DK168837B1 - System for keeping a code input secret - Google Patents

System for keeping a code input secret Download PDF

Info

Publication number
DK168837B1
DK168837B1 DK198691A DK198691A DK168837B1 DK 168837 B1 DK168837 B1 DK 168837B1 DK 198691 A DK198691 A DK 198691A DK 198691 A DK198691 A DK 198691A DK 168837 B1 DK168837 B1 DK 168837B1
Authority
DK
Denmark
Prior art keywords
display
code
readability
user
space
Prior art date
Application number
DK198691A
Other languages
Danish (da)
Other versions
DK198691D0 (en
DK198691A (en
Inventor
Tom Jelsing
Original Assignee
Tom Jelsing Menneske Maskineko
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tom Jelsing Menneske Maskineko filed Critical Tom Jelsing Menneske Maskineko
Priority to DK198691A priority Critical patent/DK168837B1/en
Publication of DK198691D0 publication Critical patent/DK198691D0/en
Publication of DK198691A publication Critical patent/DK198691A/en
Application granted granted Critical
Publication of DK168837B1 publication Critical patent/DK168837B1/en

Links

Landscapes

  • Control Of Vending Devices And Auxiliary Devices For Vending Devices (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)
  • Collating Specific Patterns (AREA)

Description

i DK 168837 B1in DK 168837 B1

Opfindelsen angår et system til hemmeligholdelse af ko-deindlæsning ved at give stor sikkerhed mod en uønsket afluring af koden i indlæsningsøjeblikket. I en eksempelvis opbygning indgår et display, der alene kan aflæ-5 ses, når den legale brugers øjne befinder sig indenfor en bevidst afgrænset rumlig position, der betegnes læsbarhedsrummet, betjeningsorganer til relativ ændring af kodeværdien, samt den fornødne styre- og kryptograferingselektronik .The invention relates to a code entry secret system by providing high security against an unwanted deletion of the code at the instant of loading. An exemplary structure includes a display that can only be read when the legal user's eyes are within a deliberately defined spatial position, which is referred to as the readability space, controls for relative change of code value, and the necessary control and cryptography electronics.

1010

Elektronisk læsbare kort er ofte suppleret med en hemmelig kode, der må indtastes manuelt af brugeren som et supplement til den automatiske aflæsning. Hensigten hermed er at beskytte mod misbrug ved tab eller tyveri, ved 15 at koden alene er kendt af kortets retmæssige ihændehaver. Betalingskort er et velkendt eksempel, og der benyttes i denne forbindelse en 4-cifret PIN-kode. Ved udstedelse af et betalingskort udtages PIN-koden maskinelt og fremsendes forseglet til brugeren. En betalings-20 terminal eller pengeautomat er indrettet på den måde, at tastaturet der benyttes, internt er en lukket og forseglet enhed, hvori PIN-koden kryptograferes inden den videregår til datatransmissionen over telenettet. Det er i praksis umuligt at opsnappe PIN-koden ved tekniske 25 indgreb i apparatet eller ved aftapning på telenettet.Electronically readable cards are often supplemented by a secret code that must be entered manually by the user as a supplement to the automatic reading. The purpose of this is to protect against abuse by loss or theft, by the fact that the code is known only by the cardholder's rightful bearer. Debit cards are a well-known example and a 4-digit PIN code is used in this connection. When issuing a debit card, the PIN code is automatically extracted and sent to the user. A payment terminal or ATM is arranged in such a way that the keypad used is internally a closed and sealed device in which the PIN is encrypted before proceeding to the data transmission over the telecommunications network. In practice, it is impossible to intercept the PIN by technical intervention in the apparatus or by tapping on the telecommunications network.

