USRE39369E1 - Electronic casino gaming system with improved play capacity, authentication and security - Google Patents

Electronic casino gaming system with improved play capacity, authentication and security Download PDF

Info

Publication number
USRE39369E1
USRE39369E1 US10/224,699 US22469998A USRE39369E US RE39369 E1 USRE39369 E1 US RE39369E1 US 22469998 A US22469998 A US 22469998A US RE39369 E USRE39369 E US RE39369E
Authority
US
United States
Prior art keywords
casino
memory
game
gaming apparatus
gaming
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
US10/224,699
Inventor
Allan E. Alcorn
Michael Barnett
Louis D. Giacalone, Jr.
Adam E. Levinthal
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
International Game Technology
Original Assignee
International Game Technology
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from US08/497,662 external-priority patent/US5643086A/en
Application filed by International Game Technology filed Critical International Game Technology
Priority to US10/224,699 priority Critical patent/USRE39369E1/en
Priority claimed from PCT/US1996/010463 external-priority patent/WO1997001902A1/en
Application granted granted Critical
Publication of USRE39369E1 publication Critical patent/USRE39369E1/en
Anticipated expiration legal-status Critical
Expired - Lifetime legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/51Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q50/00Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
    • G06Q50/34Betting or bookmaking, e.g. Internet betting
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F17/00Coin-freed apparatus for hiring articles; Coin-freed facilities or services
    • G07F17/32Coin-freed apparatus for hiring articles; Coin-freed facilities or services for games, toys, sports, or amusements
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F17/00Coin-freed apparatus for hiring articles; Coin-freed facilities or services
    • G07F17/32Coin-freed apparatus for hiring articles; Coin-freed facilities or services for games, toys, sports, or amusements
    • G07F17/3286Type of games
    • G07F17/3288Betting, e.g. on live events, bookmaking
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2211/00Indexing scheme relating to details of data-processing equipment not covered by groups G06F3/00 - G06F13/00
    • G06F2211/007Encryption, En-/decode, En-/decipher, En-/decypher, Scramble, (De-)compress
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2109Game systems
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution

