DE202016105474U1 - Device for tamper-proof registration of measured values - Google Patents

Abstract

Device for the tamper-evident registration of measured values of one or more physical and / or chemical quantities, for example temperature, pressure, pH or any other physical and / or chemical variable, the device comprising: (a) a housing having an input for the measured values, (b) an electronic or optical or magnetic data memory for storing digital measurement data in a data block of predetermined data format, the measurement data of the measurement data block corresponding to one or more of the measured values, (c) an electronic or optical or magnetic program memory, (d) a (e) an implemented in the program memory, executable on the processor hash program code (cryptographic hash function) for calculating a collision-resistant measurement data hash from the measurement data comprehensive data of the measurement data block, (f) one in the program memory-executable processor-executable key generator (asymmetric cryptography method) for generating a private device key encrypting the data-hash and a public device key, (g) program-executable program code executable in the program memory for attaching the encoded measurement data hash as a digital measurement data signature to the measurement data block and (h) an output for outputting or reading out the measurement data block with the attached measurement data signature.

Description

The invention relates to a device for tamper-evident registration of measured values of at least one physical or chemical, including biochemical, measured variable, for example temperature, pressure and pH, and a device for producing the device. The device stores the measurements measured in a method of physical and / or chemical, including biochemical, process technology as digital measurement data in an integrated data memory of the device. The measured data can be evaluated by an evaluation system, which is also an object of the invention. The invention aims to increase the security against unnoticed manipulation of the measurement data.

Registering devices, as the invention relates to them, for example, paperless recorders and control devices with registration module record and record measurement data of technical processes, d. H. Process data, for later detection, e.g. during regulatory controls or a surveillance audit. The decisive factor is that the recorded and recorded process data have the same unchanged content as at the time of recording in the subsequent evaluation.

It is therefore an object of the invention to improve a registering device of the type mentioned so that a manipulation of measured data of the device with increased reliability is detected.

The invention is based on a device for registering measured values of one or more physical and / or chemical measured variables, which comprise a housing with an input for the measured values, a data memory for storing digital measured data in a measured data block predetermined data format, a program memory, a comprising an electronic processor connected to the data memory and the program memory and an output for outputting and / or reading the measurement data. The measurement data of the measurement data block correspond to one or more of the measured values, i. H. the measurement data block can be designed such that it only takes up a single measured value or in the same block several measurement values representing measured values are recorded. The data memory may be an electronic or optical or magnetic memory. The same applies to the program memory.

The measured variable (s) is / are a temperature, a pressure or a pH or any other physical or (bio) chemical measured variable in question. The respective measured variable can be measured on a machine or a living being or in a process engineering process, preferably continuously over a period of time, for example only to monitor or control or regulate the machine operation or process engineering process.

The device can be set up to receive and register the measured values of only one measured variable from only one sensor. Instead, however, it can also be set up to obtain and register the measured values of only one measured quantity of a plurality of sensors arranged at different locations for this measured variable. In further variants, it can be set up to receive and register measured values of different measured variables from a plurality of sensors, at least one sensor per measured variable. The device may accordingly be a single-channel or multi-channel registration device. In particular, it can be designed as a compact recording device, in which all device functions are realized in or on a common housing. In principle, however, one function or several functions of the device can also be outsourced and the device can comprise a plurality of structures which are physically separated from one another, for example also arranged at different locations and communicate with each other via line or wireless.

The input may comprise one or more connections for the acquisition of digital measurement data, for example for a data transmission via Modbus, and / or one or more connections for analog measurement signals and / or one or more connections for binary measurement signals.

In the simplest embodiments, the device may be a registration device only for recording and outputting or reading the measured values. But it can also be, for example, a control or regulating device with registration module. It can have a display for displaying the recorded measured values, for example a screen for graphically displaying the measured values. A so-called paperless recorder is a preferred variant of the device.

According to the invention, a hash program code executable on the processor for calculating a collision-resistant measurement data hash from data of the measurement data block comprising the measurement data is implemented in the program memory. The hash program code implements a cryptographic hash function. In the program memory, a processor executable key generator for generating a private device key and a public device key is implemented to perform an asymmetric cryptography method. The private one Device key is provided to encrypt the measurement data hash. The program memory also implements a program code executable on the processor for attaching the encrypted measurement data hash to the measurement data block. The encrypted measurement data hash serves as a digital measurement data signature for the measurement data underlying the calculation of the measurement data hash.

The measured data provided with the digital signature are tamper-proof. "Tamper-proof" means that a change of the measured data recorded in the given data format is always detected.

