EP0762337A3 - Method and device for enhancing manipulation-proof of critical data - Google Patents

Method and device for enhancing manipulation-proof of critical data Download PDF

Info

Publication number
EP0762337A3
EP0762337A3 EP96250191A EP96250191A EP0762337A3 EP 0762337 A3 EP0762337 A3 EP 0762337A3 EP 96250191 A EP96250191 A EP 96250191A EP 96250191 A EP96250191 A EP 96250191A EP 0762337 A3 EP0762337 A3 EP 0762337A3
Authority
EP
European Patent Office
Prior art keywords
code word
codewortes
des
mac
oder
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP96250191A
Other languages
German (de)
French (fr)
Other versions
EP0762337A2 (en
Inventor
Ralf Kubatzki
Wolfgang Dr. Thiel
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Francotyp Postalia GmbH
Original Assignee
Francotyp Postalia GmbH
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Priority claimed from DE1995134529 external-priority patent/DE19534529C2/en
Priority claimed from DE1995134527 external-priority patent/DE19534527C2/en
Application filed by Francotyp Postalia GmbH filed Critical Francotyp Postalia GmbH
Publication of EP0762337A2 publication Critical patent/EP0762337A2/en
Publication of EP0762337A3 publication Critical patent/EP0762337A3/en
Withdrawn legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00185Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
    • G07B17/00362Calculation or computing within apparatus, e.g. calculation of postage value
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00185Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
    • G07B17/00362Calculation or computing within apparatus, e.g. calculation of postage value
    • G07B2017/00395Memory organization
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00185Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
    • G07B17/00362Calculation or computing within apparatus, e.g. calculation of postage value
    • G07B2017/00395Memory organization
    • G07B2017/00403Memory zones protected from unauthorized reading or writing
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00185Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
    • G07B17/00362Calculation or computing within apparatus, e.g. calculation of postage value
    • G07B2017/00395Memory organization
    • G07B2017/00411Redundant storage, e.g. back-up of registers
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B17/00Franking apparatus
    • G07B17/00185Details internally of apparatus in a franking system, e.g. franking machine at customer or apparatus at post office
    • G07B17/00362Calculation or computing within apparatus, e.g. calculation of postage value
    • G07B2017/00427Special accounting procedures, e.g. storing special information

Landscapes

  • Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Mathematical Physics (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Devices For Checking Fares Or Tickets At Control Points (AREA)
  • Techniques For Improving Reliability Of Storages (AREA)

Abstract

Ein Verfahren zur Erhöhung der Manipulationssicherheit von kritischen Registerdaten umfaßt die Schritte:

  • Laden eines Codewortes, eines Zeigers oder MAC's, welcher einem Codewortes zugeordnet ist, in einen ersten nichtflüchtigen Speicher (20 bzw. 25), der gegen Herausnahme und Manipulation abgesichert ist,
  • Laden eines Codewortes oder eines mittels des Codewortes gebildeten MAC's in zweite die Postregisterdaten enthaltende zu schützende nichtflüchtige Speicher (NVM 5a, 5b), wobei das Codewort dem letzten Betriebszustand der Frankiermaschine zugeordnet ist,
  • Gültigkeitsprüfung des Codewortes oder des mittels des Codewortes gebildeten MAC's mindestens zum Zeitpunkt des Einschaltens der Frankiermaschine und nachfolgend mindestens aufgrund einer Pseudozufallsfolge in Abständen,
  • Ersetzen des alten Codewortes durch ein vorbestimmtes neues Codewort, wenn der Prozessor, nach Gültigkeitsprüfung die Gültigkeit des alten Codewortes oder oder die Gültigkeit des mittels des Codewortes gebildeten MAC's anerkennt oder
  • Blockierung der Frankiermaschine nach dem Zeitpunkt des Einschaltens der Frankiermaschine, wenn der Prozessor nach Gültigkeitsprüfung die Gültigkeit des alten Codewortes oder die Gültigkeit des mittels des Codewortes gebildeten MAC's aberkennt.
Figure 00000001
A method for increasing the security against manipulation of critical register data comprises the steps:
  • Loading a code word, a pointer or MAC's which is assigned to a code word in a first non-volatile memory (20 or 25) which is secured against removal and manipulation,
  • Loading a code word or a code word by means of the MAC formed 's in the second postal register containing data to be protected non-volatile memory (NVM 5a, 5b), wherein the code word is assigned to the last operating state of the franking machine,
  • Validation of the code word or the MAC formed by means of the code word 's at least at the time of switching on the franking machine and subsequently at least due to a pseudo-random sequence at intervals
  • Replacing the old code word with a predetermined new code word, if the processor, after validating the validity of the old code word or or the validity of the MAC 's formed by means of the code word recognized or
  • Blocking of the franking machine after the time of switching on the franking machine, if the processor after validating the validity of the old code word or the validity of the MAC formed by means of the code word 's but knows.
Figure 00000001
EP96250191A 1995-09-08 1996-09-06 Method and device for enhancing manipulation-proof of critical data Withdrawn EP0762337A3 (en)

