Authentication system for gaming machines

US 9,281,946 B2
Filed: 06/11/2014
Issued: 03/08/2016
Est. Priority Date: 03/05/2003
Status: Active Grant

First Claim

Patent Images

1. A method of verifying gaming components using an authentication system to authenticate contents of a manifest in a gaming system including one or more processors, the method comprising:

providing a physical network that connects and enables communication between a plurality of gaming devices, the plurality of gaming devices each comprising;

(i) at least one display device;

(ii) a plurality of input devices including;

(a) an acceptor of a first physical item associated with a first monetary value; and

(b) a cashout button actuatable to cause an initiation of a payout associated with a credit balance;

(iii) at least one gaming device processor; and

(iv) at least one gaming device memory device storing gaming device game code that enables game play;

providing a network associated storage device connected to the physical network that contains a gaming component;

determining, using one or more processors, if the manifest is authentic using a digital signature check, the manifest having contents including a plurality of components each having a file name, a block indicator, an associated stored hash, a block size field indicating a size of each data block, and a block number field indicating a number of data blocks;

booting an operating system, once the contents of the manifest are authenticated;

performing, using the one or more processors, a hash calculation over each component listed by file name in the authenticated manifest over a network connection, as the component is needed, to produce a calculated hash;

verifying, using the one or more processors, each component for which a hash calculation was performed by comparing the calculated hash to the associated stored hash and associated file name located within the manifest; and

loading the component if the calculated hash and the stored hash are equal;

wherein the plurality of components is updatable; and

wherein, upon the plurality of gaming components being updated, the manifest is revised according to the update and digitally signed using a private key.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Disclosed is a system and method that uses digital signature technology to authenticate the contents of one or more manifests located on a storage device. Each manifest contains a list of file records, where each record contains the name of a file stored on the storage device, and a SHA1 hash value derived from the contents of the file. At boot time, the gaming machine first authenticates the contents of the manifest and then verifies the contents of the files using the SHA1 value stored in the manifest. Files are verified using the SHA1, as they are needed, during the boot up of the operating system and throughout normal operation. This method reduces the boot time of the gaming machine and eliminates the need to check digital signatures for each individual file or over the entire contents of a non-secure media.

95 Citations

View as Search Results

14 Claims

1. A method of verifying gaming components using an authentication system to authenticate contents of a manifest in a gaming system including one or more processors, the method comprising:
- providing a physical network that connects and enables communication between a plurality of gaming devices, the plurality of gaming devices each comprising;
  
  (i) at least one display device;
  
  (ii) a plurality of input devices including;
  
  (a) an acceptor of a first physical item associated with a first monetary value; and
  
  (b) a cashout button actuatable to cause an initiation of a payout associated with a credit balance;
  
  (iii) at least one gaming device processor; and
  
  (iv) at least one gaming device memory device storing gaming device game code that enables game play;
  
  providing a network associated storage device connected to the physical network that contains a gaming component;
  
  determining, using one or more processors, if the manifest is authentic using a digital signature check, the manifest having contents including a plurality of components each having a file name, a block indicator, an associated stored hash, a block size field indicating a size of each data block, and a block number field indicating a number of data blocks;
  
  booting an operating system, once the contents of the manifest are authenticated;
  
  performing, using the one or more processors, a hash calculation over each component listed by file name in the authenticated manifest over a network connection, as the component is needed, to produce a calculated hash;
  
  verifying, using the one or more processors, each component for which a hash calculation was performed by comparing the calculated hash to the associated stored hash and associated file name located within the manifest; and
  
  loading the component if the calculated hash and the stored hash are equal;
  
  wherein the plurality of components is updatable; and
  
  wherein, upon the plurality of gaming components being updated, the manifest is revised according to the update and digitally signed using a private key.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1, wherein authenticating the manifest includes performing a digital signature algorithm on the manifest.
  - 3. The method of claim 1, wherein the component is verified when the component is retrieved for operation of a device.
  - 4. The method of claim 3, wherein the component comprises a data file.
  - 5. The method of claim 3, wherein the component comprises a data component stored in a partition of a digital storage medium, wherein the stored hash is a hash of the whole partition, and performing the hash calculation comprises performing the hash calculation on the whole partition if the partition has not yet been verified during operation of the device.
  - 6. The method of claim 1, wherein the component is verified each time a critical event occurs for a device.
  - 7. The method of claim 3, wherein the component comprises a data file stored in one or more data blocks in a digital storage medium, wherein the stored hash is a hash of the one or more data blocks, and the performing of the hash calculation comprises performing the hash calculation on each data block an as-needed basis as the file loads if the data block has not been verified.
  - 8. The method of claim 3, wherein the component comprises a data file stored in one or more data sectors in a digital storage medium, wherein the stored hash is a hash of the one or more data sectors, and the performing of the hash calculation comprises performing the hash calculation on each data sector as the file loads on an as-needed basis.
  - 9. The method of claim 1, wherein the component is verified on a continuing basis during operation of a device.
  - 10. The method of claim 6, wherein the data component comprises a data file.
  - 11. The method of claim 3, wherein the component comprises a data component stored in a library in a digital storage medium, wherein the stored hash is a hash of the entire library, and the performing of the hash calculation comprises performing the hash calculation on the entire library if the library has not yet been verified during operation of the device.