The device may be configured to digitally sign the measurement data when stored in real time. Preferably, a data manager executable on the processor is implemented in the program memory, which serves to store the measurement data block immediately after filling with the measurement data, in real time, together with the digital signature for this measurement data block in the data memory, so that the measurement data is already tamper-proof in the data memory the registration device are stored. In principle, however, it would also be conceivable to calculate and encrypt the measured data hash only when the measured data are output or read out via the output.

• (i) aus dem Konfigurationsdatenblock und dem Vorrichtungs-Zertifikat sowie optional einem oder mehreren weiteren digitalen Zertifikaten (Ausgabe-Zertifikat) einen Metadatenblock zu bilden,
• (ii) aus den Daten des Metadatenblocks einen kollisionsresistenten Metadaten-Hash (kryptografische Hashfunktion) zu berechnen,
• (iii) den Metadaten-Hash mittels des privaten Vorrichtungs-Schlüssels zu verschlüsseln und den verschlüsselten Metadaten-Hash als digitale Metadaten-Signatur an den Metadatenblock anzuhängen, und
• (iv) den Metadatenblock mit der angehängten Metadaten-Signatur am Ausgang auszugeben.

In the data memory of the device, configuration data characterizing the device and the configuration of the device at the time of storing the measurement data may be stored in a configuration data block and further a digital device certificate containing the public device key. The device may then be arranged to perform the following steps:

• (i) from the configuration data block and the device certificate and optionally one or more further digital certificates (output certificate) to form a metadata block,
• (ii) calculate a collision-resistant metadata hash (cryptographic hash function) from the data of the metadata block,
• (iii) encrypting the metadata hash using the private device key and appending the encrypted metadata hash to the metadata block as a digital metadata signature, and
• (iv) output the metadata block with the attached metadata signature at the output.

• (a) eine Root-Maschine (Root-CA) mit einem elektronischen Prozessor und einem elektronischen oder optischen oder magnetischen Programmspeicher, in dem ein auf dem Prozessor lauffähiger Schlüssel-Generator (asymmetrisches Kryptografie-Verfahren) zur Erzeugung eines privaten Wurzel-Schlüssels, eines öffentlichen Wurzel-Schlüssels, eines privaten Ausgabe-Schlüssels und eines öffentlichen Ausgabe-Schlüssels implementiert ist,
• (b) wobei die Root-Maschine dazu eingerichtet ist, ein den öffentlichen Wurzel-Schlüssel enthaltendes digitales Wurzel-Zertifikat und ein den öffentlichen Ausgabe-Schlüssel enthaltendes digitales Ausgabe-Zertifikat jeweils mittels des privaten Wurzel-Schlüssels zu erzeugen,
• (c) und eine Ausgabe-Maschine (Issuing-CA) mit einem elektronischen oder optischen oder magnetischen Datenspeicher, in dem der private Ausgabe-Schlüssel, der öffentliche Ausgabe-Schlüssel und das Ausgabe-Zertifikat gespeichert sind,
• (d) wobei der zweite Computer dazu eingerichtet ist, das Vorrichtunge-Zertifikat mittels des privaten Ausgabe-Schlüssels zu erzeugen.

The invention also relates to a system for producing the recording device, namely for implementing the cryptological function. The system includes:

• (A) a root machine (root CA) with an electronic processor and an electronic or optical or magnetic program memory in which a run on the processor key generator (asymmetric cryptography method) for generating a private root key, a root public key, a private issue key, and a public issue key is implemented,
• (b) wherein the root machine is adapted to generate a public root key-containing digital root certificate and a public issue key-containing digital output certificate each by means of the private root key,
• (c) and an issuing machine (Issuing CA) with an electronic or optical or magnetic data storage in which the private issue key, the public issue key and the issue certificate are stored,
• (d) wherein the second computer is adapted to generate the device certificate by the private issue key.

The root certificate contains digital (binary) data, root data that identifies the root machine and represents the public root key, and a digital root signature. The root signature is a cryptological root hash, a collision-resistant hash computed from the root data that the root machine encrypted with the private root key. All certificates generated during manufacture are based on the root certificate.

The output certificate contains digital (binary) data, output data identifying the output engine and representing the public issue key, and a digital root signature. The output certificate's root signature is a cryptographic output hash, a collision-resistant hash computed from the output data that the root machine also encrypted with the private root key.

The device certificate includes digital (binary) data, device data identifying the registration device, the registration device configuration data, and the public device key, and a digital device signature. The configuration data may include, for example, the fabrication number of the device to identify the device. The device signature is a cryptographic metadata hash, namely a collision-resistant hash calculated from the data of the metadata block, which the output engine has encrypted with the private issue key.