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
DE19534527 1995-09-08
DE19534529 1995-09-08
DE1995134529 DE19534529C2 (en) 1995-09-08 1995-09-08 Process for increasing the security against manipulation of critical data
DE1995134527 DE19534527C2 (en) 1995-09-08 1995-09-08 Process for increasing the security against manipulation of critical data

Publications (2)

Publication Number Publication Date
EP0762337A2 EP0762337A2 (en) 1997-03-12
EP0762337A3 true EP0762337A3 (en) 2000-01-19

Family

ID=26018690

Family Applications (1)

Application Number Title Priority Date Filing Date
EP96250191A Withdrawn EP0762337A3 (en) 1995-09-08 1996-09-06 Method and device for enhancing manipulation-proof of critical data

Country Status (2)

Country Link
US (1) US5771348A (en)
EP (1) EP0762337A3 (en)

Families Citing this family (48)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1998024021A1 (en) * 1996-11-29 1998-06-04 Hitachi, Ltd. Microcomputer control system
US5954817A (en) * 1996-12-31 1999-09-21 Motorola, Inc. Apparatus and method for securing electronic information in a wireless communication device
DE19810730A1 (en) * 1998-03-12 1999-09-16 Philips Patentverwaltung Microcontroller circuit, esp. for identification systems such as cash cards, locking systems etc.
US7028014B1 (en) * 1998-03-18 2006-04-11 Ascom Hasler Mailing Systems Tamper resistant postal security device with long battery life
FR2786286B1 (en) * 1998-11-24 2001-08-31 Secap DEVICE AND METHOD FOR DETECTING STACK OVERFLOW IN A MEMORY AND POSTAGE MACHINE USING THE SAME
FR2786285B1 (en) * 1998-11-24 2001-02-02 Secap DEVICE AND METHOD FOR PROTECTING AGAINST BATTERY OVERFLOWS IN A MEMORY AND FRANKING MACHINE IMPLEMENTING THEM
FR2787899A1 (en) * 1998-12-29 2000-06-30 Secap DEVICE AND METHOD FOR PROTECTING SENSITIVE DATA AND POSTAGE MACHINE USING THE SAME
DE19958948B4 (en) 1999-11-26 2005-06-02 Francotyp-Postalia Ag & Co. Kg A method of determining the number of prints to be run with an ink residue and apparatus for performing the method
DE19958941B4 (en) 1999-11-26 2006-11-09 Francotyp-Postalia Gmbh Method for protecting a device from being operated with improper consumables
US6862683B1 (en) 2000-03-24 2005-03-01 Novell, Inc. Method and system for protecting native libraries
US20040073617A1 (en) 2000-06-19 2004-04-15 Milliken Walter Clark Hash-based systems and methods for detecting and preventing transmission of unwanted e-mail
DE10136608B4 (en) 2001-07-16 2005-12-08 Francotyp-Postalia Ag & Co. Kg Method and system for real-time recording with security module
US20060015942A1 (en) 2002-03-08 2006-01-19 Ciphertrust, Inc. Systems and methods for classification of messaging entities
US7870203B2 (en) 2002-03-08 2011-01-11 Mcafee, Inc. Methods and systems for exposing messaging reputation to an end user
US6941467B2 (en) 2002-03-08 2005-09-06 Ciphertrust, Inc. Systems and methods for adaptive message interrogation through multiple queues
US7694128B2 (en) 2002-03-08 2010-04-06 Mcafee, Inc. Systems and methods for secure communication delivery
US7458098B2 (en) 2002-03-08 2008-11-25 Secure Computing Corporation Systems and methods for enhancing electronic communication security
US8561167B2 (en) 2002-03-08 2013-10-15 Mcafee, Inc. Web reputation scoring
