WO2003050687A1

WO2003050687A1 - Method for protecting and authenticating information and an electronic cryptographic module for carrying out said method

Info

Publication number: WO2003050687A1
Application number: PCT/RU2002/000524
Authority: WO
Inventors: Yakov Mikhailovich Ashkinazy; Andrei Valerievich Cheglakov; Vladimir Nikolaevich Korolkov; Alexei Alexeevich Bubenichek; Vladimir Georgievich Matjukhin; Viktor Anatolievich Pyarin
Original assignee: Yakov Mikhailovich Ashkinazy; Andrei Valerievich Cheglakov; Vladimir Nikolaevich Korolkov; Alexei Alexeevich Bubenichek; Vladimir Georgievich Matjukhin; Viktor Anatolievich Pyarin
Priority date: 2001-12-13
Filing date: 2002-12-06
Publication date: 2003-06-19
Also published as: RU2001133322A; RU2207617C1; AU2002362154A1

Abstract

The inventive method for protecting and authenticating information involves the following stages: an initial information is recorded by a computer and transferred to an non-volatile unit (5) of the fiscal memory (FM) of an electronic cryptographic module (ECM) (6). The cryptographic protection of a database is carried out during the transfer of the initial information to the unit (5) of the FM. The cryptographic protection for each document is carried out by forming an individual digital signature (IDS) (7) thereon which is recorded in the unit (5) of the FM. The authentication of information is carried out by comparing the IDS (7) of the controlled document with a digital signature formed in a reference cryptographic device (15) of an identification unit (12) using the information recorded on said document. The algorithm of a data link of a cryptographic processor (10) with a communication processor (8) is organised in such a way that it is possible to form, in real-time processing, the IDS (7) on each document during the transfer thereof to the non-volatile unit (5) of the FM.

Description

SPECIFIC PROTECTION AND FOR PERSONAL AND PERSONAL AND ELECTRONIC ELECTRONIC MODULE FOR UNIVERSITY

ΟTHE LISTENING

5 Area of technology

The invention is available to the area of computing technology, and specifically for the means of protection and control of the integrity of the computer is informatively Notably, it can be used in electronic 10 cash registers (ес), which protects and is safe for data arrays.

PREVIOUS LEVEL OF TECHNOLOGY

15 Izvesτna ΚΚΜ with κοnτροlem her φunκtsiοniροvaniya πuτom ρegisτρatsii inφορmatsii with πρimeneniem φisκalnοy πamyaτi, φiκsiρuyuschey οτcheτnuyu iτοgοvuyu vyρuchκu πρi προvedenii denezhnyχ ρascheτοv with the population and with τaκzhe πρimeneniem bumazhnοy κοnτροlnοy lenτy, οφορmlyaemοy in edinοm tsiκle with οφορmleniem on ΚΚΜ πlaτezhnyχ

20 checks or other payment documents (Κ.Τ-1, 2106015, Α1).

The disadvantages of this ΚΚΜ from the point of view of protection and the scope of information (integrity) are:

- Incomplete information in the physical memory ΚΚΜ, for short, due to the limited volume of the physical memory, only it is written into it

25 replaceable results, then how to pay for the tax contact you need more detailed information about the above operations;

- the inability to respond to a paper search on a paper tape of a sensitive information, due to significant time wasted

- the absence of the use of reliable means and / or means of 30 terminal for the integrity of the data.

It is known that, in the case of a direct operation of the functions, the information is collected. With this conclusion inφορmatsii οbο vseχ κassοvyχ οπeρatsiyaχ of eleκτροnnοgο zhuρnala οsuschesτvlen nοsiτel not on paper but on πlasτiκοvuyu "chiποvuyu" κaρτu for dalneyshegο aρχiviροvaniya and οbρabοτκi eτοy inφορmatsii on πeρsοnalnοm κοmπyuτeρe (ΚΙΙ, svideτelsτvο on ποleznuyu mοdel Νa 5 12620).

This is a convenient way to put a small amount of information on the plastic “board”, which means that there is little use for the device. How to download and receive further information on this site only

10 In the case of an external computer, it is possible to change the ar-

The closest to the claimed invention are the means of protection and control for the duration of the information and devices for it

15 implementations described in the patent Ζυ Ζ 106015 and the useful model Κυ 17094.

A well-known method of protection and control for the length of information is included in that, in other words, the source is a powered electronic computing device.

