[go: up one dir, main page]

GB2131586A - Autoteller systems - Google Patents

Autoteller systems Download PDF

Info

Publication number
GB2131586A
GB2131586A GB08234568A GB8234568A GB2131586A GB 2131586 A GB2131586 A GB 2131586A GB 08234568 A GB08234568 A GB 08234568A GB 8234568 A GB8234568 A GB 8234568A GB 2131586 A GB2131586 A GB 2131586A
Authority
GB
United Kingdom
Prior art keywords
encryption
data
word
key word
operable
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
GB08234568A
Other versions
GB2131586B (en
Inventor
Afonso Manuel Chaves Fernandes
Philip Crum Thomson Abraham
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Unisys Corp
Original Assignee
Burroughs Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Burroughs Corp filed Critical Burroughs Corp
Priority to GB08234568A priority Critical patent/GB2131586B/en
Priority to EP83304907A priority patent/EP0111381B1/en
Priority to DE8383304907T priority patent/DE3378383D1/en
Priority to JP58197465A priority patent/JPS59170970A/en
Publication of GB2131586A publication Critical patent/GB2131586A/en
Application granted granted Critical
Publication of GB2131586B publication Critical patent/GB2131586B/en
Expired legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1016Devices or methods for securing the PIN and other transaction-data, e.g. by encryption

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

An autoteller system comprises an encryption module for encrypting and decrypting data on user cards and for encrypting and decrypting data communicated between it and a remote host. The system is characterised by a key loader containing algorithm performance instructions on a ROM removably connectable to the encryption module for the generation of a master key, for an encryption circuit to use the master key to encrypt a sub-key for the encrypted sub-key to be used as a session key when encrypting or decrypting data from a user card. The keys are stored in a battery-maintained RAM which is volatile if the encryption module is removed. The remote host is operable to provide the autoteller with a plurality of communiation keys where any selected named communication key can be used for encrypting and decrypting data communicated between the system and the host. The system is further characterised by the communications keys supplied to the system being the result of encryption or decryption by the encryption module of sub-keys from the host.