Definitions

  • This invention relates to microprocessor based gaming Systems used in gambling casinos.
  • Microprocessor based gaming systems are known which are used in gambling casinos to augment the traditional slot machine games (e.g. three reel single or multi-line games) and card games, such as poker and black jack.
  • a microprocessor based system includes both hardware and software components to provide the game playing capabilities.
  • the hardware components include a video display for displaying the game play, mechanical switches for enabling player selection of additional cards or game play choices, coin acceptors and detectors and the electronic components usually found in a microprocessor based system, such as random access memory (RAM), read only memory (ROM), a processor and one or more busses.
  • the software components include the initialization software, credit and payout routines, the game image and rules data set, and a random number generator algorithm.
  • an electronic gaming system In order to be acceptable for casino use, an electronic gaming system must provide both security and authentication for the software components. For this reason, gaming commissions have heretofore required that all software components of an electronic gaming system be stored in unalterable memory, which is typically an unalterable ROM. In addition, a copy of the contents of the ROM or a message digest of the contents (or both) are normally kept on file in a secure location designated by the gaming commission so that the contents of an individual ROM removed from a gaming machine can be verified against the custodial version.
  • a message digest of the ROM contents is initially generated prior to the installation of the ROM in the machine by using a known algorithm usually referred to as a hash function.
  • a hash function is a computation procedure that produces a fixed-size string of bits from a variable-size digital input. The fixed-sized string of bits is termed the hash value. If the hash function is difficult to invert—termed a one-way hash function—the hash function is also termed a message digest function, and the result is termed the message digest.
  • the message digest is unique to any given variable size input data set, i.e., the game data set stored in the ROM.
  • the ROM When it becomes necessary to later authenticate the ROM from any given machine, the ROM is physically removed from the game console and the message digest of the ROM contents is computed directly from the ROM using the original hash function. The computed message digest is compared with the message digest on file at the designated custodial location (typically in the casino itself). This procedure is typically carried out whenever a machine produces a payoff beyond a given threshold value. If the two message digests match, then the contents of the ROM are considered to be authenticated (verified) and the payout is made to the player.
  • the invention comprises an electronic casino gaming system which greatly expands casino game play capability and enhances security and authentication capabilities. More particularly, the invention comprises an electronic casino gaming system and method having greatly expanded mass storage capability for storing a multiplicity of high resolution, high sound quality casino type games, and provides enhanced authentication of the stored game program information with a high security factor.
  • authentication of a casino game data set is carried out within the casino game console using an authentication program stored in an unalterable ROM physically located within the casino game console.
  • the casino game data set and a unique signature are stored in a mass storage device, which may comprise a read only unit or a read/write unit and which may be physically located either within the casino game console or remotely located and linked to the casino game console over a suitable network.
  • the authentication program stored in the unalterable ROM performs an authentication check on the casino game data set at appropriate times, such as prior to commencement of game play, at periodic intervals or upon demand. At appropriate occasions, the contents of the unalterable ROM can be verified by computing the message digest of the unalterable ROM contents and comparing this computed message digest with a securely stored copy of the message digest computed from the ROM contents prior to installation in the casino game console.
  • this aspect of the invention comprises a method of authenticating a data set of a casino style game which consists of two phases: a game data set preparation phase and a game data set checking phase.
  • the method proceeds by providing a data set for a casino game, computing a first abbreviated bit string unique to the casino game data set, encrypting the first abbreviated bit string to provide an encrypted signature of the casino game data set, and storing the casino game data set and the signature in a mass storage device.
  • the first abbreviated bit string is preferably computed using a hash function to produce a message digest of the casino game data set.
  • the signature is then encrypted from the message digest.
  • the casino game data set checking phase proceeds by computing a second abbreviated bit string from the stored casino game data set using the same hash function, decrypting the stored encrypted signature to recover the first abbreviated bit string, and comparing the first and second abbreviated bit strings to determine whether the two strings match. If a match does occur the casino game data set is deemed authentic; if there is no match, authentication is denied and game play is prohibited.
  • the encryption/decryption process is preferably performed using a private key/public key technique in which the first abbreviated bit string is encrypted by the game manufacturer using a private encryption key maintained in the custody of the game manufacturer.
  • the decryption of the signature is performed using a public key which is contained in an unalterable read only memory element located in the game console, along with the casino game data set.
  • the casino game data set is preferably stored in a mass storage device, such as a magnetic or CD-ROM disk drive unit or a network file unit, the selected unit having a relatively large capacity. The actual size of the mass storage device will depend upon the casino game storage requirements and can be tailored to any specific application.
  • the authentication routine can also be means of an operator switch mounted in the game console or remotely via a network. Consequently, the authenticity of the data set can be automatically checked whenever the transfer occurs and at other appropriate times.
  • a message digest computed for the authentication program stored therein is stored in a secure manner in a different location from the game console, such as the casino operator's security facilities or the facilities of a gaming commission (or both).
  • the authenticity of the unalterable read only memory element is checked in the same way as that now performed in prior art devices: viz. computing the message digest directly from the unalterable read only memory device, and comparing the message digest thus computed with the custodial version.
  • the first aspect of the invention comprises an electronic casino gaming system having means for providing authentication of a game data set of a casino type game prior to permitting game play, the system including first means for storing a casino game data set and a signature of the casino game data set, the signature comprising an encrypted version of a unique first abbreviated bit string computed from the casino game data set; second means for storing an authentication program capable of computing a second abbreviated bit string from the casino game data set stored in the first storing means and capable of decrypting the encrypted signature stored in the first storing means to recover the first abbreviated bit string; processing means for enabling the authentication program to compute an abbreviated bit string from the casino game data set stored in the first storing means and for enabling the authentication program to decrypt the encrypted signature; and means for comparing the computed second abbreviated bit string with the decrypted abbreviated bit string to determine whether a match is present.
  • the first storing means preferably comprises a mass storage device, such as a disk drive unit,
  • the authentication program stored in the unalterable ROM located within the casino game console is used to test the authenticity of all other programs and fixed data stored in memory devices in the electronic casino gaming system, such as a system boot ROM, memory devices containing the operating system program, system drivers and executive/loader programs, and other memory devices incorporated into the electronic casino game system architecture.
  • memory devices in the electronic casino gaming system such as a system boot ROM, memory devices containing the operating system program, system drivers and executive/loader programs, and other memory devices incorporated into the electronic casino game system architecture.
  • the contents of each such memory device, whether program information or fixed data include signatures encrypted from message digests computed using a hash function from the original program information or fixed data set.
  • the authentication program in the unalterable ROM is used to authenticate the individual memory device contents in essentially the same fashion as that used to authenticate the casino game data sets.
  • the message digest for the given program or fixed data set is computed using the same hash function originally used to produce the message digest for that program or fixed data set.
  • the encrypted signature is decrypted using the proper decryption program and decryption key to recover the message digest.
  • the two versions of the message digest are then compared and, if found to be matching, the concerned program or fixed data set is deemed authentic and is permitted to be used by the system. Once all of the concerned programs and fixed data sets have been so authenticated, the casino game data set authentication procedure is run, after which game play is permitted (provided a match occurs).
  • this second aspect of the invention comprises a method of authenticating a program or data set of a casino style game which consists of two phases: a program or fixed data set preparation phase, and a program or fixed data set checking phase.
  • the method proceeds by providing a program or fixed data set for a casino game, computing a first abbreviated bit string unique to the program or fixed data set, encrypting the first abbreviated bit string to provide an encrypted signature of the program or fixed data set, and storing the program or fixed data set and the signature in a memory device.
  • the first abbreviated bit string is preferably computed using a hash function to produce a message digest of the program or fixed data set.
  • the signature is then encrypted from the message digest.
  • the memory device After storage of the program or fixed data set and unique signature in the memory device, the memory device is installed in a casino game console.
  • the casino game program or fixed data set checking phase proceeds by computing a second abbreviated bit string from the stored casino game program or fixed data set stored in the memory device using the same hash function, decrypting the encrypted signature stored in the memory device to recover the first abbreviated bit string, and comparing the first and second abbreviated bit strings to determine whether the two strings match. If a match does occur, the casino game program or fixed data set is deemed authentic; if there is no match, authentication is denied and use of that casino game program or fixed data set is prohibited.
  • the authentication routine is run each time a given casino game program or fixed data set needs to be called or used.
  • the authentication routine can also be run automatically on a periodic basis, or on demand—either locally by means of an operator switch mounted in the casino game console or remotely via a network. Consequently, the authenticity of the casino game program or fixed data set can be automatically checked whenever use of that program or fixed data set is required and at other appropriate times, such as in the course of a gaming commission audit.
  • this second aspect of the invention comprises an electronic casino gaming system for providing authentication of a casino game program or fixed data set prior to permitting system use of that casino game program or fixed data set, the system including first means for storing a casino game program or fixed data set and a signature of the casino game program or fixed data set; the signature comprising an encrypted version of a unique first abbreviated bit string computed from the casino game program or fixed data set; second means for storing an authentication program capable of computing a second abbreviated bit string from the casino game program or fixed data set stored in the first storing means and capable of decrypting the encrypted signature stored in the first storing means to recover the first abbreviated bit string; processing means for enabling the authentication program to compute an abbreviated bit string from the casino game program or fixed data set stored in the first storing means and for enabling the authentication program to decrypt the encrypted signature; and means for comparing the computed second abbreviated bit string with the decrypted abbreviated bit string to determine whether a match is present.
  • Electronic casino game systems incorporating the invention provide a vastly expanded capacity for more sophisticated and attractive casino-style games, while at the same time improving the authentication of the games without comprising security.
  • casino game systems incorporating the invention provide great flexibility in changing casino game play, since the casino game data sets representing the various games can be stored in alterable media rather than read only memory units as with present casino game systems.
  • the invention affords secure distribution and execution of program code and data, regardless of the particular distribution or storage technique employed. More specifically, the invention allows the casino game data set to reside in any form of secondary storage media, such as the traditional ROM storage, hard magnetic disk drives and CD-ROM drives, or networked file systems. So long as the authentication procedure conducted on the game data set is performed using the authentication program stored in an unalterable ROM, and so long as that ROM can be verified reliably, any casino game data set can be loaded from any source and can be verified by the system at any time: either prior to use, during run-time, periodically during run-time or upon demand.
  • the large quantities of storage that can be made available in a secure fashion using the invention facilitates the creation of casino gaming systems offering both an increased diversity of games, and individual games of superior quality.
  • the authentication of all casino game program and fixed data software ensures the integrity of all system software both prior to game play and thereafter at periodic or random intervals.
  • the invention is directed to a casino gaming apparatus, comprising: a casino game console; a video display unit; a first memory disposed in said casino game console; a second memory disposed in said casino game console, said second memory having encrypted gaming data stored therein, said encrypted gaming data comprising data relating to a casino game; a processor disposed in said casino game console and being operatively coupled to said video display unit, said first memory and said second memory, said processor causing said encrypted gaming data stored in said second memory to be decrypted to generate decrypted gaming data, and said processor causing a check to be performed utilizing said decrypted gaming data.
  • the invention is directed to a casino gaming apparatus, comprising: a casino game console; a video display unit; a sound - generating apparatus; a first memory disposed in said casino game console; a second memory disposed in said casino game console, said second memory having encrypted gaming data stored therein and unencrypted gaming data stored therein, said encrypted gaming data comprising data relating to a casino game and said unencrypted gaming data comprising data relating to a casino game; a nonvolatile memory disposed in said casino game console; and a processor disposed in said casino game console and being operatively coupled to said video display unit, said sound - generating apparatus, said first memory, said second memory and said nonvolatile memory, said processor causing said encrypted gaming data to be decrypted to generate decrypted gaming data, said processor causing said unencrypted gaming data to be transferred from said second memory to said first memory, said processor causing a check of said unencrypted data to be performed utilizing said decrypted gaming data and
  • FIG. 1 is a block diagram of a system incorporating the invention
  • FIG. 2 is a schematic diagram illustrating the contents of the read only memory and the mass storage device
  • FIG. 3 is a more detailed schematic view of the authentication program stored in the ROM and the game data stored in the mass storage unit;
  • FIG. 4 is a diagram illustrating the preparation of the game data set
  • FIG. 5 is a diagram illustrating the authentication procedure for the game data set.
  • FIG. 6 is a diagram illustrating an alternative approach to the secure loading of software into the system.
  • FIG. 1 is a block diagram of an electronic casino gaming system incorporating the invention.
  • the system consists of several system components under software control.
  • system components include a microprocessor 12 , which may comprise any general purpose microprocessor, such as a Pentium-based microprocessor from Intel Corporation.
  • a main memory unit 13 is provided, which is typically a random access memory having a capacity of between 32 and 64 megabytes for storing the majority of programs and graphics elements during game play.
  • a system boot ROM 14 provides the initialization software required when power is first applied to the system. ROM 14 contains additional programs in read only form, including the operating system, related drivers and the authentication software described in detail below.
  • a non-volatile RAM 17 is a batter backed static RAM capable of maintaining its contents through power cycling.
  • NV RAM 17 stores significant information relating to game play, such as the number of player credits, the last game outcome and certain diagnostic and error information not critical to an understanding of the invention.
  • a mass storage unit implemented in the FIG. 1 system as a magnetic hard disk drive unit 18 is coupled to and controlled by a disk subsystem 19 of conventional design and operation.
  • Disk drive unit 18 provides storage for the game specific data set, which includes both program data and image data specifying the rules of the various different casino games or single casino game variations, and the types of images and image sequences to be displayed to the game players.
  • the size of the disk drive unit 18 is a function of the number of games and game variations provided for a given system, as well as the amount of data required for each specific game. In general, the more motion video designed into a particular casino game, the more storage required for that casino game software.
  • a disk drive unit 18 with a 4-gigabyte capacity will usually provide sufficient storage capacity.
  • Disk subsystem 19 comprises a disk controller connected to a PCI bus 20 for controlling the disk drive unit 18 .
  • Controller 19 preferably supports SCSI- 2 , with options of fast and wide.
  • a number of different types of locally-based disk drive units may be used in the FIG. 1 system, including a CD-ROM storage unit.
  • the mass storage unit need not be physically located within the game console along with the other elements depicted in FIG. 1 : the mass storage unit may be located remotely from the game console and coupled thereto by means of an appropriate network, such as an ethernet, an R5232 link, or some other hard-wired or wireless network link. This latter alternate arrangement is indicated by the inclusion of a network subsystem 21 of appropriate configuration and functional characteristics, which may have ethernet, R5232 serial, or other network compatibility.
  • a video subsystem 22 is coupled to the PCI bus and provides the capability of displaying full color still images and MPEG movies with a relatively high frame rate (e.g. 30 frames per second) on an appropriate monitor (not shown).
  • a relatively high frame rate e.g. 30 frames per second
  • Optional 3D texture mapping may be added to this system, if desired.
  • a sound subsystem 23 having a stereo sound playback capability with up to 16 bit CD quality sound is coupled to an ISA bus 24 .
  • a general purpose input/output unit 25 provides interfaces to the game mechanical devices (not illustrated) such as manually actuatable switches and display lights.
  • a first bridge circuit 27 provides an interface between microprocessor 12 , ROM 14 , main memory 13 and PCI bus 20 .
  • Bridge circuit 27 is preferably a TRITON chip set available from INTEL Corporation.
  • a second bridge circuit 28 provides an interface between the PCI bus 20 and the ISA bus 24 .
  • Bridge circuit 24 is preferably a type 82378 chip available from Intel Corporation.
  • FIG. 2 illustrates the types of information stored in the system ROM 14 and the mass storage unit.
  • the ROM unit 14 used in the FIG. 1 system comprises two separate ROM elements: ROM 29 and ROM 30 .
  • ROM 29 must be an unalterable device, such as a Toshiba type C53400 512K ⁇ 8 bit mask programmed ROM.
  • ROM 30 is preferably an unalterable device like ROM 29 , but may comprise a different type of ROM, such as a type 29FO40 field programmable flash ROM available from Intel Corp.
  • ROM 29 contains the system initialization or boot code, an authentication program, a random number generator program and an initial portion of the executive/loader programs.
  • ROM 30 contains the operating system program, the system drivers and the remainder of the executive/loader programs as noted below.
  • the mass storage unit contains the applications, which include the game image and sound data, rules of game play and the like, and the signature associated to each particular casino game.
  • FIG. 3 illustrates the authentication and application program information in more detail.
  • the authentication program stored in unalterable ROM 29 comprises a message digest algorithm component 32 , a decryption algorithm component 33 , and a decryption key component 34 .
  • the message digest algorithm component 32 stored in ROM 29 comprises an exact copy of a hash function program routine used to originally compute a message digest from the loadable game data set 36 in the manner described below.
  • the decryption algorithm component 33 stored in ROM 29 comprises the algorithm required to decrypt any encrypted casino game data set signature using the decryption key component 34 .
  • the decryption key component 34 comprises the decryption key that is required to decrypt any of the encrypted signatures 37 in the manner described below during the authentication routine.
  • FIG. 4 illustrates the manner in which an encrypted data set signature 37 is generated.
  • a loadable casino game data set 36 is processed using a hash function 41 to generate a message digest 42 which is unique to the loadable game data set 36 .
  • the hash function employed may be one of a number of known hash functions, such as the MD 2 , MD 4 , and MD 5 hash functions and the SHS hash function; or any other suitable hash function capable of producing a unique abbreviated bit string from a variable size input data set.
  • hash functions such as the MD 2 , MD 4 , and MD 5 hash functions and the SHS hash function
  • any other suitable hash function capable of producing a unique abbreviated bit string from a variable size input data set.
  • the message digest 42 is then encrypted with an encryption algorithm 43 using a private encryption key 44 to generate a signature 37 of the message digest.
  • the two-key (private/public key) encryption technique developed by RSA Data Security, Inc. of Redwood City, Calif., is used. This technique is disclosed and described in U.S. Pat. Nos. 4,200,770, 4,218,582 and 4,405,829, the disclosures of which are hereby incorporated by reference.
  • the signature 37 of the message digest 42 is then stored in the mass storage unit along with the loadable data set 36 .
  • FIG. 5 illustrates the authentication routine carried out in accordance with the invention, when the authentication routine is called (see below), the loadable casino game data set 36 is transferred from the mass storage unit to main memory 13 (unless already there), and the message digest of casino game data set 36 is computed using the message digest algorithm 32 .
  • Message digest algorithm 32 uses the same hash function 41 as that used by the manufacturer to prepare the original message digest 42 .
  • the result is an unencrypted version 46 of the message digest computed from the casino game data set 36 currently present in the mass storage unit.
  • the encrypted data set signature 37 is decrypted using the public decryption key 34 matching the private key 44 used to originally encrypt the message digest 42 of the casino game data set 36 .
  • the message digest 47 decrypted with decryption key 34 is then compared with the message digest 46 computed from the casino game data set 36 . If the two message digests match, then the casino game data set 36 is deemed authentic and game play may proceed. If there is no match, either the casino game data set 36 or the signature 37 is deemed corrupted and not authentic. Game play is prohibited and appropriate actions can be taken: e.g. alerting a security employee using a suitable messaging system (an audible alarm, flashing lights, or a network message from the game console to a central security area).
  • a suitable messaging system an audible alarm, flashing lights, or a network message from the game console to a central security area.
  • an initial part of the loader program is incorporated into unalterable ROM 29 .
  • This initial portion of the loader program requires that the authentication program be called prior to the initiation of any casino game play. Since this initial portion of the loader program is located in the unalterable ROM 29 , and since no casino game play can occur until the particular casino game application data set 36 is loaded into main memory 13 , the authentication procedure cannot be bypassed by tampering with the software stored in ROM 30 .
  • a procedure must be provided to verify the ROM 29 contents.
  • a message digest is computed for the authentication program stored in ROM 29 , and this message digest is stored in a secure manner with the casino operator or the gaming commission (or both) along with the hash function used to produce the message digest.
  • This hash function may be the same hash function used to compute the message digest 42 of the casino game data set or a different hash function. In this way, the authenticity of the ROM 29 can be easily checked in the same way as that now performed in prior art devices; viz. computing the message digest directly from the ROM 29 and comparing the message digest thus computed with the custodial version of the message digest.
  • the system may also display the message digest 42 of each particular data set 36 or the encrypted signature version 37 for auditing purposes.
  • the system may transmit this information via networking subsystem 21 to an on-site or off-site remote location (such as the office of the gaming commission).
  • the message digest displayed or transmitted may comprise the decrypted version or the computed version (or both).
  • the authentication procedure carried out by means of the message digest program 32 , decryption program 33 and decryption key 34 stored in unalterable ROM 29 in the manner described above is also used to authenticate the contents of all memory devices in the FIG. 1 system, such as the contents of ROM 30 (see FIG. 2 ), the fixed data portions and program components stored in NV RAM 17 and the program and fixed data contents of any memory devices stored in the networking subsystem 21 , video subsystem 22 , sound subsystem 23 , PCI-ISA interface 24 , and GPIO unit 25 .
  • Each program or fixed data set stored in any memory device in any of these units has an associated signature, which is encrypted from a message digest of the original program or fixed data set using a hash function, which is preferably the same hash function used to prepare the message digest of the casino game data set.
  • a hash function which is preferably the same hash function used to prepare the message digest of the casino game data set.
  • the authentication procedure can be run on each such program or fixed data set at periodic or random intervals (on demand) in a manner essentially identical to that described above with respect to the casino game data set authentication procedure. As a consequence, the integrity of all software in the system is checked prior to the use of that particular software in order to reveal any unauthorized changes to the software portion of the casino gaming system.
  • FIG. 6 An alternative approach to the secure loading of software into the system is depicted in FIG. 6 .
  • the basic input/output system (BIOS) software is stored in a ROM 50 , the first of two ROMs making up the system boot ROM 14 (FIG. 1 ).
  • the boot strap code, operating system code (OS), OS drivers and a secure loader are stored in a second ROM 52 .
  • An anchor application 54 including graphics and sound drivers, system drivers, money-handling software, a second secure loader, and a signature is stored in the mass storage 18 (FIG. 1 ).
  • BIOS is responsible for initializing the motherboard and peripheral cards of the system. After the BIOS has completed the initialization, it jumps to the boot strap code in ROM 252 causing the boot strap to copy the OS, OS drivers. and the secure loader into RAM.
  • the OS is started and the secure loader stored in ROM 52 is used to load the anchor application 54 from disk 18 .
  • the anchor application On disk, the anchor application has a signature that is used during the load to verify the validity of the anchor application.
  • the secure loader of the anchor application will check the validity of an application to be loaded by computing the signature and comparing it against the one stored on disk with the application as described above.
  • An important advantage of the invention not found in 20 prior art systems is the manner in which the casino game data set can be authenticated.
  • authentication of the casino game data set is normally only done when a payout lying above a given threshold is required by the outcome of the game play, and this requires that the game be disabled while the ROM is physically removed and the ROM contents are verified.
  • the authenticity of a given casino game data set can be checked in a variety of ways.
  • the game data set 36 can be automatically subjected to the authentication procedure illustrated in FIG. 5 each time the game is loaded from the mass storage unit into the main memory 13 .
  • the authenticity of that game actually stored in the mass storage unit is automatically checked using the authentication procedure described above without removing the ROM 29 .
  • the authentication procedure may be initiated in response to the pull of a slot game handle, the detection of a coin insert, the payout of coins or issuing of credit, or any other detectable event related to game play.
  • the authenticity of a given casino game data set 36 can also be checked on demand, either locally at the game console or remotely via a network, by providing a demand procedure. Such a procedure may be initiated, e.g. by providing a manually operable switch in the game console, accessible only to authorized persons, for initiating the authentication routine.
  • the FIG. 1 system may be configured to respond to a demand command generated remotely (e.g. in a security area in the casino or off-site) and transmitted to the game console over a network to the networking subsystem 21 .
  • Another advantage of the invention lies in the fact that the game data set storage capacity of a system incorporating the invention is not limited by the size of a ROM, but is rather dictated by the size of the mass storage unit. As a consequence, games using high resolution, high motion video and high quality stereo sound can be designed and played on systems incorporating the invention. Also, since the mass storage unit need not be a read-only device, and need not be physically located in the game console, the invention affords great flexibility in game content, scheduling and changes. For example, to change the graphic images in a particular casino game or set of games, new casino game data sets can be generated along with new signatures and stored in the mass storage unit by either exchanging disk drives, replacing disks (for read only disk units), or writing new data to the media.
  • the message digest 42 and signature 37 may be computed from the graphics and sound portions of the application program 36 . It may also be desirable to compute a message digest 42 and signature 37 from a subset of the rules, graphics or sound portions of a given applications program 36 , or from some other subset taken from a given applications program 36 . Therefore, the above should not be construed as limiting the scope of the invention, which is defined by the appended claims.