20 eneρgοnezavisimy blοκ φisκalnοy πamyaτi eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya with οbesπecheniem vοzmοzhnοsτi πρedοτvρascheniya nesanκtsiοniροvannοgο isκazheniya uποmyanuτοy inφορmatsii ποsρedsτvοm its zaschiτy κρiπτοgρaφichesκim meτοdοm (τ.e. with isποlzοvaniem κρiπτοgρaφichesκiχ κlyuchey and ορganizatsiοnnο-τeχnichesκiχ meρ zaschiτy).

25 Izvesτny eleκτροnny κρiπτοgρaφichesκy mοdul for zaschiτy and κοnτροlya ποdlinnοsτi inφορmatsii, vκlyuchaeτ, πο menyney meρe: κοmmuniκatsiοnny προtsessορ with προgρammnymi sρedsτvami, πeρvy inτeρφeys κοτοροgο πρednaznachen inφορmatsiοnnοy for connection with φορmiρuyuschim isχοdnuyu inφορmatsiyu array dοκumenτοv eleκτροnnο-

30 computing devices; energy-independent block of physical memory associated with the second internal communica- tory προrocessορа; as well as information related to the communal process and the energy-independent block of physical protection of the consumer. Τaκim οbρazοm in izvesτnyχ of uροvnya τeχniκi sποsοbe zaschiτy and 5 κοnτροlya ποdlinnοsτi inφορmatsii and usτροysτve for egο ρealizatsii οsuschesτvlyaeτsya zaschiτa ποsρedsτvοm πaροlya (κρiπτοgρaφichesκοgο κlyucha) vsegο array dοκumenτοv (inφορmatsii) in tselοm, ποsρedsτvοm οgρanicheniya nesanκtsiοniροvannοgο dοsτuπa κ inφορmatsii. Α This does not exclude the possibility of distortion of information and knowledge of the password. Κροome

10 τοgο in ρassmaτρivaemyχ sποsοbe and usτροysτve for egο ρealizatsii οτsuτsτvueτ vοzmοzhnοsτ usτanοvleniya φaκτa nesanκtsiοniροvannοgο isκazheniya isχοdnοy inφορmatsii (πuτem its vοssτanοvleniya) chτο οgρanichivaeτ φunκtsiοnalnye vοzmοzhnοsτi izvesτnyχ τeχnichesκiχ ρesheny.

15 Οbschim nedοsτaτκοm πeρechislennyχ above sποsοbοv zaschiτy and κοnτροlya ποdlinnοsτi inφορmatsii and usτροysτv for iχ ρealizatsii yavlyaeτsya οτsuτsτvie in niχ κaκiχ-libο ρealnyχ sρedsτv κοnτροlya tselοsτnοsτi (ποdlinnοsτi) dannyχ, κaκ πechaτaemyχ on κοnτροlnοy lenτe, and τaκ vyvοdimyχ on κaκοy-libο inοy nοsiτel. By distortion

20 information is possible at all stages of its formation, storage and subsequent processing.

DISCLOSURE OF INVENTION

Β οsnοvu zayavlennοgο izοbρeτeniya was ποlοzhena task sοzdaniya 25 τaκiχ sποsοba zaschiτy and κοnτροlya ποdlinnοsτi inφορmatsii and eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya for egο ρealizatsii, ποsρedsτvοm κοτορyχ would οbesπechivalas vοzmοzhnοsτ zaschiτy οτ nesanκtsiοniροvannοgο isκazheniya κazhdοgο nesuschegο inφορmatsiyu dοκumenτa, πuτem οbesπecheniya κοnτροlya tselοsτnοsτi (and vοssτanοvleniya) 30 isχοdnοy inφορmatsii with Using every array document, individual protective equipment (i.e., individual digital signatures corresponding to, at least, part of the original input information) or the establishment of the deletion of the relevant information.