Description

1 GB 2 131 586A 1
SPECIFICATION
Improvements in and relating to autoteller systems The present invention relates to autoteller systems for the automatic dispensation of money to a user upon presentation of a valid card and receipt of correct information from the user validating his right to use. It particularly relates to autoteller systems which employ the technique of encryption for protection of information on the card and further relates to autoteller systems where a remote host con- troller communicates with the system.
It is known to employ a card for presentation to an autoteller wherefrom the autoteller reads data for matching against predetermined characteristics to validate the card and for comparison with further data furnished by the user validating the users right to employ the card. It is important to avoid persons of fraudulent intent being able to read the data on a card and understand its meaning. To this end it is known to employ cards having magnetic stripes whereon the data is recorded and to encrypt or -shuffle- the data bits recorded so that even if read no pattern can be perceived.
In prior art autoteller systems the autoteller was substantially an independent unit. Nonetheless, a surprisingly large number of persons had access to the system, including back staff and system maintainence personnel. Any of these persons was potentially able to discover the manner of encryption and employ that knowledge themselves or through others simply by examination of the system. Thus, although the autoteller was protected against the public, it was not protected against employees of fraudulent intent.
Later prior art autoteller systems included an ability to communicate with a remote host system. The remote host might have been a computer installation some miles away coupled to the autoteller by a serial data telephone link. The host would keep records of unacceptable cards and so on and instruct the autoteller system in what action to take under different circumstances. The same host system might be in supervisory control of many autoteller systems. The existence of the telephone line data link lays the system open to public interference and to access by many more employees, since the amount of equipment is multiplied and the line and the external host system are open to inspection by persons not in the vicinity of the autoteller per se. Further, the ability of the remote host to command the autoteller system creates the possibility of new methods of fraud where an interloper sends his own commands to the autoteller system instructing it to perform actions it would otherwise not perform under the circum- stances it finds.
It is therefore desirable to provide an autoteller system where the manner of encryption of data on a card cannot be discovered by examination of the system itself. It is yet further desirable to provide an autoteller system where communication is possible with a remote host system without the nature of the communication being open to interpretation by persons monitoring the signals passing therebetween.
According to a first aspect, the present invention consists in an autoteller system for dispensing money to a user on presentation of a valid card, said system comprising; a remo- vable master key loader for providing instructions for the performance of an algorithm for the generation of a master key word, a port for receiving said master key loader and for reading said instructions therefrom, an en- cryption circuit coupled to receive an input word, coupled to receive a current key word, and operable to respond to said current key word to provide an output word being said input word encrypted according to a selected one out of a plurality of manners of encryption, a card reader for reading data from said card, and a data link operable to receive a remotely-provided sub-key word, where said system is operable to receive said instructions from said port and to perform said algorithm to generate said master key word, where said system is operable to couple said master key word as said current key word in said encrytion circuit, where said system is operable to couple said sub-key word as said input word in said encryption circuit, and where said system is operable to couple the output word resultant therefrom as a new current key word to said encryption circuit, said system being coupled to receive said data on said card from said reader and being operable thereafter to couple said data from said card as said input word to said encryption circuit for encryption in response to said new current key word.
According to a second aspect the present invention consists in an autoteller system for dispensing money to a user on presentation of a valid card, said system comprising; a removable master key loader for providing instruc- tions for the performance of an algorithm, for the generation of a master key word, a port for receiving said master key loader and for receiving said instructions therefrom, an encryption circuit coupled to receive an input word, coupled to receive a current key word and operable to respond to said current key word to provide an output word being said input word encrypted according to a selected one out of a plurality of manners of encryp- tion, and a data link, where said system is coupled to receive said instructions from said port and is operable to respond thereto to generate said master key word, where said system is operable to couple said master key word as said current key word to said encryp- GB 2 131 586A 2 tion circuit, where said system is coupled to receive from ' said data link a plural succession of communication sub-key words, and where said system,is operable to couple each of said communication sub-key words in turn as said input word to said encryption circuit to store the succession of resultant output words as a plurality of communication key words, said system being operable thereafter to receive indication from said data link as to which one of said communication key words is to be selected, and operable to coupled said selected communication key word as said current key word in said encryption circuit for the encryption of data sent via and received from said data link.
In a preferred embodiment an autoteller system comprises an internal processor in which case the internal processor preferably provides an internal address bus and an internal data bus for use within the auto teller. The autoteller preferably comprises a serial data interface for providing data communications with a remote host system. The serial data interface preferably communicates with the internal processor via the internal address bus and the internal data bus. The autoteller preferably comprises a card reader preferably communicating with the internal processor via the internal address bus and the internal data bus and operable to read data from a card and communicate that data to the internal processor. The autoteller preferably comprises a keyboard and display coupled to the internal processor via the internal address bus and the internal data bus and operable in the one case to communicate data keyed in by the user to the internal processor and in the other case to provide data to the user from the internal processor. The autoteller preferably comprises a banknote dispenser preferably commanded via the internal data bus and the internal address bus to dispense money to the user. The autoteller preferably comprises an encryp- The encryption module preferably comprises a printed-circuit board. The printed circuit board preferably comprises a first edge con nector for plugging into the common back plane of the internal processor and the inter face circuits. The printed circuit board prefera bly comprises a second edge connector for providing connection to a multi-way cable for connecting the encryption module to the key connector.
The key loader preferably comprises a multi way plug for coupling to the key connector.
The key loader is preferably housed within a case housing four indicator light-emitting di odes. The key loader preferably comprises a Read-Only Memory. The Read-Only-Memory is preferably ultra-violet erasable, in which case the key loader preferably comprises an aperture in the case for irradiating the Read Only Memory and a light-tight grommet affix able therein for the protection of the Read Only-Memory.
The Read-Only-Memory is preferably coup led, via the key connector, to receive an address bus and a data bus. The encryption module preferably provides a chip-select sig nal to the Read-Only-Memory in response whereto the Read-Only-Memory preferably provides the data on the data bus in the loation addressed by the address bus. The key loader preferably provides a connection to the Read-Only-Memory for programming the Read-Only-Memory when the signal thereon exceeds a predetermined value, under which condition the Read-Only-Memory stores the data on the data bus in the location addressed by the address bus, and which program-induc ing signal is preferably not provided by said encryption module.
The encryption module preferably comprises an encryption control processor. The encryp tion control processor preferably provides an encryption address bus and an encryption data bus for use in the encryption module.
tion module communicating with the internal 110 The encryption address bus is preferably the processor via the internal address bus and the internal data bus preferably operable to re ceive data for encryption from the internal processor and to provide encrypted data to address bus supplied to the Read-Only-Mernory and the encryption data bus is preferably the data bus provided to the Read-Only-Memory.
the internal processor. The encryption module 115 The encryption module preferably comprises is preferably selectably operable to decrypt data.
The autoteller preferably comprises a secure case closed behind a secure door. Within the secure case is preferably provided a secure enclosure preferably closed by secure screws unable to be undone without special tools. The enclosure preferably houses the internal processor, the encryption module and the interface circuits to the other elements therein.
The autoteller preferably comprises a key connector outwith the secure enclosure but within the secure case for providing coupling between the encryption module and a key loader.
a communications register for providing communication between the internal data bus of the autoteller and the encryption data bus of the encryption control processor.
The encryption module preferably a resident Read-Only-Memory (ROM) wherein the systems program of the internal processor is stored. The internal processor preferably comprises a volatile Random-Access Memory (RAM) for temporary storage of data during the operation of the encryption module and whose contents are lost if the power is removed from the autoteller. The encryption module preferably comprises a secure ran- dom-access memory whose contents cannot 3 GB 2 131 586A 3 be recalled by the remote host and which is sustained in the event of the loss of power to the autoteller, the autoteller preferably comprising a battery backup power supply for supplying power only to the secure sustained RAM in the even of power loss. The backup power supply is preferably situated on the encryption module. The backup power supply is peferably disconnected from the secure, sustained RAM in the event of the printed cirucit board housing the encryption module being disconnected from the common back plane of the internal processor of the autoteller, in which case the secure, sustained mem- ory preferably loses its contents. The backup power supply preferably comprises a link on the first edge connector which is broken if the printed circuit board is removed therefrom. The secure, sustained RAM is preferably oper- able to store encryption key words. The encryption key words are preferably stored in secret locations therein scatterd among other data to create uncertainty as to which words stored in the secure, sustained RAM might be encryption key words.
The encryption module preferably comprises an encryption block. The encryption block is preferably operable receive addresses and data respectively from the encryption address bus and the encryption data bus and is preferably operable to provide selectably encrypted or decrypted data back to the encryption data bus.
The encryption module preferably comprises a flag register addressable via the encryption address bus and operable to receive first and second flag characters indicative of the encryption module having received the master key word and a session key word. The flag register preferably comprises comparison means for detecting if the predetermined flag characters have been deposited therein and operable to communicate the fact to a monitor. The monitor preferably monitors the vol- tage supplied by the battpry in the backup power supply and detects if it is low. The monitor preferably provides activating signals to a light- emitting diode drive circuit for driving the light-emitting diodes in the key loader.
The light emitting diodes in the key loader preferably provide indication when the keys have been correctly loaded and when the battery is of low voltage.
The encryption block preferably comprises a key register comprising a plurality of eight-bit 120 parallel in parallel out registers individually addressable from an address decoder to accept the data on the encryption data bus when addressed by the encryption control processor via the encryption address bus. The 125 encryption key register is preferably sixty-four bits long. The encryption block preferably comprises an output register preferably comprising a plurqJity of 8-bit parallel-in-parallelout registers individually in receipt of data from an encryption circuit itself in receipt of the contents of the key register each operable when individually addressed by the encryption control processor via the address decoder op- erating on the contents of the encryption address bus to provide their input word onto the encryption data bus. There are preferably eight eight- bit registers in the output register. The encryption block preferably comprises an input register. The input register preferably comprises a direct register for receiving characters for encryption. The direct register preferably comprises a plurality of plural-bit parallel-in-paraliel-out registers individually addres- sable via the address decoder operating on the encryption address bus to accept data from the encryption data bus and provide it as output. The input register preferably comprises a cyphertext register operable in the same manner as the direct register. The encryption control processor preferably is operable to load the cyphertext register with the result of the previous encryption as recovered from the output register. The output of the cyphertext register is preferably provided as the first input to an exclusive-or array in receipt of the output of the direct register as first input and providing output being the parallel-bit exclusive or function of corre- sponding bits in the two outputs. The output of the exclusive-or array is preferably coupled as the first input to a diplexer and the output of the direct register is preferably provided as the second input to the diplexer which is selectably operable to provide the output of the direct register as output for coupling as input to the encryption circuit if direct operation is required and to provide the output of the exclusive-or array as the input to the encryption circuit if cyphertext chaining of data to and from the remote host system is required.
The communication register preferably comprises a pair of buffer registers each addressa- ble by the internal processor and by the encryption control processor, a first buffer being for the transfer of data from the internal processor for use by the encryption control processor and a second being for the transfer of data from the encryption control processor for use by the internal processor.
In use, the encryption module preferably detects the power-on condition. The encryption control processor then preferably looks to see if the key loader is present. If the key loader is present the encryption module preferably uses the instructions in the keyloader directly to calculate the master key. The algorithm preferably allows access to the encryption block. The calculated master key is preferably stored in a temporary location where its parity is checked. The Master key is then preferably stored in a secure location in the sustained RAM and the contents of the tem- porary location deleted. The encryption mo- 4 dule preferably receives a session sub-key from the remote host via the data link. The session sub-key is preferably encrypted using the master key as the key word to the encryp tion circuit to create a session key. The ses sion key is preferably stored in the sustained RAM in a secret location. The sustained RAM preferably contains many pieces of data so that it is impossible to discover by inspection which of the pieces of data are keys.
