An encryption key transfer system, the system may be operative to generate encrypted files on a portable storage medium which may be used to transfer encrypted keys between ATMs using a single operator. Such secret encrypted keys may include a terminal master key. The system may include a source ATM and a target ATM with a common software program and/or hardware installed in each ATM. The source ATM may use secret information associated with the common software program and/or hardware and other randomly generated information to securely encrypt the secret encryption keys. The source ATM may further store the encrypted secret encryption keys and the randomly generated information on a portable storage medium. The target ATM may be operative to decrypt the secret encrypted keys using the secret information associated with the common software program and/or hardware and the randomly generated information retrieved from the portable storage medium.
An encryption key transfer system is provided. The system may be operative to generate encrypted files on a portable storage medium which may be used to transfer encrypted keys between ATMs using a single operator. Such secret encrypted keys may include a terminal master key. The system may include a source ATM and a target ATM with a common software program and/or hardware installed in each ATM. The source ATM may use secret information associated with the common software program and/or hardware and other randomly generated information to securely encrypt the secret encryption keys. The source ATM may further store the encrypted secret encryption keys and the randomly generated information on a portable storage medium. The target ATM may be operative to decrypt the secret encrypted keys using the secret information associated with the common software program and/or hardware and the randomly generated information retrieved from the portable storage medium.
An automated banking machine is provided which includes a first component and a second component. The first component is operative generate a first hash of a first identity data and a public key associated with the second component. The first component is operative to encrypt a randomly generated secret key using the public key associated with the second component. The second component is operative to receive at least one message from the first component which includes the encrypted secret key and the first hash. The second component is operative to decrypt the secret key with a private key that corresponds to the public key. The second component is operative to permit information associated with a transaction function to be communicated between the first and second components which is encrypted with the secret key when the first hash is determined by the second component to correspond to the first component.
A card activated cash dispensing automated banking machine (12, 200, 302) is provided. The machine may be operative to install a terminal master key (TK) therein in response to at least one input from a single operator. The machine may include an EPP (204) that is operative to remotely receive an encrypted terminal master key from a host system (210, 304). The machine may authenticate and decrypt the terminal master key prior to accepting the terminal master key. The machine may further output through a display device (30) of the machine a one-way hash of at least one public key associated with the host system. The machine may continue with the installation of the terminal master key in response to an operator confirming that the one-way hash of the public key corresponds to a value independently known by the operator to correspond to the host system.
An automated banking machine (12, 200, 302) is provided. The machine may be operative to install a terminal master key (TK) therein in response to at least one input from a single operator. The machine may include an EPP (204) that is operative to remotely receive an encrypted terminal master key from a host system (210, 304). The machine may authenticate and decrypt the terminal master key prior to accepting the terminal master key. The machine may further output through a display device (30) of the machine a one-way hash of at least one public key associated with the host system. The machine may continue with the installation of the terminal master key in response to an operator confirming that the one-way hash of the public key corresponds to a value independently known by the operator to correspond to the host system.
A computer may be secured from attack by including a trusted environment used to verify a known monitor. The monitor may be used to determine a state of the computer for compliance to a set of conditions. The conditions may relate to terms of use, such as credits available for pay-per-use, or that the computer is running certain software, such as virus protection, or that unauthorized peripherals are not attached, or that a required token is present. The monitor may send a signal directly or through the trusted environment to a watchdog circuit. The watchdog circuit disrupts the use of the computer when the signal is not received in a given timeout period.
