METHOD FOR DISPLAYING INFORMATION ON A DISPLAY DEVICE OF A TERMINAL

US 20140041050A1
Filed: 04/19/2012
Published: 02/06/2014
Est. Priority Date: 04/21/2011
Status: Active Grant

First Claim

Patent Images

1. A method for displaying information on a display device (D1, D2) of a terminal, particularly a mobile terminal, wherein the terminal contains a microprocessor unit in which a normal runtime environment (NZ) and a protected runtime environment (TZ) are implemented, wherein display data (DD1, DD2, DD2′

, TDD2) for reproduction on the display device (D1, D2) can be provided via the normal runtime environment (NZ) and the protected runtime environment (TZ),characterized in thatdisplay data (DD2) provided via the normal runtime environment (NZ) are transferred at least in part to the protected runtime environment (TZ), which checks whether the transferred display data (DD2) meet one or more security criteria, wherein if the display data (DD2) do not meet at least one security criterion then they are rejected or altered such that they can be distinguished from display data (TDD2) provided via the protected runtime environment (TZ) during the subsequent reproduction on the display device (D1, D2).

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

The invention relates to a method for displaying information on a display device (D1, D2) of a terminal, particularly a mobile terminal, wherein the terminal contains a microprocessor unit in which a normal runtime environment (NZ) and a protected runtime environment (TZ) are implemented, wherein display data (DD1, DD2, DD2′, TDD2) can be provided for reproduction on the display device (D1, D2) by means of the normal runtime environment (NZ) and the protected runtime environment (TZ). In this case, at least some display data (DD2) provided by means of the normal runtime environment (NZ) are transferred to the protected runtime environment (TZ), which checks whether the transferred display data (DD2) satisfy one or more security criteria, wherein if they do not satisfy at least one security criterion then the display data (DD2) are rejected or are altered such that they can be distinguished from display data (TDD2) provided by means of the protected runtime environment (TZ) when they are next reproduced on the display device (D1, D2).

Citations

15 Claims

1. A method for displaying information on a display device (D1, D2) of a terminal, particularly a mobile terminal, wherein the terminal contains a microprocessor unit in which a normal runtime environment (NZ) and a protected runtime environment (TZ) are implemented, wherein display data (DD1, DD2, DD2′
- , TDD2) for reproduction on the display device (D1, D2) can be provided via the normal runtime environment (NZ) and the protected runtime environment (TZ),characterized in thatdisplay data (DD2) provided via the normal runtime environment (NZ) are transferred at least in part to the protected runtime environment (TZ), which checks whether the transferred display data (DD2) meet one or more security criteria, wherein if the display data (DD2) do not meet at least one security criterion then they are rejected or altered such that they can be distinguished from display data (TDD2) provided via the protected runtime environment (TZ) during the subsequent reproduction on the display device (D1, D2).
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method as claimed in claim 1, characterized in that the security criterion or security criteria comprise(s) the criterion that the transferred display data (DD2) are distinguishable from display data provided via the protected runtime environment (TZ) during the reproduction of said display data on the display device (D1, D2).
  - 3. The method as claimed in claim 1, characterized in that the display device (D1, D2) comprises a first display element (D1) and a second display element (D2), wherein the first display element (D1) is used to reproduce exclusively display data (DD1) provided by the normal runtime environment (NZ) and wherein the second display element (D2) is used to reproduce both display data (TDD2) provided by the protected runtime environment (TZ) and display data (DD2, DD2′
    - ) provided by the normal runtime environment (NZ) that have previously been transferred to the protected runtime environment (TZ) and subjected to the check on the security criterion or security criteria.
  - 4. The method as claimed in claim 3, characterized in that the first and second display elements (D1, D2) are two separately driven displays.
  - 5. The method as claimed in claim 3, characterized in that the first and second display elements (D1, D2) are two display areas on a single display.
  - 6. The method as claimed in claim 1, in which the protected runtime environment (TZ) is an ARM®
    - TrustZone®
      
      on which preferably the operating system MobiCore®
      
      runs.
  - 7. The method as claimed in claim 1, characterized in that the terminal is a mobile telephone and the operating system of the mobile telephone runs on the normal runtime environment (NZ).
  - 8. The method as claimed in claim 1, characterized in that if at least one security criterion is not met then the protected runtime environment (TZ) alters the display data (DD2) transferred thereto such that the display data have a warning message added to them.
  - 9. The method as claimed in claim 1, characterized in that if at least one security criterion is not met then the protected runtime environment (TZ) alters the display data (DD2) transferred thereto such that one or more predetermined graphical elements that the transferred display data (DD2) contain and that render a user able to recognize that display data reproduced on the display device (D1, D2) are provided via the protected runtime environment (TZ) is/are modified or removed from the display data (DD2).
  - 10. The method as claimed in claim 1, characterized in that the protected runtime environment (TZ) graphically analyzes the display data (DD2) transferred thereto to determine whether they contain one or more predetermined graphical elements that render a user able to recognize that display data reproduced on the display device (D1, D2) are provided by the protected runtime environment (TZ), wherein at least one security criterion is not met if the display data (DD2) comprise the predetermined graphical element(s).
  - 11. The method as claimed in claim 9, characterized in that the graphical element(s) comprise(s) a predetermined frame and/or one or more animated image elements and/or a legend.
  - 12. The method as claimed in claim 1, characterized in that the check on the security criterion or security criteria by the protected runtime environment (TZ) comprises a cryptographical check, wherein the cryptographical check preferably comprises the check on one or more digital signatures that the transferred display data (DD2) contain.
  - 13. The method as claimed in claim 12, characterized in that the cryptographical check is performed for one or more graphical elements in the transferred display data (DD2), wherein particularly one or more digital signatures that are respectively associated with a graphical element in the display data (DD2) is/are checked.

14. A terminal, particularly a mobile terminal, comprising a microprocessor unit, in which a normal runtime environment (NZ) and a protected runtime environment (TZ) are implemented, and a display device (D1, D2), wherein display data (DD1, DD2, DD2′
- , TDD2) for reproduction on the display device (D1, D2) can be provided via the normal runtime environment (NZ) and the protected runtime environment (TZ),characterized in thatthe terminal is designed such that display data (DD2) provided via the normal runtime environment are transferred at least in part to the protected runtime environment (TZ), which checks whether the transferred display data (DD2) meet one or more security criteria, wherein if the display data (DD2) do not meet the security criterion or security criteria then they are rejected or altered such that they can be distinguished from display data (TDD2) provided via the protected runtime environment (TZ) during the subsequent reproduction on the display device (D1, D2).
- View Dependent Claims (15)
- - 15. The terminal as claimed in claim 14, wherein the security criterion or security criteria comprise(s) the criterion that the transferred display data (DD2) are distinguishable from display provided via the protected runtime environment (TZ) during the reproduction of said display data on the display device (D1, D2).

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Trustonic Limited
Original Assignee
Trustonic Limited
Inventors
Heider, Axel

Granted Patent

US 9,489,505 B2
Time in Patent Office

Days
Field of Search
US Class Current

726/27
CPC Class Codes

G06F 21/44   Program or device authentic...

G06F 21/64   Protecting data integrity, ...

G06F 21/84   output devices, e.g. displa...

H04L 63/12   Applying verification of th...

H04M 1/72403   with means for local suppor...

H04W 12/106   Packet or message integrity

H04W 12/122   Counter-measures against at...

METHOD FOR DISPLAYING INFORMATION ON A DISPLAY DEVICE OF A TERMINAL

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR DISPLAYING INFORMATION ON A DISPLAY DEVICE OF A TERMINAL

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links