The encryption module is preferably oper able to receive a succession of communication sub-keys from the remote host system. The communication sub-keys are preferably en crypted using the master key as the key word to the encryption circuit to create a corre sponding succession of communication keys.
The communication keys are preferably stored in the secure RAM in the same manner as the master and session keys.
The remote host is preferably in a position to indicate to the encryption module which one of the communication keys it wishes to use. Thereafter the encryption module is pre ferably operable to use the indicated com munication key to encrypt data. The encryp tion module is preferably selectably operable to operate in the cyphertext manner when instructed to do so via the remote host. The cyphertext manner preferably consists in the encryption of current data after is has under gone an exclusive-or combination with the result of the previous encryption.
The invention is further described, by way of an example, by the following description 100 taken in conjunction with the appended draw ings, in which:
Figure 1 is a schematic representation of the various elements present in and associated with the autoteller system.
Figure 2 shows details of the mechanical construction of the autoteller.
Figure 3 shows the mechanical layout of the encryption module of Fig. 1.
Figure 4 shows mechanical detail of the key 110 loader.
Figure 5 shows a schematic circuit diagram of the key loader.
Figure 6 shows a schematic circuit diagram of the encryption module printed circuit board 115 of Fig. 3.
Figure 7 shows a schematic circuit diagram of the communication register of Fig. 6.
Figure 8 shows a schematic circuit diagram of the encryption block of Fig. 6.
Figure 9 shows a schematic circuit diagram of the input register of Fig. 8.
Fig. 1 shows a schematic circuit diagram generally indicating the elements in the auto teller of the preferred embodiment and the functional relationships therebetween.
The autoteller 10 comprises an autoteller internal processor 12 for controlling the im mediate actions of the autoteller 10. The 6 5 internal processor 12 provides an internal GB 2 131 586A 4 data bus 14 for providing data to and receiving data from the various other elements in the autoteller 10. The internal processor 12 also provides an internal address bus 16 whereby each of the varoius elements in the autoteller 10 can be addressed for data deposition or data retrieval therefrom. The autoteller internal controller 12 is, for preference, a minicomputer. However, it will be apparent that the function of the internal controller 12 can be accomplished using any other type of state-sequence machine ranging from the programmable to the hard-wired.
The autoteller 10 comprises a serial data interface 18 for providing data communication via a serial data link 20 with a remote host system 22. The interface 18 converts parallel data received from the internal data bus 14 when addressed by the internal address bus 16 into a serial stream of binary digits. The serial data link 20 is, for preference, a threewire system comprising a data wire for receiving the series of binary digits, a clock wire for for carrying a clock signal for clocking the series of binary digits, and a ground wire. This is not restrictive, and the serial data link 20 could equally comprise a telephone line and a pair of modems. Equally, any other type of data communication link can be used with the present invention.
The autoteller 10 also comprises a card reader 24. The card reader 24 accepts a card from the autoteller user and, when addressed by the internal processor 12, informs the processor 12 that a card is present. The internal processor 12 then commands the card reader 24 to read data from the card and transfer it via the internal data bus 14 to the internal processor 12.
The autoteller 10 further comprises a keyboard and display 26. The internal processor 12 instructs the display 26 to request the user to type out his personal number on the keyboard 26. If the personal number, received via the data bus 14 by the internal processor 12, does not match up with predetermined information recovered from the card by the card reader 24 according to a predetermined relationship after a predetermined number of attempts at entry of the personal number, the internal processor 12 instructs the card reader 24 to swallow the card and deposit it a bin on the assumption that the would-be user had no right to use the card, being ignorant of the personal number.
The autoteller 10 further comprises a banknote dispenser 28. If the user successfully enters his personal number within the predetermined number of attempts the internal pro- cessor 12 instructs the display 26 to ask the user how much money he wishes to withdraw. The user then responds by typing out the amount on the keyboard 26 which information is communicated toIthe internal pro- cessor 12. In response the internal processor GB 2 131 586A 5 12 then instructs the banknote dispenser 28 to dispense the required number and types of banknotes to the user.
The remote host system 22 can be used to 5 control many more than just one autoteller 10. The remote host 22 maintains records of bad cards and instructs the internal processor 12 to retain any card in the card reader 24 which is suspect. It is to be appreciated that the remote host system 22 can address a plurality of autotellers 10 via the same serial data link 20 and it is preferred that this be so. It is however possible to address each autoteller 10 via its own, unique serial data link 20.
The function of the remote host processor 22 is one of supervision and general control. The autoteller 10 communicates its transactions to the remote host system 22 and the remote host 22 communicates operating instructions to the autoteller 10. It is not strictly part of the present invention what those instructions might be and what data is passed between the host system 22 and the autoteller 10, save as hereinafter described in connection with the use and loading of encryption keys. By way of example, the autoteller 10 might inform the host 22 of identification information on the card, bank account number, and time of last use, all derived from the card reader 24. In response the remote host system 22 might instruct the autoteller 10 to withold or not to withold payment, or tell the autoteller 10 the upper limit of payment. Similarly the autoteller 10 may be instructed to retain the card or be informed as to what new information to record on the card using a recording facility on the card reader 24.
The autoteller 10 lastly comprises an encryption module 30. The encryption module 30 is operable to receive blocks of data from the internal processor 12 via the internal data bus 14 when addressed by the internal address bus 16 and to render up blocks of encrypted or decrypted data to the internal processor 12 onto the internal data bus 14 when addressed to do so via the internal address bus 16. The manner of encryption of decryption is selectable in response to the encryption module responding to commands to use a selectable key. In a first mode of operation the internal processor 12 provides data recovered by the card reader 24 from the presented card to the encryption module 30 for selectable encryption or decryption and receives the selectably encrypted or decrypted data back from the encryption module 30, the manner of encryption or decryption being predetermined by the loading of a key, the key being variable from time to time. In a second manner of operation one out of a plurality of communi communication keys is selected by the remote host system 22 and data provided to the encryption module 30 from the internal processor 12 fro selectable encryption or de- cryption and communication back to the inter- nal processor 12. The data may have been received from the remote host system 22 by the internal processor 12 via the serial data link 20 and the serial data interface 18, or may be a message originated by the internal processor 12 for communication to the remote host system 22 in a similar manner. In a third manner of operation, the encryption module 30 performs a cyphertext operation using a host 22 selectable encryption key whereby received data from the host 22 or data to be sent to the host 22 is divided into blocks and combined in an exclusive-or operation with the result of encryption or decryption of the previous block before itself being encrypted or decrypted.
The term encryption is herein defined as the altering of the order of the binary digits in a plural binary digit data word according to a predetermined pattern. The term decryption is herein defined as the altering back of the order of the binary digits in an encrypted plural binary digit word to their original order. A key is herein defined as the plural binary digit word defining the pattern of encryption or decryption, whereby alteration of the key alters the pattern of encryption or decryption.
It is to be appreciated that decryption is merely a special case of encryption, the pat- tern causing the decryption of a previouslyencrypted message being, in absense of previous encryption, just another encryption pattern. While there is no mathematical distinction therebetween, for the purposes of the present invention and the description thereof encryption and decryption are treated as if they were seperate operations.
Fig. 2 shows the mechanical construction of the autoteller 10 of Fig. 1.
The autoteller 10 is housed within a secure steel case 32 closed by a secure steel door 34 which can be locked. Within the secure case 32 is a secure enclosure 36, also made from steel and closed by a steel panel 38 held by special screws 40 which can only be undone using a special tool. The enclosure 36 houses the internal processor 12, the encryption module 30 and interface circuits for the other elements of the autoteller 10. The autoteller 10 comprises a key connector 42 affixed, within the secure case 32 but outwith the secure enclosure 36 for loading encryption keys in a manner to be described hereunder. The key connector 42 is therefore accessible to bank personnel whenever the case 32 is opened. The autoteller 10 further comprises a banknote dispenser enclosure 44 shown in phantom outline for housing a safe for money and a dispenser mechanism and a user facia protrusion 46 protruding through the wall of the bank and presenting to the'user the keyboard and display 26 and the dispensing end of the banknote dispenser.
Fig. 3 shows mechanical details of the construction of the encryption module 30.
6 GB 2 131 586A 6 The encryption module 30 comprises a printed-circuit board 48 with a first edge connector 50 for connecting the printed circuit board 48 into the common backplane of the internal processor 12 through which all power and communication with the common processor 12 is derived. The encryption module 30 comprises a second edge connector 52 on the edgeof the printed circuit board 48 remote from the first edge connector 50. The second edge connector 52 is used to load a secure key into the encryption module 30. A plug 54 mates with the second edge connector 52, coupling it to a multi-way flat cable 56 which in turn couples the second edge connector 52 to the key connector 42 shown in Fig. 2.
Fig. 4 shows mechanical detail of the key loader in conjunction with the key connector 42.
The key loader 58 is a pocketable outboard Read-Only-Memory (ROM) for the encryption module 30. The key loader 58 is housed in a shatterproof resin case 60 at the extreme and flared end of which is provided a key loader connector 62 for mating with the key connector 42 to provide multiple connections to the encryption module 30. The key loader 58 comprises an ultra-violet erasable ROM 66 housed beneath an aperture 64 in the case 60 wherethrough the ROM 64 can be irradiated if required to destroy its contents prior to loading fresh contents. The aperture 64 is closed by a light-tight grommet 68 to prevent the accidental irradiation of the ROM 66 and to prevent the slow attrition of its contents by daylight.
First, second, third and fourth light-emitting diodes (LED's) 70, 72, 74, 76 are provided in the sloping front of the case 60, directly driven via the key connector 42, for indicating key loading status in the encryption module 30.
Fig. 5 shows a schematic circuit diagram of the key loader 58.
The key loader connector 62 provides a ground line 78 providing a common power return for the key loader 58. A first LED driving line 80 supplies illuminating power to the first LED 70, a second LED driving line 82 provides illuminating power to the second LED 72, a third LED driving line 84 provides illuminating power to the third LED 74, and a fourth LED driving line 86 provides illuminating power to the fourth LED 76, the first, second, third, and fourth LED's 70, 72, 74, 76 each being coupled to the ground line 78 as the common return for the illuminating power.
The key loader 58 comprises an erasable Read-Only-Memory 88 corresponding to the ROM 66 of Fig. 4. The ROM 88 receives operational power via a power line 90. The ROM 88 receives a chip selecting input via a chip select line 92 in response wheretc, the ROM 88 is rendered operational either to receive or render up data. The ROM 88 receives a programming input signal via a programme line 94. If the voltage on the program line 94 exceeds a predetermined threshold value for longer than a predetermined time and the signal is provided on the chip select line 92 the ROM 88 stores the data presented to it in the location addressed.
If the ROM 88 is in receipt of the signal on the chip select line 92 along, it renders up data stored in the location addressed. The ROM 88 is provide data on and renders up data to an 8-bit wide data bus 96 provided by the encryption module 30 and its locations are addressed via an 11 -bit wide address bus 98. The ROM 88 comprises 2048 locations at each one of which an 8-bit parallel word can be stored. The encryption module 30 does not programme the ROM, and consequently the programme line 94 is not provided by the encyption module 30. The ROM 88 is pre-programmed at another, dedicated installation and it will be apparent to those skilled in the art how this can be done. The ROM 88 need not necessarily be ultra-violet erasable, but can be of the once-programmed variety where fuse links are blown and the like, in which case there is no need for the aperture 64 and the grommet 68. Similarly, the ROM 88 can be maskprogrammed before assembly into the key loader 58, in which case there is no need for providing programming facilities via the key loader connector 62. As another alternative, the ROM 88 can be of the electricallyalterable variety in which case there is no need for the aperture 64 or the grommet 69 but there is a requirement for a line for cancelling the information in an addressed location. These and other variations on the nature of the ROM 88 and the differing requirements thereof under each circumstance will become apparent to those skilled in the art in consequence of the following description.
Fig. 6 shows a schematic circuit diagram of the encryption module 30.
The encryption module 30 comprises a communication register 100 for providing communication with the internal processor 12 of the autoteller 10. The encryption module 30 further comprises an encryption control processor 102 which provides an encryption data bus 96 and an encryption address bus 98 for use as will later be described in the encryption module and for use as has already been described via the key connector 42 as the data bus 96 and the address bus 98 in the key loader 58. The communication regis- ter 100 is in receipt of the internal data bus 14 and of the internal address bus 16 from the internal processor 12 of the autoteller 10 and is also in receipt of the encryption data bus 96 and of the encryption address bus 98.
The internal processor 12 can address the 7 GB 2 131 586A 7 communication register 100 to deposit a block of data therein for later retieval by the encryption control processor 102 and can address the communication register 100 to retieve therefrom a block of data previously deposited therein by the encryption control processor 102.
