User's Manual Part 4

ManualsBrandsVeriFone ManualsElectronicsPoint of Sale Terminal

FILE AUTHENTICATION

The FILESIGN.EXE File Signing Tool

114 OMNI 3600 REFERENCE MANUAL

Restrictions on Downloading Different File Types

A typical application download includes a variety of different file types. There are

the following restrictions on how you can download different kinds of files to the

Omni 3600 terminal and how files are stored in the file system:

The normal size of a signature file is approximately 400 bytes. Depending on the

application’s size and on how memory space is allocated, the area available for

storing multiple signature files must be carefully managed. The memory space

required by a certificate file is also approximately 400 bytes, but certificate files

are temporary. When a certificate is authenticated, the data it contains is copied to

the certificate tree, and the certificate file is erased from the target file group’s

RAM.

The

FILESIGN.EXE

File Signing

Tool

To generate the signature files required for file authentication, you must sign all

executable files and other files to be logically protected, using the FILESIGN.EXE

software tool. This section discusses use of this tool, which is included in the

Omni 3600 SDK.

The file signing tool, FILESIGN.EXE, generates a formatted file called a signature

file, recognized by the filename extension *.p7s.

You can run FILESIGN.EXE on a host computer (PC) in DOS command-line

mode, or invoke the program under Windows NT or Windows 95 and then use the

FileSign dialog box to make the required entries.

FILESIGN.EXE

System

Requirements

The FILESIGN.EXE tool requires one of the following computing environments:

• Windows NT, Version 4.0, SP5

• Windows 95, with Internet Explorer Version 5.0

The SP5 and Internet Explorer Version 5.0 software can be downloaded from the

Microsoft Web site located at www.microsoft.com.

File Type Restriction

Certificate (*.crt) Must be downloaded into the RAM of the target file group (GID1–

GI15) selected in system mode.

Signature (*.p7s) Must be downloaded into the RAM of the target file group (GID1–

GID15) that you select in system mode.

Operating system Must be downloaded into Group 1 RAM. When the OS files and

related certificates and signature files are authenticated, they are

automatically moved from Group 1 RAM into the Group 0 sub-

partition, reserved for the operating system.

NOTE

The file signing process for operating system files is done for Omni 3600

customers by the VeriFone CA. For operating system updates, VeriFone provides

customers with a complete download package that includes all certificates and

signature files required for authentication.