The File Authentication Process During An Application Download - VeriFone VX 675 Reference Manual

Hide thumbs Also See for VX 675:

Installation manual (48 pages)

User manual (13 pages)

Operating instructions manual (9 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

Table of Contents

The File

Authentication

Process During an

Application

Download

•

Application files other than executables (for example, font and data files) may

also require logical security under file authentication. In these cases, each

protected non-executable file also requires a corresponding signature file.

•

Digital certificates (*.crt) and signature files (*.p7s) are required to

authenticate both application files and operating system files, which must be

downloaded into the I: drive of the target file group.

•

Certificate files are deleted from application memory after they are

authenticated. If a certificate is not authenticated, it is retained in terminal

memory.

•

If the *FA variable in the CONFIG.SYS file of the target group is set to 1,

signature files are redirected to the same location where the application file it

authenticates is stored. If *FA is 0, signature files are deleted from I: drive

when the file authentication process is complete.

In the following example of a typical file authentication process, it is assumed that:

•

an application is being downloaded to prepare a VX 675 deployment terminal

for deployment. That is, a sponsor certificate and a signer certificate download

in batch mode to GID1 I: drive of the receiving terminal, together with the

application to authenticate.

•

a signature file is generated for each executable that comprises the

application on the download computer using FILESIGN.EXE, with the signer

certificate, signer private key, and signer password as required inputs. These

signature files are also downloaded to the receiving terminal.

In a typical batch application download, file authentication proceeds as follows:

All certificate files (*.crt), signature files (*.p7s), and application files

(*.out, *.lib, *.fon, *.vft, *.dat, and so on) download to the VX 675

deployment terminal in batch mode.

When the terminal restarts after the download, the file authentication module

searches the I: drive file system for the following two file types:

•

Authenticated certificate files (*.crt) to add to the permanent certificate

tree.

•

Signature files (*.p7s) that authenticate corresponding target application

files.

Certificate files and signature files can download into the I: drive of any file

group. For this reason, the file authentication module searches through the

entire file system (all file groups) for new files with these filename extensions

each time the terminal restarts.

The file authentication module builds a list of all newly detected certificates

and signature files. If no new certificates or signature files are located, the

module just returns. If one or more new files of this kind are detected, the file

authentication module starts processing them based on the list.

ERFORMING

OWNLOADS

File Authentication Requirements

VX 675 R

EFERENCE

UIDE

111

Table of Contents

Show Quick Links

Quick Links:
Passwords
System Password

Hide quick links:

Table of Contents

The File Authentication Process During An Application Download - VeriFone VX 675 Reference Manual

Hide quick links:

Related Manuals for VeriFone VX 675

Related Content for VeriFone VX 675

Table of Contents