with a same content to the output unit 304 without the encryption mechanism Enc1.
Furthermore, the secured data storage device 30 is preferred to be an encryption chip card, the data access device 32 preferred to be a reader, and the encryption unit 302 and the output unit 304 preferred to be an encryption chip and an output chip, but may also be any other encryption system not limited thereto, and any encryption system with predefined encryption mechanism capable of achieving above-mentioned related operations are within scope of the present invention.
In the prior art, an encryption chip card (or another secured data storage device) usually does not have a display function, thus it is necessary to utilize a predefined reader at a predefined location to communicate with the encryption chip card via a predefined encryption mechanism, in order to query internal data of the encryption chip card, therefore lacking in convenience of usage. Moreover, due to regulations and limitations imposed by certifying institutions of encryption security, conventional encryption chip cards lack extensibility due to difficult integration with external components. Comparatively, the present invention does not utilize the original encryption mechanism but further transmits the output data, which comprises a same content as the secured data, to the secured data storage device for storage, thus operations may be performed according to the output data without the original encryption mechanism applied for the secured data. In addition to ensuring data integrity and security, it is possible to improve extensibility of the secured data storage device, allowing non-intrusive and non-destructive query into the internal data of the secured data storage device at anytime, and thus improving convenience of usage.
In summary, the present invention does not utilize the original encryption mechanism but further transmits the output data, which comprises a same content as the secured data, to the secured data storage device for storage, thus ensuring data integrity and security, as well as convenience of usage and extensibility of the secured data storage device.
Those skilled in the art will readily observe that numerous modifications and alterations of the device and method may be made while retaining the teachings of the invention.
| Number | Date | Country | Kind |
|---|---|---|---|
| 099145444 | Dec 2010 | TW | national |