As regards the asymmetric encryption key pairs, it should also be noted that the private key can be used to calculate the associated public key, whereas it is not possible to calculate the associated private key from the public key.

A data memory, for example the device or the system, may be a physically homogeneous memory structure or may comprise two or more separate memory structures between which data can be exchanged (reading, reading, writing, writing out). When referring to a "data store" and not distinguishing between data storage structures, this term designates the entire data store to which the respective physical or functional component, for example the registration device, the root machine and the output machine, has access. A program memory, for example the device or the system, may be a physically homogeneous memory structure or may comprise two or more separate memory structures. When referring to a "program memory" and not distinguishing between program memory structures, this term designates the entire program memory to which the respective physical or functional component, for example the registration device, the root machine and the output machine, has access.

The application of the digital signature is implemented in preferred embodiments in a manner that does not affect the function of the device when using the usual for equipment measuring and control hardware resources. Through a special, multi-level hierarchy of certificates and their application during the manufacture of the recording device, the origin of the later recorded data is clearly assignable.

Based on the metadata that identifies the device and describes the configuration of the device at the time of recording, the signature of the recorded measurement data can be checked. This test is carried out in an evaluation system with an evaluation software specialized in measuring and control equipment. The evaluation software can trace the used certificates back to the manufacturer's root certificate. This allows the evaluation software to make a qualified statement about the origin and authenticity of the measurement data.

The issuing of certificates for the device is carried out with the help of a special infrastructure of the manufacturer. The certificate request during the manufacturing process or subsequent creation in the field can be secured by a cryptographic fingerprint of the device. The certificate response with the certificate issued can then be encrypted so that it can only be used by the registration device that triggered the request.

The manipulation detection with digital certificate according to the invention combines the cryptological method of asymmetric encryption using digital certificates with the recording, preferably the real-time recording, of measurement data in devices of measurement and control technology. The implementation enables the secure and user-friendly use of digital certificates for data recording in measuring and control devices. The generation of a digital signature during the recording of measurement data in real time, in conjunction with a special hierarchy of certificates, enables the secure detection of any manipulation. It is prevented with great certainty that the measurement data can be manipulated unnoticed. This contributes in further developments that a certificate generated during the manufacturing process or subsequent creation in the field only on request of the respective registration device and the request is secured by a cryptographic fingerprint of the device for unique identification of the requesting individual registration device.

According to the invention, the digital signature is generated in each case by means of asymmetric encryption, for example according to the RSA signature method. A key consists of two parts, the secret private and the public key. Messages encrypted with the public key can only be decrypted with the private key. Since one-way mathematical functions are used for asymmetric encryption methods, it is not possible to calculate the private key from the public key. A signature is generated from a digital message, ie from a data record, by means of the private key, by calculating from the data record by means of the private key a value representing the digital signature. This value, d. H. the signature makes it possible to check the undeniable authorship and integrity of the record with the associated public key. Since the larger the key length used, the greater the security, the length of the respective key is preferably 1024 bits or more.

In order to reduce the computational complexity of encryption, a cryptological hash is calculated from the respective data record, in particular the measurement data record and the metadata record, and this crypto hash is computed with the private data Key of the device encrypted. The digital signature is thus an encrypted crypto-hash. The crypto hash is computed by means of a hash algorithm implemented in the device as a hash program code. A suitable hash algorithm is, for example, the SHA256 algorithm, which is also preferably used. The hash is formed via the user data (measurement data and / or metadata) and preferably header and / or foot data of the respective data block and encrypted with the device's private device key, for example an RSA key. The at least 16 bytes of the hash, such as the 32 bytes of the SHA256 hash, may be extended by a defined padding technique, such as 128 bytes, so that the extended hash is encrypted with the private device key, thereby generating the device signature.

In the production of devices according to the invention, methods for generating the private keys and exchanging the public keys of the asymmetric encryption method used are implemented. A hierarchical structure is used, which leads from a root key pair and a root certificate via an issue key pair and an issue certificate to the respective device key pair and device certificate.

The cryptographic functions and protocols, such as the hash algorithm (s) and encryption function (s), are implemented using a library. The library includes capabilities for generating and verifying digital signatures, such as the SHA-256 Hash and RSA 1024/2048 methods. The signature can be formatted according to PKCS 1 v2.1, for example. The certificates can be constructed according to the specifications of the X509 v3e, just to give an example.

