CN113299018A - ATM software remote upgrading method - Google Patents
ATM software remote upgrading method Download PDFInfo
- Publication number
- CN113299018A CN113299018A CN202110694203.5A CN202110694203A CN113299018A CN 113299018 A CN113299018 A CN 113299018A CN 202110694203 A CN202110694203 A CN 202110694203A CN 113299018 A CN113299018 A CN 113299018A
- Authority
- CN
- China
- Prior art keywords
- software
- key
- terminal
- control system
- atm
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F19/00—Complete banking systems; Coded card-freed arrangements adapted for dispensing or receiving monies or the like and posting such transactions to existing accounts, e.g. automatic teller machines
- G07F19/20—Automatic teller machines [ATMs]
- G07F19/206—Software aspects at ATMs
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
Abstract
The invention discloses a method for remotely upgrading ATM software, which comprises the following steps of preparing a process, connecting a PC end to a control system ATMC on an ATM equipment terminal, generating a personal key and sending the personal key to the control system ATMC, generating a terminal key by the control system ATMC on the ATM equipment terminal, encrypting the terminal key by the control system ATMC through a personal private key in the personal key to obtain a key encryption packet and sending the key encryption packet to the PC end, decrypting the key encryption packet by the PC end through the personal private key to obtain the terminal key, entering the encryption process, upgrading the process and commissioning the process, wherein the encryption process for encrypting a software packet comprises the following steps. The software remote upgrading method of the ATM greatly improves the confidentiality and the safety of the software, effectively reduces the risk in the upgrading process, and avoids the occurrence of loopholes in ATM equipment caused by the loss or the defect of files in the original software.
Description
Technical Field
The invention belongs to the technical field of ATM equipment, and particularly relates to a remote software upgrading method of an ATM.
Background
The ATM is also called as an automatic teller machine, is a highly precise electromechanical integrated device, realizes self-service of financial transactions by utilizing a magnetic code card or an intelligent card, and replaces the work of bank counter personnel. The ATM equipment can enable customers to carry out bank counter services such as money withdrawal, deposit, transfer and the like through the machine, the safety and the reliability of the ATM equipment are a permanent topic, software intrusion becomes a technical means that lawless persons attack the ATM to steal cash along with the continuous development of information technology, and the software safety and the security of the ATM equipment are required to be extremely high.
The current BUG repair and maintenance of ATM equipment software need software downloading and upgrading, but the current embedded microprocessor solidifying program mode of ATM equipment generally uses a special programmer for downloading, a drive program of the programmer needs to be installed at a PC end, a shell of the ATM is disassembled, and a burner is inserted into a machine core control panel to download the software;
the upgradable software is stored and sent through the network under the condition of not encrypting, so that the confidentiality and the safety of the software are seriously reduced; and because the files in the software of the ATM equipment are deleted before the software is upgraded and then the files in the upgraded software are all copied, the risk of upgrading by the method is high, and once the upgrading process has problems, the original files are easily lost or damaged, so that the ATM equipment has bugs.
Disclosure of Invention
The present invention aims to provide a software remote upgrading method for an ATM, so as to solve the problems in the background art.
In order to achieve the purpose, the invention provides the following technical scheme: a method for remotely upgrading software of an ATM, the method comprising the steps of:
s1, preparation flow;
s101, connecting a PC end to a control system ATMC on an ATM equipment terminal, generating a personal key and sending the personal key to the control system ATMC;
s102, generating a terminal key by a control system ATMC on an ATM equipment terminal;
s103, the control system ATMC encrypts a terminal key through a personal private key in the personal key to obtain a key encryption packet and sends the key encryption packet to the PC end;
s104, the PC side decrypts the key encryption packet through the personal private key to obtain a terminal key;
s105, the PC end enters an encryption process;
s2, upgrading process;
and S3, a test run process.
Preferably, the encryption flow for encrypting the software package includes the following steps:
and S10501, the PC terminal encrypts the software package of the software to be upgraded by a terminal private key in the terminal secret key once to obtain a primary encrypted package.
S10502, PC end encrypts the first encrypted packet for the second time through the terminal public key in the terminal secret key,
and obtaining a secondary encryption packet.
Preferably, the upgrade procedure for bringing the ATM terminal into an upgrade state includes the steps of:
s201, the PC end sends an upgrading request to the control system ATMC;
s202, the control system ATMC receives the upgrading request, controls the ATM equipment terminal to enter a maintenance mode and feeds back the upgrading request to the PC terminal;
s203, after receiving the feedback, the PC sends the secondary encryption packet to the control system ATMC;
s204, the control system ATMC receives the secondary encryption packet;
and S205, the control system ATMC enters a decryption process.