12. A system for verifying a component using an authentication system to authenticate contents of a manifest in a gaming system, the system comprising:
- a physical network that connects and enables communication between a plurality of gaming devices in the system, the plurality of gaming devices each comprising;
  
  (i) at least one display device;
  
  (ii) a plurality of input devices including;
  
  (a) an acceptor of a first physical item associated with a first monetary value; and
  
  (b) a cashout button actuatable to cause an initiation of a payout associated with a credit balance;
  
  (iii) at least one gaming device processor; and
  
  (iv) at least one gaming device memory device storing gaming device game code that enables game play; and
  
  a network associated storage device connected to the physical network that contains a component;
  
  the component comprising;
  
  a processor;
  
  a set of instructions that are executable on the processor for determining if the manifest is authentic using a digital signature check, the manifest having contents including a plurality of components each having a file name, a block indicator, an associated stored hash, a block size field indicating a size of each data block, and a block number field indicating a number of data blocks, wherein an operating system is booted, once the contents of the manifest are authenticated;
  
  a set of instructions that are executable on the processor for performing a hash calculation over each component listed by file name in the authenticated manifest over a network connection, as the component is needed, to produce a calculated hash;
  
  a set of instructions that are executable on the processor for verifying the component for which a hash calculation was performed by comparing the calculated hash to the associated stored hash and associated file name located within the manifest; and
  
  a set of instructions that are executable on the processor for loading the component if the calculated hash and the stored hash are equal;
  
  a set of instructions for updating one or more of the plurality of components; and
  
  a set of instructions for revising the manifest according to any updates and digitally signing the revised manifest using a private key.
- View Dependent Claims (13)
- - 13. The method of claim 12, wherein the component is part of a device that is of a type selected from the group consisting of:
    - kiosk, cashier device, plasma signage controller, DNS server, DHCP server, database server, web server, cryptographic device, firewall, load balancer, network monitoring unit, network router, download server, certificate authority server, cashless server, progressive controller, tournament controller, display controller, networking device, Ethernet switch, network hub, cash transaction server, third party payment server, prize redemption machine, in room gaming device, bingo game controller, lottery game controllers, class II gaming device, class III gaming device, lottery gaming device, amusement gaming device, arcade gaming machine, regulator monitoring device, VPN device;
      
      player tracking device;
      
      player marketing device, slot management system, home game console, ATM banking machine, debit card reader, point of sale system, cash register, retail scanner, RFID reader, location security monitoring/security input device, military device, vending machine, stock transaction server, banking server, cell phone, personal digital assistant, laptop computing device, electronic wallet device, smart card, set-top box, monetary input/output device, biometric device, user authentication device, personal media player, software network updatable device, handheld scanner, currency handler/counter, lottery ticket purchase/redemption device, player bingo device, monitor, television, fax device, electronic money transfer device, USB device, Bluetooth device, fire wire capable device, wi-fi enabled device, robotic device, and handheld gaming device.

14. A system for verifying a component using an authentication system to authenticate contents of a manifest in a gaming system including one or more processors, the system comprising a non-transitory computer usable medium having computer readable program code embodied therein configured for verifying a component using the one or more processors, comprising:
- a physical network that connects and enables communication between a plurality of gaming devices in the system, the plurality of gaming devices each comprising;
  
  (i) at least one display device;
  
  (ii) a plurality of input devices including;
  
  (a) an acceptor of a first physical item associated with a first monetary value; and
  
  (b) a cashout button actuatable to cause an initiation of a payout associated with a credit balance;
  
  (iii) at least one gaming device processor; and
  
  (iv) at least one gaming device memory device storing gaming device game code that enables game play; and
  
  a network associated storage device connected to the physical network that contains a component;
  
  the component comprising;
  
  computer readable code configured to authenticate a manifest using a digital signature check, the manifest having contents including a plurality of components each having a filename, a block indicator, an associated stored hash, a block size field indicating a size of each data block, and a block number field indicating a number of data blocks;
  
  computer readable code configured for determining if the contents of the manifest are is authenticated, and booting an operating system, once the contents of the manifest are authenticated;
  
  computer readable code configured to perform a hash calculation over each component listed by file name in the authenticated manifest, as the component is needed, to produce a calculated hash;
  
  computer readable code configured to verify each component for which a hash calculation was performed by comparing the calculated hash to the associated stored hash and associated file name located within the manifest using the processor;
  
  computer readable code configured to load the component, if the calculated hash and the stored hash are equal;
  
  computer readable code configured to update one or more of the plurality of components; and
  
  computer readable code configured to revise the manifest according to any updates and to digitally sign the revised manifest using a private key.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
LNW Gaming Incorporated
Original Assignee
Bally Gaming Incorporated (Scientific Games Corporation)
Inventors
Crowder, Robert W. Jr.
Primary Examiner(s)
Laneau, Ronald
Assistant Examiner(s)
WILLIAMS, ROSS A

Application Number

US14/302,060
Publication Number

US 20140298032A1
Time in Patent Office

636 Days
Field of Search

463/29, 463 40- 42, 713/176, 713/187
US Class Current

1/1
CPC Class Codes

G06F 21/575   Secure boot

G07F 17/3241   Security aspects of a gamin...

H04L 9/3247   involving digital signatures

Authentication system for gaming machines

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

95 Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

Authentication system for gaming machines

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

95 Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links