Abstract

The electronic casino gaming system consists of several system components, including a microprocessor (12), a main memory unit (13) that is typically a random access memory, and a system boot ROM (14). Also included in the electronic casino gaming system are a non-volatile RAM (17), a mass storage unit (18), a disk subsystem (19), and a PCI bus (20). The disk subsystem (19) preferably supports SCSI-2 with options of fast and wide. A video subsystem (22) is also included in the electronic casino gaming system and is coupled to the PCI bus (20) to provide full color still images and MPEG movies.

Description

This application is the national stage of International Application No. PCT/US96/10463, filed on Jun. 17, 1996, which is a continuation-in-part of U.S. application Ser. No. 08/497,662, now U.S. Pat. No. 5,643,086, filed on Jun. 29, 1995.
Notice: More than one reissue application has been filed for the reissue of U.S. Pat. No. 6,106,396. The reissue applications are Reissue application Ser. No. 10/225,096 filed Aug. 21, 2002, Reissue application Ser. No. 10/224,680 filed Aug. 21, 2002, Reissue application Ser. No. 10/225,116 filed Aug. 21, 2002, Reissue application Ser. No. 10/225,097 filed Aug. 21, 2002 and Reissue application Ser. No. 10/224,699 filed Aug. 21, 2002 (the present application), all of which are divisional reissues of U.S. Pat. No. 6,106,396, which issued from U.S. Ser. No. 08/981,882 which is the U.S. national phase of International Application No. PCT/US96/10463 filed Jun. 17, 1996, which is a continuation-in-part of U.S. Ser. No. 08/497,662 filed Jun. 29, 1995, now U.S. Pat. No. 5,643,086.
BACKGROUND OF THE INVENTION
1. Field of the Invention
This invention relates to microprocessor based gaming Systems used in gambling casinos.
2. Brief Description of the Prior Art
Microprocessor based gaming systems are known which are used in gambling casinos to augment the traditional slot machine games (e.g. three reel single or multi-line games) and card games, such as poker and black jack. In a typical gaming system of this type, a microprocessor based system includes both hardware and software components to provide the game playing capabilities. The hardware components include a video display for displaying the game play, mechanical switches for enabling player selection of additional cards or game play choices, coin acceptors and detectors and the electronic components usually found in a microprocessor based system, such as random access memory (RAM), read only memory (ROM), a processor and one or more busses. The software components include the initialization software, credit and payout routines, the game image and rules data set, and a random number generator algorithm. In order to be acceptable for casino use, an electronic gaming system must provide both security and authentication for the software components. For this reason, gaming commissions have heretofore required that all software components of an electronic gaming system be stored in unalterable memory, which is typically an unalterable ROM. In addition, a copy of the contents of the ROM or a message digest of the contents (or both) are normally kept on file in a secure location designated by the gaming commission so that the contents of an individual ROM removed from a gaming machine can be verified against the custodial version.
In a typical arrangement, a message digest of the ROM contents is initially generated prior to the installation of the ROM in the machine by using a known algorithm usually referred to as a hash function. A hash function is a computation procedure that produces a fixed-size string of bits from a variable-size digital input. The fixed-sized string of bits is termed the hash value. If the hash function is difficult to invert—termed a one-way hash function—the hash function is also termed a message digest function, and the result is termed the message digest. The message digest is unique to any given variable size input data set, i.e., the game data set stored in the ROM. When it becomes necessary to later authenticate the ROM from any given machine, the ROM is physically removed from the game console and the message digest of the ROM contents is computed directly from the ROM using the original hash function. The computed message digest is compared with the message digest on file at the designated custodial location (typically in the casino itself). This procedure is typically carried out whenever a machine produces a payoff beyond a given threshold value. If the two message digests match, then the contents of the ROM are considered to be authenticated (verified) and the payout is made to the player.
While such electronic casino gaming systems have been found to be useful in promoting casino game play, the restriction requiring that the casino game program be stored in unalterable ROM memory, leads to a number of disadvantageous limitations. First, due to the limited capacity of the ROM storage media traditionally used to hold the program, the scope of game play available with such systems is severely limited. For sophisticated games using motion video and audio multi-media elements, much more memory capacity, on the order of hundreds of megabytes, is necessary. However, physical verification of such a large quantity of physical devices is not practical, and has thus far been an impediment to creating sophisticated games with more player appeal. Second, the authentication check is only conducted on a limited basis (usually after a jackpot) or other significant winning game outcome, and the authentication procedure requires that game play be halted until the ROM contents have been found to be authentic.
SUMMARY OF THE INVENTION
The invention comprises an electronic casino gaming system which greatly expands casino game play capability and enhances security and authentication capabilities. More particularly, the invention comprises an electronic casino gaming system and method having greatly expanded mass storage capability for storing a multiplicity of high resolution, high sound quality casino type games, and provides enhanced authentication of the stored game program information with a high security factor.
According to a first aspect of the invention, authentication of a casino game data set is carried out within the casino game console using an authentication program stored in an unalterable ROM physically located within the casino game console. The casino game data set and a unique signature are stored in a mass storage device, which may comprise a read only unit or a read/write unit and which may be physically located either within the casino game console or remotely located and linked to the casino game console over a suitable network. The authentication program stored in the unalterable ROM performs an authentication check on the casino game data set at appropriate times, such as prior to commencement of game play, at periodic intervals or upon demand. At appropriate occasions, the contents of the unalterable ROM can be verified by computing the message digest of the unalterable ROM contents and comparing this computed message digest with a securely stored copy of the message digest computed from the ROM contents prior to installation in the casino game console.
From a process standpoint, this aspect of the invention comprises a method of authenticating a data set of a casino style game which consists of two phases: a game data set preparation phase and a game data set checking phase. In the game data set preparation phase, the method proceeds by providing a data set for a casino game, computing a first abbreviated bit string unique to the casino game data set, encrypting the first abbreviated bit string to provide an encrypted signature of the casino game data set, and storing the casino game data set and the signature in a mass storage device. The first abbreviated bit string is preferably computed using a hash function to produce a message digest of the casino game data set. The signature is then encrypted from the message digest. After storage of the game data set and unique signature, this information is installed in a casino game console. The casino game data set checking phase proceeds by computing a second abbreviated bit string from the stored casino game data set using the same hash function, decrypting the stored encrypted signature to recover the first abbreviated bit string, and comparing the first and second abbreviated bit strings to determine whether the two strings match. If a match does occur the casino game data set is deemed authentic; if there is no match, authentication is denied and game play is prohibited.
The encryption/decryption process is preferably performed using a private key/public key technique in which the first abbreviated bit string is encrypted by the game manufacturer using a private encryption key maintained in the custody of the game manufacturer. The decryption of the signature is performed using a public key which is contained in an unalterable read only memory element located in the game console, along with the casino game data set. The casino game data set is preferably stored in a mass storage device, such as a magnetic or CD-ROM disk drive unit or a network file unit, the selected unit having a relatively large capacity. The actual size of the mass storage device will depend upon the casino game storage requirements and can be tailored to any specific application.
Each time a casino game data set is transferred from the mass storage device to the main memory of the system, the authentication routine is run. The authentication routine can also be means of an operator switch mounted in the game console or remotely via a network. Consequently, the authenticity of the data set can be automatically checked whenever the transfer occurs and at other appropriate times.
In order to detect attempts to tamper with the contents of the unalterable read only memory element located in the game console, a message digest computed for the authentication program stored therein is stored in a secure manner in a different location from the game console, such as the casino operator's security facilities or the facilities of a gaming commission (or both). The authenticity of the unalterable read only memory element is checked in the same way as that now performed in prior art devices: viz. computing the message digest directly from the unalterable read only memory device, and comparing the message digest thus computed with the custodial version.
From an apparatus standpoint, the first aspect of the invention comprises an electronic casino gaming system having means for providing authentication of a game data set of a casino type game prior to permitting game play, the system including first means for storing a casino game data set and a signature of the casino game data set, the signature comprising an encrypted version of a unique first abbreviated bit string computed from the casino game data set; second means for storing an authentication program capable of computing a second abbreviated bit string from the casino game data set stored in the first storing means and capable of decrypting the encrypted signature stored in the first storing means to recover the first abbreviated bit string; processing means for enabling the authentication program to compute an abbreviated bit string from the casino game data set stored in the first storing means and for enabling the authentication program to decrypt the encrypted signature; and means for comparing the computed second abbreviated bit string with the decrypted abbreviated bit string to determine whether a match is present. The first storing means preferably comprises a mass storage device, such as a disk drive unit, a CD-ROM unit or a network storage unit. The second storing means preferably comprises an unalterable read only memory in which the authentication program is stored.
According to a second aspect of the invention, the authentication program stored in the unalterable ROM located within the casino game console is used to test the authenticity of all other programs and fixed data stored in memory devices in the electronic casino gaming system, such as a system boot ROM, memory devices containing the operating system program, system drivers and executive/loader programs, and other memory devices incorporated into the electronic casino game system architecture. The contents of each such memory device, whether program information or fixed data, include signatures encrypted from message digests computed using a hash function from the original program information or fixed data set. Upon system initialization, the authentication program in the unalterable ROM is used to authenticate the individual memory device contents in essentially the same fashion as that used to authenticate the casino game data sets. More specifically, the message digest for the given program or fixed data set is computed using the same hash function originally used to produce the message digest for that program or fixed data set. The encrypted signature is decrypted using the proper decryption program and decryption key to recover the message digest. The two versions of the message digest are then compared and, if found to be matching, the concerned program or fixed data set is deemed authentic and is permitted to be used by the system. Once all of the concerned programs and fixed data sets have been so authenticated, the casino game data set authentication procedure is run, after which game play is permitted (provided a match occurs).
From a process standpoint, this second aspect of the invention comprises a method of authenticating a program or data set of a casino style game which consists of two phases: a program or fixed data set preparation phase, and a program or fixed data set checking phase. In the program or fixed data set preparation phase, the method proceeds by providing a program or fixed data set for a casino game, computing a first abbreviated bit string unique to the program or fixed data set, encrypting the first abbreviated bit string to provide an encrypted signature of the program or fixed data set, and storing the program or fixed data set and the signature in a memory device. The first abbreviated bit string is preferably computed using a hash function to produce a message digest of the program or fixed data set. The signature is then encrypted from the message digest. After storage of the program or fixed data set and unique signature in the memory device, the memory device is installed in a casino game console. The casino game program or fixed data set checking phase proceeds by computing a second abbreviated bit string from the stored casino game program or fixed data set stored in the memory device using the same hash function, decrypting the encrypted signature stored in the memory device to recover the first abbreviated bit string, and comparing the first and second abbreviated bit strings to determine whether the two strings match. If a match does occur, the casino game program or fixed data set is deemed authentic; if there is no match, authentication is denied and use of that casino game program or fixed data set is prohibited.
The authentication routine is run each time a given casino game program or fixed data set needs to be called or used. The authentication routine can also be run automatically on a periodic basis, or on demand—either locally by means of an operator switch mounted in the casino game console or remotely via a network. Consequently, the authenticity of the casino game program or fixed data set can be automatically checked whenever use of that program or fixed data set is required and at other appropriate times, such as in the course of a gaming commission audit.
From an apparatus standpoint this second aspect of the invention comprises an electronic casino gaming system for providing authentication of a casino game program or fixed data set prior to permitting system use of that casino game program or fixed data set, the system including first means for storing a casino game program or fixed data set and a signature of the casino game program or fixed data set; the signature comprising an encrypted version of a unique first abbreviated bit string computed from the casino game program or fixed data set; second means for storing an authentication program capable of computing a second abbreviated bit string from the casino game program or fixed data set stored in the first storing means and capable of decrypting the encrypted signature stored in the first storing means to recover the first abbreviated bit string; processing means for enabling the authentication program to compute an abbreviated bit string from the casino game program or fixed data set stored in the first storing means and for enabling the authentication program to decrypt the encrypted signature; and means for comparing the computed second abbreviated bit string with the decrypted abbreviated bit string to determine whether a match is present. The first storing means preferably comprises a memory device, such as a read only memory or random access memory. The second storing means preferably comprises an unalterable read only memory in which the authentication program is stored.
Electronic casino game systems incorporating the invention provide a vastly expanded capacity for more sophisticated and attractive casino-style games, while at the same time improving the authentication of the games without comprising security. In addition, casino game systems incorporating the invention provide great flexibility in changing casino game play, since the casino game data sets representing the various games can be stored in alterable media rather than read only memory units as with present casino game systems.
By separating the authentication process from the casino game data set storage, the invention affords secure distribution and execution of program code and data, regardless of the particular distribution or storage technique employed. More specifically, the invention allows the casino game data set to reside in any form of secondary storage media, such as the traditional ROM storage, hard magnetic disk drives and CD-ROM drives, or networked file systems. So long as the authentication procedure conducted on the game data set is performed using the authentication program stored in an unalterable ROM, and so long as that ROM can be verified reliably, any casino game data set can be loaded from any source and can be verified by the system at any time: either prior to use, during run-time, periodically during run-time or upon demand. The large quantities of storage that can be made available in a secure fashion using the invention, facilitates the creation of casino gaming systems offering both an increased diversity of games, and individual games of superior quality. In addition, the authentication of all casino game program and fixed data software ensures the integrity of all system software both prior to game play and thereafter at periodic or random intervals.
In one aspect, the invention is directed to a casino gaming apparatus, comprising: a casino game console; a video display unit; a first memory disposed in said casino game console; a second memory disposed in said casino game console, said second memory having encrypted gaming data stored therein, said encrypted gaming data comprising data relating to a casino game; a processor disposed in said casino game console and being operatively coupled to said video display unit, said first memory and said second memory, said processor causing said encrypted gaming data stored in said second memory to be decrypted to generate decrypted gaming data, and said processor causing a check to be performed utilizing said decrypted gaming data.
In another aspect, the invention is directed to a casino gaming apparatus, comprising: a casino game console; a video display unit; a sound-generating apparatus; a first memory disposed in said casino game console; a second memory disposed in said casino game console, said second memory having encrypted gaming data stored therein and unencrypted gaming data stored therein, said encrypted gaming data comprising data relating to a casino game and said unencrypted gaming data comprising data relating to a casino game; a nonvolatile memory disposed in said casino game console; and a processor disposed in said casino game console and being operatively coupled to said video display unit, said sound-generating apparatus, said first memory, said second memory and said nonvolatile memory, said processor causing said encrypted gaming data to be decrypted to generate decrypted gaming data, said processor causing said unencrypted gaming data to be transferred from said second memory to said first memory, said processor causing a check of said unencrypted data to be performed utilizing said decrypted gaming data and said unencrypted data after said unencrypted data has been transferred from said second memory to said first memory, and said processor causing a remedial action to be taken based on said check performed by said processor, said remedial action caused by said processor comprising generation of a message.
