Manualshelf

User's Manual Part 3

ManualsBrandsVeriFone ManualsElectronicsPoint of Sale Terminal
61626364656667686970
OMNI 3600 REFERENCE MANUAL 97
CHAPTER 5
File Authentication
This chapter:
introduces the file authentication module of the VeriShield security
architecture, and the organizational infrastructure that supports this feature.
explains how the file authentication process may affect the tasks normally
performed by application programmers, terminal deployers, site
administrators, or by entities authorized to download files to an Omni 3600
terminal.
describes how to use the file signing utility, FILESIGN.EXE, to generate the
signature files that are required to perform downloads and authenticate files
on the Omni 3600 terminal.
In Chapter 4, the topic of file authentication is also discussed in the context of
specific file download procedures.
Introduction to
File
Authentication
The Omni 3600 terminal has a new type of security architecture, developed by
VeriFone. This architecture, called VeriShield, has both physical and logical
components. The logical security component of the VeriShield architecture, which
is part of the terminal’s operating system software, is called the file authentication
module, or simply, file authentication.
File authentication is a secured process for authenticating files using digital
signatures, cryptographic keys, and digital certificates. This process makes it
possible for the sponsor of an Omni 3600 terminal to logically secure access to
the terminal by controlling who is authorized to download application files to that
terminal. It proves and verifies the
file’s origin
sender’s identity
integrity of the file’s information
The VeriFone
Certificate
Authority
To manage the tools and processes related to the file authentication module of
the VeriShield security architecture, VeriFone has established a centralized
VeriFone Certificate Authority, or VeriFone CA. This agency is responsible for
managing keys and certificates. The VeriFone CA uses an integrated set of
software tools to generate and distribute digital certificates and private
cryptographic keys to customers who purchase Omni 3600 terminals.