Cryptography secure input device

摘要

According to one general aspect, a method may include accessing a service via a computer. The computer may be coupled to a programmable human input device. The programmable human input device may be configured to directly receive user input from a human user and stores at least one encryption key. The method may include encrypting, by the programmable human input device, user confidential input using an encryption key associated with the service and stored within the programmable human input device. The method may also include transmitting the encrypted user confidential input to the service via the computer, wherein the computer is not configured to determine the unencrypted user confidential input from the encrypted user confidential input.

主权项

1. A method comprising:
accessing a service via a computer, wherein the computer is coupled to a programmable human input device, wherein the programmable human input device is configured to directly receive user input from a human user and store a plurality of encryption keys in association with corresponding service identifiers, wherein each encryption key of the plurality of encryption keys is stored in association with a corresponding service identifier that identifies a particular service; receiving, by the programmable human input device, a service identifier associated with the accessed service, the accessed service being a virtual service associated with at least one of a plurality of physical servers having physical identifiers, wherein the service identifier identifies the virtual service as a whole but does not identify any of the physical servers physical identifiers; determining, by the programmable human input device, that an encryption key associated with the accessed service is not one of the plurality of encryption keys stored in the programmable human input device based on the service identifier; receiving, by the programmable human input device, the encryption key associated with the accessed service; soliciting, by the programmable human input device, permission from a user of the programmable human input device to store the received encryption key; authorizing, by the programmable human input device, storage of the received encryption key based on user input received through the programmable human input device, wherein permission is not solicited again when the virtual service is moved from one physical server to another physical server; storing, by the programmable human input device, the encryption key in association with the service identifier of the accessed service when the received encryption key is authorized for storage in the programmable human input device; encrypting, by the programmable human input device, user confidential input using the encryption key associated with the accessed service and stored within the programmable human input device; providing, by the programmable human input device, a visual indicator indicating which service is associated with a currently employed encryption key; and transmitting the encrypted user confidential input to the accessed service via the computer, wherein the computer is not configured to determine unencrypted user confidential input from the encrypted user confidential input.