Preferably, the decryption process for decrypting the twice-encrypted packet includes the following steps:
s20401, the control system ATMC decrypts the secondary encrypted packet through the terminal public key to obtain a primary encrypted packet
Encrypting the packet;
s20402, the control system ATMC decrypts the primary encrypted packet through the terminal private key to obtain a software package.
Preferably, the commissioning procedure for avoiding the problem occurring in the upgrading process includes the following steps:
s301, the control system ATMC suspends the operation of the original software, decompresses the software package to obtain the new software, and tries to operate
Operating the software package;
s302, judging whether the software runs successfully;
s303, if the operation is successful, deleting the original software and completely operating the new software;
and S303, if the operation fails, deleting the new software and continuing to operate the original software.
Preferably, S101 and S102 operate synchronously.
The invention has the technical effects and advantages that: the software remote upgrading method of the ATM benefits from the setting of a preparation flow, an encryption flow and an upgrading flow, and greatly improves the confidentiality and the safety of software by exchanging a personal key and a terminal key between a PC (personal computer) end and a control system ATMC (automatic Teller machine), doubly encrypting a software package through a terminal private key and a terminal public key, and sending a secondary encryption package to the control system ATMC after an ATM equipment terminal enters a maintenance mode;
by means of the setting of the trial operation flow, the operation of the original software is suspended, and the new software is trial-operated to judge whether the new software is successfully operated, so that the risk in the upgrading process can be effectively reduced, and the phenomenon that the loophole in the ATM equipment is caused by the loss or the defect of the file in the original software is avoided.
Drawings
FIG. 1 is a schematic block diagram of the present invention;
FIG. 2 is a schematic block diagram of a preparation flow of the present invention;
FIG. 3 is a schematic block diagram of an upgrade flow of the present invention;
FIG. 4 is a schematic block diagram of a commissioning flow of the present invention;
FIG. 5 is a schematic block diagram of an encryption process of the present invention;
fig. 6 is a schematic block diagram of the decryption process of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The invention provides a software remote upgrading method of an ATM as shown in figure 1, figure 2, figure 3, figure 5 and figure 6, which is carried out by the following steps:
s1, preparation flow;
s101, connecting a PC end to a control system ATMC on an ATM equipment terminal, generating a personal key and sending the personal key to the control system ATMC, wherein S101 and S102 run synchronously;
s102, generating a terminal key by a control system ATMC on an ATM equipment terminal;
s103, the control system ATMC encrypts a terminal key through a personal private key in the personal key to obtain a key encryption packet and sends the key encryption packet to the PC end;
s104, the PC side decrypts the key encryption packet through the personal private key to obtain a terminal key;
s105, the PC end enters an encryption process, and the exchange of the personal key and the terminal key is completed between the PC end and the control system ATMC through a preparation process so as to improve the confidentiality of the personal key and the terminal key;
the encryption process for encrypting a software package comprises the steps of:
and S10501, the PC terminal encrypts the software package of the software to be upgraded by a terminal private key in the terminal secret key once to obtain a primary encrypted package.
S10502, the PC terminal encrypts the primary encryption packet for the second time through the terminal public key in the terminal secret key to obtain a secondary encryption packet, and doubly encrypts the software packet through the terminal private key and the terminal public key to improve the confidentiality of the software packet;
s2, upgrading process;
the upgrade procedure for bringing an ATM equipment terminal into an upgrade state includes the steps of:
s201, the PC end sends an upgrading request to the control system ATMC;
s202, the control system ATMC receives the upgrading request, controls the ATM equipment terminal to enter a maintenance mode and feeds back the upgrading request to the PC terminal;
s203, after receiving the feedback, the PC sends the secondary encryption packet to the control system ATMC;
s204, the control system ATMC receives the secondary encryption packet;
s205, the control system ATMC enters a decryption process, and after the ATM equipment terminal enters a maintenance mode, the secondary encryption packet is sent to the control system ATMC, so that the confidentiality and the safety of software are greatly improved;
the decryption process for decrypting the twice encrypted packet includes the steps of:
s20401, the control system ATMC decrypts the secondary encrypted packet through the terminal public key to obtain a primary encrypted packet
Encrypting the packet;
s20402, the control system ATMC decrypts the primary encrypted packet through a terminal private key to obtain a software package;
and S3, a test run process.
In order to effectively reduce the risk in the upgrading process, the software remote upgrading method of the ATM as shown in fig. 1 and 4 includes the following steps:
s301, the control system ATMC suspends the operation of the original software, decompresses the software package to obtain the new software, and tries to operate
Operating the software package;
s302, judging whether the software runs successfully;
s303, if the operation is successful, deleting the original software and completely operating the new software;
and S303, if the operation fails, deleting the new software and continuing to operate the original software, and judging whether the new software is successfully operated or not by suspending the operation of the original software and then trying to operate the new software, so that the risk in the upgrading process can be effectively reduced, and the occurrence of loopholes in the ATM equipment caused by the loss or the defect of files in the original software is avoided.
