Manualshelf

Specifications

ManualsBrandsVeriFone ManualsGadgetsVx810 Duet
61626364656667686970
V
X
810 REFERENCE GUIDE 67
CHAPTER 5
File Authentication
This chapter discusses the VeriShield file authentication security architecture,
VeriShield file authentication module, and the organizational infrastructure that
supports it (see Introduction to File Authentication).
This chapter also explains how the file authentication process may affect the tasks
normally performed by application programmers, system deployers, site
administrators, or entities authorized to download files to the V
x
810 (see File
Authentication and the File System).
Lastly, this chapter explains how to generate the signature files required to
perform downloads and authenticate files on the V
x
810 using the VeriShield File
Signing Tool (see VeriShield File Signing Tool).
In Chapter 6, the topic of file authentication is also discussed in the context of
specific file download procedures.
Introduction to
File
Authentication
The V
x
810 uses the VeriShield security architecture, which has both physical and
logical components. The logical security component of the VeriShield architecture,
which is part of the operating system software, is called the file authentication
module.
File authentication is a secured process for authenticating files using digital
signatures, cryptographic keys, and digital certificates. This process makes it
possible for the sponsor of a V
x
810 to logically secure access to the device by
controlling who is authorized to download application files to that device. It verifies
the file’s origin, sender’s identity, and integrity of the file’s information.
The VeriFone
Certificate Authority
To manage the tools and processes related to the file authentication module of the
VeriShield security architecture, VeriFone has established a centralized VeriFone
Certificate Authority, or VeriFone CA. This agency is responsible for managing
keys and certificates. The VeriFone CA uses an integrated set of software tools to
generate and distribute digital certificates and private cryptographic keys to
customers who purchase the V
x
810.