In association with the encryption control processor 102 and in receipt of the encryption data bus 96 and of the encryption address bus 98 there is provided a resident ROM 104, a volatile RAM 106 and a sustained secure RAM 108. The resident ROM 104 is pre-loaded with the operating instructions for the encryption control processor and its contents cannot be changed. The volatile RAM 106 is a random-access memory used as a temporary store by the encryption control processor 102. The control processor 102 can write data therein or retrieve data therefrom. When power is removed from the encryption module 30 the contents of the volatile RAM 106 are loast. The secure sustained RAM 108 is operated in conjunction with a backup battery power supply 110 providing power thereto via a battery power line 112. When power is available to the encryption module in the normal manner, the energy on the power line 112 is derived from the general source, not shown, provided via the first edge connector 50 which source also charges up a battery in the backup power supply 110. When power is removed from the autoteller 10 the backup power supply 110 provides battery potential on the power line 112 which can sustain the sustained secure RAM 108 for up to ten days. The ground return line 114 of the backup power supply 119 is seperately externalised on the first edge connector 50 and is coupled via an external lipk 116 on the first edge connector 50 to the main power supply ground 118 to the encryption module 30 also provided on the first edge connector 50. Thus, whilst the printed qircuit board 48 is plugged in via its first edge connector 50, the ground return line 114 of the battery backup power supply 110 is coupled via the external link 116 to the supply ground 118 so that if power is removed from the autoteller 10 the battery will sustain the sustained RAM 108, since one side of the supply to the sustained RAM 108 is provided via the supply ground 118. However, if power is removed from the autoteller 10 and the printed circuit board 48 is unplugged the link 116 between the ground return line 114 and the power supply ground 118 is broken so that the battery backup power supply 110 is unable to sustain the secure sustained RAM 108 and its con- tents are lost. The same result ensues if the printed circuit board 48 is unplugged whilst power is still supplied to the autoteller 10. The encryption control processor 102 can write data into and retrieve data from the 6 5 secure RAM 108. The secure RAM 108 is used to store data, such as encryption keys, which it is not for interlopers to discover, or subsequently use. Thus, if the encryption module 30 is removed, it is not possible upon subsequent investigation to discover secret information nor is it possible to employ the encryption module 30 elsewhere since all of the secret information necessary for the operation of the autoteller 10 is lost as soon as the encryption module 30 is unplugged.
The encryption module 30 further comprises an encryption block 120 coupled to receive the encryption data bus 96 and the encryption address bus 98. The encryption control processor 102 is operable to provide the encryption block 120, by a process of addressing and data supply, with a key for encryption, a data character to be encrypted and is operable to address the encryption block 120 to recover the encrypted or selectably decrypted data.
The encryption module 30 comprises a flag comparator 122 once again coupled to receive the encryption data bus 96 and the encryption address bus 98 from the encryption control processor 102. At the end of key loading, to be described, the encryption control processor 102 deposits first and second predetermined flag characters in the flag corn- parator 122 and the flag comparator 122 provides indication on first and second 124 126 flag lines to a monitor circuit 128 of the presence of the flags. The monitor 128 also checks the battery potential in the backup power.supply 110 and detects when it fails below a predetermined value. The monitor circuit 128 provides activating signals to a LED driving circuit 130 operable to respond thereto to provide the illuminating energy to the first, second, third and fourth LED's 70, 72, 74, 76 via the first, second, third and fourth LED driving lines 80, 82, 84, 86 respectively.
Fig. 7 shows a schematic circuit diagram of the communication register 100 of Fig. 6.
The communication register 100 comprises a first interface RAM 132 for the temporary storage of data to be transferred from the internal processor 12 to the encryption control processor 102 and a second interface RAM 133 for the temporary storage'of data to be transferred from the encryption control processor 102 to the internal processor 12. The communication register is in receipt of the internal address bus 16 of the autoteller 10 and receives it as an input to a first'address decoder 134. The communication register 100 is also in receipt of the enpryption address bus 98, receiving it as an input on a second address decoder 136. fhe first address decoder 134 examiners the address on the internal address bus 16 and, if it lies within first and second numerical limits, these limits indicating the boundaries of the address field used by the internal processor 12 for
8 GB 2 131 586A 8 accessing the communicaflion register 100, the first address decoder 134 provides output indicative thereof. The second address decoder 136 examines the address on the encryption addresd bus 98 and, if it lies between third and fourth numerical values, being the upper and lower limits of the address field used by the encryption control processor 102 to access the communication register 100, it provides output indicative thereof.
The communication register 100 comprises a first address diplexer 138 in receipt of the internal address bus 16 as a first input and in receipt of the encryption address bus 98 as a second input. The output indication of the first address decoder 134 is coupled as a first controlling input to the first address diplexer 138 and theoutput indication of the second address decoder 136 is coupled as a second controlling input to the first address diplexer 138. When the first address decoder 134 provides its output indication the first address diplexer 138 provides, as its output, on the first interface RAM address bus 139, as the address input to the first interface RAM 132, the address on the inernal address bus 16 of the internal processor 12, regardlessly of the indication provided by the second address decoder 136. When the second address deco- der 136 provides its output indication, and the first address decoder 134 does not provide its output indication, the first address diplexer 138 provides, as output on the first interface address bus 139, the address pro- vided on the encryption address bus 98. When neither the first address decoder 134 nor the second address decoder 136 provides output indication, the first address diplexer 138 provides no output.
supplied by the internal bus 16 of the autotel ler 10 internal processor 12. When neither the first address decoder 134 nor the second address decoder 136 provides its output indi cation the second address diplexer 140 pro vides no output.
The communication register 100 comprises a first bidirectional data diplexer 142, in re ceipt of the contents of the inernal data bus 14 and selectively operable to couple the contents of the internal data bus 14 as data input onto a first interface RAM data bus 144. The first data diplexer 142 is also selec tably operable to couple data provided by the first interface RAM 132 on the first interface RAM data bus 148 as input data onto the encryption data bus 14. The first data diplexer 142 receives the ouput of the first address decoder 134 as a first controlling input and receives the output of the second address decoder 136 as a second controlling input.
When the first address decoder 134 provides its output indication, regardlessly as to whether or not the second address decoder 136 provides its output indication, the first data diplexer 142 couples the data on the internal data bus 14 as data input to the first interface RAM 132 via the first data interface RAM data bus 144. When the second address decoder 136 provides its output indication and the first address decoder 134 does not provide its output indication, the first data diplexer 142 couples output data, provided by the first interface RAM 132 via the first interface RAM data bus 144, onto the encryp tion data bus 96. When neither the first address decoder 134 nor the second address decoder 136 provides an output indication, the first data diplexer 142 neither accepts nor The communication register 100 comprises 105 receives data.
a second address diplexer 140 in receipt of the internal address bus 16 as a first input and in receipt of the encryption address bus 98 as a second input. The output indication of the first address decoder 134 is provided as a 110 first controlling input to the second address diplexer 140 and the output of the second address decoder 136 is provided as a second controlling input to the second address di- plexer 140. When the second address decoder 136 provides its output indication, the second address diplexer 140 provides, as its output, regardiessly as to whether or not the first address decoder 134 is providing its output indication, on the second interface RAM address bus 141, the address supplied on the encryption address bus 98, as the address input to the second interface RAM 133. When the first address decoder 134 provides its output i nd ication and the second address decoder 136 does not provide its output indication, the second address diplexer 140 provides, as the address input to the second interface RAM 133 via the second interface RAM address bus 141, the address The communication register 100 further comprises a second data diplexer 146 coupled to the second interface RAM via a second interface RAM data bus 148, coupled to selectably receive data from the encryption data bus 96 onto the second interface RAM data bus 148, coupled to selectably provide data from the second interface RAM data bus 148 onto the internal data bus 14, coupled to receive the output of the first address decoder 134 as a first controlling input and coupled to receive the output of the second address decoder 136 as a second controlling input. When the second address decoder 136 pro- vides its output indication, regardlessly as to whether the first address decoder 134 provides its output indication or not, the second data diplexer 146 couples the data presented on the encryption data bus 96 as input data to be stored by the second interface RAM 133 to the second interface RAM 133 via the second interface RAM data bus 148. When the first address decoder 134 provides its output indication and the second address de- coder 136 does not provide its output indica- 9 GB 2 131 586A 9 tion, the second data diplexer 146 couples output data from the second interface RAM 133 provided thereby on the second interface RAM data bus 148 as input to the internal data bus 14. When neither the first address decoder 134 provides its output indication nor the second address decoder 136 provides its output indication the second data diplexer 146 neither accepts nor receives data.
The arrangement of address decoders 134, 136, address diplexers 138, 140, data diplexers 142, 146 and RAMs 132, 133 described allows the internal processor 12 to have a preemptive access to the first interface RAM 132 for the deposition of data therein and a secondary right to access to the second interface RAM 133 for the retrieval of data therefrom and allows the encryption control processor 102 to have a pre-emptive right of access to the second interface RAM 133 for the deposition of data therein and a secondary right of access to the first interface RAM 132 for the retrieval of data therefrom.
In operation, if the internal processor 12 wishes to pass data or instruction words to the encryption control processor 102, it first checks to see if the second address decoder 136 is providing its output indication. This is achieved by means of an interrogatable status register, not shown for reasons of simplicity, whose operation will be apparent to those skilled in the art. If the second address decoder 136 is providing its output indication the internal processor 12 waits until it ceases to do so. It there is no such indication the internal processor 12 proceeds immediately with data transfer. The internal processor 12 calls up the address of the first location in both the first and second interface RAMs.
However, contained within the address is an indication as to whether the internal processor 12 wishes to read or write data in the communication register 100. If the internal processor 12 wishes to write data only the first interface RAM 132 is activated and if the internal processor 12 wishes to read data only the second interface RAM 133 is activated. The internal processor 12 addresses each of the locations in turn, either reading or writing data, in the RAMs 132, 133. In the first location, if writing, the internal processor 12 deposits an instruction word indicating the nature of the following message, for example, indicating that the following data is to be encrypted in a certain manner. In a second location in the first interface RAM 132, if writing, the internal processor 12 deposits a length word indicating the number of data words following, Similarly, if reading, the in- ternal processor 12 retreives the word in the first location of the second interface RAM 133 earlier deposited therein by the encryption control processor 102 indicative of the nature of the data following, e.g. data encryted with a particular key, and then retreives the word in the second location of the second interface RAM 133 indicative of the number of data words following. If writing the internal processor 12 goes on to deposit the number of data words indicated and if reading the internal processor 12 goes on to retreive the number of data words indicated, in each case by incrementing the address on the internal address bus 16 through the appropriate sequence of addresses.
The first and second interface RAMs 132 133 are each capable of storing 1024 8-bit data words. The encryption processor 102, when wishing to operate through the corn- munication register 100, looks to see if the first address decoder 134 is providing its output indication in the same way that the internal processor 12 looks to see if the second address decoder 136 is providing its output indication, waiting in the same manner until it alone wishes to access the communication register 100. The only difference between the manner of operation of the encryption control processor 102 and the manner of operation of the internal processor 12 lies in that the internal processor 12 deposits data in the first interface RAM 132 and retrieves data from the second interface RAM 133 whereas the encryption control processor 102 deposits data in the second interface RAM 133 and retieves data from the first interface RAM 132. In this way the internal processor 12 and the encryption control processor 102 can pass plural-word data messages and identify- ing instructions between one another.
It is not important to the understanding of the present invention how the internal processor 12 deals with received messages, save as later described. In the case of the encryption control processor 102, data words are retieved one by one from locations in the volatile RAM 106 and transferred one by one to the appropriate locations in the second interface RAM 133. It is not possible for the encryption control processor 102 to recover data from the secure RAM 108 since to be able to acces the data therein would mean access to secret information. Thus the encryption control processor 102 is not provided with an instruction it can obey for transferring data from the secure RAM 108 to the communication register 100. However, the encryption control processor 102 can receive information, notably keys, for storage in the secure RAM 108. This is explained below.
Those skilled in the art will appreciated that means for transferring clock control to the RAMs 132 133 between procqssors 12, 102 must be provided for the loading and unload- ing thereof as described. Those ' skilled in the art will also appreciate that other methods of transferring data between the two processors 12, 102 can equally be applied to the present invention employing modifications thereto which will be apparent and, as will become GB 2 131 586A 10 clear from the following description, the only requirement is that indication be provided along with the associated data as to the nature of the processing required to be performed on or having been performed on the data.
Fig. 8 shows a schematic block diagram of the encryption block 120 of Fig. 6.
The encryption block 120 comprises an input register 150 operable to receive a series of eight 8-bit data words from the encryption data bus 96 and present them as an input to an encryption circuit 152 via the encryption circuit input bus 154. The exact construction and manner of operation of the input register 150 is to be described below. At this stage it is enough to say that a 64-bit input word is assembled for parallel presentation to the encryption circuit 150.
- The encryption block 120 further comprises a key register 156. The key register 156 comprises eight 8-bit registers each coupled to receive an 8bit word from the encryption data bus 96 to present a parallel 64-bit key word to the enctryption circuit 152 via the key bus 158.
The encryption block 120 further comprises an output register 160 coupled to receive a 64-bit parallel encrypted or decrypted word from the encryption circuit 152 in eight 8-bit registers each individually addressable thereafter to render up their contents onto the encryption data bus 96.