US7124438B2 (en) 2002-03-08 2006-10-17 Ciphertrust, Inc. Systems and methods for anomaly detection in patterns of monitored communications
US20030172291A1 (en) 2002-03-08 2003-09-11 Paul Judge Systems and methods for automated whitelisting in monitored communications
US8578480B2 (en) 2002-03-08 2013-11-05 Mcafee, Inc. Systems and methods for identifying potentially malicious messages
US7693947B2 (en) 2002-03-08 2010-04-06 Mcafee, Inc. Systems and methods for graphically displaying messaging traffic
US7903549B2 (en) 2002-03-08 2011-03-08 Secure Computing Corporation Content-based policy compliance systems and methods
US8132250B2 (en) 2002-03-08 2012-03-06 Mcafee, Inc. Message profiling systems and methods
US7302020B2 (en) * 2002-05-20 2007-11-27 Hewlett-Packard Development Company, L.P. Encoded multi-access bus system and method
US20040112950A1 (en) * 2002-12-12 2004-06-17 Manduley Flavio M. Secure stamp system
DE20318751U1 (en) * 2003-12-04 2004-02-26 Francotyp-Postalia Ag & Co. Kg Device for automatically determining a product description for display by means of a mail processing device
US8635690B2 (en) 2004-11-05 2014-01-21 Mcafee, Inc. Reputation based message processing
CN100505796C (en) * 2004-11-24 2009-06-24 中兴通讯股份有限公司 Time displaying method for cell phone
US7890721B2 (en) * 2005-02-16 2011-02-15 Atmel Corporation Implementation of integrated status of a protection register word in a protection register array
US7937480B2 (en) 2005-06-02 2011-05-03 Mcafee, Inc. Aggregation of reputation data
TWI303038B (en) * 2005-11-15 2008-11-11 Asustek Comp Inc Computer dada security method, system
US20070150754A1 (en) * 2005-12-22 2007-06-28 Pauly Steven J Secure software system and method for a printer
US8572399B2 (en) * 2006-10-06 2013-10-29 Broadcom Corporation Method and system for two-stage security code reprogramming
US8179798B2 (en) 2007-01-24 2012-05-15 Mcafee, Inc. Reputation based connection throttling
US8214497B2 (en) 2007-01-24 2012-07-03 Mcafee, Inc. Multi-dimensional reputation scoring
US7779156B2 (en) 2007-01-24 2010-08-17 Mcafee, Inc. Reputation based load balancing
US7949716B2 (en) 2007-01-24 2011-05-24 Mcafee, Inc. Correlation and analysis of entity attributes
US8763114B2 (en) 2007-01-24 2014-06-24 Mcafee, Inc. Detecting image spam
US8185930B2 (en) 2007-11-06 2012-05-22 Mcafee, Inc. Adjusting filter or classification control settings
US8045458B2 (en) 2007-11-08 2011-10-25 Mcafee, Inc. Prioritizing network traffic
US8160975B2 (en) 2008-01-25 2012-04-17 Mcafee, Inc. Granular support vector machine with random granularity
US8589503B2 (en) 2008-04-04 2013-11-19 Mcafee, Inc. Prioritizing network traffic
US20100145882A1 (en) * 2008-12-10 2010-06-10 Pitney Bowes Inc. Method and system for securely transferring the personality of a postal meter at a non-secure location
US8621638B2 (en) 2010-05-14 2013-12-31 Mcafee, Inc. Systems and methods for classification of messaging entities
US9471812B2 (en) 2012-03-06 2016-10-18 Freescale Semiconductor, Inc. Method for implementing security of non-volatile memory
US9927990B2 (en) * 2015-09-10 2018-03-27 Toshiba Memory Corporation Memory system, memory controller and memory control method
EP3373178A1 (en) 2017-03-08 2018-09-12 Secure-IC SAS Comparison of execution context data signatures with references

