Electronic Cash Register

Inventron has designed various electronic cash register terminals for different markets. The product line starts from the most standard ones and  reachs out to the most secure ones. Secure cash registers are protected against software tampering. shadow image, man in the middle attack, counterfeit, physical attacks like unscrewing and drilling. Inventron cash register designs have the below security functions

  • Trusted Execution
    • Isolates execution of critical SW from possible malware
    • TrustZone Secure & Normal Worlds (processor modes)
    • Hardware firewalls between CPU & DMA masters and memory & peripheral
  • High Assurance Boot
    • Authenticated boot:Prevents unauthorized SW execution
    • Encrypted boot: protects SW confidentiality
    • Digital signature checks embedded in on-chip boot ROM
    • Run every time processor is reset
  • HW Cryptographic Accelerators
    • Symmetric : AES – 128, AES – 256, 3DES , ARC4
    •  Message Digest & HMAC: SHA – 1, SHA – 256, MD – 5
    • RSA-2048, DHE
  • Secure Storage
    • Protects data confidentiality and integrity
    • Off – chip: cryptographic protection including device binding
    • On – chip: self – clearing Secure RAM
    • HW – only keys: no SW access
  • HW Random Number Generation
    • Ensures strong keys and protects against protocol replay
    • On – chip entropy generation
    • Cryptographically secure deterministic RNG
  • Secure Clock
    • Provides reliable time source
    • On – chip , separately – powered real – time clock
    • Protection from SW tampering
  • Secure Debug:
    • Protects against HW debug (JTAG) exploitation for:
      • Security circumvention
      • Reverse engineering
    • Three security levels + complete JTAG disable
  • Tamper Detection
    • Protects against run – time tampering
    • Monitoring of various alarm sources
    • Debug activation
    • External alarm (e.g. cover seal)
    • SW integrity checks
    • SW alarm flags
    • HW and SW tamper response

Figure 1 – Secure Cash Register

 

Inventron’s proprietary fiscal software has a Common Criteria (CC) EAL2+ certification. The software was tested according to the protection profile for various physical and soft attacks. Inventron’s cash register desgins has the below functions:

  • Common Criteria EAL-2 Security Level Online secure communication with TSM (Trusted Server Manager).
  • Embedded Linux Operation System
  • 400MHz 32bit ARM processor
  • Tamper Detection
  • Mesh Protection
  • EFT-POS integration
  • Electronic Journal
  • Fiscal Memory
  • Ethernet / GPRS / PSTN communication options
  • Barcode and scale connection
  • Drawer connection
  • 1xEthernet / 2xUSB / 1x Drawer / 1xSerial Port
  • 56mm SEIKO thermal printer
  • 100.000 PLUs
  • PC Api for cummunication

Figure 2 – EFT-POS integrated Secure Cash Register

Figure 3 – Specifications of a fiscal unit