The root CA software (root CA) is preferably run on the root machine without connection to another machine, such as a manufacturing plant network or the Internet. The root CA, d. H. the software of the root machine generates the private root key for the root certificate and the private issue key for the output certificate.

In preferred embodiments, these private keys are stored with a password protected on the root machine. The root certificate is preferably operated according to the 4-eye principle. Only with the knowledge of two different people can an issue certificate be created. The 4-eyes principle is realized by dividing the password for the root key file. After creating the issue key, the root certificate and the issue certificate are saved on two different storage media, each allowing only reading of the stored data, that is read-only memories, for example CD-ROMs. The issue certificate, including the private issue key, is also backed up on a portable root-external storage medium such as CD-ROM. This storage medium is used for distribution to the output machine. The root machine is then preferably taken out of service again.

The operating system of the root machine may be set up so that it can only be booted from an external read-only-memory boot medium, such as a read-only memory stick. On the boot medium expediently no data is backed up. All data to be backed up in such embodiments must be backed up before the operating system is terminated on a storage medium external to the root machine, for example on CD-ROM.

The output engine is the issuer of the device certificates. As mentioned, the output certificates are issued by the root machine and have a validity period that is shorter than the validity period of the root certificate. When expired, the root machine creates a new output certificate.

To generate the device certificate, the output machine receives as input data a certificate request file from the respective compact device and uses this to generate a certificate response file, which is transmitted to the requesting compact device. The certificate response file stores the output certificate and the device certificate.

In order to increase the protection of the issue engine from potential attacks, the issue engine may be configured so that the data exchange with the requesting registration device is only through a directory shared on a file server of the manufacturing facility. If a valid certificate request is detected in the shared path for certificate request files, it will be processed. After creating a certificate response file by the output engine, the certificate request file is deleted. If an error occurs while creating the certificate response file, a certificate error file is generated and stored instead of the certificate response file.

The private key of the output certificate may be stored in encrypted form in the output engine. Preferably, an encryption is selected which allows the reading / decrypting of the private key only on the output Machine allowed. To monitor the issued device certificates, a log file can be created.

The certificate request of the registration device is a selfsigned certificate. It contains the public device key and is encrypted with the private device key.

In the certificate response of the issuing machine, the issuing certificate and the device certificate are stored in a file in succession. This makes it possible for the evaluation software of the evaluation system to return the device certificate to a trusted root certificate. So that the certificate response can not be tampered with, it is encrypted with the public device key from the certificate request.

The evaluation software checks the signatures and the trustworthiness of the device certificate. The device certificate is read out together with the registration configuration of the recording device. The evaluation software stores the trusted root certificates, test root certificates and blocked certificates. The certificates stored in the evaluation software are secured by encryption against manipulation or replacement.

The evaluation software reads out the registration configuration (metadata) of the registration device as a data block. Based on the device certificate contained in the metadata, the signature of the metadata block or, in the case of a configuration change, several metadata blocks and the signature of the respective measurement data block are verified. The trustworthiness of the device certificate is ensured by the return via the issue certificate to a trusted root certificate stored in the evaluation system. The output certificate is stored together with the device certificate in the registration configuration.

The data storage of the recording device comprises a sequence or consists of a sequence of data blocks which are packed in start sequences and end sequences of data. The start sequences and end sequences contain assignment data by means of which the measurement data of the respective measurement data block are uniquely assigned to a metadata block. Within the measurement data blocks are the measurement data sets whose length can be variable.

In each case a hash is formed via the data present in the respective measurement data block and the respective metadata block. This hash is signed in the registration device and the signature is stored at the end of the respective data block just after the end sequence control character.

In embodiments in which the device receives the measured values in the form of analog or digital measurement signals, new measurement data are cyclically formed in the device from the incoming measurement signals, for example every 125 ms, and these are stored in the data memory in a measurement data block. As soon as a measurement data block is filled, this measurement data block is signed. The signature is thus generated in real time and connected to the associated measurement data block by attaching.

An embodiment of the invention will be explained below with reference to figures and in particular by the figures themselves. The features disclosed in the exemplary embodiment advantageously each individually and in each combination of features form the subject matter of the claims and also the embodiments described above. Show it:

1 the generation of a key pair according to an asymmetric encryption method,

2 checking the integrity of a digital message,

3 the issuing of a digital certificate,

4 a device for producing a recording device with cryptological function,

5 the generation of configuration data of the recording device,

6 a signed metadata block,

7 a signed measurement data block,

8th the verification of the metadata block by the evaluation system, and

9 the assignment of measured data to metadata of the recording device.