Den synlige del af tastaturet, der benyttes, har hidtil været udformet som et numerisk tastaturfelt, hvorpå kodecifrene må indtastes sekventielt i en bunden rækkefølge, som det eksempelvis kendes fra en telefon. Denne 30 måde at indlæse cifrene på er imidlertid et svagt led i den samlede hemmeligholdelse, idet det ofte er muligt -bevidst eller ubevidst - at betragte eller billedoptage brugerens håndbevægelser og derved aflure de cifre der indtastes. Terminalerne kan derfor være forsynet med en 35 vis ydre afskærmning, men denne er ofte utilstrækkelig 2 DK 168837 B1 eller taget af, for at gøre brugen af terminalerne lettere i praksis. Det meget store antal betalingskortstransaktioner taget i betragtning, er der derfor tale om et reelt sikkerhedsproblem.The visible part of the keypad used has hitherto been designed as a numeric keypad, on which the code digits must be entered sequentially in a sequential order, as is known, for example, from a telephone. However, this way of loading the digits is a weak link in the overall secrecy, since it is often possible - consciously or unconsciously - to view or record the user's hand gestures and thereby unlearn the digits entered. The terminals may therefore be provided with a certain external shielding, but this is often inadequate or removed to make the use of the terminals easier in practice. Therefore, the very large number of debit card transactions taken into account is a real security problem.

55

Fra US patentskrift nr. 4.291.222 kendes en metode, hvor hver enkel kodemulighed præsenteres successivt med faste korte tidsintervaller. Når den ønskede kode netop vises, må brugeren reagere øjeblikkeligt og afgive et tryk på 10 en trykknap. Da kodepræsentationen starter med en kendt værdi, og da læsbarhedsrummet ikke er fornødent begrænset, er trykknappen placeret i bunden af en skakt, hvori brugerens hånd må indføres, så øjeblikket for trykket ikke kan betragtes af uvedkommende. Ved brug af denne 15 metode bliver indlæsningstiden for en 4-cifret kode urealistisk lang, og den nødvendige skakt er til væsentlig gene for brugeren samt forhindrer et kompakt design.US Patent No. 4,291,222 discloses a method in which each coding option is presented successively at fixed short time intervals. When the desired code is just displayed, the user must respond immediately and press a button of 10. Since the code presentation starts with a known value and since the readability space is not necessarily limited, the pushbutton is located at the bottom of a shaft into which the user's hand must be inserted, so that the moment of printing cannot be considered by unauthorized persons. Using this method, the loading time of a 4-digit code becomes unrealistically long, and the required shaft is of considerable detriment to the user and prevents a compact design.

Opfindelsen er en effektiv løsning på det beskrevne sik-20 kerhedsproblem, der består i, at en kodeindlæsning på f.eks. en betalingsterminal eller lignende vil kunne betragtes af uvedkommende under kodeindlæsningen. Dette løses ved hjælp af opfindelsen, der er ejendommelig ved, at den omfatter en kombination af en indlæsningsenhed 25 med betjeningsorganer til indstilling af hvert af de benyttede kodeelementer i en kode, hvilke betjeningsorganer henholdsvis forøger eller formindsker hvert enkelt kodeelements cifferværdi, der indledningsvis er tilfældig, og et display bestående af et antal enheder svaren-30 de til antallet af elementer i koden, og hvor displayet er afskærmet mod utilsigtet aflæsning uden for et afgrænset læsbarheds rum. Dette system muliggør en effektiv skjult kodeindlæsning uden gener for brugeren under betjeningen og en kompakt udformning af apparatet.The invention is an effective solution to the described security problem, which consists in that a code entry of e.g. a payment terminal or similar may be considered by unauthorized persons during code entry. This is solved by the invention, characterized in that it comprises a combination of an input unit 25 with controls for setting each of the code elements used in a code, which controls respectively increases or decreases the numerical value of each code element which is initially random. , and a display consisting of a plurality of units corresponding to the number of elements of the code and the display being shielded from unintentional reading outside a defined readability space. This system enables efficient concealed code reading without any nuisance to the user during operation and a compact design of the device.

