MX 900 Series Reference Manual
Planning for File Authentication
File Authentication is an integral part of every MX 900 Series terminals. To
safeguard the terminal's logical security, FA requires that any downloaded
application file must be successfully authenticated before the operating system
installs on the terminal.
Download and Installation
The MX 900 Series Secure Installer plays a critical role on system and application
startup as well as authenticating and installing all components; application,
system and OS.
The MX 900 Series terminal supports the following download mechanisms:
Download Mechanism
Serial Direct
IBM ECR
USB/SD
Netloader
FTP/SFTP
All content, regardless of download mechanism, is downloaded to /mnt/flash/
install/dl. Content is not usable until it is actually installed by the Secure
Installer. The Secure Installer authenticates all downloaded content and then
installs it. At this point the content becomes usable. For example, the Secure
Installer installs authenticated downloaded application content to the
application user's home directory.
How Signature Files Authenticate Target Files
Signature files are downloaded together with their target application files in the
same data transfer operation. When an attempt is made to install an application
executable or data file, a matching signature and certificate must be present.
The operating system compares the application file's signature against the
values stored in the application file's calculated signature.
Determine Successful Authentication
All downloaded files must have an associated signature as part of the download
otherwise the installation will fail. To ensure a target file successfully
September 14, 2012
Description
Supported over all serial ports (COM1/
COM2/COM3 and USB Serial Gadget
Supported over all serial ports and
Tailgate (COM3 RS-485)
Supported over USB memory devices and
microSD memory
VeriFone proprietary TCP-IP file transfer
File Transfer Protocol / Secure File
Transfer Protocol (Client only)
15