Methods and systems to directly render an image and correlate corresponding user input in a secure memory domain

US 8,364,601 B2
Filed: 12/31/2008
Issued: 01/29/2013
Est. Priority Date: 12/31/2008
Status: Expired due to Fees

First Claim

Patent Images

1. A method, comprising:

executing an application program, by a processor, in an access-protected memory domain of a first computer system comprising the processor;

assigning a video frame buffer of the first computer system to the access-protected memory domain, by the application program;

loading and decrypting, by the application program, a user image in the access-protected memory domain;

rendering a keyboard image over at least a portion of the decrypted user image to a random position in the video frame buffer;

correlating, by the application program, coordinates of a user input with a key of the rendered keyboard image;

storing, by the application program, an indication of the key in the access-protected memory domain;

re-rendering the keyboard image over at least a portion of the decrypted user image to another random position in the video frame buffer in response to the user input;

repeating the correlating and the storing with respect to an another user input; and

outputting, by the application program, the indications of the keys from the access-protected memory domain.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and systems to assign an application and a video frame buffer to a protected memory domain to render an image of a keyboard from the protected memory domain to a random position of the video frame buffer and correlate user input from a pointing device to the rendered keyboard image. The keyboard image may be randomly repositioned following a user input. The keyboard image may be rendered over a secure user image. An acknowledgment image may be rendered from the protected memory domain to a random position of the video frame buffer, and may be randomly repositioned in response to a user input that does not correlate to the acknowledgment image. User inputs that do not correlate to a randomly positioned image may be counted, and one or more processes may be aborted when the number of non-correlated user inputs exceeds a threshold.

112 Citations

View as Search Results

7 Claims

1. A method, comprising:
- executing an application program, by a processor, in an access-protected memory domain of a first computer system comprising the processor;
  
  assigning a video frame buffer of the first computer system to the access-protected memory domain, by the application program;
  
  loading and decrypting, by the application program, a user image in the access-protected memory domain;
  
  rendering a keyboard image over at least a portion of the decrypted user image to a random position in the video frame buffer;
  
  correlating, by the application program, coordinates of a user input with a key of the rendered keyboard image;
  
  storing, by the application program, an indication of the key in the access-protected memory domain;
  
  re-rendering the keyboard image over at least a portion of the decrypted user image to another random position in the video frame buffer in response to the user input;
  
  repeating the correlating and the storing with respect to an another user input; and
  
  outputting, by the application program, the indications of the keys from the access-protected memory domain.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method of claim 1, further including:
    - maintaining translations between physical addresses and virtual addresses associated with the video frame buffer, the keyboard image, and the application program and corresponding data in one or more protected page tables;
      
      limiting access to the protected page tables substantially to the application program; and
      
      identifying a translation between a physical address and a virtual address associated with a pointer to the video frame buffer as unavailable in an active page table.
  - 3. The method of claim 1, further including loading and authenticating at least a portion of the application program in the access-protected memory domain under control of a trusted execution module.
  - 4. The method of claim 1, further including:
    - interfacing between the first computer system and second computer system over a communication network;
      
      detecting a prompt for user information from the second computer system, at the first computer system; and
      
      executing the application program in the access-protected memory domain on the processor in response to the detected prompt;
      
      wherein the outputting includes populating the prompt with the indications of the keys and returning the populated prompt to the second computer system over the communication network.
  - 5. The method of claim 1, further including, under control of the processor and the application program:
    - incrementing an error count when the user input does not correlate to the rendered keyboard image;
      
      aborting at least a portion of the application program when the error count exceeds a threshold; and
      
      re-rendering the keyboard image over the decrypted user image to another random position in the video frame buffer when the user input does not correlate to the rendered keyboard image and the error count is below the threshold.
  - 6. The method of claim 1, further including, under control of the processor and the application program:
    - rendering an acknowledgment image over at least a portion of the decrypted user image to a random position in the video frame buffer when user data entry is complete;
      
      outputting the indication of the keys when the coordinates of the subsequent user input correlates to the acknowledgment image;
      
      incrementing the error count when the subsequent user input does not correlate to the acknowledgment image;
      
      re-rendering the acknowledgment image over at least a portion of the decrypted user image to another random position in the video frame buffer when the subsequent user input does not correlate to the acknowledgment image and the error count is below the threshold; and
      
      aborting at least a portion of the application program when the error count exceeds a threshold.
  - 7. The method of claim 1, wherein:
    - the assigning the video frame buffer to the access-protected memory domain includes assigning a portion of the video frame buffer to the access-protected memory domain and permitting a remaining portion of the video frame buffer to be accessed by one or more processes outside of the access-protected memory domain; and
      
      the rendering and the re-rendering are performed with respect to the portion of the video frame buffer assigned to the access-protected memory domain.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Intel Corporation
Original Assignee
Intel Corporation
Inventors
Dewan, Prashant, Durham, David
Primary Examiner(s)
Hewitt, II, Calvin Loyd
Assistant Examiner(s)
SHERR, CRISTINA O

Application Number

US12/347,576
Publication Number

US 20100169666A1
Time in Patent Office

1,490 Days
Field of Search

726/26, 380 20- 29, 715/773, 386/95, 386/290
US Class Current

705/65
CPC Class Codes

G06F 21/36 by graphic or iconic repres...

Methods and systems to directly render an image and correlate corresponding user input in a secure memory domain

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

112 Citations

7 Claims

Specification

Solutions

Use Cases

Quick Links

Methods and systems to directly render an image and correlate corresponding user input in a secure memory domain

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

112 Citations

7 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links