Presentation is loading. Please wait.

Presentation is loading. Please wait.

Supplementary to Presentation on Kiosk Services ATM System Overview TrigMax Enterprise Solutions Mason Liu, Ph.D.

Published byBuck Lawson Modified over 8 years ago

Similar presentations

Presentation on theme: "Supplementary to Presentation on Kiosk Services ATM System Overview TrigMax Enterprise Solutions Mason Liu, Ph.D."— Presentation transcript:

1 Supplementary to Presentation on Kiosk Services ATM System Overview TrigMax Enterprise Solutions Mason Liu, Ph.D.

2 9/28/2006TrigMax Enterprise Solutions Case Study – Wall Mount ATM

3 9/28/2006TrigMax Enterprise Solutions System Overview  Capacity  Operate up to 1,000 ATM terminals in parallel  Software environment  Linux  InforMix or Oracle Database  ISO8583 Financial Data Exchange Protocol  Security  DES-ANSI X3.92:1981 data encryption  Public-Key based ISO 7816 security infrastructure  Message Authentication Code (MAC) deployment  ISO 9564 : 1991 for Personal PIN protection  EMV certified  Multi-level TCP/IP networks with VLAN

4 9/28/2006TrigMax Enterprise Solutions Architecture Partitions  System Topology  Network Structure  Kiosk Terminal  Edge Server  Main Server  Security

5 9/28/2006TrigMax Enterprise Solutions Technology Overview > System Topology LAN ADSL CDMA Kiosk Edge Server Bank Main Server MODE M 3 rd Party Edge Server 3 rd Party Network Kiosk Sub-net Main Network Virtual LAN

6 9/28/2006TrigMax Enterprise Solutions Architecture > Network Structure Network architecture defines following components:  Multi-layer network topology  Terminal – server connection scheme  TCP/IP Client/Server interaction  Run-Time environment  Web based secured https access  Data distribution  Web based applications  SQL database

7 9/28/2006TrigMax Enterprise Solutions Architecture > Kiosk Terminal  Hardware and peripheral modules  Software and environment  Human-machine interface  Network interface Following considerations are needed in designing the kiosk terminal:

8 9/28/2006TrigMax Enterprise Solutions Architecture > Kiosk Terminal > Hardware  LCD and touch-screen display  Secured metal keypad, YDT220  CDMA2000-1X / GPRS, sync/async Modem, LAN(RJ45), RS232  Printer  ISO7812 standard 1,2, or 3 track reader  ISO7816 IC card ( APDU I/O)  Network NIC  Power

9 9/28/2006TrigMax Enterprise Solutions Architecture > Kiosk Terminal > Parts List Modules Items Descriptions Parts Remark Main Controller Microprocessor 32bit ARM 4 serial ports on board Mamory 128M Motherboard Embedded system board Display I/F On board Network I/F On Board Flash Compact Flash IO Network I/F Ethernet RJ45 Cellula Wireless CDMA2000-1 or GPRS Input Devices Credit Card Reader Manual card reader LKE750 Standard IC card/RFID Custom Optional Keypad Metal keypad, YDT220 16 keypad, 2x4 function keys PCB security optional Output Devices Display 10.4 inch LCD Bullet-proof glass Sound Custom Printer Epson,EUT532 EUT532+MB500 Power Main power LW2145 Regulator, Filter, ATX standard

10 9/28/2006TrigMax Enterprise Solutions Architecture > Kiosk Terminal > Software  Basic requirement - Remote upgradeable  Security drivers  EMV standard card driver  ISO 7816 IC card interface  ISO 8583 card-based transaction protocol  Keypad driver, touch screen driver  Printer driver  Unified Network driver for broadband, wireless, and serial port connections  Multimedia display drivers  Image and video (MPG, JPG, GIF, Flash)  Audio (mp3, au)

11 9/28/2006TrigMax Enterprise Solutions Architecture > Kiosk Terminal > Human-Machine Interface  Support commercial applications  Support multimedia A / V display  Support image processing  Value-added advertisement – online remote update  User friendly interactive interface

12 9/28/2006TrigMax Enterprise Solutions Architecture > Kiosk Terminal > Network Interface  Support variety of TCP/IP based communication methods  Wireless  Cellular  Wired – Ethernet, Serial, DSL, modem  Generic driver interface  ISO 8583 – Standard for Financial Transaction Card Originated Messages

13 9/28/2006TrigMax Enterprise Solutions Architecture > Edge Server  Major functionalities  Kiosk terminal management  Transaction status tracking  Software environment  Network interface

14 9/28/2006TrigMax Enterprise Solutions Architecture > Edge Server > Software Environment  Security Measures  Security key manager  Dynamic key generation and distribution  Security monitoring  Data Transaction Measures  Transaction recording and dispatch  Error handling, recovery  Operation monitoring

15 9/28/2006TrigMax Enterprise Solutions Architecture > Edge Server > Software Components The software package consists of following components:  Kiosk (ATM side) interface module  Main server (bank side) interface module  Database (Oracle) management module  Security management module

16 9/28/2006TrigMax Enterprise Solutions Architecture > Security  Support the Public-Key based ISO 7816 security infrastructure  Support EMV protocol  Security measurements: Access control, Identification, Authentication, Data integrity, Data protection, Channel monitoring, error concealment.