The encryption block 120 yet further comprises an encryption address decoder 164 coupled to receive the encryption address bus 98 and operable to provide an addressing signal to each of the 8-bit registers in the input register 150, the key register 158 and the output register 160. Each of the 8-bit registers constitutes a seperate address to the encryption control processor 102. The encryption address decoder 164 decoder the addresses on the encryption address bus 98 and provides a separate activating signal to the selected one of the 8-bit registers whenever one of the 8-bit registers is addressed. Each of the 8- bit registers receives its own individual activating signal via its own individual ad- dressing line, symbolised in Fig. 8 by an input register address bus 166 being representative of the collection of addressing lines going to the 8- bit registers in the input register 150, an output register address bus 168 being representative of the collection of address lines going, to the output register 160, and a key register address bus 170 being representative of the collection of address lines going to the 8-bit registers in the key register 156.
Not shown in Fig. 8 for simplicity, is a 1-bit control register seperately addressable via the encryption data bus 96 and the encryption address bus 98 decoded by the encryption address decoder 164 to accept one of the binary digits provided by the encryption data bus 96, in just the same way as the 8-bit registers accept their inputs in, for example, the key register 156. The contents of the control register are coupled as a further input to the encryption circuit 152. The encryption circuit 152 responds to the content of the control register by encrypting the data provided by the input register 150 if the content of the control register is logically true and by decrypting the data provided by the input register 150 if the content of the control register is logically false.
The encryption circuit 152 accepts a 64-bit input word from the input register 150, ac- cepts a 64-bit key word from the key register 158, and provides a 64bit encrypted or decrypted version of the input word to the output register 160. The encryption cirucit 152 employed as part of the present inven- tion in its preferred embodiment is characterised by the use of Integrated Circuit type WD 2001 made by Western Digital Corporation and supporting an encryption algorithm defined in the United States National Bureau of Standards Data Encryption Standard (DES). Each of the 264 different possible key words provided to the key register 156 elicits a different one of 2 64 different scrambling patterns for the order of the 64 binary digits provided by the input register 150 to be altered before presentation to the output register 160. If the encryption circuit 152 is ordered to encrypt the input register 150 data it applies the selected scrambling pattern, and if ordered to decrypt, it applies the complementary -unscrambling- pattern of binary digit positions to undo the selected scrambling pattern.
It will become clear from the following description that the particular embodiment of encryption circuit 152 chosen by way of example to describe the action of the preferred embodiment of the present invention is not restrictive in its type. Systems encrypting and decrypting word lengths other than 64bits are equally applicable, as are system where input and key data can be supplied time-sequentially rather than in parallel. Those skilled in the art will be aware of the modifica- tions to the preferred embodiment which would be required for the use of such alternative systems.
In use, the encryption control processor " 102 loads the key word into the key register 156 8-bit word by 8-bit word until the key register 156 is full and the whole of the key word is therein. The encryption control processor 102, subject to the constraints to be described in connection with the construction and operation of the input register 150, then loads the input register 150 8-bit word by 8bit word until the whole of the input word lies therein and the input register 150 is full. After an appropriate period of waiting for the en- cryption circuit 152 to perform its function, 4 11 GB 2 131 586A 11 the encryption control processor 102 withdraws the resulting encrypted or decrypted result 8-bit word by 8-bit word from the output register 160. 5 Fig. 9 shows a schematic circuit diagram of the input register 150 of Fig. 8. The input register 150 comprises a direct register 172 coupled to receive the encryption data bus 96 and eight addressing lines from the input register address bus 166 one for addressing each of eight 8-bit registers therein, the direct register 172 thereby being loadable with a 64 bit direct data word. The contents of the direct register 172 are pro- vided as a 64-bit parallel word on a direct register output bus 174.
The input register 150 further comprises a 64-bit cyphertext register 176coupled to receive the encryption data bus 96 and a fur- ther eight addressing lines from the input register address bus, one for addressing each of eight 8-bit registers therein, the cyphertext register 176 thereby being loadable with 64bit cyphertext data word in the manner earlier described. The contents of the cyphertext register 176 are provided as a 64-bit parallel output on a cyphertext output bus 178.
The input register 150 further comprises an exclusive-or array 180, in receipt of the 64-bit parallel direct data word as a first input, in receipt of the 64-bit parallel cyphertext data word as a second input, and operable to provide a 64-bit parallel exclusive-or output word on an exlusive-or output bus 182, where each binary digit in the exclusive-or output word represents the exclusive-or function of the pair of binary digits in the corresponding positions in the direct data word and the cyphertext data word, the exclusive or func- tion being logically true if one or the other but 105 not both of the corresponding binary digits is true and otherwise logically false, the relationship being clarified by the Boolean Equation E = D.C + C.6 where E is the binary digit in the Exclusive-or output word, D is the binary digit in the direct data word and C is the binary digit in the cyphertext data word.
The input register 150 further comprises a cypher flip-flop register 184 in receipt of a single bit from the encryption data bus 96 via a single bit input line 186 and in receipt of a single address line 188 from the input register address bus 166 being decoded from the encryption address bus 98 by the encryption address decoder 164. The. encryption control process 102 is thereby able to cause the contents of the cypher flip-flop register 184 to assume a logically true ora logically false condition. The condition of the contents of the cypher flip-flop register 184 is coupled as a cypher output signal on a cypher output line 190.
The input register 150 lastly comprises an encryption diplexer 192 in receipt of the 64bit parallel direct data word as a first input, in receipt of the 64-bit parallel exclusive-or out- put word as a second input, in receipt of of the cypher output signal as a controlling input, operable in response to the contents of the cypher flip-flop register 184 being logically false to provide as output, on the 64-bit wide encryption circuit input bus 154, the direct data word on the direct data output bus 174 and operable in response to the contents of the cypher flip-flop register 184 being logically true to provide, as output onto the encryption circuit input bus 154, the exclusive-or output word on the exclusive-or output bus 182.
In operation the encryption control processor 102 elects whether a straight encryption is required or a cyphertext operation. If straight encryption is required the encryption control processor 102 addresses the cypher flip-flop register 184 and sets its contents to logically false, having the effect of causing the encryption diplexer 192 to provide, as the input to the encryption circuit 152 on the encryption circuit input bus 154, the contents of the direct register 172. The encryption control processor 102 then loads the direct register 174 with a 64-bit direct data word as described, waits, and accepts the encrypted word from the output register 160.
If cyphertext operation is required, the encryption control processor 102 addresses the cypher flip-flop register 184 and sets its content to being logically true. This has the effect of causing the encryption diplexer 192 to provide as the encryption circuit 152 input signal on the encryption circuit input bus 154 the exclusive-or output word provided on the exclusive-or output bus 182 by the exclusiveor array 180. The input register 150 is then ready to commence a cyphertext operation for the cypher-encryption of data messages to and from the remote-host 22.
In order to start the cyphertext operation the encryption control processor 102 must first load the cyphertext register 176 with a start word. It achieves this by loading, 8-bit word by 8-bit word, a 64-bit string of all ones into the eight 8-bit registers making up the cyphertext register 176. The start word chosen for preference in this instance is an allzeros word, but this is by no means restrictive and those skilled in the art will be aware of many other start words which can be used. The encryption control processor 102 then loads the first eight 8-bit bytes of the message to be cyphertext encrypted into the direcet register 172. The exclusive or array 180 provides the encryption circuit 152 intput bus 154 with the described exclusive-or function generated between the contents of the cyphertext register 176 and the direct register 172.
The encryption control processor 102 waits 12 GB 2 131 586A 12 and receives the output of the encryption circuit 152 from the output register 160, and this output is used as the first eight bytes of the cyphertext message. The encryption con- trol processor 102 takes the first eight bytes of the cyphertext message and places it into temporary storage in the volatile RAM 106. The encryption control processor 102 then retrieves the first eight bytes from the RAM 106 and loads then into the cyphertext register 176. The encryption control processor 102 then loads the next eight bytes of the message to be cyphertext encrypted into the direct register 172, waits for the encryption circuit 152 to work and stores the result in the volatile RAM 106 as before, once again retrieving the result therefrom and placing it into the cyphertext register 176 and loading the direct register 172 with the next eight bytes of the message to be cyphertext encrypted. In this way the encryption control processor 102 takes the message to be cyphertext encrypted from its store in the RAM 106 by eight byte (64 bit) blocks and loads each block into the direct register 172, loading the cyphertext register 176 with the result of the previous encryption. The encryption circuit 152 then encrypts the result of forming the exclusive-or function between the contents of the direct register 172, namely the eight byte block of the data to be cyphertext encrypted and the previously cyphertext-encrypted eight byte block, being the contents of the cyphertext register 176. In this eay the encryption control processor 102 carries on until the whole of the message to be cyphertext encrypted is complete. The message is required to be an integral number of 64 bits long.
In the overall operation of the autoteller 10, when the autoteller 10 is switched on, after an initial power-on and confidence check, the encryption control processor 102 looks to see if the key-loader 58 is present. It does so by calling up address 3000 hexadecimal. This is the address of the first location in the ReadOnly memory 88 and contains a predetermined flag character. In this instance the predetermined flag character is hexadecimal A, but it can any non-zero character desired. If the encryption control processor 102 sees data A at address 3000 hexadecimal it knows that the key loader 58 is plugged onto the key connector 42. In response the encryption con- trol processor 102 jumps to execute the program starting at address 3001, this being the next address in the ROM 88. The programme in the ROM 88 is any programme that the autoteller owner wishes to employ to generate a master key word 64 bits long. The program has access to use of the encryption block, and to cyphertext encyption. In addition it can use any encryption alogithm of its own style that it pleases. It can start with any data that is chosen, and use any function available through the encryption control processor 102. The- master key generation program is secret, and known only to the owner of the autoteller. In fact, the program does not even have to be known to the owner, since it is contained on the key loader 58. The key loader 58 when not in use is kept by a single bank official who does not need to know what is stored thereon.
Having completed the algorithm defined by the contents of the ROM 88, the encryption control processor 88 stores the 8-byte master key it has generated in a temporary location in the volatile RAM 106. It then places a predet- ermined flag character in the flag comparator 122 indicative of the master key having been loaded. Thereafter it signals to the internal processor 12 that it is ready to receive a session sub-key from the remote host 22. The internal processor 12 signals the host 22 to supply it with a session sub- key via the data link 20 and the serial data interface 18. The remote host 22 then supplies a 64-bit session sub-key to the internal processor 12 which passes it in turn to the encryption control processor 102. The encryption control processor 102 loads the master key from its temporary location in the volatile RAM 106 into the key register 156 of the encryption block 120, loads the received session sub-key into the direct register 172, commands the cypher flip-flop register 184 to produce straight encryption, and accepts the output from the output register 160 as the session key. The encryption control processor 102 then destroys the contents of the temorary storage location in the volatile RAM 106 for the master key, storing the master key in the secure RAM 108 in a first predetermined location and storing the session key in the secure RAM 108 in a second predetermined location, scattering other data throughout the secure RAM so that it is not possible to determine what data in the secure RAM 108 represents keys.
If, on inspection of memory location 3000 hexadecimal the encryption control processor 102 does not see A as stored data, then it knows that the key loader 58 is not present on the key connector 42. Accordingly, it retieves the master key from the predetermined location in the secure, sustained RAM 108 and sets the predetermined flag character in the flag comparator 122 if the master key passes its parity check. The encyption control processor 102 then continues as before as if the master key had been loaded by the key loader 58. In either case, as soon as the session key has been successfully loaded from the remote host 22 and encrypted using the master key, the encryption control processor 102 sets a second predetermined flag character in the flag comparator 122 indicative of the successful loading of the session key.
The session key is used thereafter for the 13 GB 2 131 586A 13 encryption and decryption of data recorded on the card presented to the autoteller 10 by the prospective user. The manner of use is not restrictive, but, purely by way of example, the autoteller 10 can read a card, the internal processor 12 commanding the card reader 24. The card reader 24 transfers the data it obtains into temporary storage in the internal processor 12. Thereafter the internal proces- sor 12 sends the data, or some selected part of the data from the card, in a block via the communication register 100, together with an instruction as to whether the data is to be encrypted or decrypted. to the encryption mo- dule 30. The encryption module 30 obeys the instruction, as will become clear from later description, within a predetermined range of operations. Having performed the required op- interface RAM 132 is hexadecimal 31, the eration, as earlier described, the encryption internal processor 12 is commanding the en module 30 returns the operated-upon data 85 cryption module 30 to encrypt the following back to the internal processor 12. The internal block of data by blocks of 64 bits using the processor 12 can, if it is so desired, command session key. The session key is recovered from the keyboard 26 to render up its entered its secure location in the sustained RAM 108 number and transfer that number to the en- and loaded into the key register 156. Straight cryption module 30 for encryption or decrypencryption is then performed as earlier de rion, the encryption module 30 returning the scribed. At the end of encryption, the encryp result to the internal processor 12. The inter- tion control processor 102 loads the result nal process 12 can then operate in any de- thereof from the volatile RAM 106 into the sired manner according to any desired alogor- d i t f RAM 133 i h fi ithm chosen by the ow i ner of the autoteller upon the data derived from the card reader 24 and from the keyboard 26 to determine whether a desired correspondence exists be tween the number entered on the keyboard 26 and the data from the card reader 24, validating the user's right to employ the card.
