Ab­stract

Pro­vid­ing se­cure ac­cess to con­fi­den­tial in­for­ma­tion is ex­tremely dif­fi­cult, no­tably when re­gard­ing weak end­points and users. With the in­creas­ing num­ber of cor­po­rate es­pi­onage cases and data leaks, a us­able ap­proach en­hanc­ing the se­cu­rity of data on end­points is needed. In this paper we pre­sent our im­ple­men­ta­tion for pro­vid­ing a new level of se­cu­rity for con­fi­den­tial doc­u­ments that are viewed on a dis­play. We call this End-to-Dis­play En­cryp­tion (E2DE). E2DE en­crypts im­ages in the pixel-do­main be­fore trans­mit­ting them to the user. These im­ages can then be dis­played by ar­bi­trary image view­ers and are sent to the dis­play. On the way to the dis­play, the data stream is an­a­lyzed and the en­crypted pix­els are de­crypted de­pend­ing on a pri­vate key stored on a chip card in­serted in the re­ceiver, cre­at­ing a view­able rep­re­sen­ta­tion of the con­fi­den­tial data on the dis­play, with­out de­crypt­ing the in­for­ma­tion on the com­puter it­self. We im­ple­mented a pro­to­type on a Dig­i­lent Atlys FPGA Board sup­port­ing res­o­lu­tions up to Full HD.