Other aspects of the invention are defined by the claims set forth at the end of this patent.
For a fuller understanding of the nature and advantages of the invention, reference should be had to the ensuing detailed description taken in conjunction with the accompanying drawings.
BRIEF DESCRIPTION OF THE DRAWINGS
FIG. 1 is a block diagram of a system incorporating the invention;
FIG. 2 is a schematic diagram illustrating the contents of the read only memory and the mass storage device;
FIG. 3 is a more detailed schematic view of the authentication program stored in the ROM and the game data stored in the mass storage unit;
FIG. 4 is a diagram illustrating the preparation of the game data set;
FIG. 5 is a diagram illustrating the authentication procedure for the game data set; and
FIG. 6 is a diagram illustrating an alternative approach to the secure loading of software into the system.
 DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS
Turning now to the drawings, FIG. 1 is a block diagram of an electronic casino gaming system incorporating the invention. As seen in this figure, the system consists of several system components under software control. These system components include a microprocessor 12, which may comprise any general purpose microprocessor, such as a Pentium-based microprocessor from Intel Corporation. A main memory unit 13 is provided, which is typically a random access memory having a capacity of between 32 and 64 megabytes for storing the majority of programs and graphics elements during game play. A system boot ROM 14 provides the initialization software required when power is first applied to the system. ROM 14 contains additional programs in read only form, including the operating system, related drivers and the authentication software described in detail below. A non-volatile RAM 17 is a batter backed static RAM capable of maintaining its contents through power cycling. NV RAM 17 stores significant information relating to game play, such as the number of player credits, the last game outcome and certain diagnostic and error information not critical to an understanding of the invention.
A mass storage unit implemented in the FIG. 1 system as a magnetic hard disk drive unit 18 is coupled to and controlled by a disk subsystem 19 of conventional design and operation. Disk drive unit 18 provides storage for the game specific data set, which includes both program data and image data specifying the rules of the various different casino games or single casino game variations, and the types of images and image sequences to be displayed to the game players. The size of the disk drive unit 18 is a function of the number of games and game variations provided for a given system, as well as the amount of data required for each specific game. In general, the more motion video designed into a particular casino game, the more storage required for that casino game software. A disk drive unit 18 with a 4-gigabyte capacity will usually provide sufficient storage capacity. Disk subsystem 19 comprises a disk controller connected to a PCI bus 20 for controlling the disk drive unit 18. Controller 19 preferably supports SCSI-2, with options of fast and wide. It should be noted that a number of different types of locally-based disk drive units may be used in the FIG. 1 system, including a CD-ROM storage unit. Also, the mass storage unit need not be physically located within the game console along with the other elements depicted in FIG. 1: the mass storage unit may be located remotely from the game console and coupled thereto by means of an appropriate network, such as an ethernet, an R5232 link, or some other hard-wired or wireless network link. This latter alternate arrangement is indicated by the inclusion of a network subsystem 21 of appropriate configuration and functional characteristics, which may have ethernet, R5232 serial, or other network compatibility.
A video subsystem 22 is coupled to the PCI bus and provides the capability of displaying full color still images and MPEG movies with a relatively high frame rate (e.g. 30 frames per second) on an appropriate monitor (not shown). Optional 3D texture mapping may be added to this system, if desired.
A sound subsystem 23 having a stereo sound playback capability with up to 16 bit CD quality sound is coupled to an ISA bus 24. A general purpose input/output unit 25 provides interfaces to the game mechanical devices (not illustrated) such as manually actuatable switches and display lights. A first bridge circuit 27 provides an interface between microprocessor 12, ROM 14, main memory 13 and PCI bus 20. Bridge circuit 27 is preferably a TRITON chip set available from INTEL Corporation. A second bridge circuit 28 provides an interface between the PCI bus 20 and the ISA bus 24. Bridge circuit 24 is preferably a type 82378 chip available from Intel Corporation.
FIG. 2 illustrates the types of information stored in the system ROM 14 and the mass storage unit. As seen in FIG. 2, the ROM unit 14 used in the FIG. 1 system comprises two separate ROM elements: ROM 29 and ROM 30. ROM 29 must be an unalterable device, such as a Toshiba type C53400 512K×8 bit mask programmed ROM. ROM 30 is preferably an unalterable device like ROM 29, but may comprise a different type of ROM, such as a type 29FO40 field programmable flash ROM available from Intel Corp. ROM 29 contains the system initialization or boot code, an authentication program, a random number generator program and an initial portion of the executive/loader programs. ROM 30 contains the operating system program, the system drivers and the remainder of the executive/loader programs as noted below. The mass storage unit contains the applications, which include the game image and sound data, rules of game play and the like, and the signature associated to each particular casino game.
FIG. 3 illustrates the authentication and application program information in more detail. As seen in this figure, the authentication program stored in unalterable ROM 29 comprises a message digest algorithm component 32, a decryption algorithm component 33, and a decryption key component 34. The message digest algorithm component 32 stored in ROM 29 comprises an exact copy of a hash function program routine used to originally compute a message digest from the loadable game data set 36 in the manner described below. The decryption algorithm component 33 stored in ROM 29 comprises the algorithm required to decrypt any encrypted casino game data set signature using the decryption key component 34.
The decryption key component 34 comprises the decryption key that is required to decrypt any of the encrypted signatures 37 in the manner described below during the authentication routine.
FIG. 4 illustrates the manner in which an encrypted data set signature 37 is generated. A loadable casino game data set 36 is processed using a hash function 41 to generate a message digest 42 which is unique to the loadable game data set 36. The hash function employed may be one of a number of known hash functions, such as the MD2, MD4, and MD5 hash functions and the SHS hash function; or any other suitable hash function capable of producing a unique abbreviated bit string from a variable size input data set. For further information about these hash functions, reference should be had to the publication entitled “Answers To Frequently Asked Questions About Today's Cryptography”, Revision 2.0, Oct. 5, 1993, published by RSA Laboratories, Redwood City, Calif., and the publications listed in the references section thereof, the disclosures of which are hereby incorporated by reference. After generation, the message digest 42 is then encrypted with an encryption algorithm 43 using a private encryption key 44 to generate a signature 37 of the message digest. In the preferred embodiment, the two-key (private/public key) encryption technique developed by RSA Data Security, Inc. of Redwood City, Calif., is used. This technique is disclosed and described in U.S. Pat. Nos. 4,200,770, 4,218,582 and 4,405,829, the disclosures of which are hereby incorporated by reference. The signature 37 of the message digest 42 is then stored in the mass storage unit along with the loadable data set 36.
FIG. 5 illustrates the authentication routine carried out in accordance with the invention, when the authentication routine is called (see below), the loadable casino game data set 36 is transferred from the mass storage unit to main memory 13 (unless already there), and the message digest of casino game data set 36 is computed using the message digest algorithm 32. Message digest algorithm 32 uses the same hash function 41 as that used by the manufacturer to prepare the original message digest 42. The result is an unencrypted version 46 of the message digest computed from the casino game data set 36 currently present in the mass storage unit. The encrypted data set signature 37 is decrypted using the public decryption key 34 matching the private key 44 used to originally encrypt the message digest 42 of the casino game data set 36. The message digest 47 decrypted with decryption key 34 is then compared with the message digest 46 computed from the casino game data set 36. If the two message digests match, then the casino game data set 36 is deemed authentic and game play may proceed. If there is no match, either the casino game data set 36 or the signature 37 is deemed corrupted and not authentic. Game play is prohibited and appropriate actions can be taken: e.g. alerting a security employee using a suitable messaging system (an audible alarm, flashing lights, or a network message from the game console to a central security area).
In order to ensure that the authentication routine cannot be bypassed by tampering with the loader program stored in ROM 30, an initial part of the loader program is incorporated into unalterable ROM 29. This initial portion of the loader program requires that the authentication program be called prior to the initiation of any casino game play. Since this initial portion of the loader program is located in the unalterable ROM 29, and since no casino game play can occur until the particular casino game application data set 36 is loaded into main memory 13, the authentication procedure cannot be bypassed by tampering with the software stored in ROM 30.
Since authentication of the game data set 36 and signature 37 is entrusted to the contents of ROM 29, a procedure must be provided to verify the ROM 29 contents. For this purpose, a message digest is computed for the authentication program stored in ROM 29, and this message digest is stored in a secure manner with the casino operator or the gaming commission (or both) along with the hash function used to produce the message digest. This hash function may be the same hash function used to compute the message digest 42 of the casino game data set or a different hash function. In this way, the authenticity of the ROM 29 can be easily checked in the same way as that now performed in prior art devices; viz. computing the message digest directly from the ROM 29 and comparing the message digest thus computed with the custodial version of the message digest. If required by a given gaming commission or deemed desirable by a casino operator, the system may also display the message digest 42 of each particular data set 36 or the encrypted signature version 37 for auditing purposes. In addition, the system may transmit this information via networking subsystem 21 to an on-site or off-site remote location (such as the office of the gaming commission). The message digest displayed or transmitted may comprise the decrypted version or the computed version (or both).
The authentication procedure carried out by means of the message digest program 32, decryption program 33 and decryption key 34 stored in unalterable ROM 29 in the manner described above is also used to authenticate the contents of all memory devices in the FIG. 1 system, such as the contents of ROM 30 (see FIG. 2), the fixed data portions and program components stored in NV RAM 17 and the program and fixed data contents of any memory devices stored in the networking subsystem 21, video subsystem 22, sound subsystem 23, PCI-ISA interface 24, and GPIO unit 25. Each program or fixed data set stored in any memory device in any of these units has an associated signature, which is encrypted from a message digest of the original program or fixed data set using a hash function, which is preferably the same hash function used to prepare the message digest of the casino game data set. Prior to permitting any such program or fixed data set to participate in the system operation, that program or fixed data set is subjected to the authorization procedure to ensure that the message digest computed from the current version of the program or fixed data set matches the message digest decrypted from the encrypted signature associated to the program or fixed data set. In addition, the authentication procedure can be run on each such program or fixed data set at periodic or random intervals (on demand) in a manner essentially identical to that described above with respect to the casino game data set authentication procedure. As a consequence, the integrity of all software in the system is checked prior to the use of that particular software in order to reveal any unauthorized changes to the software portion of the casino gaming system.
An alternative approach to the secure loading of software into the system is depicted in FIG. 6. In this embodiment the basic input/output system (BIOS) software is stored in a ROM 50, the first of two ROMs making up the system boot ROM 14 (FIG. 1). The boot strap code, operating system code (OS), OS drivers and a secure loader are stored in a second ROM 52. An anchor application 54 including graphics and sound drivers, system drivers, money-handling software, a second secure loader, and a signature is stored in the mass storage 18 (FIG. 1).
When power is initially applied to the system on start-up, or when the system experiences a warm restart, the CPU 12 will begin executing code from the BIOS ROM 50. The BIOS is responsible for initializing the motherboard and peripheral cards of the system. After the BIOS has completed the initialization, it jumps to the boot strap code in ROM 252 causing the boot strap to copy the OS, OS drivers. and the secure loader into RAM.
Once in RAM, the OS is started and the secure loader stored in ROM 52 is used to load the anchor application 54 from disk 18. On disk, the anchor application has a signature that is used during the load to verify the validity of the anchor application.
After the anchor application 54 is started, it will be used to load all other applications. The secure loader of the anchor application will check the validity of an application to be loaded by computing the signature and comparing it against the one stored on disk with the application as described above.
An important advantage of the invention not found in 20 prior art systems is the manner in which the casino game data set can be authenticated. In prior art systems, authentication of the casino game data set is normally only done when a payout lying above a given threshold is required by the outcome of the game play, and this requires that the game be disabled while the ROM is physically removed and the ROM contents are verified. In systems incorporating the invention, the authenticity of a given casino game data set can be checked in a variety of ways. For example, the game data set 36 can be automatically subjected to the authentication procedure illustrated in FIG. 5 each time the game is loaded from the mass storage unit into the main memory 13. Thus, as a player selects a casino game for game play in the system, the authenticity of that game actually stored in the mass storage unit is automatically checked using the authentication procedure described above without removing the ROM 29. Further, if desired, the authentication procedure may be initiated in response to the pull of a slot game handle, the detection of a coin insert, the payout of coins or issuing of credit, or any other detectable event related to game play. The authenticity of a given casino game data set 36 can also be checked on demand, either locally at the game console or remotely via a network, by providing a demand procedure. Such a procedure may be initiated, e.g. by providing a manually operable switch in the game console, accessible only to authorized persons, for initiating the authentication routine. Alternatively, the FIG. 1 system may be configured to respond to a demand command generated remotely (e.g. in a security area in the casino or off-site) and transmitted to the game console over a network to the networking subsystem 21.
Another advantage of the invention lies in the fact that the game data set storage capacity of a system incorporating the invention is not limited by the size of a ROM, but is rather dictated by the size of the mass storage unit. As a consequence, games using high resolution, high motion video and high quality stereo sound can be designed and played on systems incorporating the invention. Also, since the mass storage unit need not be a read-only device, and need not be physically located in the game console, the invention affords great flexibility in game content, scheduling and changes. For example, to change the graphic images in a particular casino game or set of games, new casino game data sets can be generated along with new signatures and stored in the mass storage unit by either exchanging disk drives, replacing disks (for read only disk units), or writing new data to the media. In the networked mass storage application, these changes can be made to the files controlled by the network file server. Since the casino game data sets must pass the authentication procedure test, either periodically or on demand, corrupted data sets cannot go undetected. Thus the invention opens up the field of electronic casino gaming systems to readily modifiable games with flexible displays and rules, without sacrificing the essential security of such systems. In fact, security is greatly enhanced by the ability of the invention to authenticate all game data sets both regularly (for each handle pull) and at any time (on demand), without interfering with regular game play (unless no match occurs between the two forms of message digest).
While the above provides a full and complete disclosure of the preferred embodiments of the invention, various modifications, alternate constructions and equivalents may be employed without departing from the true spirit and scope of the invention. For example, while the RSA public/private key encryption technique is preferred (due to the known advantages of this technique). a single, private key encryption technique may be employed, if desired. In a system using this technique, the single key would be stored in ROM 29 in place of the public key 34. Also, the message digest 42 and signature 37 for a given application 36 need not be computed from the entire casino game data set. For example, for some casino games it may be desirable to provide a fixed set of rules while permitting future changes in the casino game graphics, sound or both. For such casino games, it may be sufficient to compute the message digest 42 and signature 37 from only the rules portion of the applications program 36. In other cases, it may be desirable or convenient to maintain the casino game video and audio portions constant, while allowing future changes to the rules of game play. For casino games of this category, the message digest 42 and signature 37 may be computed from the graphics and sound portions of the application program 36. It may also be desirable to compute a message digest 42 and signature 37 from a subset of the rules, graphics or sound portions of a given applications program 36, or from some other subset taken from a given applications program 36. Therefore, the above should not be construed as limiting the scope of the invention, which is defined by the appended claims.