Finally, it should be noted that: although the present invention has been described in detail with reference to the foregoing embodiments, it will be apparent to those skilled in the art that modifications may be made to the embodiments or portions thereof without departing from the spirit and scope of the invention.
Claims (6)
1. A method for remotely upgrading software of an ATM, the method comprising the steps of:
s1, preparation flow;
s101, connecting a PC end to a control system ATMC on an ATM equipment terminal, generating a personal key and sending the personal key to the control system ATMC;
s102, generating a terminal key by a control system ATMC on an ATM equipment terminal;
s103, the control system ATMC encrypts a terminal key through a personal private key in the personal key to obtain a key encryption packet and sends the key encryption packet to the PC end;
s104, the PC side decrypts the key encryption packet through the personal private key to obtain a terminal key;
s105, the PC end enters an encryption process;
s2, upgrading process;
and S3, a test run process.
2. A software remote upgrade method for an ATM according to claim 1, wherein said encryption process for encrypting a software package comprises the steps of:
s10501, the PC terminal encrypts the software package of the software to be upgraded by a terminal private key in the terminal secret key for the first time to obtain a first encryption package;
and S10502, the PC terminal encrypts the primary encryption packet for the second time through the terminal public key in the terminal secret key to obtain a secondary encryption packet.
3. A software remote upgrade method for ATM according to claim 2, wherein said upgrade procedure for bringing ATM equipment terminals into an upgrade state comprises the steps of:
s201, the PC end sends an upgrading request to the control system ATMC;
s202, the control system ATMC receives the upgrade request, controls the ATM equipment terminal to enter the maintenance mode,
and feeds back to the PC end;
s203, after receiving the feedback, the PC sends the secondary encryption packet to the control system ATMC;
s204, the control system ATMC receives the secondary encryption packet;
and S205, the control system ATMC enters a decryption process.
4. A software remote upgrade method for ATM according to claim 3, wherein said decryption process for decrypting the twice encrypted packet comprises the steps of:
s20401, the control system ATMC decrypts the secondary encryption packet through the terminal public key to obtain a primary encryption packet;
s20402, the control system ATMC decrypts the primary encrypted packet through the terminal private key to obtain a software package.
5. The method for remotely upgrading software of an ATM according to claim 4, wherein the commissioning procedure for avoiding problems with the upgrading process comprises the steps of:
s301, the control system ATMC suspends the operation of the original software, decompresses the software package to obtain new software, and tries to operate the software package;
s302, judging whether the software runs successfully;
s303, if the operation is successful, deleting the original software and completely operating the new software;
and S303, if the operation fails, deleting the new software and continuing to operate the original software.
6. A software remote upgrade method for an ATM according to claim 1, wherein:
the S101 and S102 operate synchronously.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110694203.5A CN113299018A (en) | 2021-06-22 | 2021-06-22 | ATM software remote upgrading method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110694203.5A CN113299018A (en) | 2021-06-22 | 2021-06-22 | ATM software remote upgrading method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113299018A true CN113299018A (en) | 2021-08-24 |
Family
ID=77329088
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110694203.5A Pending CN113299018A (en) | 2021-06-22 | 2021-06-22 | ATM software remote upgrading method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113299018A (en) |
Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6904150B1 (en) * | 2000-10-25 | 2005-06-07 | Ericsson Inc. | Cryptographic method and system for double encryption of messages |
| CN1719413A (en) * | 2004-07-07 | 2006-01-11 | 华为技术有限公司 | Upgrading method of communication equipment |
| CN1906886A (en) * | 2004-01-08 | 2007-01-31 | 国际商业机器公司 | Establishing a secure context for communicating messages between computer systems |
| CN102511057A (en) * | 2009-07-08 | 2012-06-20 | 温科尼克斯多夫国际有限公司 | Method and device for authenticating components within an automatic teller machine |
| CN102664740A (en) * | 2012-05-02 | 2012-09-12 | 四川建设网有限责任公司 | Remote-authorization-based bidding document encryption and decryption method |
| GB201901596D0 (en) * | 2019-02-05 | 2019-03-27 | Trustonic Ltd | Software encryption |