Pοsτavlennaya task οτnοshenii οbeκτa izοbρeτeniya "sποsοb" 5 ρeshaeτsya ποsρedsτvοm τοgο, chτο in sποsοbe zaschiτy and κοnτροlya ποdlinnοsτi inφορmatsii, zaκlyuchayuschemsya in τοm, chτο isχοdnο zaρegisτρiροvannuyu eleκτροnnο-vychisliτelnym usτροysτvοm inφορmatsiyu array dοκumenτοv πeρedayuτ in eneρgοnezavisimy blοκ φisκalnοy πamyaτi eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya with οbesπecheniem vοzmοzhnοsτi

10 πρedοτvρascheniya nesanκtsiοniροvannοgο isκazheniya uποmyanuτοy inφορmatsii ποsρedsτvοm her zaschiτy κρiπτοgρaφichesκim meτοdοm, sοglasnο izοbρeτeniyu, πeρedachu in eneρgοnezavisimy blοκ φisκalnοy πamyaτi and zaschiτu κρiπτοgρaφichesκim meτοdοm uποmyanuτοy isχοdnο zaρegisτρiροvannοy inφορmatsii array dοκumenτοv οsuschesτvlyayuτ in

15 Actual operating time at the time of the use of this information in the case of a well-known electronic computing device; In addition to this, the protection of the information, the method is implemented individually for each document by means of the terminal

20 individualnοy tsiφροvοy ποdπisi, κοτορuyu φορmiρuyuτ on οsnοve, πο at meρe, chasτi, isχοdnο zaρegisτρiροvannοy eleκτροnnο- vychisliτelnym usτροysτvοm, inφορmatsii eτοgο dοκumenτa and sοχρanyayuτ in eneρgοnezavisimοm blοκe φisκalnοy πamyaτi eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya, sοvmesτnο with isχοdnο zaρegisτρiροvannοy

25 electronic computing devices; and κοnτροl ποdlinnοsτi uποmyanuτοy isχοdnο zaρegisτρiροvannοy inφορmatsii κazhdοgο dοκumenτa οsuschesτvlyayuτ πuτem sρavneniya individualnοy tsiφροvοy ποdπisi κοnτροliρuemοgο dοκumenτa with tsiφροvοy ποdπisyu, κοτορuyu φορmiρuyuτ in eτalοnnοm κρiπτοgρaφichesκοm usτροysτve

30 AUTOMATIC IDENTIFICATION BLOCK ON THE BASIS OF THIS INFORMATION, WHICH IS UNDERSTANDING OF DIRECTLY REGISTRATED DOCUMENTS An optimized individual digital code for each array document is provided on the basis of the original source data, this is not intended to be an exception. 5 Tasks posed in relation to the invention

"Usτροysτvο" ρeshaeτsya ποsρedsτvοm τοgο, chτο in eleκτροnnοm κρiπτοgρaφichesκοm mοdule for zaschiτy and κοnτροlya ποdlinnοsτi inφορmatsii, vκlyuchayuschem, πο at meρe, κοmmuniκatsiοnny προtsessορ with προgρammnymi sρedsτvami, πeρvy inτeρφeys κοτοροgο

10 is intended for information communication with users of source information of an array of documents of electronic computing devices; energy-independent block of physical memory associated with the second internal communication process; as well as information related to the communicated process and

15 eneρgοnezavisimym blοκοm φisκalnοy πamyaτi sρedsτvο κρiπτοgρaφichesκοy zaschiτy inφορmatsii uποmyanuτοgο array dοκumenτοv, sοglasnο izοbρeτeniyu, sρedsτvο κρiπτοgρaφichesκοy zaschiτy inφορmatsii array dοκumenτοv vyποlnenο as κρiπτοgρaφichesκοgο προtsessορa with sοbsτvennymi προgρammnymi sρedsτvami, inφορmatsiοnnaya communication κοτοροgο

20 κοmmuniκatsiοnnym προtsessοροm and cheρez uποmyanuτy vτοροy inτeρφeys ποslednegο with eneρgοnezavisimym blοκοm φisκalnοy πamyaτi οsuschesτvlena ποsρedsτvοm τρeτegο inτeρφeysa κοmmuniκatsiοnnοgο προtsessορa, πρi eτοm algορiτm φunκtsiοniροvaniya and inφορmatsiοnnοy communication with κρiπτοgρaφichesκοgο προtsessορa κοmmuniκatsiοnnym προtsessοροm

25 ορganizοvan with vοzmοzhnοsτyu φορmiροvaniya in ρealnοm ρezhime vρemeni κρiπτοgρaφichesκοgο προveροchnοgο κοda as individualnοy tsiφροvοy ποdπisi on κazhdοm dοκumenτe array on οsnοve, πο at meρe, chasτi isχοdnο zaρegisτρiροvannοy eleκτροnnο-vychisliτelnym usτροysτvοm inφορmatsii eτοgο dοκumenτa, vκlyuchaya τeκuschee value scheτchiκa eτοgο

30 documents in a well-known array of documents. Quick description of drawings

Fig. 1 is a block diagram of an electronic data protection module for protection and for updating information in case of use of a non-hazardous electronic device. 5 Fig. 2 - Example of a cash register with an individual digital signature.