Thereafter the autoteller 10 can dispense money to the user or not dependently upon whether the correspondence exists and upon whether the host system 22 allows such an action after authorisation communication therewith.
The description so far has indicated the master key being loaded soley via the key loader 58. It is to be appreciated that, at the discretion of the owner of the autoteller 10, the master key can be loqded from the remote host system 22. This permits the owner to employ any measure of security that he so desires.
On the understanding that, where a piece of data such as a key is indicated, that piece of data was obtained by the internal processor 12 from the host system 22 and where other data such as card data and keyboard data is indicated, the internal processor 12 obtains it from its peripheral parts 24, 26, the internal processor 12 sends commands and data to encryption module 30 via the communication register 100 as described and recives data and indication of the operation performed back from the encryption module 30.
If the first word in a block provided via the communication register 100 by internal pro cessor 12 for the encryption control process 102 is hexadecimal 00, the internal processor 12 commands the encryption module 30 merely to echo back the message it receives for the encryption module 30 to act as a temporary store and as a possible confidence test upon the encryption module 30. The encryption control processor 102 takes the subsequent data words into temporary storage in the volatile RAM 106. The encryption control processor 102 returns the temporarily stored data to the communication register 100 for provision back to the internal processor 12, causing the first character in the second interface RAM 133 to be hexadecimal 50, indicatively of the following data being echoed data.
If the first word in a block in the first " V1 alv, caus ng & e rst character therein to be hexadecimal 51 to indicate to the internal processor 12 that the following block of data has been encrypted using the session key. Such an instruction and response can be used on data read from a user's card.
If the first word in a block in the first interface RAM 132 is hexadecimal 32, the internal processor 12 is commanding the encryption 30 to decrypt the following block of data using the session key by blocks of 64 bits. The session key is recovered from its secure location and loaded into the key register 156. Straight decryption is then performed as earlier described. At the end of decryption the encryption control processor 102 loads the result thereof from the volatile RAM 106 into the second interface RAM 133 causing the first character therein to be hexadecimal 52 indicative to the internal processor 12 of the following block of data having been decrypted using the session key.
If the first character in a block of data in the first interface RAM 132 is hexadecimal 33, the internal processor 12 is commanding the encryption control processor 102 to accept the following eight bytes of data as the session key. The encryption control processor 102 loads the eight bytes directly into the secure locations earlier de described in the secure RAM 108. The encryption module 30 then signals back to the internal processor 12 that the session key has been loaded by setting a binary digit in a device status register, not shown, whose operation will be appar- ent to those skilled in the art and which can 14 GB 2 131 586A 14 be interrogated by the internal processor 12.
If the first character in a block of data in the first interface RAM 132 is hexadecimal 34 the internal processor 12 is commanding the encryption control processor 102 to accept the following eight bytes of data as a session subkey and to encrypt them using the master key before storage in the secure RAM 108 as the session key. The encryption control processor 102 responds thereto as indicated, and, as before, sets the binary digit in the status register indicative of the session key having Ueenloaded.
If the first character in a block of data in the first interface RAM 132 is hexadecimal 35 the internal processor 12 is commanding the encryption control processor 102 to accept the following eight bytes of data as a session subkey and to decrypt them using the master key before storage in the secure RAM 108 as the session key. The encryption control processor 102 responds thereto as indicated and, as before, sets the binary digit in the status register indicatively of the session key having beenloaded.
If the first and only character in the first interface RAM 132 is hexadecimal 36 the internal processor 12 is commanding the encryption control processor 102 to clear the session key. The encryption control processor 102 responds by clearing the secure location in the secure RAM 108 whereat the eight 8bit bytes of the session key are stored and by resetting the binary digit in the status register now indicatively of the session key no longer being loaded. As a further action the encryption control processor 102 also unloads the predetermined flag character from the flag comparator 122 so that it no longer provides indication of the session key being loaded.
If the first and only character in the first interface RAM 132 is hexadecimal 37 the internal processor 12 is commanding the encryption control processor to clear all flags. The encryption control processor 102 resoponds by resetting all status flags, resetting all indications to the flag comparator 122 so tht it no longer provides indication of the session or master keys being loaded and by clearing the entire contents of the secure RAM 108, inclusively of the master key, so that fresh keys must be loaded before operation can continue. As will become clear from later description, this can include a plurality of communications keys stored therein.
If the first word stored in the first interface RAM 132 is hexadecimal 38 the internal processor 12 is commanding the encryption control processor 102 to load the following eight 8-bit characters as the master key, this time supplied by the remote host system 22, directly into the secure RAM 108 location reserved for it and to provide the predetermined character to the flag comparator 122 for it to provide output indication of the master key having been loaded, and to set an appropriate flag in the device status register (not shown).
If the first word stored in the first interface RAM 132 is hexadecimal 39 the internal processor 12 is commanding the encryption control processor 102 to provide cyphertext encryption, using the session key, in the manner already described, for the data following.
The encryption control processor 102 responds by taking the cyphertext encrypted data from temporary storage in the volatile RAM 106 and loading it into the second interface RAM 133, making the first character therein hexadecimal 59 indicatively of the following data having been cyphertext encrypted.
- If the first character stored in the first interface RAM 132 is hexadecimal 3A the internal processor 12 is commanding the encryption control processor 102 to cyphertext decrypt the following block of data in the same manner as the already described cyphertext encryption save that the decryption facil- ity of the encryption circuit 152 is selected. After the cyphertext decryption, just as for cyphertext encryption, having used the session key, the encryption control processor 102 takes the cyphertext decrypted message from temporary storage in the volatile RAM 106 and places it into the second interface RAM 133 making the first word therein hexadecimal 5A indicatively to the internal processor 12 of the following block of data having been cyphertext decrypted.
In addition to the features already described, the autoteller system 10 also corn prises means for the transmission and reception of secure messages between the external host system 22 and the internal processor 12 using a selectable one out of a plurality of communication keys.
After the master key and the session keys have been loaded into the encryption module 30, the internal processor 12 examines the status register, already described but not shown in the drawings, whereby the encryption control processor 102 signals to the internal processor 12 that all has been carried out successfully, and, if all is in order, signals to the external host system 22 that it is ready to receive communications keys or communication sub-keys.
The internal processor 12 receives an indi- cation from the external host system 22 that the following stream of binary digits represents a serialisation of an ordered succession of one hundred 64-bit communication keys or communication sub-keys. The external host 22 also indicates if the following binary digits are actual keys or are sub-keys. The internal processor 12 assembles the stream of binary digits into a succession of 8-bit bytes for provision to the encryption control processor 130102.
GB 2 131 586A 15 If the first word stored in the first interface RAM 132 is hexadecimal 313 the internal processor 12 is commanding the encryption control processor 102 to accept the following eight hundred ordered bytes of data as communications keys. The encryption control processor 102 strips out the data in eight-byte blocks i.e. 64 bit blocks and stores each block in a predetermined location in the secure RAM 108 such that each block can be located by the calling up of its serial number. That is to say, by calling up the first block, the block first presented to the first interface RAM 132 is obtained, by calling up the fifteenth block the fifteenth block stored in the first interface RAM is obtained, and so on so that each block can be accessed merely by calling up its number lying between 1 and 100. It is to be appreciated that more blocks or fewer blocks than 100 can be used in the present invention. Each stored block of 64 bits becomes a communication key. The encrytption control processor 102 thereafter sets a binary digit in the device status register, (already mentioned but not shown) indicatively to the internal processor 12 of the communication keys having been loaded.
If the first word stored in the first interface RAM 132 is hexadecimal 3C the internal processor 12 is commanding the encryption control processor 102 to accept the following succession of eight hundred ordered 8-bit bytes of data as communication sub-keys. The encryption control processor 102 strips out the data in eight-byte blocks and encrypts them using the master key, once again storing the result of the encryption as a succession of communication keys in the secure RAM 108, each one being individually recallable by the provision of the number 1 to 100 indicative of the serial order of its receipt among the other communication keys.
If the first word stored in the first interface RAM 132 is hexadecimal 31), the internal processor 12 is internal processor 12 is cornmanding the encryption control processor 102 to accept the following succession of eight hundred ordered 8-bit bytes of data as communication sub-keys, to be operated upon in just the same manner as if the first word stored had been hexadecimal 3C, save that the decryption function of the encryption circuit 152 is selected as o 'posed to the encrypp tion function.
If the first word stored in the first location of the first interface RAM 132 is hexadecimal 40, the internal processor 12 is commanding the encryption control processor 112 to encrypt the following message using an elected communication key. As stated before, the second word stored in the first interface RAM 132 indicates how many Oata words follow. If the first word is 40 the encryption control processor 102 interprets the third word stored therein as indicating which of the hundred communication keys is to be used. The third word is therefore a number elected by the internal processor 12 via the external host system 12 from 1 to 100 for data commnica- tion purposes. The eleceted elected communication key is loaded into the key register 156 and encryption ofthe remaining contents of the first interface RAM proceeds as before described. The encryption control processor 102 deposits the result of the encryption from temporary storage in the volatile RAM 106 into the second interface register 133 making the first word therein 60 to indicate to the internal processor 12 that encryption using a communication key has taken place on the following data, making the second word indicative of the serial number of the communication key employed, and indicating in the third word the number of following data words.
If the first word stored in the first location of the first interface RAM 132 is hexadecimal 41 the internal processor 12 is commanding the encryption control processor 102 to de- crypt the following message using an elected communication key. All takes place as before as if the first word had been hexadecimal 40, save that the decryption function of the encryption circuit 152 is selected and the en- cryption control processor 102 makes the first word in the second interface RAM 133 hexadecimal 61 as opposed to hexadecimal 60, indicating to the internal processor 12 that the following data stored therein has been decrypted using the communication key elected in the third word therein.
If the first word stored in the first location of the first interface RAM 132 is hexadecimal 43 the internal processor 12 is commanding the encryption control processor 102 to cyphertext encrypt the following data using the communication key elected in the third word stored therein. Cyphertext encryption takes place as before described with the elected communication key loaded into the key register 156 from the secure RAM 108. The encryption control processor 102 deposits the result of the cyphertext encryption into the second interface RAM 133 making the first word therein hexadecimal 63 indicating to internal processor 12 that the following data has been cyphertext encrypted using the communication key indicated by the number stored in the third location therein.
If the first word stored in the first location of the first interface RAM 132 is hexadecimal 44 the internal processor 12 is commanding the encryption control processor 102 to cyphertext decrypt the the following data using the communication key elected in the third word stored therein. All takes place as if the first word were hexadecimal 43 save that the decryption facility of the encryption circuit 152 is selected and that the encryption con- trol processor 102 makes the first word stored 16 GB 2 131 586A 16 in the second interface RAM 133 hexadecimal 64 to indicate to the internal processor 102 that the following data has been cyphertext decrypted using the communication key elected in the third word stored therein.
In this manner, by passing keys which are selectably encryptable or decryptable using the master key, or are directly usable without encryption or decryption but are referred to ever afer transmission from the host 22 in either of the two cases by a serial number unrelated to their value so that an interloper cannot discover which key is being used for data communications between the host 22 and the outoteler system 10, the communication of data therebetween is rendered secure. The host 22 indicates with each message which of the keys is to be used in what manner, and the internal processor 12 re- sponds by causing the encryption control processor 102 to operate upon the received data in the selected manner to generate the communication text, the internal processor 12 applying the inverse command to the encryp- tion control processor 102 forthe rendering unintelligible of data for transmission from the internal processor 12 to the host 22.
Returning briefly to the monitor circuit 128 of Fig. 6, the monitor 128 causes the first LED 70 to be lit if the master key has not been loaded, causes the second LED 72 to be lit if the master key has not been loaded and the encryption control processor 102 does not detect the presence of the key loader 58, causes the third and fourth LEDS 76, 78 to be lit if the master key has been loaded by the battery terminal voltage is low, and causes the fourth LED 78 alone to be lit if the master key has been successfully loaded and the unit in operational. In this manner, the security personnel in charge of the key loader 58 can chart the course of the loading of the master key and are provided in some small part with a diagnosis of at least the sympton if not the cause of malfunction in the event of the autoteller system 10 failing to operate.
While the monitoring operation employed to light the LEDs 72 74 76 78 in response to internal conditions in the encryption module 30 has heretofore been described using a monitor circuit 128, it is to be appreciated that the function of the monitor circuit 128 could be absorbed into the overall operation of the encryption control processor 102 which can set and reset latches and the like in response to its internal states to drive the LEDs 72 70 74 76.