| CN109992286A (en) * | 2019-04-02 | 2019-07-09 | 深圳创维数字技术有限公司 | Device updating method, server and computer readable storage medium |
| CN110597538A (en) * | 2019-09-03 | 2019-12-20 | 广州小鹏汽车科技有限公司 | Software upgrading method based on OTA upgrading system and OTA upgrading system |
| CN111596938A (en) * | 2020-05-15 | 2020-08-28 | 青岛海米飞驰智能科技有限公司 | Embedded equipment firmware safety upgrading method, system, terminal and storage medium |
| CN111835752A (en) * | 2020-07-09 | 2020-10-27 | 国网山西省电力公司信息通信分公司 | Lightweight authentication method based on equipment identity and gateway |
| CN112702318A (en) * | 2020-12-09 | 2021-04-23 | 江苏通付盾信息安全技术有限公司 | Communication encryption method, decryption method, client and server |
-
2021
- 2021-06-22 CN CN202110694203.5A patent/CN113299018A/en active Pending
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6904150B1 (en) * | 2000-10-25 | 2005-06-07 | Ericsson Inc. | Cryptographic method and system for double encryption of messages |
| CN1906886A (en) * | 2004-01-08 | 2007-01-31 | 国际商业机器公司 | Establishing a secure context for communicating messages between computer systems |
| CN1719413A (en) * | 2004-07-07 | 2006-01-11 | 华为技术有限公司 | Upgrading method of communication equipment |
| CN102511057A (en) * | 2009-07-08 | 2012-06-20 | 温科尼克斯多夫国际有限公司 | Method and device for authenticating components within an automatic teller machine |
| CN102664740A (en) * | 2012-05-02 | 2012-09-12 | 四川建设网有限责任公司 | Remote-authorization-based bidding document encryption and decryption method |
| GB201901596D0 (en) * | 2019-02-05 | 2019-03-27 | Trustonic Ltd | Software encryption |
| CN109992286A (en) * | 2019-04-02 | 2019-07-09 | 深圳创维数字技术有限公司 | Device updating method, server and computer readable storage medium |
| CN110597538A (en) * | 2019-09-03 | 2019-12-20 | 广州小鹏汽车科技有限公司 | Software upgrading method based on OTA upgrading system and OTA upgrading system |
| CN111596938A (en) * | 2020-05-15 | 2020-08-28 | 青岛海米飞驰智能科技有限公司 | Embedded equipment firmware safety upgrading method, system, terminal and storage medium |
| CN111835752A (en) * | 2020-07-09 | 2020-10-27 | 国网山西省电力公司信息通信分公司 | Lightweight authentication method based on equipment identity and gateway |
| CN112702318A (en) * | 2020-12-09 | 2021-04-23 | 江苏通付盾信息安全技术有限公司 | Communication encryption method, decryption method, client and server |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN103714635B (en) | A kind of POS terminal and terminal master key downloading mode collocation method thereof | |
| CN101930644B (en) | Method for safely downloading master key automatically in bank card payment system and system thereof | |
| US8540146B2 (en) | Automated banking machine that operates responsive to data bearing records | |
| US7366903B1 (en) | Card activated cash dispensing automated banking machine system and method | |
| US7904713B1 (en) | Card activated cash dispensing automated banking machine system and method | |
| CN101593389A (en) | A kind of key management method and system that is used for the POS terminal | |
| CN105046488A (en) | Method, apparatus, and system for generating transaction-signing one-time password | |
| CN104408834A (en) | Method and system for controlling depositing and withdrawing safety based on safety core | |
| CN110992532B (en) | Temporary authorized unlocking method and system for intelligent door lock | |
| JP4372919B2 (en) | Automatic cash transaction apparatus and method | |
| WO2022227648A1 (en) | Control method and apparatus for intelligent vending cabinet, electronic device, and storage medium | |
| US7110986B1 (en) | Automated banking machine system and method | |
| MX2010001748A (en) | Method and system for secure remote transfer of master key for automated teller banking machine. | |
| WO2020214113A1 (en) | Software security system and method for pin entry, storage and transmission to software-based pos (softpos) | |
| CN102148799B (en) | Key downloading method and system | |
| CN101673434B (en) | Secret key management method of IC card terminal | |
| NZ571321A (en) | Secure electronic transaction system | |
| CN103873241A (en) | Safety shield, and digital-certificate management system and method | |
| CN113299018A (en) | ATM software remote upgrading method | |
| CN110231950A (en) | A kind of upgrade method of BIOS, system and relevant apparatus | |
| CN114859810A (en) | System and method for safely downloading configuration engineering | |
| CN110995423B (en) | Data processing method and device for cash recycling device core, core and storage medium | |
| CN110929248B (en) | CEN/XFS SP implementation method and device based on security authorization and financial self-service equipment | |
| KR101159984B1 (en) | On line door lock control system for automatic teller machine | |
| CN110381458A (en) | Intelligent gas meter Information Secure Transmission System |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210824 |