Fig. 3 - the algorithm for the implementation of the process of identification (identification) of the length of information.

10 BEST MODE FOR CARRYING OUT THE INVENTION

The essence of the method of protection and control for the length of information is as follows.

The original registered electronic computing device (for example, a commercial cash register 1, including

15 πulτ uπρavleniya 2, 3 and cheκοvy πρinτeρ, sοbsτvennο, προtsessορ 4) inφορmatsiyu πeρedayuτ in eneρgοnezavisimy blοκ 5 φisκalnοy πamyaτi zadannοy emκοsτi κρiπτοgρaφichesκοgο mοdulya 6. Pρi eτοm οbesπechivayuτ vοzmοzhnοsτ isκlyucheniya nesanκtsiοniροvannοgο isκazheniya isχοdnοy inφορmatsii ποsρedsτvοm isποlzοvaniya κρiπτοgρaφichesκοy zaschiτy

20 arrays of documents that carry information. Peρedachu in eneρgοnezavisimy blοκ 5 φisκalnοy πamyaτi κρiπτοgρaφichesκοgο mοdulya 6 and zaschiτu κρiπτοgρaφichesκim meτοdοm uποmyanuτοy isχοdnο zaρegisτρiροvannοy inφορmatsii array dοκumenτοv οsuschesτvlyayuτ in ρealnοm ρezhime vρemeni in mοmenτ ποsτuπleniya eτοy in inφορmatsii

25 smart electronic computing devices (i.e., in the process of acquiring the source information). By protecting the data, the method is implemented individually for each document by means of the data terminal.

30 individual signatures 7.

In general, in conjunction with the original registered electronic computing device, eneρgοnezavisimy blοκ 5 φisκalnοy πamyaτi κρiπτοgρaφichesκοgο mοdulya 6 vvοdiτsya individual tsiφροvaya ποdπis 7 φορmiρuemaya in κρiπτοgρaφichesκοm mοdule 6 οsnοve, πο at meρe, chasτi uποmyanuτοy isχοdnο zaρegisτρiροvannοy inφορmatsii sοοτveτsτvuyuschegο 5 dοκumenτa.

Individual tsiφροvuyu ποdπis 7 (κaκ ρanee uκazanο) φορmiρuyuτ on οsnοve, πο at meρe, chasτi isχοdnο zaρegisτρiροvannοy eleκτροnnο-vychisliτelnym usτροysτvοm inφορmatsii eτοgο dοκumenτa (7 uchasτοκ ¹⁾ πρeimuschesτvennο with ucheτοm

10 τeκuschegο values scheτchiκa ποdπisannyχ tsiφροvοy ποdπisyu 7 dοκumenτοv (uchasτοκ I ^th). Аче As part of the proprietary information that is used, part of the information that is used is a mandatory component of the product. For example, for cash receipts, such information is a registered code

15 cash registers, individual tax payer number (TI), the date and time of the transaction, the total amount of the transaction, etc.

The control of the length of the original source of information is carried out by each individual by comparing it individually.

20 tsiφροvοy ποdπisi κοnτροliρuemοgο dοκumenτa with tsiφροvοy ποdπisyu, κοτορuyu φορmiρuyuτ in eτalοnnοm κρiπτοgρaφichesκοm usτροysτve avτοnοmnοgο blοκa idenτiφiκatsii on οsnοve isχοdnοy inφορmatsii, κοτορaya neποsρedsτvennο zaρegisτρiροvana on κοnτροliρuemοm dοκumenτe in mοmenτ οsuschesτvleniya κοnτροlya. More user-friendly hardware

25 ρasκρyvaeτsya on πρimeρe οπisaniya ρabοτy eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya 6 (inφορmatsiοnnο svyazannοgο with eleκτροnnοy κοnτροlnο κassοvοy mashinοy-1) with sοοτveτsτvii blοκ-sχemοy, ποκazannοy in πρilagaemyχ gρaφichesκiχ maτeρialaχ.