Claims (1)

1. An autoteller system for dispensing money to a user on presentation of a valid card, said system comprising: a removable master key loader for providing instructions for the performance of an algorithm for the generation of a master key word, a port for receiving said master key loader and for reading said instruction therefrom, an encryption circuit coupled to receive an input word, coupled to receive a current key word, and operable to respond to said current key word to provide an output word being said input word encrypted according to a selected one out of a plurality of manners of encryption, a card reader for reading data from said card, and a data link operable to receive a remotelyprovided sub-key word, where said system is operable to receive said instructions from said port and to perform said algorithm to generate said master key word, where said system is operable to couple said master key word as said current key word in said encryption circuit, where said system is operable to coupie said sub-key word as said input word in said encryption circuit, and where said system is operable to couple the output word resultant therefrom as a new current key word to said encryption circuit, said system being coupled to receive said data on said card from said reader and being operable thereafter to couple said data from said as said input word to said encryption circuit for encryption in response to said new current key word.
2. An autoteller system for dispensing money to a user on presentation of a valid card, said system comprising; a removable master key loader for providing instructions for the performance of an algorithm for the generation of a master key word, a port for receiving said master key loader and for re- ceiving said instructions therefrom, an encryption circuit coupled to receive an input word, coupled to receive a current key word and operable to respond to said current key word to provide an output word being said input word encrypted according to a selected one out of a plurality of manners of encryption, and a data link, where said system is coupled to receive said instructions from said port and is operable to respond thereto to generate said master key word, where said system is operable to couple said master key word as said current key word to said encryption circuit, where said system is coupled to receive from said data link a plural succession of communi- cation sub-key words, and where said system is operable to couple each of said communication sub-keys words in turn as said input word to said encryption circuit to store the succession of resultant output words as a plurality of communication key words, said system being operable thereafter to receive indication from said data link as to which one of said communication key words is to be selected, and operable to coupled said se- lected communication key word as said current key word in said encryption circuit for the encryption of data sent via and received from said data link.
130CLAIMS (19Aug83) Q 17 GB 2 131 586A 17 1. An autoteller system for dispensing money to a user on presentation of a valid. card, said system comprising an encryption module coupled to receive an input word, coupled to receive a current key word, and operable to respond to said current key word to provide an output word being said input word encrypted according to a selected one out of a plurality of manners of encryption; a removable master key loader forproviding instructions for the performance of an algorithm for the generation of a master key word, a port on said encryption module for receiving said master key loader'and for reading said A 5 instructions therefrom, a card reader for reading data from said card, and a data link operable to receive a remotely provided sub key word, where said module is operable to receive said instructions from said port and to perform said algorithm to generate said master key word, where said module is operable to couple said master key word as said current key word in said encryptin module, where said system is operable to generate a session key word by coupling said sub key word to said encryption module as said input word in said encryption module, and by taking the output relevant therefrom as said session key word, and where said module is operable to couple said session key word as a new current key word in said encryption module, said system being coupled to receive said data on said card from said reader and being operable thereafter to couple said data from said card to said encryption module as said input word to said encryption module for encryption in response to said session key word and being further operable to receive back from said encryption module the result of said encryp- tion in response to said session key word.
2. A system according to claim 1 whereby said encryption module comprises; an encryption control processor for controlling the operation of said encryption module, a secure sustained memory for receiving and storing" said master key word and ' said session key word, and a backup power supply for sustaining said secure memory in the event of the main power supply to said system failing, where the contents of said secure, sustained memory are accessible to said encryption control processor but where said encryption control processor is unable to communicate said contents of said secure, sustained memory to any part of said system external to said encryption module.
3. A system according to claim 2 wherein said secure, sustained memory is coupled to receive and operable to store and deliver up to said encryption control processor data words other than said master key word and said session key word, where said master key word and said session key word are stored at a plurality of predetermined locations in said the locations whereat said other data words are stored and known only to said encryption control processor.
4. A system according to claim 3 compris- ing an edge connector for receiving said encryption module, where said backup power supply comprises a link on said edge connector for disconnecting said backup power supply from said secure sustained memory in the event of said encryption module being removed from said system, whereby the contents of said secure, sustained memory will be lost to prevent external inspection thereof.
5. A system according to claim 2, 3 or 4 comprising an autoteller control processor for controlling the overall operation of said system, where said encryption module comprises a communication register for providing communication between said encryption control processor and said autoteller control processor, said communication register comprising a first interface memory for receiving data from said autoteller control processor and for delivering up data to said encryption control processor and a second interface memory for receiving data from said encryption control processor and for delivering up data to said autoteller control processor.
6. A system according to claim 5 wherein said encryption control processor includes an encryption address bus, wherein said autoteller control processor comprises an internal address bus, and wherein said communication register comprises a first address decoder coupled to receive said internal address bus and operable to provide an activating signal to said first and second interface memories if an address on said internal address bus lies between first and second predetermined limits and a second address decoder coupled to receive said encryption address bus and operable to provide an activating signal to said first and second interface memories if an address on said encryption address bus lies between third and fourth predetermined limits.
7. A system according to claim 6 wherein said first address decoder is operable to prevent said second address decoder from pro- viding said activating signal in the event of the address on said internal address bus being between said first and second predetermined limits.
8. An autoteller system for dispensing money to a user on presentation of a valid card, said system comprising; an encryption module coupled to receive an input word, coupled to receive a current key word and operable to respond to said current key word to provide an output word being said input word, encrypted according to a selected one out of a plurality of manners of encryption, a removeable master key loader for providing instructions for the performance of an algor- secure, sustained memory interspersed among 130 ithm for the generation of a master key word, 18 GB2131 586A 18 a port on said module for receiving said master key loader and for receiving instructions therefrom, and a data link, where said module is coupled to receive said instructions from said port and is operable to respond thereto to perform said algorithm to generate said master key word and operable to couple said master key word as said current key word to said encryption circuit, where said system is coupled to receive from said data link a plural succession of communication sub key words, and where said system is operable to couple each of said communication sub key words in turn to said encryption module said encryption module being operable to store the succession of resultant output words as a plurality of communication key words, said system being operable thereafter to receive indication. from said data link as to which one of said communication key words is to be selected, and operable to command said encryption module couple said selected communication key word as said current key word for the encryption of data sent via andeived from said data link.
9. A system according to claim 8 wherein said encryption module comprises; an encryption control processor for controlling the operation of said encryption module, a secure sustained memory for receiving and storing said master key word and said plurality of communication key words, and a back up power supply for sustaining said secure memory in the event of the main power supply to said system failing, where the contents of said secure, sustained memory are accessible to said encryption control processor but where said encryption control processor is unable to communicate said contents of said secure, sustained memory to any part of said system external to said encryption module.
10. A system according to claim 9 wherein said secure, sustained memory is coupled to receive and operable to store and deliver up to said encryption control processor data words other than said master key word and said plurality of communication key words, where said master key word and said plurality of communication key words are stored at a plurality of predetermined locations in said secure, sustained memory interspersed among the location whereat said other data words are stored and known only to said encryption control processor.
11 comprising an autoteller control processor for controlling the overall operation of said system, where said encryption module com prises a communication register for providing communication between said encryption con trol processor and said autoteller control pro cessor, said communication register compris ing a first interface memory for receiving data from said autoteller control processor and for delivering up data to said encryption control processor and a second interface memory for receiving data from said encryption control processor and for delivering up data to said autoteller control processor.
13. A system according to claim 12 wherein said encryption control processor comprises an encryption address bus, wherein said autoteller control processor comprises an internal address bus, and wherein said corn munication register comprises a first address decoder coupled to receive said interna[ ad dress bus and operable to provide an activat ing signal to said first and second interface memories if an address on said internal ad dress bus lies between first and second pre determined limits and a second address deco der coupled to receive said encryption address bus and operable to provide an activating signal to said first and second interface memories if an address on said encryption address bus lies between third and fourth predetermined limits.
14. A system according to claim 13 wherein said first address decoder is operable to prevent said second address decoder from providing said activating signal in the event of the address on said internal address bus being between said first and second predetermined limits.
15. An autoteller system for dispensing money to a user upon presentation of a valid card, said system being characterised by com prising; an encryption module coupled to re ceive an input word, coupled to receive a current key word and operable to respond to said current key word to provide an output word being said input word encrypted accord ing to a selected one out of a plurality of manners of encryption, a removable master key loader for providing instructions for the performance of an algorithm for the genera tion of a master key word, a port on said encryption module for receiving said key loader and for reading said instructions there 11. A system according to claim 10 com- 120 from, and a data link operable to receive a prising an edge connector for receiving said remotely provided sub key word, where said encryption module, where said backup power encryption module is operable to receive said supply comprises a link on said edge connec- instructions from said port and to perform said tor for disconnecting said backup power sup- algorithm to generate said master key word, 60 ply from said secure sustained memory in the 125 where said encryption module is operable to event of said encryption module being re- employ said master key word as said current moved from said system, whereby the con- key word and said sub key word as said input tents of said secure, sustained memory will be word to generate a session key word being lost to prevent external inspection thereof. the output word resultant therefrom, and where, thereafter, said encryption module is 12. A system according to claim 9, 10 or 130 19 GB 2 131 586A 19 operable to employ said session key word as said current key word in place of said master key word, said module further comprising an input register operable to perform a cyphertext encryption wherein said input word is the parallel binary digit. EXCLUSIVE-OR comparison between the word to be cyphertext encrypted and the output word generated in response to the next previ- ously presented word to be cyphertext encrypted.
16. A system according to claim 15 wherein said encryption module comprises; an encryption control processor for controlling the operation of said encryption module, a secure sustained memory for receiving and storing said master key word and said session key word, and a back-up power supply for sustaining said secure memory in the event of the main power supply to said system failing, where the contents of said secure, sustained memory are accessible to said encryption control processor but where said encryption control processor is unable to communicate said contents of said secure, sustained memory to any part of said system external to said encryption module.
17. A system according to claim 16 wherein said secure, sustained memory is coupled to receive and operate to store and deliver up to said encryption control processor data word other than said master key word and said session key word, where said master key word and said session key word are stored at a plurality of predetermined locations in said secure sustained memory interspersed among the locations whereat said other data words are stored and known only to said encryption control processor.
18. A system according to claim 17 comprising an edge connector for receiving said encryption module, where said back up power supply comprises a link on said edge connector for disconnecting said backup power sup- ply from said secure sustained memory in the event of said encryption module being re moved from said system, whereby the con tents of said secure, sustained memory will be lost to prevent external inspection thereof.
19. A system according to claim 16, 17 or 18 comprising an autoteller control proces sor for controlling the overall operation of said system, where said encryption module com prises a communication register for providing communication between said encryption control processor and said autoteller control processor, said communication register comprising a first interface memory for receiving data from said autoteller control processor and for delivering up data to said encryption control processor and a second interface memory for receiving data from said encryption control processor and for delivering up data to said autoteller control processor.
20. A system according to claim 19 wherein said encryption control processor comprises an encryption address bus, wherein said autoteller control processor comprises an internal address bus, and wherein said communication register comprises a first address decoder coupled to receive said internal address bus operable to provide an activating signal to said first and second interface memories if an address on said internal address bus lies between first and second predetermined limits and a second address decoder coupled to receive said encryption address bus and operable to provide an activating signal to said first and second interface memories if an address on said encryption address bus lies between third and foruth predetermined limits.
21. A system according to claim 20 wherein said first address decoder is operable to prevent said second address decoder from providing said activating signal in the event of the address on said internal address bus being between said first and second predetermined limits.
22. A system substantially as described with reference to the appended drawings.
Printed for Her Majesty's Stationery Office by Burgess Et Son (Abingdon) Ltd-1 984. Published at The Patent Office, 25 Southampton Buildings, London, WC2A l AY, from which copies may be obtained.
GB08234568A 1982-12-03 1982-12-03 Autoteller systems Expired GB2131586B (en)