Claims (83)

1. An electronic gaming system for providing authentication of a data set associated with a casino type game, said system comprising:
(a) a first storage means for storing a game data set and a game signature comprising an encrypted version of a unique primary abbreviated game bit string computed from said game data set;
(b) a second storage means for storing,
an anchor application including a first authentication program capable of determining the validity of said game data set by,
computing a complementary abbreviated game bit string from said game data set,
decrypting said game signature set to recover said primary abbreviated game bit string,
comparing said complementary abbreviated game bit string with said primary abbreviated game bit string to determine whether a match is present, and
an anchor signature including an encrypted version of a unique primary abbreviated anchor bit string computed from said anchor application;
(c) a third storage means for storing a second authentication program capable of determining the validity of said anchor application by,
computing a complementary abbreviated anchor bit string from said anchor application,
decrypting said anchor signature to recover said primary abbreviated anchor bit string, and
comparing said complementary abbreviated anchor bit string with said primary abbreviated anchor bit string to determine whether a match is present; and
(d) processing means for enabling said first authentication program to determine the validity of said game data set and for enabling said second authentication program to determine the validity of said anchor application.
2. An electronic gaming system as recited in claim 1 further comprising a fourth storage means for storing basic input/output system (BIOS) code.
3. An electronic gaming system as recited in claim 2 wherein said fourth storage means is an unalterable ROM device.
4. An electronic gaming system as recited in claim 1 wherein said third storage means further stores operating system code, operating system drivers, and bootstrap code.
5. An electronic gaming system as recited in claim 1 wherein said first storage means and said second storage means comprise a single mass storage means.
6. An electronic gaming system as recited in claim 1 wherein said first storage means is a mass storage memory device.
7. An electronic gaming system as recited in claim 1 wherein said third storage means is an unalterable read only memory.
8. An electronic gaming system as recited in claim 1 wherein said first storage means is a CD ROM.
9. An electronic gaming system as recited in claim 1 wherein said first storage means is a hard disk drive.
10. An electronic gaming system as recited in claim 1 wherein said first storage means comprises a network storage system which is remote from the electronic gaming system.
11. An electronic gaming system as recited in claim 1 wherein said second storage means comprises a network storage system which is remote from the electronic gaming system.
12. An electronic gaming system as recited in claim 1 wherein said game data set is a game-modifying data set for changing game rules parameters of the casino type game.
13. An electronic gaming system as recited in claim 12 wherein said game-modifying data set includes a money handler modifying data set for changing money handling parameters of the casino type game.
14. An electronic gaming system as recited in claim 12 wherein said game-modifying data sets include a graphics modifying data set for changing graphics parameters of the casino type game.
15. An electronic gaming system as recited in claim 12 wherein said game-modifying data sets include a sound driver modifying data set for changing sound parameters of the casino type game.
16. A casino gaming apparatus comprising:
a casino game console;
a video display unit;
a first memory providing an executable space for a processor disposed in said casino game console;
a second memory, disposed in said casino game console, operable to store gaming data relating to a plurality of different casino games, the gaming data relating to a plurality of casino game variations or combinations thereof;
a third memory, being disposed in said casino game console, storing system logic for reading files in a file system stored on the second memory wherein the system logic is authenticated prior to authenticating the gaming data relating to the plurality of different casino games;
a nonvolatile memory disposed in said casino game console operable to store gaming data relating to the play of the plurality of different casino games or relating to the play of the plurality of casino game variations; and
the processor disposed in said casino game console and being operatively coupled to said video display unit, said first memory, said second memory, said third memory and said nonvolatile memory,
said processor operable to cause gaming data relating to the plurality of different casino games, the gaming data relating to the plurality of casino game variations or the combinations thereof, to be authenticated based on at least a comparison of a first hash value generated from the gaming data with a second hash value generated from known gaming data.
17. The casino gaming apparatus as defined in claim 16 wherein the gaming data relating to the play of the plurality of different casino games or relating to the play of the plurality of casino game variations stored in the non-volatile memory includes an outcome to a casino game previously played on the casino game console.
18. The casino gaming apparatus as defined in claim 16 wherein the system logic is a function of an operating system executed on the casino game console.
19. The casino gaming apparatus as defined in claim 16 wherein said second memory comprises an optical disk.
20. The casino gaming apparatus as defined in claim 16 further comprising at least one peripheral device coupled to the gaming console including a memory device wherein the processor is operable to authenticate contents of the memory device.
21. The casino gaming apparatus as defined in claim 16 wherein the second memory comprises a magnetic hard disk.
22. The casino gaming apparatus as defined in claim 16 wherein said second memory is operable as a read-only memory.
23. The casino gaming apparatus as defined in claim 16 wherein the second memory is disposed in said casino game console.
24. The casino gaming apparatus as defined in claim 16 wherein the second memory is disposed in a remote location separate from said casino game console.
25. The casino gaming apparatus as defined in claim 16 wherein the nonvolatile memory is disposed in said casino game console.
26. The casino gaming apparatus as defined in claim 16 wherein the nonvolatile memory is disposed in a remote location separate from said casino game console.
27. The casino gaming apparatus as defined in claim 16 wherein the video display unit is disposed in a remote location separate from said casino game console.
28. The casino gaming apparatus as defined in claim 16 further comprising a video subsystem, operatively coupled to the video display unit and operatively coupled to the processor, adapted for displaying still images, motion video or combinations thereof.
29. The casino gaming apparatus as defined in claim 16 wherein the processor is operable to generate a game play of the plurality of different casino games, the plurality of casino game variations or the combinations thereof.
30. The casino gaming apparatus as defined in claim 16 wherein in response to receiving a selection of a first casino game from the plurality of different casino games, the plurality of casino game variations or the combinations thereof, the casino gaming apparatus is operable to generate a play of the first casino game on the casino gaming apparatus.
31. The casino gaming apparatus as defined in claim 16 further comprising a sound-generating apparatus operatively coupled to the processor.
32. The casino gaming apparatus as defined in claim 16 further comprising a network interface wherein the network interface is designed to provide a wired connection or a wireless connection to a network.
33. A casino gaming apparatus comprising:
a casino game console;
a video display unit;
a first memory, providing an executable space for a processor, disposed in said casino game console;
a second memory disposed in said casino game console, said second memory storing gaming data related to a casino game;
a third memory storing an operating system, said third memory being disposed in said casino game console, wherein the operating system is enabled to control access to the second memory and wherein the operating system is authenticated prior to an authentication of the gaming data relating to the casino game stored on the second memory;
a network interface coupled to the casino game console for connecting to a network; and
the processor disposed in said casino game console and being operatively coupled to said video display unit, said first memory, said second memory, said third memory and the network interface;
said processor operable to transfer gaming data relating to a second casino game from a remote storage device connected to the network to a memory disposed on the gaming console;
said processor operable to cause said transferred gaming data relating to the second casino game to be checked based on at least a comparison of a first hash value generated from said transferred gaming data with a second hash value generated from known gaming data, and
said processor operable to cause a remedial action to be taken based on said check performed by said processor.
34. The casino gaming apparatus as defined in claim 33 wherein the operating system is adapted for reading files on a file system stored on the second memory.
35. The casino gaming apparatus as defined in claim 33 wherein said second memory comprises an optical disk.
36. The casino gaming apparatus as defined in claim 33 further comprising at least one peripheral device coupled to the gaming console including a memory device wherein the processor is operable to authenticate contents of the memory device.
37. The casino gaming apparatus as defined in claim 33 wherein said second memory comprises a magnetic hard disk.
38. The casino gaming apparatus as defined in claim 33 wherein said second memory is operable as a read-only memory.
39. The casino gaming apparatus as defined in claim 33 wherein the second memory is disposed in said casino game console.
40. The casino gaming apparatus as defined in claim 33 wherein the second memory is disposed in a remote location separate from said casino game console.
41. The casino gaming apparatus as defined in claim 33 further comprising a nonvolatile memory operable to store gaming data relating to the play of the casino game.
42. The casino gaming apparatus as defined in claim 41 wherein the nonvolatile memory is disposed in said casino game console.
43. The casino gaming apparatus as defined in claim 41 wherein the nonvolatile memory is disposed in a remote location separate from said casino game console.
44. The casino gaming apparatus as defined in claim 33 wherein the video display unit is disposed in a remote location separate from said casino game console.
45. The casino gaming apparatus as defined in claim 33 further comprising a video subsystem, operatively coupled to the video display unit and operatively coupled to the processor, adapted for displaying still images, motion video or combinations thereof.
46. The casino gaming apparatus as defined in claim 33 wherein the processor is operable to generate a game play of a plurality of different casino games.
47. The casino gaming apparatus as defined in claim 33 wherein in response to receiving a selection of a first casino game from a plurality of different casino games, the casino gaming apparatus is operable to generate a play of the first casino game on the casino gaming apparatus.
48. The casino gaming apparatus as defined in claim 33 further comprising a sound-generating apparatus operatively coupled to the processor.
49. The casino gaming apparatus as defined in claim 33 further comprising a network interface wherein the network interface is designed to provide a wired connection or a wireless connection to a network.
50. A casino gaming apparatus comprising:
a casino game console;
a video display unit;
a first memory providing an executable space for a processor disposed in said casino game console;
a second memory disposed in said casino game console, said second memory storing gaming data related to a casino game;
a third memory storing an operating system enabled to control a loading of the gaming data related to the casino game from the first memory to the second memory wherein the operating system is authenticated prior to an authentication of the gaming data related to the casino game; and
the processor disposed in said casino game console and being operatively coupled to said video display unit, said first memory, said second memory, and the third memory;
said processor operable to cause an authentication of the operating system or the gaming data related to the casino game using one-way hashing functions; and
said processor operable to cause a remedial action to be taken based on said authentication.
51. The casino gaming apparatus as defined in claim 50 wherein the operating system is adapted for reading files on a file system stored on the second memory.
52. The casino gaming apparatus as defined in claim 50 wherein said second memory comprises an optical disk.
53. The casino gaming apparatus as defined in claim 50 further comprising at least one peripheral device coupled to the gaming console including a memory device wherein the processor is operable to authenticate contents of the memory device.
54. The casino gaming apparatus as defined in claim 50 wherein said second memory comprises a magnetic hard disk.
55. The casino gaming apparatus as defined in claim 50 wherein said second memory is operable as a read-only memory.
56. The casino gaming apparatus as defined in claim 50 wherein the second memory is disposed in said casino game console.
57. The casino gaming apparatus as defined in claim 50 wherein the second memory is disposed in a remote location separate from said casino game console.
58. The casino gaming apparatus as defined in claim 50 further comprising a nonvolatile memory operable to store gaming data relating to the play of the casino game.
59. The casino gaming apparatus as defined in claim 58 wherein the nonvolatile memory is disposed in said casino game console.
60. The casino gaming apparatus as defined in claim 58 wherein the nonvolatile memory is disposed in a remote location separate from said casino game console.
61. The casino gaming apparatus as defined in claim 50 wherein the video display unit is disposed in a remote location separate from said casino game console.
62. The casino gaming apparatus as defined in claim 50 further comprising a video subsystem, operatively coupled to the video display unit and operatively coupled to the processor, adapted for displaying still images, motion video or combinations thereof.
63. The casino gaming apparatus as defined in claim 50 wherein the processor is operable to generate a game play of a plurality of different casino games.
64. The casino gaming apparatus as defined in claim 50 wherein in response to receiving a selection of a first casino game from a plurality of different casino games, the casino gaming apparatus is operable to generate a play of the first casino game on the casino gaming apparatus.
65. The casino gaming apparatus as defined in claim 50 further comprising a sound-generating apparatus operatively coupled to the processor.
66. The casino gaming apparatus as defined in claim 50 wherein the network interface is designed to provide a wired connection or a wireless connection to the network.
67. A casino gaming apparatus comprising:
a casino game console;
a video display unit;
a first memory providing an executable space for a processor disposed in said casino game console;
a second memory disposed in said casino game console, said second memory having gaming data relating to a casino game stored therein;
a third memory, being disposed in said casino game console, storing system logic for reading files in a file system stored on the second memory;
the processor disposed in said casino game console and being operatively coupled to said video display unit, said first memory, said second memory, and said third memory;
said processor operable to i) cause data relating to the system logic to be authenticated based on a comparison of a hash value generated from the data relating to the system logic and a known hash value and ii) to cause the gaming data relating to the casino game to be authenticated based on a comparison of a first hash value generated from the gaming data transferred to the first memory with a known first hash value;
wherein the system logic is authenticated prior to authenticating the gaming data relating to the casino game stored on the second memory.
68. The casino gaming apparatus as defined in claim 67 wherein the system logic is a component of an operating system.
69. The casino gaming apparatus as defined in claim 67 wherein said second memory comprises an optical disk.
70. The casino gaming apparatus as defined in claim 67 further comprising at least one peripheral device coupled to the gaming console including a memory device wherein the processor is operable to authenticate contents of the memory device.
71. The casino gaming apparatus as defined in claim 67 wherein said second memory comprises a magnetic hard disk.
72. The casino gaming apparatus as defined in claim 67 wherein said second memory is operable as a read-only memory.
73. The casino gaming apparatus as defined in claim 67 wherein the second memory is disposed in said casino game console.
74. The casino gaming apparatus as defined in claim 67 wherein the second memory is disposed in a remote location separate from said casino game console.
75. The casino gaming apparatus as defined in claim 67 further comprising a nonvolatile memory operable to store gaming data relating to the play of the casino game.
76. The casino gaming apparatus as defined in claim 75 wherein the nonvolatile memory is disposed in said casino game console.
77. The casino gaming apparatus as defined in claim 75 wherein the nonvolatile memory is disposed in a remote location separate from said casino game console.
78. The casino gaming apparatus as defined in claim 67 wherein the video display unit is disposed in a remote location separate from said casino game console.
79. The casino gaming apparatus as defined in claim 67 further comprising a video subsystem, operatively coupled to the video display unit and operatively coupled to the processor, adapted for displaying still images, motion video or combinations thereof.
80. The casino gaming apparatus as defined in claim 67 wherein the processor is operable to generate a game play of a plurality of different casino games.
81. The casino gaming apparatus as defined in claim 67 wherein in response to receiving a selection of a first casino game from a plurality of different casino games, the casino gaming apparatus is operable to generate a play of the first casino game on the casino gaming apparatus.
82. The casino gaming apparatus as defined in claim 67 further comprising a sound-generating apparatus operatively coupled to the processor.
83. The casino gaming apparatus as defined in claim 67 further comprising a network interface wherein the network interface is designed to provide a wired connection or a wireless connection to a network.
US10/224,699 1995-06-29 1996-06-17 Electronic casino gaming system with improved play capacity, authentication and security Expired - Lifetime USRE39369E1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US10/224,699 USRE39369E1 (en) 1995-06-29 1996-06-17 Electronic casino gaming system with improved play capacity, authentication and security

