Method for improving the security of postage meter machines
First Claim
1. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine being openable and containing a microprocessor which controls the execution of a system routine, said method comprising the steps of:
- establishing a first communication link between a user and said central data station;
establishing a second communication link between said postage meter machine and said central data station and communicating data between said central data station and said postage meter machine which permits said postage meter machine to determine if a subsequent opening of said machine is authorized or unauthorized;
upon any opening of said housing of said postage meter machine, automatically causing said microprocessor to conduct a routine, employing said data communicated to said postage meter machine from said central data station, to determine whether said opening is authorized or unauthorized;
if said opening was authorized and said housing is closed, permitting said system routine to enter into said franking mode;
if said opening was unauthorized and said housing is closed, preventing said system routine from entering into said franking modereporting an intent to conduct an authorized opening of said postage meter machine by making a request for opening at said central data station after establishment of said communication link;
communicating a new code word to said postage meter machine from said central data station upon approval of said request for opening, as part of said data communicated between said postage meter machine and said central data station; and
automatically transferring said postage meter machine into a first mode for effectively shutting said postage meter machine off if said postage meter machine is opened and said new code word is absent from said postage meter machine.
2 Assignments
0 Petitions
Accused Products
Abstract
In a method for improving the security of postage meter machines, the intent to conduct an authorized opening of the machine, such as for inspection or maintenance purposes, is first reported to a central data station, after the postage meter machine to be opened has established communication between the machine and the central data station. The postage meter machine has a code word stored therein, the presence of this code word being necessary for authorized operation of the machine. Following the request to open, the central data station transmits a new code word to the postage meter machine, which is also stored therein. Upon any opening of the postage meter machine, the current code word is automatically erased. If the opening is authorized, and thus a new code word is stored in the machine, this new code word is automatically substituted for the erased code word, so that operation of the machine can proceed in a normal fashion. If the opening is unauthorized, and thus there is no new code word to replace the erased code word, the machine is automatically placed in a first mode, which prevents operation of the machine.
-
Citations
82 Claims
-
1. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine being openable and containing a microprocessor which controls the execution of a system routine, said method comprising the steps of:
-
establishing a first communication link between a user and said central data station; establishing a second communication link between said postage meter machine and said central data station and communicating data between said central data station and said postage meter machine which permits said postage meter machine to determine if a subsequent opening of said machine is authorized or unauthorized; upon any opening of said housing of said postage meter machine, automatically causing said microprocessor to conduct a routine, employing said data communicated to said postage meter machine from said central data station, to determine whether said opening is authorized or unauthorized; if said opening was authorized and said housing is closed, permitting said system routine to enter into said franking mode; if said opening was unauthorized and said housing is closed, preventing said system routine from entering into said franking mode reporting an intent to conduct an authorized opening of said postage meter machine by making a request for opening at said central data station after establishment of said communication link; communicating a new code word to said postage meter machine from said central data station upon approval of said request for opening, as part of said data communicated between said postage meter machine and said central data station; and automatically transferring said postage meter machine into a first mode for effectively shutting said postage meter machine off if said postage meter machine is opened and said new code word is absent from said postage meter machine. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine being openable and containing a microprocessor which controls the execution of a start and initialization routine followed by a system routine, said system routine including a franking mode, said method comprising the steps of:
-
storing a current code word in said postage meter machine; establishing a communication link between said postage meter machine and said central data station; reporting an intent to conduct an authorized opening of said postage meter machine by making a request for opening at said central data station after establishment of said communication link; communicating a new code word to said postage meter machine from said central data station upon approval of said request for opening and storing said new code word in said postage meter machine at a different memory location from said current code word, said current code word and said new code word exclusively comprising valid code words; automatically erasing said current code word upon any opening of said housing of said postage meter machine; automatically substituting said new code word, if present in said postage meter machine, for the erased current code word upon opening of said postage meter machine; automatically transferring said postage meter machine into a first mode for effectively shutting said postage meter machine off if said current code word is erased and no new code word is present to substitute for the erased current word and thus no valid code word is present in said postage meter machine; preventing said postage meter machine from automatically transferring into said first mode if said new code word has been substituted for the erased current code word and thus a valid code word is present in said postage meter machine; conducting said start and initialization routine followed by said system routine and conducting a periodic interrogation during said start and initialization routine and during said system routine to confirm the continued presence of new code word in said postage meter machine; and in said start and initialization routine, before conducting a first periodic interrogation, calling in current data to determine whether said postage meter machine satisfies a specified criterion to conduct a franking and, if said specified criterion is not satisfied, causing said postage meter machine to enter into a second mode which displays a notification of a need to communicate with said central data station and which prevents said postage meter machine from entering into said franking mode. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45)