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2121569A (en) * 1982-05-12 1983-12-21 Bally Mfg Corp System guaranteeing integrity of a gambling system
US4606003A (en) * 1982-09-30 1986-08-12 Pitney Bowes Inc. Mailing system peripheral interface with replaceable prom for accessing memories
US5124926A (en) * 1990-03-02 1992-06-23 Pitney Bowes Inc. Carrier management system having accounting registers
DE4344476A1 (en) * 1993-12-21 1995-06-22 Francotyp Postalia Gmbh Process for improving the security of franking machines

Family Cites Families (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS594054B2 (en) * 1979-04-17 1984-01-27 株式会社日立製作所 Multiprocessor failure detection method
US4447890A (en) * 1980-07-14 1984-05-08 Pitney Bowes Inc. Remote postage meter systems having variable user authorization code
US4486853A (en) * 1981-04-01 1984-12-04 Telemet American, Inc. Apparatus for receiving and displaying continuously updated data
EP0231452B2 (en) * 1982-01-29 2002-01-16 Pitney Bowes Inc. Microprocessor systems for electronic postage arrangements
JPS59192740U (en) * 1983-06-02 1984-12-21 パイオニア株式会社 computer equipment
EP0222197B1 (en) * 1985-10-16 1992-05-06 Pitney Bowes Inc. Systems for non-volatile storage of data and postage meter systems
US4907150A (en) * 1986-01-17 1990-03-06 International Business Machines Corporation Apparatus and method for suspending and resuming software applications on a computer
JPH0754536B2 (en) * 1986-02-17 1995-06-07 株式会社日立製作所 IC card utilization system
US4858138A (en) * 1986-09-02 1989-08-15 Pitney Bowes, Inc. Secure vault having electronic indicia for a value printing system
GB8704883D0 (en) * 1987-03-03 1987-04-08 Hewlett Packard Co Secure information storage
US4933849A (en) * 1987-07-16 1990-06-12 Pitney Bowes Security system for use with an indicia printing authorization device
US5144659A (en) * 1989-04-19 1992-09-01 Richard P. Jones Computer file protection system
JPH02293930A (en) * 1989-05-08 1990-12-05 Victor Co Of Japan Ltd Preventing system for stealing of recording contents of recording medium
GB2246098B (en) * 1990-07-04 1994-05-25 Alcatel Business Systems Franking machine
DE4129302A1 (en) * 1991-09-03 1993-03-04 Helmut Lembens Franking machine
CH683652A5 (en) * 1992-03-10 1994-04-15 Frama Ag Franking machine.
US5442341A (en) * 1992-04-10 1995-08-15 Trw Inc. Remote control security system
US5421006A (en) * 1992-05-07 1995-05-30 Compaq Computer Corp. Method and apparatus for assessing integrity of computer system software
DE4217830C2 (en) * 1992-05-29 1996-01-18 Francotyp Postalia Gmbh Method for operating a data processing system
US5448719A (en) * 1992-06-05 1995-09-05 Compaq Computer Corp. Method and apparatus for maintaining and retrieving live data in a posted write cache in case of power failure
FR2700043B1 (en) * 1992-12-30 1995-02-10 Neopost Ind Franking machine allowing to memorize a history.
US5490077A (en) * 1993-01-20 1996-02-06 Francotyp-Postalia Gmbh Method for data input into a postage meter machine, arrangement for franking postal matter and for producing an advert mark respectively allocated to a cost allocation account
US5363447A (en) * 1993-03-26 1994-11-08 Motorola, Inc. Method for loading encryption keys into secure transmission devices
US5509120A (en) * 1993-11-30 1996-04-16 International Business Machines Corporation Method and system for detecting computer viruses during power on self test
US5488702A (en) * 1994-04-26 1996-01-30 Unisys Corporation Data block check sequence generation and validation in a file cache system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
GB2121569A (en) * 1982-05-12 1983-12-21 Bally Mfg Corp System guaranteeing integrity of a gambling system
US4606003A (en) * 1982-09-30 1986-08-12 Pitney Bowes Inc. Mailing system peripheral interface with replaceable prom for accessing memories
US5124926A (en) * 1990-03-02 1992-06-23 Pitney Bowes Inc. Carrier management system having accounting registers
DE4344476A1 (en) * 1993-12-21 1995-06-22 Francotyp Postalia Gmbh Process for improving the security of franking machines

