EGM authentication mechanism using multiple key pairs at the bios with PKI
First Claim
Patent Images
1. A system for providing and verifying gaming software for use in a wager based gaming machine, the system comprising:
- a certificate authority configured toreceive authorization of a gaming machine manufacturer to sign executable code of the gaming application on behalf of the gaming machine manufacturer,the certificate authority configured to delegate authority to sign the executable code to a code signing authority, on behalf of the gaming machine manufacturer,the code signing authority configured toreceive authorization from the certificate authority andsign the executable code of the gaming application on behalf of the gaming machine manufacturer; and
an electronic gaming machine comprising a read only BIOS chip and a public key of a code signing certificate authority embedded within the BIOS chip, wherein the gaming machine is configured to execute BIOS instructions of the read only BIOS chip, the BIOS instructions configured to;
check the validity of the public key of the code signing certificate authority;
bypass terminate operation of the gaming machine after determining that the public key of the code signing authority is valid and trusted;
check game code with the public key of the code signing authority after determining that the public key is valid and trusted;
check the authenticity of an operating system of the gaming machine;
terminate operation of the gaming machine after determining that the authenticity of the operating system is not authentic; and
cause the gaming machine to execute the operating system after determining that the authenticity of the operating system is authentic.
1 Assignment
0 Petitions
Accused Products
Abstract
Executable applications on a gaming machine are verified before they can be executed, for security purposes and to comply with jurisdictional requirements. Unlike in prior systems for authenticating the executable applications, embodiments allow for new executable applications to be provided and verified over time with different private and public key pairs, even after the operating code of the gaming machine is certified by the jurisdiction and deployed in the field.
-
Citations
23 Claims
-
1. A system for providing and verifying gaming software for use in a wager based gaming machine, the system comprising:
-
a certificate authority configured to receive authorization of a gaming machine manufacturer to sign executable code of the gaming application on behalf of the gaming machine manufacturer, the certificate authority configured to delegate authority to sign the executable code to a code signing authority, on behalf of the gaming machine manufacturer, the code signing authority configured to receive authorization from the certificate authority and sign the executable code of the gaming application on behalf of the gaming machine manufacturer; and an electronic gaming machine comprising a read only BIOS chip and a public key of a code signing certificate authority embedded within the BIOS chip, wherein the gaming machine is configured to execute BIOS instructions of the read only BIOS chip, the BIOS instructions configured to; check the validity of the public key of the code signing certificate authority; bypass terminate operation of the gaming machine after determining that the public key of the code signing authority is valid and trusted; check game code with the public key of the code signing authority after determining that the public key is valid and trusted; check the authenticity of an operating system of the gaming machine; terminate operation of the gaming machine after determining that the authenticity of the operating system is not authentic; and cause the gaming machine to execute the operating system after determining that the authenticity of the operating system is authentic. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method of verifying gaming software for use in a gaming machine, the gaming machine including a read only BIOS chip and a public key of a code signing certificate authority embedded within the BIOS chip, the code signing certificate authority being authorized by a certificate authority to sign executable code on behalf of a gaming machine manufacturer, the method comprising:
-
checking, by a processor the gaming machine, the validity of the public key of the code signing authority; bypassing, by the processor, terminate operation of the gaming machine after determining that the public key of the code signing authority is valid and trusted; checking, by the processor, game code with the public key of the code signing authority after determining that the public key is valid and trusted; checking, by the processor, the authenticity of an operating system of the gaming machine; terminating, by the processor, operation of the gaming machine after determining that the authenticity of the operating system is not authentic; and causing, by the processor, the gaming machine to execute the operating system after determining the authenticity of the operating system is authentic. - View Dependent Claims (11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory computer-readable media having computer-executable instructions embodied therein that when executed by a processor of a gaming machine cause the gaming machine to perform operations to verify gaming software for use in the gaming machine, the gaming machine including a read only BIOS chip and a public key of a code signing certificate authority embedded within the BIOS chip, the code signing certificate authority being authorized by a certificate authority to sign executable code on behalf of a gaming machine manufacturer, the operations comprising:
-
check the validity of the public key of the code signing authority; bypass terminate operation of the gaming machine after determining the public key of the code signing authority is valid and trusted; check game code with the public key of the code signing authority after determining the public key is valid and trusted; check the authenticity of an operating system of the gaming machine; terminate operation of the gaming machine after determining the authenticity of the operating system is not authentic; and cause the gaming machine to execute the operating system after determining the authenticity of the operating system is authentic. - View Dependent Claims (18, 19, 20, 21, 22, 23)
-
Specification