3 DK 168837 B13 DK 168837 B1

Forud for en indlæsning vil displayet være slukket eller vise et antal neutrale symboler, der kan være udformet således, at de leder brugerens øjne ind i læsbarhedsrummet. Indlæsningen initialiseres ved aktivering af en 5 vilkårlig eller dedikeret tast på betjeningsfladen, eller ved detektering af at brugerens hånd berører betjeningsfladen. Umiddelbart efter initialiseringen vises en tilfældig værdi af tal, bogstaver eller symboler i displayet'. Den tilstrækkelige tilfældighed opnås ved kendte 10 teknikker.Prior to a load, the display will be off or display a number of neutral symbols which may be designed to guide the user's eyes into the readability space. The loading is initialized by activating a random or dedicated key on the interface, or by detecting that the user's hand touches the interface. Immediately after initialization, a random value of numbers, letters or symbols appears in the display '. Sufficient coincidence is obtained by known techniques.

Displaysystemet er udformet således, at di splay vær di en alene kan aflæses i læsbarheds s rummet, hvis dimensioner er optimeret til, at kun én person til samme tid kan se 15 displayværdien. Dette tilsikrer, at displayværdien ikke kan aflures. Virkningen kan eksempelvis opnås ved en skaktformet intern afskærmning af de enkelte displaycifre, og ved linseoptik dimensioneret således, at fokuseringspunktet befinder sig, hvor den legale brugers øje 20 naturligt vil befinde sig. Alternativt eller i kombination hermed kan der desuden indgå optiske teknikker som prismer, spejle, lysledere, polariseret lys, og holografisk teknik. Overgangen ved læsbarhedsrummets grænser imellem læsbart og ikke læsbart displayindhold tilstræ-25 bes så brat som muligt udfra såvel normalt brug af 2 øjne som særligt brug af alene 1 øje. Med det formål at opnå en lav højde af apparatet kan en eventuel intern lysskakt være foldet ved brug af spejle.The display system is designed so that the splay can only be read in the legibility room, the dimensions of which are optimized so that only one person can see the display value at the same time. This ensures that the display value cannot be lost. The effect can be achieved, for example, by a shaft-shaped internal shielding of the individual display digits, and by lens optics sized so that the focus point is where the legal user's eye 20 will naturally be. Alternatively or in combination, optical techniques such as prisms, mirrors, light guides, polarized light, and holographic techniques may also be included. The transition at the boundaries of the readability space between readable and non-readable display content is sought as steeply as possible from both normal use of 2 eyes and special use of only 1 eye. With a view to achieving a low height of the device, any internal light shaft may be folded using mirrors.

30 Indlæsningsenheden er udformet således, at brugeren kan udføre en relativ justering af di splay vær di en. Den relative justeringsmulighed i kombination med den tilfældige initialværdi gør, at den resulterende displayværdi ikke kan af lures ved at betragte håndbevægelserne. Bet je-35 ningsorganerne kan eksempelvist være separate step- 4 DK 168837 B1 taster for hvert enkelt symbol i displayet. Ved at påvirke op-tasten kortvarigt forøges displayværdien med 1. Ved at påvirke op-tasten kontinuert ruller displayværdien kontinuert og i ring. Tilsvarende for ned-tasten 5 men med modsat fortegn. For en meget høj grad af betjeningsvenlighed kan betjeningsorganerne alternativt udformes som analoge greb. Eksempler herpå kan være mekaniske ruller, uendelige bånd og registrering af håndens bevægelser i såkaldte gnidefelter. Disse greb 10 vil under aktiveringen afgive et antal skridt til displayet. Den tilfældige startværdi sikre at kodeværdien ikke kan udledes ved at betragte betjeningen.30 The loading unit is designed so that the user can make a relative adjustment of the splay be the one. The relative adjustment option in combination with the random initial value means that the resulting display value cannot be deceived by considering the hand gestures. For example, the actuating means may be separate step keys for each symbol in the display. By briefly pressing the up key, the display value is increased by 1. By continuously pressing the up key, the display value scrolls continuously and in ring. Similar for the down key 5 but with the opposite sign. Alternatively, for a very high degree of ease of operation, the controls may be designed as analog handles. Examples of this may be mechanical rollers, endless bands and recording of the hand's movements in so-called rubbing fields. These handles 10 will activate a number of steps for the display during activation. The random start value ensures that the code value cannot be deduced by considering the operation.