In 1 For example, the generation of a key pair is represented by an asymmetric encryption method, such as the RSA method. A random generator implemented as a program code generates the private key of the key pair and calculates the associated public key. The example deals with the keys V of a cryptologic functionality registration device. The random number generator is implemented in a program memory of the recording device.

In 2 is the digital signing of a digital message, namely measurement data or metadata of the recording device, and their checking for integrity by means of an evaluation system. In the program memory of the registration device, a hash program code is implemented which calculates a collision-resistant hash from the respective message during operation of the registration device. In the program memory of the register further program code is implemented to encrypt the hash by means of the private device key V and thereby generate a digital device signature, namely a measurement data signature or metadata signature. The signature is the encrypted hash.

The evaluation system, to which the message with the attached digital signature is transmitted, has the public device key V of the same registration device. To check the integrity of the received message, the evaluation system decrypts the digital signature of the registration device by means of the public device key, so that the hash previously calculated by the registration device is decrypted again. In a program memory of the evaluation system, the same hash function as that of the registration device is implemented in the form of a hash program code. The evaluation system also computes the hash for the verification from the data of the digital message not encrypted by the registration device and compares this calculated hash with the hash of the registration device decrypted using the public device key.

If the two hash match, it can be concluded with high certainty that the data of the message were not manipulated, but coincide with the original recorded data, the measurement data or metadata of the recording device.

3 shows the creation of a digital certificate using the example of the device certificate, which is indicated by the public key V of the recording device. The public device key V is part of the certificate, which also contains identification data uniquely identifying the registration device for which the certificate was issued. From the label data and the device key V, a cryptological hash is computed, which is encrypted with the private key A of the output engine and signed in this way. The signature of the exhibitor, in 3 the output machine, is thus the encrypted hash. The hash function used to create the certificate can be the same hash function as the hash function applied to the metrics or metadata, ie the same program code can be used. The hash may be used by the registrar or the output engine if the hash program code is also implemented on the output engine. The digital certificate represents an authentication of the public key contained in the certificate, in the example of the public device key V.

4 shows a plant for the production of recording devices, more precisely, for implementing the cryptological function of the respective recording device.

The certificates are managed in a hierarchical architecture. The starting point is the root machine, which creates the selfsigned root certificate with the public root key and signs it with the private root key W. The root keys W may be, for example, RSA 2048 bit keys. The root machine also creates an output certificate containing the public issue key A and signs it with the private root key W. The issue keys A, private and public, can be, for example, RSA 2048 bit keys.

For safety reasons, the root machine is only operated offline.

The output engine issues certificate responses on selfsigned certificate requests. Whether it is an authentic certificate request generated by the registration device is checked on the basis of a fingerprint stored in a Surname field of the certificate request of the device which issues the certificate request. In the certificate response of the output engine, the output certificate is returned along with the device certificate. In order for the certificate response to be used only by the requesting registrar, the response file is encrypted with the requesting device's public device key. For security reasons, the data exchange with the output machine is done only via file sharing accesses to the request / response files.

The registration device contains a hash algorithm in the form of a program code which generates a key pair V according to an asymmetric encryption method, for example an RSA1024 key pair. The generated key pair generates the selfsigned certificate request required by the issuing machine to create a device certificate. The certificate response file received from the output engine also contains the issue certificate in addition to the device certificate.

The interaction of the system components, namely the root machine, the output machine and the respective registration device, has already been explained, so that reference is also made to these explanations and the explanations within the figure itself.

5 shows how configuration data identifying the respective registration device and its configuration are generated.

The parameters of the configuration can influence the behavior of the various function blocks of the registration device. From the configuration of the device, a subset of parameters is generated which are relevant for the registration of the measurement data, and stored as configuration data for the cyclically registered measurement data in the data memory of the device. A configuration is characterized by a unique configuration identifier, which is stored with the registration identifier in the data memory of the device.

The registration identifier is formed from the serial number of the device and a version identifier. The version identifier consists of a continuous counter, which is incremented at each software update of the device. On the basis of the serial number, the individual device can be clearly identified.

The time stamp of the registered measurement data is received by the function block "Registration" from a battery-backed clock module.

The "Registration" function block provides functions for registering the optionally different types of measurement data. The data is stored in the specified format in the data memory of the device.

If the device has one or more inputs for analog measurement signals and / or one or more inputs for diditale measurement signals, math / logic functions or alarm functions of the device are formed from the analog and / or digital signals. Each analog signal has a unique scaling, which is taken into account in the representation of the measured value on an optional screen of the device and / or the evaluation system.