17 9/28/2006TrigMax Enterprise Solutions Architecture > Security > Keys Main key Distributed by the edge server to generate the Terminal Key Use the Terminal ID as the formation factor Terminal Key Scramble the Work Key ① Terminal : Decrypt and retrieve the Work Key at reception ② Edge Server : Generate and encrypt the Work Key Work Key Encrypt the payload, generate the MAC code for data integrity checking. ① Terminal : encrypt/decrypt the transaction payload ② Edge Server : encrypt/decrypt the transaction payload Terminal ID Unique ID for each terminal Combined with Main Key to track the transaction per terminal Personal Key To determine the legality of personal PIN ① Terminal: Collect and encrypt the data and personal key using the Work Key, deliver the payload to the Main Server through the Edge Server. ② Main Server (bank): Validate and authorize the transaction PSAM (Payment Secure Application Module) MAC (Message Authentication Code)

18 9/28/2006TrigMax Enterprise Solutions Architecture > Security > Data Safety  Network safety  Firewalls in routers  Virtual sub-net (VLAN) partitions  Safety in data transfer  Deployment of MAC for data integrity  Encryption for data protection  Safety in data storage  Identification (access, owner, transaction)  Encryption

Download ppt "Supplementary to Presentation on Kiosk Services ATM System Overview TrigMax Enterprise Solutions Mason Liu, Ph.D."

Similar presentations

Www.selaprojects.net. What we do Larotecs Web2M is an off-the shelf, end-to-end, web-based solution designed to manage multiple widely distributed devices.

What we do Larotecs Web2M is an off-the shelf, end-to-end, web-based solution designed to manage multiple widely distributed devices.
A+ Guide to Software Managing, Maintaining and Troubleshooting THIRD EDITION Chapter 11 Windows on a Network.

A+ Guide to Software Managing, Maintaining and Troubleshooting THIRD EDITION Chapter 11 Windows on a Network.
CLXMGCS.ppt Why Smart Cards System Overview Card Architecture Why CardLogix Smart Cards Overview FY 2001.

CLXMGCS.ppt Why Smart Cards System Overview Card Architecture Why CardLogix Smart Cards Overview FY 2001.
Introduction to Computers and Information Systems CE 100: Module 1: Hardware.

Introduction to Computers and Information Systems CE 100: Module 1: Hardware.
IS Network and Telecommunications Risks

IS Network and Telecommunications Risks
Networks Adapting Computers to Telecommunications Media.

Networks Adapting Computers to Telecommunications Media.
IS 247 Introduction to Web Application Development Tim Wu.

IS 247 Introduction to Web Application Development Tim Wu.
1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.

1 ITC242 – Introduction to Data Communications Week 12 Topic 18 Chapter 19 Network Management.
4Gon Tel: +44 (0)1245 808295 Fax: +44 (0)1245 808299 2G/3G ROUTERS GWR series Sergej Stolić, M.Sc.Geneko.

4Gon Tel: +44 (0) Fax: +44 (0) G/3G ROUTERS GWR series Sergej Stolić, M.Sc.Geneko.
1 Chapter 19 Networks. 2 What’s Inside and on the CD? In this chapter you’ll learn: –Basic network terminology –To identify network components –About.

1 Chapter 19 Networks. 2 What’s Inside and on the CD? In this chapter you’ll learn: –Basic network terminology –To identify network components –About.
Professor Michael J. Losacco CIS 1150 – Introduction to Computer Information Systems Communications and Networks Chapter 8.

Professor Michael J. Losacco CIS 1150 – Introduction to Computer Information Systems Communications and Networks Chapter 8.
11 Networks The Great Information Exchange. 2 Networking Fundamentals Computer network: Two or more computers connected together Each is a Node Benefits.

11 Networks The Great Information Exchange. 2 Networking Fundamentals Computer network: Two or more computers connected together Each is a Node Benefits.
DAKNET Presented By: rreema.

DAKNET Presented By: rreema.
LECTURE 2 CT1303 LAN. STANDARD MODELS: OSI Model : Open system Interconnection. is a conceptual model that characterizes and standardizes the internal.

LECTURE 2 CT1303 LAN. STANDARD MODELS: OSI Model : Open system Interconnection. is a conceptual model that characterizes and standardizes the internal.
Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 8 “TCP/IP”.

Lecture slides prepared for “Business Data Communications”, 7/e, by William Stallings and Tom Case, Chapter 8 “TCP/IP”.
Rajesh Kakde Senior Windows Embedded Consultant Adeneo Corporation Session Code: WEM302.

Rajesh Kakde Senior Windows Embedded Consultant Adeneo Corporation Session Code: WEM302.
InterSwyft Technology presentation. Introduction InterSwyft brings secured encrypted transmission of SMS messages for internal and external devices such.

InterSwyft Technology presentation. Introduction InterSwyft brings secured encrypted transmission of SMS messages for internal and external devices such.
Innovative Broadband Services C hanging the way we present information: Digital Signs : Effective business promotion Nikolaos Desypris, Chief Executive.

Innovative Broadband Services C hanging the way we present information: Digital Signs : Effective business promotion Nikolaos Desypris, Chief Executive.
Introducing Network Standards Open Systems Interconnection (OSI) Model IEEE 802.x Standard Device Drivers and OSI 1.

Introducing Network Standards Open Systems Interconnection (OSI) Model IEEE 802.x Standard Device Drivers and OSI 1.
Basic Data Communication

Basic Data Communication

Similar presentations

Ads by Google