Indlæsningen afsluttes ved en aktivering eller deaktive-15 ring af en dedikeret tast på betjeningsfladen eller ved detektering af manglende berøring af betjeningsfladen.The loading is completed by activating or deactivating a dedicated key on the interface or by detecting failure to touch the interface.

Den aktuelle displayværdi, umiddelbart før afslutningsaktiveringen, tages til udtryk for den resulterende ko-deindstilling, og displayet bringes herefter til neutral 20 visning, eller det slukkes helt.The actual display value, immediately before the exit activation, is expressed by the resulting code setting, and the display is then brought to neutral display or completely turned off.

Opfindelsen forklares nærmere i det følgende under henvisning til tegningen, hvor 25 fig. 1 viser en eksempelvis udformning af betjeningsfladen, som den vil ses af brugeren, og fig. 2 viser et stiliseret snit af samme 30 eksempelvise udformning samt i formindsket målestok en illustration af det imaginære såkaldte læsbarheds rum.The invention is explained in more detail below with reference to the drawing, in which FIG. 1 shows an exemplary configuration of the operating surface as will be seen by the user; and FIG. 2 shows a stylized section of the same exemplary embodiment and on a reduced scale an illustration of the imaginary so-called readability space.

fig. 3 viser displayet, som det eksempel-35 vist kan opleves, når brugerens øjne be- 5 DK 168837 B1 finder sig på grænsen af læsbarhedsrummet.FIG. 3 shows the display as the example 35 can be experienced when the user's eyes are on the boundary of the readability space.

I fig. 1 ses betjeningsfladen, med et displayfelt 1 og et tastfelt 2. Ved at påvirke tasten 3 vil cifret 4 for-5 øges og ved påvirkning af tasten 5 vil cifret 4 formindskes. Funktionen er tilsvarende for de øvrige viste ciffer/tast kombinationer. Tasten 6 er et eksempel på en af flere mulige indlednings- og afslutningsgreb.In FIG. 1, the display panel 1 is shown with a display field 1 and a key field 2. By influencing the key 3, the digit 4 will be increased by 5 and by pressing the key 5 the digit 4 will be reduced. The function is similar for the other digit / key combinations shown. The key 6 is an example of one of several possible starting and ending grips.

10 I fig. 2 ses et snit af samme mulige udformning samt det imaginære læsbarhedsrum 10 med brugerens øje 11. Displaysystemet 9 består af en optoelektrisk displayenhed placeret i bunden af en lysskakten 8, der har sådanne dimensioner, at læsbarhedsrummet 10 bliver passende 15 afgrænset i planet. Afgrænsningen i dybden opnås ved linseoptikken 7. Displaysystemet er en lukket forseglet enhed, der samtidigt indeholder kryptograferingselektronik, tilfældighedsgenerator og styreelektronik for taster, mv. . Den aktuelle displayværdi kan i elektrisk form 20 alene udtages kryptograferet.10 In FIG. 2 shows a section of the same possible design as well as the imaginary readability space 10 with the user's eye 11. The display system 9 consists of an optoelectric display unit located at the bottom of a light shaft 8 having dimensions such that the readability space 10 is suitably bounded in the plane. The depth delimitation is achieved by the lens optics 7. The display system is a closed sealed device that simultaneously contains cryptography electronics, random generator and control electronics for keys, etc. . The current display value in electrical form 20 can only be cryptographed.

Fig. 3 viser displayet, som det i det givne eksempel vil opleves, når brugerens øjne er placeret ved læsbarhedsrummets øverste højre begrænsning.FIG. 3 shows the display, as will be experienced in the given example, when the user's eyes are located at the upper right limitation of the readability space.

