4 - Operation and Maintenance
DynaGlass| Payment Terminal | PCI PTS POI Security Policy
Page 16 of 22 (
D998200455-10
)
4.4
Tamper Response
In the event of a tamper response, the device erases all keys from its Secure Processor, enters a disabled
state, and shows a locked down tamper detection message. The device’s buzzer beeps based on the nature
of the tamper condition. After this occurs, no other prompts are available, and operators can not perform
any further secured functions. If this occurs, contact your representative for assistance.
4.5
Patching and Updating
DynaGlass supports file-based updates of the device’s firmware and applications. Firmware updates are
provided as files that have been signed by MagTek. The firmware files can be loaded locally via the
device’s USB port using the MagTek update tool running on a Windows PC. The firmware files can also
be loaded via a secure remote updating process using Open Protocol HTTPS with TLS1.2.
The device verifies that each update is newer than the installed version, and cryptographically
authenticates the file. If version checking or authentication fails, the device erases the update file and
reports an error to the host.
For optimal device security, MagTek recommends installing the latest versions of firmware at all times.
Note that updates to security-related prompts, such as prompts to enter or re-enter a PIN, are not
considered minor changes and require the firmware version to be updated (see section
4.6
Decommissioning
To permanently decommission the device or to otherwise clear all encryption keys and sensitive data
from device memory, follow these steps:
1)
Locate the long rectangular panel on the back of the device that has only three screws installed.
2)
Completely remove all three screws.
3)
Make sure the device reports it has detected a tamper event (see section
