VeriFone VX 680 Reference Manual page 66

Hide thumbs Also See for VX 680:

Installation manual (66 pages)

User manual (15 pages)

Quick reference manual (2 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

Table of Contents

ILE

UTHENTICATION

Introduction to File Authentication

NOTE

VX 680 R

EFERENCE

A development set of higher-level certificates is downloaded into each

VX 680 terminal upon manufacture. When you take a new VX 680 terminal out of

its shipping carton, certificate data is already stored in the terminal's certificate

tree. In this just-out-of-the-box condition, the VX 680 terminal is called a

development terminal.

A sponsor requests a set of digital certificates from the Verifone CA to establish

sponsor and signer privileges. This set of certificates is then downloaded onto the

VX 680 when the device is being prepared for deployment. When this procedure

is complete, the VX 680 is called a deployment terminal.

Adding New Certificates

When you add a new certificate file to a VX 680 terminal, the file authentication

module detects it by filename extension (*.crt). On restart, the terminal then

attempts to authenticate the certificate under the authority of the resident higher-

level certificate stored in the terminal's certificate tree or one being downloaded

with the new certificate.

In a batch download containing multiple certificates, each lower-level certificate

must be authenticated under an already-authenticated, higher-level certificate.

Whether or not the data a new certificate contains is added to the terminal's

certificate tree depends on whether it is successfully authenticated. The following

points explain how certificates are processed:

•

If a new certificate is successfully authenticated, the information it contains is

automatically stored in the terminal's certificate tree. The corresponding

certificate file (*.crt) is then deleted from that file group's memory.

•

If the relationship between the new certificate and an existing higher-level

certificate cannot be verified, the authentication procedure for the new

certificate fails. In this case, the certificate information is not added to the

certificate tree and the failed certificate file (usually ~400 bytes) is retained in

the application memory.

Development Terminals

A development terminal is a VX 680 with a Sponsor and Signer certificate issued

to someone who intends to use the terminal for application development. An

application developer must apply for a Sponsor/Signer certificate to allow loading

an application. See

In the development device, the level of logical security provided by the file

authentication module is the same as a deployment application.

With the factory set of certificates stored in the terminal memory, anyone who

has the VX 680 SDK and VeriShield File Signing Tool can generate valid

signature files for downloading and authenticating files on the VX 680 platform.

UIDE

Figure

Table of Contents

Show Quick Links

Quick Links:
Passwords
System Password

Hide quick links:

Table of Contents

VeriFone VX 680 Reference Manual page 66

Hide quick links:

Related Manuals for VeriFone VX 680

Related Products for VeriFone VX 680

Table of Contents