Claims (2)

1. Et system til hemmeligholdelse af kodeindlæsning, kendetegnet ved, at det omfatter en kombination af en indlæsningsenhed (2) med betjenings organer (3 og 5) til indstilling af hvert af de benyttede kodeelementer 5 (4) i en kode, hvilke betjeningsorganer (3 og 5) hen holdsvis forøger eller formindsker hvert enkelt kodeele-ments cifferværdi, der indledningsvis er tilfældig, og et display (1) bestående af et antal enheder (4) svarende til antallet af elementer i koden, og hvor displayet er 10 afskærmet (8) mod utilsigtet aflæsning uden for et afgrænset læsbarhedsrum (10) .A code entry secret system, characterized in that it comprises a combination of an input unit (2) with controls (3 and 5) for setting each of the code elements 5 (4) used in a code, which controls ( 3 and 5) respectively increase or decrease the digit value of each code element, which is initially random, and a display (1) consisting of a plurality of units (4) corresponding to the number of elements of the code and the display being 10 shielded ( 8) against unintentional reading outside a defined readability space (10). 2. Displaysystem (1) ifølge krav 1 kendetegnet ved, at afgrænsningen af læsbarheds rummet opnås ved, at 15 displayelementet (4) er placeret i bunden af en skakt (8), der yderligere kan være foldet ved brug af spejle.Display system (1) according to claim 1, characterized in that the delimitation of the readability space is achieved by the display element (4) being placed at the bottom of a shaft (8) which can be further folded by the use of mirrors.
DK198691A 1991-12-10 1991-12-10 System for keeping a code input secret DK168837B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
DK198691A DK168837B1 (en) 1991-12-10 1991-12-10 System for keeping a code input secret

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DK198691 1991-12-10
DK198691A DK168837B1 (en) 1991-12-10 1991-12-10 System for keeping a code input secret

Publications (3)

Publication Number Publication Date
DK198691D0 DK198691D0 (en) 1991-12-10
DK198691A DK198691A (en) 1993-06-11
DK168837B1 true DK168837B1 (en) 1994-06-20

Family

ID=8109278

Family Applications (1)

Application Number Title Priority Date Filing Date
DK198691A DK168837B1 (en) 1991-12-10 1991-12-10 System for keeping a code input secret

Country Status (1)

Country Link
DK (1) DK168837B1 (en)

Also Published As

Publication number Publication date
DK198691D0 (en) 1991-12-10
DK198691A (en) 1993-06-11

Similar Documents

Publication Publication Date Title
ES2230897T3 (en) TERMINAL WITH BIOMETRIC IDENTITY CONTROL.
EP0614559B1 (en) Personal identification devices and access control systems
JP2746757B2 (en) Method for inputting secret information and related terminal device
US5214699A (en) System for decoding and displaying personalized indentification stored on memory storage device
US20070145121A1 (en) Authentication system for the authorization of a transaction using a credit card, ATM card, or secured personal ID card
CN104937626B (en) Authentication apparatus and associated methods
JP2005535990A (en) Method and system for processing passwords entered by cell matching
EP2462531A1 (en) Method for encoded input and control by means of fingerprint
JP4734965B2 (en) PIN code input device
US7636854B2 (en) Security device for online transaction
AU2005228907A1 (en) Method for safely logging onto a technical system
DK168837B1 (en) System for keeping a code input secret
WO2012009334A1 (en) Personal secure terminal with virtual keypad
GB2058417A (en) Input of a Personal Code Word
US4291222A (en) Method and apparatus for card authentication using display of symbols for identification of a personal code word
DE102009022845A1 (en) Method for input of personal identification number keyboard for input of personal identification number, involves defining number allocation to individual push buttons or pressure zones with each input of chip or magnetic card in associated
Kasat et al. Study and analysis of shoulder-surfing methods
DE10136021A1 (en) Keypad with a protective film for entry of a PIN code, etc. into an automatic cash machine, whereby the film ensures that the pad can only be seen from directly above preventing spying by third parties
JP3120388U (en) Voyeurism prevention device for ATM
KR19980052634A (en) Random combination of numbers for keypad
JPS62242219A (en) Terminal keyboard for individual identification card
KR20060015634A (en) Secure card terminal
GB2291237A (en) Credit card or the like and system utilising same
CN103324303A (en) Random code input method and random code unlocking method
JPH02249061A (en) Individual identifying system

Legal Events

Date Code Title Description
B1 Patent granted (law 1993)
PBP Patent lapsed