Planning For File Authentication - VeriFone Vx810 Reference Manual

Hide thumbs Also See for Vx810:

Reference manual (158 pages)

Installation manual (36 pages)

User manual (28 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

Table of Contents

ILE

UTHENTICATION

Introduction to File Authentication

Planning for File

Authentication

810 R

EFERENCE

File authentication is an integral part of every V

device's logical security, the file authentication module requires that any

executable code file must be successfully authenticated before the operating

system allows it to execute on the device.

Authentication Requirements for Specific File Types

For the purposes of file authentication, executable code files include two file types

that can be recognized by the filename extensions listed below.

Table 12

Executable File Extensions

File Type

Compiled and linked application files

Global function libraries

Depending on the logical security requirements of specific applications, other

types of files used by an application (that is, non-executable files) must also be

authenticated.

•

Data files (*.dat) that contain sensitive customer information or other data that

must be secure

•

Font files (*.vft or *.fon) may need to be secure to prevent unauthorized text or

messages from being displayed on the screen.

•

Any other type of file used by an application in which the application designer

would like to logically secure using file authentication requirements

Decide Which Files to Authenticate in a Specific Application

The first step in the file authentication process is to determine which files must be

authenticated for an application to meet its design specifications for logical

security under the VeriShield security architecture.

In most cases, application designers make these decisions based on

specifications provided by the device sponsor. Determining which files to

authenticate can be completely transparent to the person or business entity

responsible for signing, downloading, and authenticating an application prior to

deployment.

How (and When) Signature Files Authenticate Their Target Files

Signature files are usually downloaded together with their target application files in

the same data transfer operation. This recommended practice lets you specify

and confirm the logical security status of the V

application download.

When the file authentication module detects a new signature file after a device

restart, it locates and attempts to authenticate the target file that corresponds to

the new signature file.

UIDE

810 device. To safeguard the

Extension

*.out

*.lib

810 each time you perform an

Table of Contents

Planning For File Authentication - VeriFone Vx810 Reference Manual

Related Manuals for VeriFone Vx810

Related Content for VeriFone Vx810

Table of Contents