Verifiable electronic journal for a point of sale device and methods for using the same
First Claim
1. A method for providing a verifiable electronic journal system for a point of sale device comprising:
- receiving transaction information related to a plurality of sales transactions;
storing the transaction information in a random-access memory;
determining a data signature based on the transaction information contained in the random access memory and a previously determined data signature responsive to a journal update event;
transferring the transaction information contained in the random-access memory to a first portion of a journal memory separate from the random-access memory responsive to the journal update event; and
transferring the data signature to a second portion of the journal memory responsive to the journal update event.
2 Assignments
0 Petitions
Accused Products
Abstract
A point of sale device having a verifiable electronic journal system which maintains an electronic journal file in lieu of using a journal print station. Transaction information is first stored in a non-volatile random access memory. A data signature is determined based on the contents of the random access memory for a journal. Both the transaction information and the data signature are transferred to the separate journal memory. The journal memory may, for example, reside on the point of sale terminal and tampering with the journal transaction information may be detected by reference to the data signature which is also transferred and maintained in the electronic journal file. Preferably, the data signature is encrypted such as by a shared key encryption scheme and the associated public key is also transferred and stored in the electronic journal file from the device, such as a fiscal base, which is tracking the transaction information as it is created. A hashing technique is preferably used so that a comparatively small NVRAM may be utilized to support generation of a transaction information set for an electronic journal file for a journal period. Accordingly, the data signature is an encrypted version of a message digest which is a running value reflecting the total of transaction information passed to the electronic journal file during a journal period.
-
Citations
40 Claims
-
1. A method for providing a verifiable electronic journal system for a point of sale device comprising:
-
receiving transaction information related to a plurality of sales transactions;
storing the transaction information in a random-access memory;
determining a data signature based on the transaction information contained in the random access memory and a previously determined data signature responsive to a journal update event;
transferring the transaction information contained in the random-access memory to a first portion of a journal memory separate from the random-access memory responsive to the journal update event; and
transferring the data signature to a second portion of the journal memory responsive to the journal update event. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
encrypting the data signature using a shared key; and
transferring the shared key to a third portion of the journal memory responsive to at least one of the plurality of journal update events.
-
-
9. A method according to claim 8 wherein th e step of transferring the shared key is followed by the step of auditing the verifiable electronic journal system.
-
10. A method according to claim 9 wherein the step of auditing the verifiable electronic journal system comprises the steps of:
-
decrypting the data signature in the second portion of the journal memory using the shared key in the third portion of the journal memory;
determining a verification data signature from the transaction information in the first portion of the journal memory using the hashing technique; and
comparing the verification data signature to the decrypted data signature to determine if the transaction information in the first portion of the journal memory has been modified from the transaction information transferred from the random-access memory during the journal period.
-
-
11. A method according to claim 1 wherein the step of determining a data signature is followed by the steps of:
-
encrypting the data signature using a shared key; and
transferring the shared key to a third portion of the journal memory responsive to at least one of the plurality of journal update events.
-
-
12. A method according to claim 11 wherein the step of transferring the shared key is followed by the step of auditing the verifiable electronic journal system.
-
13. A method according to claim 12 wherein the step of auditing the verifiable electronic journal system comprises the steps of:
-
decrypting the data signature in the second portion of the journal memory using the shared key in the third portion of the journal memory;
determining a verification data signature from the transaction information in the first portion of the journal memory; and
comparing the verification data signature to the decrypted data signature to determine if the transaction information in the first portion of the journal memory has been modified from the transaction information transferred from the random-access memory during the journal period.
-
-
14. A point of sale device having a verifiable electronic journal system comprising:
-
means for receiving transaction information related to a plurality of sales transactions;
means for determining a journal update event;
a random-access memory coupled to the means for receiving and configured to store the transaction information;
means responsive to the journal update event for determining a data signature based on the contents of the random access memory and a previously determined data signature;
a journal memory having a first portion configured to store the transaction information and a second portion configured to store the data signature; and
means responsive to the journal update event for transferring transaction information from the random-access memory to the first portion of the journal memory and the data signature from the means for determining a data signature to the second portion of the journal memory. - View Dependent Claims (15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26)
-
-
27. A computer program product for maintaining a verifiable journal system for a point of sale device, the computer program product comprising a computer usable storage medium having computer readable program code embodied in the medium, the computer readable program code comprising:
-
computer readable program code that receives transaction information related to a plurality of sales transactions;
computer readable program code that determines a journal update event;
computer readable program code that stores the transaction information in a random-access memory;
computer readable program code that determines a data signature based on the transaction information contained in the random-access memory and a previously determined data signature responsive to the journal update event;
computer readable program code that transfers the transaction information contained in the random-access memory to a first portion of a journal memory separate from the random access memory responsive to the journal update event;
computer readable program code that transfers the data signature to a second portion of the journal memory responsive to the journal update event. - View Dependent Claims (28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38)
-
-
39. A verifiable electronic journal system for a point of sale device, the system comprising:
-
an interface circuit that receives transaction information related to a plurality of sales transactions;
a random-access memory coupled to the interface circuit and configured to store the transaction information;
a hash function, that determines a data signature based on the contents of the random access memory and a previously determined data signature responsive to a journal update event;
a journal memory having a first portion configured to store the transaction information and a second portion configured to store the data signature; and
a transmit circuit that transmits transaction information from the random-access memory to the first portion of the journal memory and the data signature from the hash circuit to the second portion of the journal memory responsive to the journal update event. - View Dependent Claims (40)
-
Specification