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
US08/497,662 US5643086A (en) 1995-06-29 1995-06-29 Electronic casino gaming apparatus with improved play capacity, authentication and security
US10/224,699 USRE39369E1 (en) 1995-06-29 1996-06-17 Electronic casino gaming system with improved play capacity, authentication and security
US08/981,882 US6106396A (en) 1995-06-29 1996-06-17 Electronic casino gaming system with improved play capacity, authentication and security
PCT/US1996/010463 WO1997001902A1 (en) 1995-06-29 1996-06-17 Electronic casino gaming system with improved play capacity, authentication and security

Publications (1)

Publication Number Publication Date
USRE39369E1 true USRE39369E1 (en) 2006-10-31

Family

ID=46124176

Family Applications (1)

Application Number Title Priority Date Filing Date
US10/224,699 Expired - Lifetime USRE39369E1 (en) 1995-06-29 1996-06-17 Electronic casino gaming system with improved play capacity, authentication and security

Country Status (1)

Country Link
US (1) USRE39369E1 (en)

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040054952A1 (en) * 2002-09-13 2004-03-18 Morrow James W. Device verification system and method
US20050009599A1 (en) * 2003-07-09 2005-01-13 Ryan Chad A. Gaming machine having targeted run-time software authentication
US20090172227A1 (en) * 2007-12-27 2009-07-02 Igt Serial advanced technology attachment write protection: mass storage data protection device
US20090220078A1 (en) * 2005-08-29 2009-09-03 Campbell Steven M On-the-fly encryption on a gaming machine
US20110212761A1 (en) * 2010-02-26 2011-09-01 Igt Gaming machine processor
US8038530B2 (en) 2005-02-28 2011-10-18 Wms Gaming Inc. Method and apparatus for filtering wagering game content
US8579705B1 (en) * 1998-06-17 2013-11-12 Eugene Thomas Bond Software verification and authentication
US9424712B2 (en) 2008-06-27 2016-08-23 Bally Gaming, Inc. Authenticating components in wagering game systems
US9811972B2 (en) 2013-12-31 2017-11-07 Video Gaming Technologies, Inc. System and method for authenticating storage media within an electronic gaming system
US20190272705A1 (en) * 2018-03-01 2019-09-05 Ags Llc Gaming system having boot locked validation of program installs, data installs and program launches
US10490022B2 (en) 2013-12-31 2019-11-26 Video Gaming Technologies, Inc. System and method for authenticating storage media within an electronic gaming system
US11113401B2 (en) 2019-03-21 2021-09-07 Aristocrat Technologies Australia Pty Limited Secure bootloader for electronic gaming machines and other computing devices
US11120138B2 (en) 2019-03-21 2021-09-14 Aristocrat Technologies Australia Pty Limited Secure bootloader for electronic gaming machines and other computing devices