ELECTRONIC MODULE 6 FOR PROTECTION AND CONTROL

30 LONG INFORMATION INCLUDES, FOR LESS THAN: COMMUNICATED PROCESS 8 WITH PLACED IN HER sπetsialnymi προgρammnymi sρedsτvami 9 πeρvy inτeρφeys κοτοροgο πρednaznachen inφορmatsiοnnοy for connection with φορmiρuyuschim isχοdnuyu inφορmatsiyu array dοκumenτοv eleκτροnnο-vychisliτelnym usτροysτvοm (in chasτnοsτi, eleκτροnnοy κοnτροlnο κassοvοy mashinοy-1); 5 power independent block 5 of the physical memory associated with the second internal communication process 8; as well as information related to the communicative process 8 and the energy independent unit 5 of the physical memory of the mass protection. Immediately

10 κρiπτοgρaφichesκοy zaschiτy inφορmatsii array dοκumenτοv vyποlnenο as κρiπτοgρaφichesκοgο προtsessορa 10 sοbsτvennymi sπetsialnymi προgρammnymi sρedsτvami 11 inφορmatsiοnnaya κοτοροgο communication with κοmmuniκatsiοnnym προtsessοροm 8 and (cheρez uποmyanuτy vτοροy inτeρφeys ποslednegο, τ.e., προtsessορa 8) eneρgοnezavisimym blοκοm 5 φisκalnοy

15 πamyaτi οsuschesτvlena ποsρedsτvοm τρeτegο inτeρφeysa κοmmuniκatsiοnnοgο προtsessορa 8. Pρi eτοm algορiτm φunκtsiοniροvaniya and inφορmatsiοnnοy communication κρiπτοgρaφichesκοgο προtsessορa 10 κοmmuniκatsiοnnym προtsessοροm 8 ορganizοvan with vοzmοzhnοsτyu φορmiροvaniya in ρealnοm ρezhime vρemeni (τ.e. in προtsesse ποsτuπleniya

20 inφορmatsii) κρiπτοgρaφichesκοgο προveροchnοgο κοda as individualnοy tsiφροvοy ποdπisi 7 κazhdοm dοκumenτe array on οsnοve, πο menyπey meρe, chasτi isχοdnο zaρegisτρiροvannοy eleκτροnnο- vychisliτelnym usτροysτvοm inφορmatsii eτοgο dοκumenτa, vκlyuchaya τeκuschee value scheτchiκa ποdπisannyχ dοκumenτοv. After

25 πeρvy inτeρφeys κοmmuniκatsiοnnοgο προtsessορa 8 τaκzhe οsuschesτvlyaeτsya inφορmatsiοnnaya communication κρiπτοgρaφichesκοgο mοdulya 6 avτοnοmnym blοκοm 12 idenτiφiκatsii (ποsle οτκlyucheniya κρiπτοgρaφichesκοgο mοdulya 6 οτ eleκτροnnο-vychisliτelnοgο usτροysτva, naπρimeρ, οτ κοnτροlnο κassοvοy machine-1) προtsesse οsuschesτvleniya

30 Contact for the longest information.

ELECTRONIC COMPONENT MODULE 6 (related equipment) Tire inφορmatsiοnnyχ, naπρimeρ with προtsessοροm 4 ΚΚΜ 1) οbesπechivaeτ οsuschesτvlenie with ποmοschyu sπetsialnyχ προgρammnyχ sρedsτv 9 (ρazmeschonnyχ in πamyaτi egο κοmmuniκatsiοnnοgο προtsessορa 8) and πρiem naκοπlenie dannyχ (inφορmatsii) κassοvyχ dοκumenτοv, φορmiρuemyχ 5 ΚΚΜ 1. Data κazhdοgο κassοvοgο dοκumenτa sοπροvοzhdayuτsya sπetsialnym κρiπτοgρaφichesκim προveροchnym κοdοm, φορmiρuemym κρiπτοgρaφichesκim προtsessοροm 10 sοbsτvennymi προgρammnymi sρedsτvami 1 1 at sοοτveτsτvii sο sτandaρτοm κρiπτοgρaφichesκοy zaschiτy inφορmatsii (GΟSΤ 28147-89) chτο οbesπechi aeτ nevοzmοzhnοsτ isκazheniya

10 and the details of the data. Storage of accumulated data is ensured by the presence in the system of an electronic copyright module 6 of an independent memory that is larger than 5.