-
-
46. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine containing a microprocessor which controls the execution of a start and initialization routine followed by a system routine, said system routine including a franking mode, said method comprising the steps of:
-
establishing a first criterion indicative of whether the security of said postage meter machine has been breached; if said first criterion is not satisfied, placing said postage meter machine in a first mode which prevents said postage meter machine from conducting a franking; requiring specific measures to be undertaken before said postage meter machine is again capable of franking following entry of said postage meter machine into said first mode; if said first criterion is satisfied, calling in current data from said microprocessor to conduct a flanking; establishing a second security-related criterion; if said second security-related criterion is not satisfied after said current data are called in, causing said postage meter machine to enter into a second mode; and in said second mode, displaying a warning of impending disablement of said postage meter machine. - View Dependent Claims (47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61)
-
-
62. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine containing a microprocessor which controls the execution of a start and initialization routine followed by a system routine, said system routine including a franking mode, said method comprising the steps of:
-
internally distinguishing within said postage meter machine between non-manipulated and manipulated operation of said postage meter machine by supervising a chronological duration of the execution of programs or program sub-routines in said postage meter machine by comparing a measured running time of a program or sub-routine to a predetermined running time; and initiating measures to ensure the security of said postage meter machine if said predetermined running time is not equal to said measured running time, including placing said postage meter machine in a first mode wherein franking is prevented, and requiring establishment of a first security criterion to exit said first mode. - View Dependent Claims (63)
-
-
64. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine containing a microprocessor which controls the execution of a start and initialization routine followed by a system routine, said system routine including a franking mode, said method comprising the steps of:
-
varying a count value during execution of a program routine in said postage meter machine; comparing said count value to a predetermined count value after the execution of said program routine; and initiating steps to ensure the security of said postage meter machine if said count value is not equal to said predetermined count value including placing said postage meter machine in first mode wherein franking is prevented, requiring establishment of a first security criterion to exit said first mode. - View Dependent Claims (65)
-
-
66. A method for improving the security of a postage meter machine which is capable of communication with a remote central data station, said postage meter machine containing a microprocessor, under the supervision of an OTP, for executing a start and initialization routine followed by a system routine, said system routine including a franking mode, said method comprising the steps of:
-
forming a checksum in said OTP for a content of an external program memory; comparing said checksum to a predetermined value stored in said OTP at a specified point in the operation of said postage meter machine; and inhibiting said postage meter machine if said predetermined value and said checksum do not coincide including placing said postage meter machine in first mode wherein franking is prevented, requiring establishment of a first security criterion to exit said first mode. - View Dependent Claims (67, 68, 69, 70, 71, 72, 73)
-
-
74. Method for improving the security of a postage meter machine containing a control unit, said method comprising the steps of:
-
(a) communicating data from a data central to the postage meter machine corresponding to a requested, authorized operation performed on the postage meter machine and logging said operation as an allowed operation in the control unit; (b) distinguishing in said control unit among requested, authorized and unauthorized operations performed on the postage meter machine using the data communicated from the data central, and logging an operation as an error given unauthorized operation performed on the postage meter machine and, after the conclusion of an authorized operation performed on the postage meter machine, restoring said postage meter machine to its original operating condition using said data communicated from the data central; (c) switching the postage meter machine into a first mode and thereby disabling said postage meter machine when the correct data are absent because an unauthorized operation was performed on the postage meter machine; and (d) placing said postage meter machine in a second mode and displaying a warning indicating an imminent automatic communication from said postage meter machine to said data central. - View Dependent Claims (75, 76, 77, 78, 79, 80, 81)
-
-
82. A method for improving security of a postage meter machine containing a control unit, said method comprising the steps of:
-
franking postal items in said postage meter machine using a printing head, said items being conveyed beneath said printing head at a conveying speed and said franking taking place at a printing speed; executing programs in said postage meter machine for franking items, said programs having an execution time associated therewith and having a count value associated therewith which is varied during execution of a program; selecting at least one of said conveying speed, said printing speed, said program execution time or said count value as a first security indicator and comparing said first security indicator to a first security criterion; and placing said postage meter machine in a first mode if said first security indicator does not satisfy said first security criterion and preventing further franking by said postage meter machine in said first mode and requiring establishment of said first security criterion to exit said first mode.
-
Specification