Also Published As

Publication number Publication date
US5771348A (en) 1998-06-23
EP0762337A2 (en) 1997-03-12

Similar Documents

Publication Publication Date Title
EP0762337A3 (en) Method and device for enhancing manipulation-proof of critical data
EP0762335B1 (en) Method for changing data charged in memory cells of an electronic franking machine
EP0660270B1 (en) Method and device for generating and checking security imprints
EP0969422A3 (en) Method for improving the security of franking machines
DE69603622T2 (en) METHOD FOR APPLYING A SECURITY CODE TO AN OBJECT, LIKE A CHECK CARD, CREDIT CARD, ID CARD OR A PART OF AN ENGINE OR MACHINE
EP0741374A3 (en) Controlled acceptance mail payment and evidencing system
EP0902400A3 (en) Method for checking security imprints
DE69726034T2 (en) Electronic device with memory device and method for reprogramming the memory device
EP1103382A3 (en) Method for the determination of the number of executable normal prints using an ink remain management function and system for performing this method
DE60100363T2 (en) SEQUENCE NUMBERING MECHANISM FOR SECURING EXECUTION INTEGRITY OF INTERDEPENDENT SMART CARD APPLICATIONS
EP0762338A3 (en) Method for securing data and progam code of an electronic franking machine
EP1063619B1 (en) Security module and method for protecting the postal register against manipulation
DE19751172A1 (en) Arrangement for processing biometric data, esp. fingerprint data
DE19757648A1 (en) Franking machine with a chip card read / write unit
DE19757653A1 (en) Method and postal device with a chip card read / write unit for reloading change data by chip card
DE102004008901A1 (en) Safe result calculation
DE102006035610A1 (en) Memory access control and memory access control method
CN1212770A (en) Method for ensuring safety of security module, and related security module
DE602004007368T2 (en) METHOD OF MANAGING AN EXPORTABLE CODE DOWNLOADED IN A RECOMMITABLE ONBOARD SYSTEM
WO2002057905A1 (en) Method for increasing the security of a cpu
EP1892639B1 (en) Secure program code execution
EP1061479A3 (en) Arrangement and method for generating a security imprint
DE19716015A1 (en) Introducing information on a chip card
EP1591864A3 (en) Method for protecting data on a data carrier against DFA - attacks
DE19534529C2 (en) Process for increasing the security against manipulation of critical data

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

AK Designated contracting states

Kind code of ref document: A2

Designated state(s): CH DE FR GB IT LI

PUAL Search report despatched

Free format text: ORIGINAL CODE: 0009013

AK Designated contracting states

Kind code of ref document: A3

Designated state(s): CH DE FR GB IT LI

17P Request for examination filed

Effective date: 20000204

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: FRANCOTYP-POSTALIA AG & CO. KG

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: FRANCOTYP-POSTALIA GMBH

17Q First examination report despatched

Effective date: 20060906

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20100401