Digital signals can be processed to counter values and analog signals to integrator values. The counter / integrator values are always stored in the data memory for a time range (start / end time).

The report function forms the min / max / mean value of a signal over the grouped signals over a defined time range. The values are stored in the data memory with the time range (start / end time).

The event function generates messages for various alarm functions and system events such as "New configuration". Based on additional attributes stored per event in the data store, an event can be uniquely assigned to an event type, a group and a batch. The attributes are used by the evaluation system for a filter function of the events.

The Audit Trail stores all events that are relevant to data that needs to be verified to health authorities, such as the FDA. The implementation complies with national regulations.

The data of a batch consists of the start and stop time and several data fields defined by the configuration, which are entered during a running batch or automatically generated.

The registration device has personal access protection to the software functions. For example, the implementation may comply with the provisions of 21 CFR Part 11 of the US GMP laws. It can be signed on the device and signed off for a completed batch. In the evaluation system, signatures for selected time periods and batches can be made during the evaluation. The signing user will be recognized and authorized by the user management established by the manufacturer based on his user ID and password. The data of an electronic signature, like the measurement data of the device, are stored in blocks and protected against manipulation. When evaluating the signature data, it is possible to reconstruct how the user was authenticated on the basis of the stored "identifier of the user list".

In the internal file system of the recording device, the data generated by the registration function are stored in the specified data format. The file system comprises in particular the data memory of the registration device.

Access to the registered data or other device functions is via a communication interface of the device. The services ensure access protection and correct access to the data of the recording device. For example, they prevent more than one user from simultaneously reading the data.

The computer program PCC is implemented in the evaluation system and contains functions to retrieve the registered measurement data from the device via various interfaces and to transfer these to the evaluation system for storage in an archive file. PCC enables operation in the background or as a service of an operating system of the evaluation system. Functions for monitoring the correct execution of PCC and automatic output according to the specifications of an output template are available.

The evaluation software implemented in the evaluation system displays the data of the registration device in the evaluation system. The reading of the data of the recording device from external storage media, such as a USB stick and / or a CF card is possible. It is ensured that only the data with the same registration ID is stored in an archive file of the evaluation system.

In the archive file, the data registered by the registration device is stored in a block-oriented manner in the same format as in the device. For the management of the data blocks, a database engine included in the evaluation software is used. This avoids dependencies on other database products optionally installed on the evaluation system.

The measurement data are stored on the external file system. On the basis of the metadata contained, the evaluation system can ensure the correct assignment of the data to already stored archive files when reading in the data.

6 shows the structure of a metadata block with attached digital metadata signature. The metadata block contains the basis of the 5 explained configuration data and the issuing certificate and the device certificate of the respective recording device. The configuration data, the issue certificate and the device certificate form the metadata of the respective registration device in the current configuration at the time the metadata was created. The registry calculates a collision-resistant hash from the metadata, for example, according to the RSA method, and encrypts this metadata hash with its private device key V. The encrypted metadata hash is appended to the metadata block as a digital metadata signature. The metadata block with the digital metadata signature thus generated can be sent via a line or wirelessly to the evaluation system or stored in a portable, external storage medium and transmitted via this to the evaluation system.

7 shows the structure of a measurement data block with digital measurement data signature. The measurement data block contains the recorded measurement data and assignment data in the form of header and footer data. The recording device calculates a collision-resistant hash from the data of the measurement data block, for example by means of the RSA method, and encrypts this measurement data hash with its private device key V. The thus encrypted measurement data hash is the digital measurement data signature of the respective measurement data block. For the transmission of the measurement data blocks with attached digital measurement data signature to the evaluation system, what has been said about the metadata block applies in the same way.

For example, to sign the measurement data, an SHA256 hash can be generated using header, user and footer data and encrypted using the private RSA key 1024 device key.

8th shows the verification of the integrity of the configuration data by the evaluation software of the evaluation system. Since the metadata block of the recording device comprises the device certificate and the output certificate of the relevant registration device beyond the configuration data, it is possible for the evaluation system or its evaluation software to return the device certificate to the root certificate. This is done by decoding the digital signature of the output certificate by means of the public root key W stored in the evaluation system.

9 shows the verification of the integrity of the measured data by the evaluation software of the evaluation system. The assignment data contained in the measurement data block enable the unique assignment of the measurement data to the configuration data of the registration device that is current at the time of measurement and registration.