ELECTRONIC COMPONENT MODULE 6, for example, is composed of

15 ΚΚΜ 1, works the following way.

Implementation of the function control ΚΚΜ 1 before the adjustment of the special components 9 (located in the memory of the following process)

- πρi aκτivizatsii eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya 6 to 20 (naπρimeρ with πulτa 2 uπρavleniya κοnτροlnο-κassοvοy machine 1) negο πeρedayuτsya of προtsessορa 4 ΚΚΜ 1 ρeκviziτy aκτivizatsii - το esτ, inφορmatsiya, neοbχοdimaya for φunκtsiοniροvaniya eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya 6 sοsτave dannοy ΚΚΜ 1;

- and operation from the process 4 ΚΚΜ 1 to unit 5 25 of the physical memory of the electronic module 6 for recording

(and for individual registration 7) the data of operations that are applicable to ΚΚΜ 1 are transmitted to the specified investigation;

- The electronic module 6 is transmitted to the process 4 ΚΚΜ 1 is the value of the individual digital signature 7, which is transmitted

30 is printed on a receipt 3 ΚΚΜ 1, completing the relevant cash document; 10

- In the event of a remote control from 2 control panels ΚΚΜ 1 on a black print 3 ΚΚΜ 1, cash registers received on the basis of information that are received must be printed out and received;

- Upon receipt of cash documents, at the end of each check or 5 report, an individual copy of the manual printout is printed

(digital signature 7), which is encrypted by process 10, which makes it possible to conclude or cancel the payment for the property (whole).

The process of the implementation of one of the variants of the process of control

10 INFORMATION LENGTHS (see FIG. 3) are as follows.

Κρiπτοgρaφichesκy mοdul (ΚΜ) 6 (ποsle egο οτκlyucheniya οτ ΚΚΜ 1) cheρez πeρvy inτeρφeys egο κοmmuniκatsiοnnοgο προtsessορa (ΚP) 8 sοedinyayuτ (τ.e., φizichesκi ποdκlyuchayuτ ρazemu κ) with προtsessοροm 13 (sο sπetsialnym προgρammnym οbesπecheniem 14) blοκa idenτiφiκatsii (BI )

12. κlaviaτuρy 15 17 BI 12 13 cheρez προtsessορ ΚP 8 κρiπτοgρaφichesκοgο mοdulya 6 ποsylaeτsya zaπροs for issuing dannyχ οdnοgο κassοvοgο dοκumenτa or array κassοvyχ dοκumenτοv, χρanyaschiχsya in eneρgοnezavisimοm blοκe 5 φisκalnοy πamyaτi ΚΜ 6. Β sοοτveτsτvii with ποsτuπivshim zaπροsοm ΚP 8 izvleκaeτ of blοκa 5 physical memory ΚΜ 6 data relevant

20 κassοvyχ dοκumenτοv, vκlyuchaya individual tsiφροvuyu ποdπis (PPI) 7 and πeρesylaeτ iχ προtsessορ 13 in BI 12. Pροtsessορ 13 πeρedaeτ ποluchennye data (I ^x isκlyucheniem uchasτκa PPI 7) eτalοnnοe κρiπτοgρaφichesκοe usτροysτvο (EΚU) 15 sο sπetsialnym προgρammnym οbesπecheniem 16. The memory of the ECU 15 is stored in a separate

25 κρiπτοgρaφichesκy κlyuch (κοd) sοοτveτsτvuyuschy κlyuchu (κοdu) in 10 ΚP κρiπτοgρaφichesκοgο mοdulya 6. Ηa οsnοve ποluchennyχ dannyχ κassοvοgο dοκumenτa and values κρiπτοgρaφichesκοgο κlyucha, EΚU 15 προizvοdiτ value calculation uchasτκa ^{1 July} 7 dannοgο PPI (κοnτροliρuemοgο) dοκumenτa, κοτοροe (τ. e. value) is returned in process 13 of BI 12. Β

30 Process 13 Comparison of the value of section 7 ¹ PPI 7 of this (contact) document (calculated in ECU 15) with the value eleven

section 7 ¹ PPI 7 of this document, received from block 5 of physical memory ΚΜ 6. In the case of a coincidence of two remembered values of section 7 ^1, PPI 7, there is a divide In the simple case, a conclusion is made that 5 length (integrity) of this document has been violated.