Priority Applications (4)

Application Number Priority Date Filing Date Title
GB08234568A GB2131586B (en) 1982-12-03 1982-12-03 Autoteller systems
EP83304907A EP0111381B1 (en) 1982-12-03 1983-08-25 Improvements in and relating to autoteller systems
DE8383304907T DE3378383D1 (en) 1982-12-03 1983-08-25 Improvements in and relating to autoteller systems
JP58197465A JPS59170970A (en) 1982-12-03 1983-10-20 Automatic deposit dispensing system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
GB08234568A GB2131586B (en) 1982-12-03 1982-12-03 Autoteller systems

Publications (2)

Publication Number Publication Date
GB2131586A true GB2131586A (en) 1984-06-20
GB2131586B GB2131586B (en) 1985-11-20

Family

ID=10534726

Family Applications (1)

Application Number Title Priority Date Filing Date
GB08234568A Expired GB2131586B (en) 1982-12-03 1982-12-03 Autoteller systems

Country Status (4)

Country Link
EP (1) EP0111381B1 (en)
JP (1) JPS59170970A (en)
DE (1) DE3378383D1 (en)
GB (1) GB2131586B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1985004742A1 (en) * 1984-04-12 1985-10-24 Pengeinstitutternes Ko^/Be- Og Kreditkortaktiesels An apparatus communicating with data systems and a method of communicating with data systems
USRE35403E (en) * 1987-01-07 1996-12-17 Miu Industries Ltd. Encryption printed circuit board
GB2376124A (en) * 2001-05-23 2002-12-04 Yong Hock Lawrence Sim Currency conversion machine

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH0814841B2 (en) * 1986-03-10 1996-02-14 株式会社日立製作所 Image data fraud prevention method
GB8619453D0 (en) * 1986-08-08 1986-09-17 British Broadcasting Corp Data encipherment
FR2613565B1 (en) * 1987-04-03 1989-06-23 Bull Cps METHOD FOR ROUTING SECRET KEYS TO SECURITY MODULES AND USER CARDS, IN AN INFORMATION PROCESSING NETWORK
FR2616937B1 (en) * 1987-06-17 1991-05-31 Bonnaval Lamothe Michel TRANSCODER FOR CONTROLLING THE READ-COMPARISON PROCESS OF A CODE DOCUMENT
NL8702012A (en) * 1987-08-28 1989-03-16 Philips Nv TRANSACTION SYSTEM CONTAINING ONE OR MORE HOST STATIONS AND A NUMBER OF DISTRIBUTED ENTRY STATIONS, WHICH ARE LINKABLE THROUGH A NETWORK SYSTEM WITH ANY HOST STATION, AS A CONSTRUCTION STATION AND END STATION SUITABLE FOR THE USE OF USE.
ES2069553T3 (en) * 1988-07-20 1995-05-16 Syspatronic Ag Spa TERMINAL CONTROLLED BY DATA SUPPORT IN A DATA EXCHANGE SYSTEM.

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US3956615A (en) * 1974-06-25 1976-05-11 Ibm Corporation Transaction execution system with secure data storage and communications
US4386234A (en) * 1977-12-05 1983-05-31 International Business Machines Corp. Cryptographic communication and file security using terminals
CH640971A5 (en) * 1979-06-28 1984-01-31 Kurt Ehrat Mobile data container secured against unauthorised access
US4317957A (en) * 1980-03-10 1982-03-02 Marvin Sendrow System for authenticating users and devices in on-line transaction networks

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1985004742A1 (en) * 1984-04-12 1985-10-24 Pengeinstitutternes Ko^/Be- Og Kreditkortaktiesels An apparatus communicating with data systems and a method of communicating with data systems
US4882779A (en) * 1984-04-12 1989-11-21 Pengeinstitutternes Kobe - Og Kreditkortaktieselskab Apparatus for communicating with data systems and a method of communicating with data systems
USRE35403E (en) * 1987-01-07 1996-12-17 Miu Industries Ltd. Encryption printed circuit board
GB2376124A (en) * 2001-05-23 2002-12-04 Yong Hock Lawrence Sim Currency conversion machine

Also Published As

Publication number Publication date
EP0111381A2 (en) 1984-06-20
GB2131586B (en) 1985-11-20
EP0111381A3 (en) 1986-03-05
EP0111381B1 (en) 1988-11-02
DE3378383D1 (en) 1988-12-08
JPS59170970A (en) 1984-09-27

Similar Documents

Publication Publication Date Title
US5008936A (en) Backup/restore technique in a microcomputer-based encryption system
EP0377706B1 (en) System for the secure handling of encryptor keys
US4649510A (en) Methods and apparatus for the protection and control of computer programs
US5016277A (en) Encryption key entry method in a microcomputer-based encryption system
US5323323A (en) Franking machine system
EP0243873B1 (en) Ic card identification system including pin-check time means
EP0689702B1 (en) A secure application card for sharing application data and procedures among a plurality of microprocessors
EP0674290B1 (en) Card type storage medium and card type storage medium issuing apparatus
EP0138386B1 (en) Identification card
US4816656A (en) IC card system
US4650975A (en) IC card and an identification system thereof
US5012074A (en) Apparatus for securing an IC-card issuing station
EP0182244A2 (en) Electronic bankbook and transaction system
US5604917A (en) IC memory card having masking function for preventing writing of data into a fixed memory area
EP0111381B1 (en) Improvements in and relating to autoteller systems
US5128996A (en) Multichannel data encryption device
US4837714A (en) Methods and apparatus for customizing and testing fully assembled postage meters
US5022076A (en) Redundant encryption processor arrangement for use in an electronic fund transfer network
EP0121853A2 (en) Data processing system having public encryption and private decryption keys
US5123047A (en) Method of updating encryption device monitor code in a multichannel data encryption system
US5758121A (en) Data storage security apparatus and method which erases memory and utilizes a power switch to cut-off electric power during unsuccessful access
US5796092A (en) IC card and IC card system
US6141422A (en) Secure cryptographic multi-exponentiation method and coprocessor subsystem
US6694452B1 (en) Data processor and method of processing data
US7958376B2 (en) Write once system and method for facilitating digital encrypted transmissions

Legal Events

Date Code Title Description
PCNP Patent ceased through non-payment of renewal fee

Effective date: 19951203