• • der Zeitpunkt der Erstellung der Konfiguration der Vorrichtung liegt im gültigen Zeitbereich des Vorrichtungs-Zertifikats,
• • die Fabrikationsnummer im Vorrichtungs-Zertifikat stimmt mit der Fabrikationsnummer in der Registrierkennung der Metadaten überein, und
• • das Vorrichtungs-Zertifikat kann auf ein gültiges Wurzel-Zertifikat zurückgeführt werden.

Before evaluating the measurement data, the device certificate is checked as follows:

• The time of creation of the configuration of the device is in the valid time range of the device certificate,
• • The serial number in the device certificate is the same as the serial number in the metadata registration ID, and
• • The device certificate can be traced back to a valid root certificate.

• • Gültig
• • Test
• • Gesperrt

The root certificates are stored in the evaluation system and divided into the following categories:

• • Valid
• • test
• • Blocked

For example, to sign the metadata, an SHA256 hash may be formed via header data, configuration data, issue certificate, device certificate and footer data, and encrypted with the private RSA key 1024 device key.

Claims (27)

Device for the tamper-proof registration of measured values of one or more physical and / or chemical variables, for example temperature, pressure, pH or any other physical and / or chemical quantity, the device comprising: (a) a housing with an input for the measured values, (b) an electronic or optical or magnetic data memory for storing digital measurement data in a data format specified in a measurement data block, the measurement data of the measurement data block corresponding to one or more of the measured values, (c) an electronic or optical or magnetic program memory, (d) an electronic processor connected to the data memory and the program memory, (e) an implemented in the program memory, executable on the processor hash program code (cryptographic hash function) for calculating a collision-resistant measurement data hash from the measurement data comprehensive data of the measurement data block, (f) an on-processor executable key generator (asymmetric cryptography method) implemented in the program memory for generating a private device key encrypting the data hash and a public device key, (G) implemented in the program memory, executable on the processor program code for attaching the encrypted measurement data hash as a digital measurement data signature to the measurement data block and (h) an output for outputting or reading the measurement data block with the attached measurement data signature. The device of claim 1, wherein configuration data characterizing the device and the configuration of the device at the time of storing the measurement data are stored in a configuration data block and a device certificate containing digital device certificate in the data memory and the device is adapted to: to do the following: (i) from the configuration data block and the device certificate and optionally one or more further digital certificates (output certificate) to form a metadata block, (ii) calculate a collision-resistant metadata hash (cryptographic hash function) from the data of the metadata block, (iii) encrypting the metadata hash using the private device key and appending the encrypted metadata hash to the metadata block as a digital metadata signature, and (iv) output the metadata block with the attached metadata signature at the output. Apparatus according to the preceding claim, wherein the hash program code (cryptographic hash function) for calculating the collision-resistant measurement data hash is also provided for the calculation of the metadata hash. Device according to one of the two immediately preceding claims, wherein the measurement data block contains assignment data that refer to the configuration block, so that the measurement data block is associated with only one configuration block. Device according to one of the preceding claims, wherein the device for a continuous input of the measured values, a cyclically continuous storage of the measured data and the generation and attachment of the measured data signature is set up in real time, so that the respective measured data block with the associated measured data signature in Real-time stored in the data memory. Device according to one of the preceding claims, wherein the output of a connection for a portable external storage medium (eg USB memory stick, flash memory card, CD-ROM) for digital data and / or a connection for a wired data transmission and / or a transmitter for wireless Data transmission includes. Device according to the preceding claim, comprising a connectable to the output portable external storage medium (eg USB flash drive, flash memory card, CD-ROM), on which the measurement data block with the attached measurement data signature and the metadata block with the attached metadata signature stored are. Apparatus according to any one of the preceding claims in combination with claim 2, wherein the apparatus is adapted to request the apparatus certificate. Device according to one of the preceding claims, wherein the input comprises a connection for digital data, via which the measured values can be read in and / or written in as digital measuring signals or directly as the measured data. Device according to one of the preceding claims, wherein the input comprises a terminal for analog measuring signals, via which the measured values can be received as analog measuring signals. Device according to one of the preceding claims, wherein the output is arranged on the housing and / or the processor, the data memory and the program memory are arranged in the housing. Device according to one of the preceding claims, wherein the device is a controller with registration module for the measurement data. Device according to one of the preceding claims, wherein the device is a paperless recorder with a screen for graphically displaying the measured values, wherein the screen is arranged on the same housing or a further housing of the device. Plant for manufacturing the device according to one of the preceding claims in combination with claim 2, comprising: (A) a root machine (root CA) with an electronic processor and an electronic or optical or magnetic program memory in which a run on the processor key generator (asymmetric cryptography method) for generating a private root