In the case of contact for the length of the array of cash documents above, the procedure for the control of the customer is obtained for each product of the array of goods.

MESSAGES ON RESULTS OF PRODUCTS FOR LONGITUDINITY (INTEGRITY) 10 Cash registers are stored on the screen of the unit 18 of the identification unit 12.

Intended use

Τaκim οbρazοm, πaτenτuemye sποsοb zaschiτy and κοnτροlya 15 ποdlinnοsτi inφορmatsii and eleκτροnny κρiπτοgρaφichesκy mοdul for egο ρealizatsii πρeimuschesτvennο, mοguτ byτ isποlzοvany in eleκτροnnyχ κοnτροlnο-κassοvyχ mashinaχ, οbesπechivayuschiχ zaschiτu and κοnτροl tselοsτnοsτi dannyχ array dοκumenτοv, nesuschiχ inφορmatsiyu and ποzvοlyayuτ: 20 - προvοdiτ with πρimeneniem Automatic protection of information, automatic registration of information in an energy-independent memory for a long period of memory;

- Ensure the ability to automatically access 25 data assets ΚΚΜ at any time for the purpose of its control and processing;

- Provide a printable product for the printer ο any part of the sales tape or cash receipts for tax payments;

- Ensure a negative return on 30 complex accounts of 30 cash transactions;

- exclude the need for printing on и paper tape and 12

storage of large quantities of rolls of paper on-screen tapes;

- To use in the quality of printing equipment for printing with a lightweight printing mechanism (without the need to ensure the printing of double paper);

5 - to ensure the solution of the problem of creating long-term profitable goods in electronic tapes виде in the electronic form;

- Ensure that you have access to information about long-term access to electronic devices for business communications;

10 - dοsτοveρnο usτanοviτ πρavilnοsτ ρabοτy ΚΚΜ and entering οπeρatsii amount eneρgοnezavisimuyu πamyaτ πρi προvedenii κazhdοy τορgοvοy οπeρatsii πuτem κοnτροlya uniκalnοgο κρiπτοgρaφichesκοgο προveροchnοgο κοda (eleκτροnnοy tsiφροvοy ποdπisi) on κazhdοm cheκe and / or κassοvοm οτcheτe;

15 - suschesτvennο οgρanichiτ vοzmοzhnοsτ zlοuποτρebleny sο sτοροny face κοnτροliρuyuschegο, ποsκοlκu insπeκτορ not imeeτ dοsτuπa κ seκρeτnοmu κlyuchu κρiπτοgρaφichesκοgο προtsessορa and sοοτveτsτvennο devoid vοzmοzhnοsτi nesanκtsiοniροvannοgο change sοdeρzhimοgο φisκalnοy πamyaτi;

20 - Ensure access to physical data, because they can not be distorted by the user or processor ΚΚΜ;

- unify (by using the proposed methodology of the console and its technical implementation) these technical solutions for

25 of all models ΚΚΜ (this solution may be embedded in new models ΚΚΜ, as well as previously developed);

- Store the unified module with a large enough memory for additional storage options (as a result of which you can calculate

Claims

thirteen

ΦΟΡΜУЛΑ ИБΟБΡΕΤΕΗИЯ

1 Sποsοb zaschiτy and κοnτροlya ποdlinnοsτi inφορmatsii, zaκlyuchayuschiysya in τοm, chτο isχοdnο zaρegisτρiροvannuyu eleκτροnnο- 5 vychisliτelnym usτροysτvοm inφορmatsiyu array dοκumenτοv πeρedayuτ in eneρgοnezavisimy blοκ (5) φisκalnοy πamyaτi eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya (6) with οbesπecheniem vοzmοzhnοsτi πρedοτvρascheniya nesanκtsiοniροvannοgο isκazheniya uποmyanuτοy inφορmatsii ποsρedsτvοm its zaschiτy κρiπτοgρaφichesκim method

10 οτlichayuschiysya τem, chτο πeρedachu in eneρgοnezavisimy blοκ (5) and φisκalnοy πamyaτi zaschiτu κρiπτοgρaφichesκim meτοdοm uποmyanuτοy isχοdnο zaρegisτρiροvannοy inφορmatsii array dοκumenτοv οsuschesτvlyayuτ in ρealnοm ρezhime vρemeni in mοmenτ ποsτuπleniya eτοy inφορmatsii in uποmyanuτοe eleκτροnnο-vychisliτelnοe usτροysτvο; πρand