Citations (87)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3825905A (en) 1972-09-13 1974-07-23 Action Communication Syst Inc Binary synchronous communications processor system and method
US3838264A (en) 1970-11-25 1974-09-24 P Maker Apparatus for, and method of, checking the contents of a computer store
US4193131A (en) 1977-12-05 1980-03-11 International Business Machines Corporation Cryptographic verification of operational keys used in communication networks
US4200770A (en) 1977-09-06 1980-04-29 Stanford University Cryptographic apparatus and method
US4218582A (en) 1977-10-06 1980-08-19 The Board Of Trustees Of The Leland Stanford Junior University Public key cryptographic apparatus and method
US4354251A (en) 1979-04-06 1982-10-12 Siemens Aktiengesellschaft Device for testing programs for numerical control of machine tools
US4355390A (en) 1979-09-28 1982-10-19 Siemens Aktiengesellschaft Method for checking data written into buffered write-read memories in numerically controlled machine tools
US4405829A (en) 1977-12-14 1983-09-20 Massachusetts Institute Of Technology Cryptographic communications system and method
GB2121569A (en) 1982-05-12 1983-12-21 Bally Mfg Corp System guaranteeing integrity of a gambling system
US4458315A (en) 1982-02-25 1984-07-03 Penta, Inc. Apparatus and method for preventing unauthorized use of computer programs
US4462076A (en) * 1982-06-04 1984-07-24 Smith Engineering Video game cartridge recognition and security system
US4467424A (en) 1979-12-17 1984-08-21 Hedges Richard A Remote gaming system
US4494114A (en) 1983-12-05 1985-01-15 International Electronic Technology Corp. Security arrangement for and method of rendering microprocessor-controlled electronic equipment inoperative after occurrence of disabling event
US4519077A (en) 1982-08-30 1985-05-21 Amin Pravin T Digital processing system with self-test capability
US4525599A (en) 1982-05-21 1985-06-25 General Computer Corporation Software protection methods and apparatus
US4582324A (en) 1984-01-04 1986-04-15 Bally Manufacturing Corporation Illusion of skill game machine for a gaming system
US4607844A (en) 1984-12-13 1986-08-26 Ainsworth Nominees Pty. Ltd. Poker machine with improved security after power failure
US4652998A (en) * 1984-01-04 1987-03-24 Bally Manufacturing Corporation Video gaming system with pool prize structures
US4658093A (en) 1983-07-11 1987-04-14 Hellman Martin E Software distribution system
US4727544A (en) 1986-06-05 1988-02-23 Bally Manufacturing Corporation Memory integrity checking system for a gaming device
US4752068A (en) 1985-11-07 1988-06-21 Namco Ltd. Video game machine for business use
US4759064A (en) 1985-10-07 1988-07-19 Chaum David L Blind unanticipated signature systems
US4817140A (en) 1986-11-05 1989-03-28 International Business Machines Corp. Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor
US4837728A (en) 1984-01-25 1989-06-06 Igt Multiple progressive gaming system that freezes payouts at start of game
US4845715A (en) 1984-10-29 1989-07-04 Francisco Michael H Method for maintaining data processing system securing
US4848744A (en) 1986-01-22 1989-07-18 Eduard Steininger Automated video system with alignment of the video tube
US4856787A (en) 1986-02-05 1989-08-15 Yuri Itkis Concurrent game network
US4865321A (en) 1985-10-04 1989-09-12 Nintendo Company Limited Memory cartridge and information processor unit using such cartridge
US4911449A (en) 1985-01-02 1990-03-27 I G T Reel monitoring device for an amusement machine
US4930073A (en) 1987-06-26 1990-05-29 International Business Machines Corporation Method to prevent use of incorrect program version in a computer system
US4944008A (en) 1988-02-18 1990-07-24 Motorola, Inc. Electronic keying scheme for locking data
US4951149A (en) 1988-10-27 1990-08-21 Faroudja Y C Television system with variable aspect picture ratio
US5004232A (en) 1989-10-13 1991-04-02 Macronix, Inc. Computer game cartridge security circuit
US5021772A (en) 1986-11-20 1991-06-04 King Stephen J Interactive real-time video processor with zoom pan and scroll capability
US5050212A (en) 1990-06-20 1991-09-17 Apple Computer, Inc. Method and apparatus for verifying the integrity of a file stored separately from a computer
US5103081A (en) 1990-05-23 1992-04-07 Games Of Nevada Apparatus and method for reading data encoded on circular objects, such as gaming chips
US5109152A (en) 1988-07-13 1992-04-28 Matsushita Electric Industrial Co., Ltd. Communication apparatus
US5146575A (en) 1986-11-05 1992-09-08 International Business Machines Corp. Implementing privilege on microprocessor systems for use in software asset protection
US5155680A (en) 1986-10-24 1992-10-13 Signal Security Technologies Billing system for computing software
US5155768A (en) 1990-03-16 1992-10-13 Sega Enterprises, Ltd. Security system for software
US5161193A (en) * 1990-06-29 1992-11-03 Digital Equipment Corporation Pipelined cryptography processor and method for its use in communication networks
US5179517A (en) 1988-09-22 1993-01-12 Bally Manufacturing Corporation Game machine data transfer system utilizing portable data units
US5224160A (en) * 1987-02-23 1993-06-29 Siemens Nixdorf Informationssysteme Ag Process for securing and for checking the integrity of the secured programs
US5235642A (en) 1992-07-21 1993-08-10 Digital Equipment Corporation Access control subsystem and method for distributed computer system using locally cached authentication credentials
US5259613A (en) 1992-04-08 1993-11-09 Rio Hotel Casino, Inc. Casino entertainment system
US5283734A (en) 1986-03-10 1994-02-01 Kohorn H Von System and method of communication with authenticated wagering participation
US5288978A (en) 1990-10-05 1994-02-22 Kabushiki Kaisha Toshiba Mutual authentication system and method which checks the authenticity of a device before transmitting authentication data to the device
US5291585A (en) 1991-07-29 1994-03-01 Dell Usa, L.P. Computer system having system feature extension software containing a self-describing feature table for accessing I/O devices according to machine-independent format
US5297205A (en) 1989-10-24 1994-03-22 Adventure Portable electronic device to establish public loyalty to a medium or similar
US5326104A (en) 1992-02-07 1994-07-05 Igt Secure automated electronic casino gaming system
US5342047A (en) 1992-04-08 1994-08-30 Bally Gaming International, Inc. Touch screen video gaming machine
US5343527A (en) 1993-10-27 1994-08-30 International Business Machines Corporation Hybrid encryption method and system for protecting reusable software components
JPH06327831A (en) 1991-04-22 1994-11-29 L Ii Tec:Kk Microprocessor for game machine
JPH0731737A (en) 1993-05-20 1995-02-03 L Ii Tec:Kk Microcomputer chip for controlling game machine, and collating device for detecting its illegality
US5398932A (en) * 1993-12-21 1995-03-21 Video Lottery Technologies, Inc. Video lottery system with improved site controller and validation unit
US5421006A (en) * 1992-05-07 1995-05-30 Compaq Computer Corp. Method and apparatus for assessing integrity of computer system software
US5465364A (en) 1989-09-22 1995-11-07 International Business Machines, Inc. Method and system for providing device driver support which is independent of changeable characteristics of devices and operating systems
EP0685246A1 (en) 1994-06-01 1995-12-06 Sony Corporation Video game apparatus with external memory devices
US5488702A (en) 1994-04-26 1996-01-30 Unisys Corporation Data block check sequence generation and validation in a file cache system
US5489095A (en) 1992-07-01 1996-02-06 U.S. Philips Corporation Device for protecting the validity of time sensitive information
US5507489A (en) 1992-11-04 1996-04-16 Info Telecom Electronic game-of-chance device
US5586766A (en) 1994-05-13 1996-12-24 Casinovations, Inc. Blackjack game system and methods
US5586937A (en) 1993-05-19 1996-12-24 Menashe; Julian Interactive, computerised gaming system with remote terminals
US5604801A (en) 1995-02-03 1997-02-18 International Business Machines Corporation Public key data communications system under control of a portable security device
US5611730A (en) 1995-04-25 1997-03-18 Casino Data Systems Progressive gaming system tailored for use in multiple remote sites: apparatus and method
US5643086A (en) 1995-06-29 1997-07-01 Silicon Gaming, Inc. Electronic casino gaming apparatus with improved play capacity, authentication and security
US5644704A (en) 1994-11-30 1997-07-01 International Game Technology Method and apparatus for verifying the contents of a storage device
US5655965A (en) 1992-10-22 1997-08-12 Kabushiki Kaisha Ace Denken Screen display type slot machine with seemingly flowing condition of moving symbols
US5668945A (en) 1994-02-28 1997-09-16 Sega Enterprises, Ltd. Data security apparatus and method
US5704835A (en) 1995-12-13 1998-01-06 Infinity Group, Inc. Electronic second spin slot machine
US5707286A (en) 1994-12-19 1998-01-13 Mikohn Gaming Corporation Universal gaming engine
US5725428A (en) 1995-03-09 1998-03-10 Atronic Casino Technology Distribution Gmbh Video slot machine
US5737418A (en) 1995-05-30 1998-04-07 International Game Technology Encryption of bill validation data
US5742616A (en) 1995-01-23 1998-04-21 International Business Machines Corporation System and method testing computer memories
US5759102A (en) 1996-02-12 1998-06-02 International Game Technology Peripheral device download method and apparatus
US5768382A (en) * 1995-11-22 1998-06-16 Walker Asset Management Limited Partnership Remote-auditing of computer generated outcomes and authenticated biling and access control system using cryptographic and other protocols
US5934672A (en) 1996-02-20 1999-08-10 Digideal Corporation Slot machine and methods of operation
US5991399A (en) * 1997-12-18 1999-11-23 Intel Corporation Method for securely distributing a conditional use private key to a trusted entity on a remote system
WO1999065579A1 (en) * 1998-06-17 1999-12-23 Aristocrat Technologies Australia Pty. Ltd. Software verification and authentication
US6071190A (en) 1997-05-21 2000-06-06 Casino Data Systems Gaming device security system: apparatus and method
WO2000033196A1 (en) * 1998-11-26 2000-06-08 Aristocrat Technologies Australia Pty Ltd Electronic casino gaming with authentication and improved security
US6104815A (en) 1997-01-10 2000-08-15 Silicon Gaming, Inc. Method and apparatus using geographical position and universal time determination means to provide authenticated, secure, on-line communication between remote gaming locations
US6149522A (en) 1995-06-29 2000-11-21 Silicon Gaming - Nevada Method of authenticating game data sets in an electronic casino gaming system
US6195587B1 (en) 1993-10-29 2001-02-27 Sophos Plc Validity checking
US6620047B1 (en) 1995-06-29 2003-09-16 Igt Electronic gaming apparatus having authentication data sets
US20040002381A1 (en) 1995-06-29 2004-01-01 Igt Electronic gaming apparatus with authentication
US6851607B2 (en) * 1997-04-11 2005-02-08 Gemplus Secured method for monitoring the transfer of value units in a chip card gambling system