key, a root public key, a private issue key, and a public issue key is implemented, (b) wherein the root machine is adapted to generate a public root key-containing digital root certificate and a public issue key-containing digital output certificate each by means of the private root key, (c) and an issuing machine (Issuing CA) with an electronic or optical or magnetic data storage in which the private issue key, the public issue key and the issue certificate are stored, (d) wherein the second computer is adapted to generate the device certificate using the private issue key. Plant according to the preceding claim, comprising: (e) an electronic or optical or magnetic data store in which the root machine uniquely identifies root machine data, (f) implementing a hash program code (cryptographic hash function) executable on the processor of the root machine for computing a collision-resistant root hash of the root machine data and the public root key Dates, (g) a program code (asymmetric cryptography method) implemented in the program memory of the root machine and executable on the processor of the root machine for encrypting the root hash by means of the private root key, (h) a program implemented in the program memory of the root machine, run on the processor of the root machine program code for generating a root certificate containing the root machine data, the public root key and the encrypted root hash as a digital root Signature includes, and (i) an output for outputting the keys and certificates generated by the root machine. An installation according to the preceding claim, wherein the apparatus is adapted to request the apparatus certificate and the issuing machine is adapted to issue the issuing certificate and the apparatus certificate thereto upon the request of the apparatus. Installation according to one of the two immediately preceding claims, wherein the root machine is operated separately from the output machine offline and the output key and the output certificate only by means of an external, portable, digital storage medium (eg USB flash drive, Flash Memory card, CD-ROM) can be output to the output machine. Plant according to the preceding claim, wherein the external storage medium is a read-only memory. Installation according to one of the five immediately preceding claims, wherein the root machine is realized under a first operating system and the output machine under a second operating system separate from the first operating system on the same computer. An apparatus according to any one of claims 14 to 18, wherein the root machine is implemented on a root computer and the output engine on an output computer physically separate from the root computer. Evaluation system for tamper-proof evaluation of the measurement data and metadata of the device produced by the system according to one of Claims 14 to 20, the evaluation system comprising: (a) an input for the signed measurement data and the signed metadata of the device, (B) an electronic or optical or magnetic evaluation data memory in which the public root key, the public issue key, the public device key and the root certificate are stored, (c) an electronic or optical or magnetic evaluation program memory , (d) an electronic evaluation processor (e1) connected to the evaluation data memory and the evaluation program memory and the hash program code (cryptographic hash function) executable in the evaluation program memory and executable on the evaluation processor for calculating the collision-resistant measurement data Hash from the measurement data of the measurement data block, and (e2) optionally another in the evaluation program memory implemented on the evaluation processor executable hash program code (cryptographic hash function) to calculate the metadata hash from the data of the metadata block, (f) where the evaluation system is set up (f1) the metadata Decrypt the signature by means of the public device key, (f2) check the authenticity of the issuing certificate by means of the public root key and the authenticity of the device certificate by means of the public issue key, (f3) the measurement data signature decrypt the public device key and thereby obtain the decrypted measurement data hash, (f4) from the obtained measurement data to calculate a measurement data hash by means of the hash program code (cryptographic hash function) for calculating the collision-resistant measurement data hash (f5) and Check the integrity of the measurement data by comparing the measured data hash calculated after (f4) with the measurement data hash decrypted according to (f3). System for detecting manipulations of measured data, the system comprising one or more devices according to one of Claims 1 to 13, an installation according to one of Claims 14 to 20 and an evaluation system according to the preceding claim. Storage medium on which digital measurement data of at least one physical and / or chemical measured variable, for example temperature, pressure, pH, stored in a measurement data block together with a determined from the data of the measurement data block cryptographic measurement data hash, which is encrypted by an asymmetric encryption method stored are. Storage medium according to the preceding claim, wherein on the storage medium configuration data, which characterize a device which has registered the measurement data and written to the storage medium, and the configuration of the device at the time of registration of the measurement data, are stored in a configuration data block on the storage medium. The storage medium according to the preceding claim, wherein the data of the measurement data block contain assignment data which associate the measurement data of the measurement data block with the configuration data. The storage medium according to one of the two immediately preceding claims, wherein a digital certificate of the device is stored on the storage medium, wherein the digital certificate contains a public key of the device and the encrypted measurement data hash with the public key can be decrypted. Storage medium according to one of the four immediately preceding claims, wherein the storage medium is part of a device for registering measured values of the at least one physical or chemical measured variable or a portable electronic or optical or magnetic storage medium for digital data.

Images