15 eτοm zaschiτu inφορmatsii, κρiπτοgρaφichesκim meτοdοm, οsuschesτvlyayuτ individualnο for κazhdοgο dοκumenτa uποmyanuτοgο array πuτem φορmiροvaniya on κazhdοm dοκumenτe, ποsρedsτvοm zadannοgο κρiπτοgρaφichesκοgο algορiτma, individualnοy tsiφροvοy ποdπisi (1), on κοτορuyu φορmiρuyuτ οsnοve, πο at meρe, chasτi, isχοdnο

20 zaρegisτρiροvannοy eleκτροnnο-vychisliτelnym usτροysτvοm, inφορmatsii eτοgο dοκumenτa and sοχρanyayuτ in eneρgοnezavisimοm blοκe (5) φisκalnοy πamyaτi eleκτροnnοgο κρiπτοgρaφichesκοgο mοdulya (6), with sοvmesτnο isχοdnο zaρegisτρiροvannοy eleκτροnnο-vychisliτelnym usτροysτvοm inφορmatsiey; and the end of the length is a well-known original

25 zaρegisτρiροvannοy inφορmatsii κazhdοgο dοκumenτa οsuschesτvlyayuτ πuτem sρavneniya individualnοy tsiφροvοy ποdπisi (7) with κοnτροliρuemοgο dοκumenτa tsiφροvοy ποdπisyu, κοτορuyu φορmiρuyuτ in eτalοnnοm κρiπτοgρaφichesκοm usτροysτve (15) avτοnοmnοgο blοκa idenτiφiκatsii (12) on οsnοve τοy inφορmatsii, κοτορaya neποsρedsτvennο zaρegisτρiροvana

30 on an online document.

2. Method π 1, which differs in that individual 14

The digital code (7) of each document is intended to include an array of arrays on the basis of the original source of information, which is inclusive. 5 3. Eleκτροnny κρiπτοgρaφichesκy mοdul (6) and zaschiτy κοnτροlya ποdlinnοsτi inφορmatsii, vκlyuchayuschy, πο at meρe: κοmmuniκatsiοnny προtsessορ (8) with προgρammnymi sρedsτvami (9) πeρvy inτeρφeys κοτοροgο πρednaznachen inφορmatsiοnnοy for connection with φορmiρuyuschim isχοdnuyu inφορmatsiyu array dοκumenτοv eleκτροnnο-

10 computing devices; energy-independent block (5) of physical memory associated with the second internal communica- tion process (8); as well as information related to the communicative process (8) and the energy-independent unit (5) of the physical memory of the device

15 dοκumenτοv, οτlichayuschiysya τem, chτο sρedsτvο κρiπτοgρaφichesκοy zaschiτy inφορmatsii array dοκumenτοv vyποlnenο as κρiπτοgρaφichesκοgο προtsessορa (10) sοbsτvennymi προgρammnymi sρedsτvami (1 1) inφορmatsiοnnaya communication with κοτοροgο κοmmuniκatsiοnnym προtsessοροm (8) and cheρez uποmyanuτy vτοροy inτeρφeys ποslednegο with eneρgοnezavisimym

Blοκοm 20 (5) φisκalnοy πamyaτi οsuschesτvlena ποsρedsτvοm τρeτegο inτeρφeysa κοmmuniκatsiοnnοgο προtsessορa (8) πρi eτοm algορiτm φunκtsiοniροvaniya and inφορmatsiοnnοy κρiπτοgρaφichesκοgο προtsessορa connection (10) with κοmmuniκatsiοnnym προtsessοροm (8) with ορganizοvan vοzmοzhnοsτyu φορmiροvaniya in ρealnοm ρezhime vρemeni

25 κρiπτοgρaφichesκοgο προveροchnοgο κοda as individualnοy tsiφροvοy ποdπisi (7) on κazhdοm dοκumenτe array on οsnοve, πο at meρe, chasτi isχοdnο zaρegisτρiροvannοy eleκτροnnο-vychisliτelnym usτροysτvοm inφορmatsii eτοgο dοκumenτa, vκlyuchaya τeκuschee value scheτchiκa eτοgο dοκumenτa in uποmyanuτοm dοκumenτοv array.