Patent Citations (89)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3838264A (en) 1970-11-25 1974-09-24 P Maker Apparatus for, and method of, checking the contents of a computer store
US3825905A (en) 1972-09-13 1974-07-23 Action Communication Syst Inc Binary synchronous communications processor system and method
US4200770A (en) 1977-09-06 1980-04-29 Stanford University Cryptographic apparatus and method
US4218582A (en) 1977-10-06 1980-08-19 The Board Of Trustees Of The Leland Stanford Junior University Public key cryptographic apparatus and method
US4193131A (en) 1977-12-05 1980-03-11 International Business Machines Corporation Cryptographic verification of operational keys used in communication networks
US4405829A (en) 1977-12-14 1983-09-20 Massachusetts Institute Of Technology Cryptographic communications system and method
US4354251A (en) 1979-04-06 1982-10-12 Siemens Aktiengesellschaft Device for testing programs for numerical control of machine tools
US4355390A (en) 1979-09-28 1982-10-19 Siemens Aktiengesellschaft Method for checking data written into buffered write-read memories in numerically controlled machine tools
US4467424A (en) 1979-12-17 1984-08-21 Hedges Richard A Remote gaming system
US4458315A (en) 1982-02-25 1984-07-03 Penta, Inc. Apparatus and method for preventing unauthorized use of computer programs
GB2121569A (en) 1982-05-12 1983-12-21 Bally Mfg Corp System guaranteeing integrity of a gambling system
US4525599A (en) 1982-05-21 1985-06-25 General Computer Corporation Software protection methods and apparatus
US4462076A (en) * 1982-06-04 1984-07-24 Smith Engineering Video game cartridge recognition and security system
US4519077A (en) 1982-08-30 1985-05-21 Amin Pravin T Digital processing system with self-test capability
US4658093A (en) 1983-07-11 1987-04-14 Hellman Martin E Software distribution system
US4494114B1 (en) 1983-12-05 1996-10-15 Int Electronic Tech Security arrangement for and method of rendering microprocessor-controlled electronic equipment inoperative after occurrence of disabling event
US4494114A (en) 1983-12-05 1985-01-15 International Electronic Technology Corp. Security arrangement for and method of rendering microprocessor-controlled electronic equipment inoperative after occurrence of disabling event
US4582324A (en) 1984-01-04 1986-04-15 Bally Manufacturing Corporation Illusion of skill game machine for a gaming system
US4652998A (en) * 1984-01-04 1987-03-24 Bally Manufacturing Corporation Video gaming system with pool prize structures
US4837728A (en) 1984-01-25 1989-06-06 Igt Multiple progressive gaming system that freezes payouts at start of game
US4845715A (en) 1984-10-29 1989-07-04 Francisco Michael H Method for maintaining data processing system securing
US4607844A (en) 1984-12-13 1986-08-26 Ainsworth Nominees Pty. Ltd. Poker machine with improved security after power failure
US4911449A (en) 1985-01-02 1990-03-27 I G T Reel monitoring device for an amusement machine
US4865321A (en) 1985-10-04 1989-09-12 Nintendo Company Limited Memory cartridge and information processor unit using such cartridge
US4759064A (en) 1985-10-07 1988-07-19 Chaum David L Blind unanticipated signature systems
US4752068A (en) 1985-11-07 1988-06-21 Namco Ltd. Video game machine for business use
US4848744A (en) 1986-01-22 1989-07-18 Eduard Steininger Automated video system with alignment of the video tube
US4856787B1 (en) 1986-02-05 1997-09-23 Fortunet Inc Concurrent game network
US4856787A (en) 1986-02-05 1989-08-15 Yuri Itkis Concurrent game network
US5283734A (en) 1986-03-10 1994-02-01 Kohorn H Von System and method of communication with authenticated wagering participation
US4727544A (en) 1986-06-05 1988-02-23 Bally Manufacturing Corporation Memory integrity checking system for a gaming device
US5155680A (en) 1986-10-24 1992-10-13 Signal Security Technologies Billing system for computing software
US5146575A (en) 1986-11-05 1992-09-08 International Business Machines Corp. Implementing privilege on microprocessor systems for use in software asset protection
US4817140A (en) 1986-11-05 1989-03-28 International Business Machines Corp. Software protection system using a single-key cryptosystem, a hardware-based authorization system and a secure coprocessor
US5021772A (en) 1986-11-20 1991-06-04 King Stephen J Interactive real-time video processor with zoom pan and scroll capability
US5224160A (en) * 1987-02-23 1993-06-29 Siemens Nixdorf Informationssysteme Ag Process for securing and for checking the integrity of the secured programs
US4930073A (en) 1987-06-26 1990-05-29 International Business Machines Corporation Method to prevent use of incorrect program version in a computer system
US4944008A (en) 1988-02-18 1990-07-24 Motorola, Inc. Electronic keying scheme for locking data
US5109152A (en) 1988-07-13 1992-04-28 Matsushita Electric Industrial Co., Ltd. Communication apparatus
US5179517A (en) 1988-09-22 1993-01-12 Bally Manufacturing Corporation Game machine data transfer system utilizing portable data units
US4951149A (en) 1988-10-27 1990-08-21 Faroudja Y C Television system with variable aspect picture ratio
US5465364A (en) 1989-09-22 1995-11-07 International Business Machines, Inc. Method and system for providing device driver support which is independent of changeable characteristics of devices and operating systems
US5004232A (en) 1989-10-13 1991-04-02 Macronix, Inc. Computer game cartridge security circuit
US5297205A (en) 1989-10-24 1994-03-22 Adventure Portable electronic device to establish public loyalty to a medium or similar
US5155768A (en) 1990-03-16 1992-10-13 Sega Enterprises, Ltd. Security system for software
US5103081A (en) 1990-05-23 1992-04-07 Games Of Nevada Apparatus and method for reading data encoded on circular objects, such as gaming chips
US5050212A (en) 1990-06-20 1991-09-17 Apple Computer, Inc. Method and apparatus for verifying the integrity of a file stored separately from a computer
US5161193A (en) * 1990-06-29 1992-11-03 Digital Equipment Corporation Pipelined cryptography processor and method for its use in communication networks
US5288978A (en) 1990-10-05 1994-02-22 Kabushiki Kaisha Toshiba Mutual authentication system and method which checks the authenticity of a device before transmitting authentication data to the device
JPH06327831A (en) 1991-04-22 1994-11-29 L Ii Tec:Kk Microprocessor for game machine
US5291585A (en) 1991-07-29 1994-03-01 Dell Usa, L.P. Computer system having system feature extension software containing a self-describing feature table for accessing I/O devices according to machine-independent format
US5326104A (en) 1992-02-07 1994-07-05 Igt Secure automated electronic casino gaming system
US5259613A (en) 1992-04-08 1993-11-09 Rio Hotel Casino, Inc. Casino entertainment system
US5342047A (en) 1992-04-08 1994-08-30 Bally Gaming International, Inc. Touch screen video gaming machine
US5421006A (en) * 1992-05-07 1995-05-30 Compaq Computer Corp. Method and apparatus for assessing integrity of computer system software
US5489095A (en) 1992-07-01 1996-02-06 U.S. Philips Corporation Device for protecting the validity of time sensitive information
US5235642A (en) 1992-07-21 1993-08-10 Digital Equipment Corporation Access control subsystem and method for distributed computer system using locally cached authentication credentials
US5655965A (en) 1992-10-22 1997-08-12 Kabushiki Kaisha Ace Denken Screen display type slot machine with seemingly flowing condition of moving symbols
US5507489A (en) 1992-11-04 1996-04-16 Info Telecom Electronic game-of-chance device
US5586937A (en) 1993-05-19 1996-12-24 Menashe; Julian Interactive, computerised gaming system with remote terminals
JPH0731737A (en) 1993-05-20 1995-02-03 L Ii Tec:Kk Microcomputer chip for controlling game machine, and collating device for detecting its illegality
US5343527A (en) 1993-10-27 1994-08-30 International Business Machines Corporation Hybrid encryption method and system for protecting reusable software components
US6195587B1 (en) 1993-10-29 2001-02-27 Sophos Plc Validity checking
US5398932A (en) * 1993-12-21 1995-03-21 Video Lottery Technologies, Inc. Video lottery system with improved site controller and validation unit
US5668945A (en) 1994-02-28 1997-09-16 Sega Enterprises, Ltd. Data security apparatus and method
US5488702A (en) 1994-04-26 1996-01-30 Unisys Corporation Data block check sequence generation and validation in a file cache system
US5586766A (en) 1994-05-13 1996-12-24 Casinovations, Inc. Blackjack game system and methods
EP0685246A1 (en) 1994-06-01 1995-12-06 Sony Corporation Video game apparatus with external memory devices
US5644704A (en) 1994-11-30 1997-07-01 International Game Technology Method and apparatus for verifying the contents of a storage device
US5707286A (en) 1994-12-19 1998-01-13 Mikohn Gaming Corporation Universal gaming engine
US5742616A (en) 1995-01-23 1998-04-21 International Business Machines Corporation System and method testing computer memories
US5604801A (en) 1995-02-03 1997-02-18 International Business Machines Corporation Public key data communications system under control of a portable security device
US5725428A (en) 1995-03-09 1998-03-10 Atronic Casino Technology Distribution Gmbh Video slot machine
US5611730A (en) 1995-04-25 1997-03-18 Casino Data Systems Progressive gaming system tailored for use in multiple remote sites: apparatus and method
US5737418A (en) 1995-05-30 1998-04-07 International Game Technology Encryption of bill validation data
US6149522A (en) 1995-06-29 2000-11-21 Silicon Gaming - Nevada Method of authenticating game data sets in an electronic casino gaming system
US5643086A (en) 1995-06-29 1997-07-01 Silicon Gaming, Inc. Electronic casino gaming apparatus with improved play capacity, authentication and security
US20040002381A1 (en) 1995-06-29 2004-01-01 Igt Electronic gaming apparatus with authentication
US6620047B1 (en) 1995-06-29 2003-09-16 Igt Electronic gaming apparatus having authentication data sets
US5768382A (en) * 1995-11-22 1998-06-16 Walker Asset Management Limited Partnership Remote-auditing of computer generated outcomes and authenticated biling and access control system using cryptographic and other protocols
US5704835A (en) 1995-12-13 1998-01-06 Infinity Group, Inc. Electronic second spin slot machine
US5759102A (en) 1996-02-12 1998-06-02 International Game Technology Peripheral device download method and apparatus
US5934672A (en) 1996-02-20 1999-08-10 Digideal Corporation Slot machine and methods of operation
US6104815A (en) 1997-01-10 2000-08-15 Silicon Gaming, Inc. Method and apparatus using geographical position and universal time determination means to provide authenticated, secure, on-line communication between remote gaming locations
US6851607B2 (en) * 1997-04-11 2005-02-08 Gemplus Secured method for monitoring the transfer of value units in a chip card gambling system
US6071190A (en) 1997-05-21 2000-06-06 Casino Data Systems Gaming device security system: apparatus and method
US5991399A (en) * 1997-12-18 1999-11-23 Intel Corporation Method for securely distributing a conditional use private key to a trusted entity on a remote system
WO1999065579A1 (en) * 1998-06-17 1999-12-23 Aristocrat Technologies Australia Pty. Ltd. Software verification and authentication
WO2000033196A1 (en) * 1998-11-26 2000-06-08 Aristocrat Technologies Australia Pty Ltd Electronic casino gaming with authentication and improved security

Non-Patent Citations (14)

* Cited by examiner, † Cited by third party
Title
Answer and Counterclaims to Second Amended Complaint filed in connection with Civil Action No. CV-S-01-1498, pp. 1-26 and certificate of service page.
Bakhtiari, et al., "Cryptographic Hash Functions: A Survey," Centre for Computer Security Research, 1995, 3 introductory pages and pp. 1-26.
Bauspiess, et al., "Requirements For Cryptographic Hash Functions," Computers and Security, 5:427-437 (Sep. 11, 1992).
Complaint for patent infringement filed by Aristocrat Technologies, et al. dated Jan. 22, 2002, Civil Action No. CV-S-02-0091.
Court docket for Civil Action No. CV-S-02-0091 listing papers filed.
Davida, G. et al., "Defending Systems Against Viruses through Crytographic Authentication," Proceedings of the Symposium on Security and Privacy, IEEE Comp. Soc. Press, pp. 312-318 (May 1, 1989).
Defendants' Supplemental Response to Plaintiffs' First Set of Interrogatories filed in connection with Civil Action No. CV-S-01-1498, pp. 1-3, 50-68 and 85-86.
Document entitled "Fact Sheet on Digital Signature Standard" dated May 1994, 6 pages.
Federal Information Processing Standards (FIPS) Publication 180 entitled "Secure Hash Standard" dated May 11, 1993, title page, abstract page and pp. 1-20.
Federal Information Processing Standards (FIPS) Publication 180-1 entitled "Secure Hash Standard" dated Apr. 17, 1995, 2 title pages, abstract page and pp. 1-21.
Federal Information Processing Standards (FIPS) Publication 186 entitled "Digital Signature Standard (DSS)" dated May 19, 1994, 17 pages.
Hellmann, Martin E., "The Mathematics of Public-Key Cryptography," Scientific American, vol. 241, No. 8, Aug. 1979, pp. 146-152 and 154-157.
Rivest, et al., "A Method for Obtaining Digital Signatures and Public-Key Cryptosystems," Communications of the ACM, vol. 21, No. 2, Feb. 1978, pp. 120-126.
Translation of communication from the Japanese Patent Office with respect to JP 504453/97 dated Dec. 7, 2004.

Cited By (22)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8579705B1 (en) * 1998-06-17 2013-11-12 Eugene Thomas Bond Software verification and authentication
US8939834B2 (en) 1998-06-17 2015-01-27 Aristocrat Technologies Australia Pty Limited Software verification and authentication
US20040054952A1 (en) * 2002-09-13 2004-03-18 Morrow James W. Device verification system and method
US20050009599A1 (en) * 2003-07-09 2005-01-13 Ryan Chad A. Gaming machine having targeted run-time software authentication
US7491122B2 (en) 2003-07-09 2009-02-17 Wms Gaming Inc. Gaming machine having targeted run-time software authentication
US8038530B2 (en) 2005-02-28 2011-10-18 Wms Gaming Inc. Method and apparatus for filtering wagering game content
US20090220078A1 (en) * 2005-08-29 2009-09-03 Campbell Steven M On-the-fly encryption on a gaming machine
US8705739B2 (en) 2005-08-29 2014-04-22 Wms Gaming Inc. On-the-fly encryption on a gaming machine
US20090172227A1 (en) * 2007-12-27 2009-07-02 Igt Serial advanced technology attachment write protection: mass storage data protection device
US8140796B2 (en) 2007-12-27 2012-03-20 Igt Serial advanced technology attachment write protection: mass storage data protection device
US8423738B2 (en) 2007-12-27 2013-04-16 Igt Serial advanced technology attachment write protection: mass storage data protection device
US9424712B2 (en) 2008-06-27 2016-08-23 Bally Gaming, Inc. Authenticating components in wagering game systems
US20110212761A1 (en) * 2010-02-26 2011-09-01 Igt Gaming machine processor
US9811972B2 (en) 2013-12-31 2017-11-07 Video Gaming Technologies, Inc. System and method for authenticating storage media within an electronic gaming system
US10490022B2 (en) 2013-12-31 2019-11-26 Video Gaming Technologies, Inc. System and method for authenticating storage media within an electronic gaming system
US11495088B2 (en) 2013-12-31 2022-11-08 Video Gaming Technologies, Inc. System and method for authenticating storage media within an electronic gaming system
US11631298B2 (en) 2013-12-31 2023-04-18 Video Gaming Technologies, Inc. System and method for authenticating storage media within an electronic gaming system
US20190272705A1 (en) * 2018-03-01 2019-09-05 Ags Llc Gaming system having boot locked validation of program installs, data installs and program launches
US10713888B2 (en) * 2018-03-01 2020-07-14 Ags Llc Gaming system having boot locked validation of program installs, data installs and program launches
US11113401B2 (en) 2019-03-21 2021-09-07 Aristocrat Technologies Australia Pty Limited Secure bootloader for electronic gaming machines and other computing devices
US11120138B2 (en) 2019-03-21 2021-09-14 Aristocrat Technologies Australia Pty Limited Secure bootloader for electronic gaming machines and other computing devices
US11651078B2 (en) 2019-03-21 2023-05-16 Aristocrat Technologies Australia Pty Limited Secure bootloader for electronic gaming machines and other computing devices

Similar Documents

Publication Publication Date Title
USRE39370E1 (en) Electronic casino gaming system with improved play capacity, authentication and security
US6149522A (en) Method of authenticating game data sets in an electronic casino gaming system
US7783040B2 (en) Encryption in a secure computerized gaming system
AU2009206188B2 (en) Pass-through live validation device and method
US7203841B2 (en) Encryption in a secure computerized gaming system
US20030203755A1 (en) Encryption in a secure computerized gaming system
JP2005523668A (en) Authentication in an encrypted computerized game system
CA2450201C (en) Method and apparatus for securing gaming machine operating data
USRE39369E1 (en) Electronic casino gaming system with improved play capacity, authentication and security
EP1441464A1 (en) Electronic casino gaming system with authentication and security
AU2013205523A1 (en) Electronic casino gaming system with improved play capacity, authentication and security
AU2010201666B2 (en) Electronic casino gaming system with improved play capacity, authentication and security

Legal Events

Date Code Title Description
CC Certificate of correction
RR Request for reexamination filed

Effective date: 20071120

B1 Reexamination certificate first reexamination

Free format text: CLAIMS 1-15 WERE PREVIOUSLY CANCELLED. CLAIMS 16, 20, 33, 36, 41, 50, 53, 58, 67, 70 AND 75 ARE DETERMINED TO BE PATENTABLE AS AMENDED. CLAIMS 17-19, 21-32, 34, 35, 37-40, 42-49, 51, 52, 54-57, 59-66, 68, 69, 71-74 AND 76-83, DEPENDENT ON AN AMENDED CLAIM, ARE DETERMINED TO BE PATENTABLE. NEW CLAIMS 84-438 ARE ADDED AND DETERMINED TO BE PATENTABLE.

CC Certificate of correction
CC Certificate of correction