PL | EN    Home

SECURITY HARDWARE DOWNLOAD CONTACT

TeleToken specification

• Encryption of communication using 128-bit AES (Rijndael)
• 4-byte identifier for the recipient to enable pre-selection TeleTokenów attached to the computer. The three oldest identifier bytes are programmed by the manufacturer and the youngest byte is to be used by the recipient.
  
• Non-volatile memory for user data.
• Possibility to write protect certain sectors of memory. Hotel security is possible only by the format TeleTokenu.
• Volatile memory for user data.
• Table entries programmed by the recipient. This plaque can only be saved, there is no possibility to read this table. For each of the entries are permission bits assigned to a particular query. Keywords in this table are used to encrypt communication, encryption of data blocks and other purposes.
  
• The ability to encrypt and decipher blocks of 16-byte password to the plate.
• Universal non-volatile 16-bit counters for use by the recipient.
• Possibility to automatically generate one-time password based on AES (Rijndael), and a secret password.
  
• Password TeleTokenu format allowing the recipient. Reformatting TeleToken restores to factory.
• Data in memory encrypted AES algorithm (Rijndael)

Operations provided by TeleToken

• Encryption and decoding the data saved in a password TeleToken
• Read memory
• Save memory and the establishment of the write-protect memory
• Read and modify counters
• Generate a password based on a single count selected and the selected password from table entries
• Record and configure counters
• Record and configure the array password
• Format TeleToken - TeleToken restore to factory

 

Password

TeleToken is equipped with tables used to store passwords. Password to the plate can only be saved. It is not possible to read passwords from the Table. Passwords stored in the array are used to:

• Encryption of communication with TeleTokenem
• Encryption and decryption of data blocks
• Generating one-time password
  

With each of the entries are related to permission bits define the password, the password operation which can be used and to what does not. The bits of powers is also possible to block the possibility to modify the password and whatever bits of the powers of a password. Picture these two blocks is only possible through TeleTokenu format.

Non-volatile memory for data

Data memory is non-volatile memory and can be used by any recipient to store their information. It is divided into three sectors, 16 bytes (128 bits), which is in line with the encryption block size. Memory is addressed by specifying the number of the sector. Operations on the memory (reading and writing) are possible only on the entire sector. Number of the sector is addressing jednobajtowy which allows up to 256 sectors, or 4096 bytes of memory. Size of memory available to the recipient depends on the version TeleTokenu and can be read from it.
Depending on the version of the initial sectors TeleTokenu memory can be independently write-protected. Write protection for individual sectors can be set only. The only possibility is to unlock the record format TeleTokenu, which clears all locks to write to memory.
This memory has a limit on the number of possible entries.
 

Volatile memory for data

Memory is volatile memory, but it provides similar functionality as the non-volatile memory with this difference, that the contents of this memory is lost when you reboot and unplug the power TeleTokenu. Every sector of the volatile memory is associated with non-volatile memory sector that is the same. TeleToken take-off when it rewrites the contents of the nonvolatile memory sectors to their associated volatile memory sectors. TeleToken has no direct ability to rewrite the contents of volatile to nonvolatile memory. This memory is designed to store information to be lost when you reboot or power off TeleToken. The memory can not be write-protected.
Memory does not have limits on the number of possible entries.

 Universal Counters

TeleToken is equipped with 16-bit counters, universal, without losing its contents after a reboot or power off TeleTokenu.
Each meter can be:

• Saved
• The read
• Increased and read
• Reduced and read
• Working as a one-time password generator
• Count readings from memory
• Count entries in the memory
• Count the operations of encryption and decryption blocks password

Each of these possibilities can be blocked by deleting the corresponding configuration bit of the counter.
There is the possibility of blocking the possibility to change configuration bits of the counter. Picture this blockade occurs only at TeleTokenu format.
Each of the counters can enable automatic modification of the contents of the lock counter when you reach the counter to zero (both the deduction up or down).
Each counter can be associated with corresponding memory sector, or entries in the table heading. Pairing takes place according to the principle: the n-th counter may be associated with the N-sector and n-the slogan for example, a zero count can be associated only with the zero-sector and password on the zero position in the array. In the case of links with memory, you can choose which operations (read or write) the meter is to be assigned. In the case of links with the slogan, the link refers both to the encryption operations and decryption of data block. Link causes the execution of the operation is only possible when the meter is different from zero and each execution of the operation causes automatic reduction of one meter.
Each of the counters can be operated in automatic mode, the next generation one-time password. In this mode available is the command, which performs the following steps:

• Increase the counter value by one
• Get the current counter value and encrypting the password for the specified number
• See the PC obtained in this step, the data block

  TeleToken specyfication - compare