manualshive.com logo in svg

Infomir MAG-200, Operator'S Manual, Page: 20 / 39

Share
Download
Infomir MAG-200 Operator'S Manual Download Page 20

 MAG-200 Operator Guide Rev 1.05. 

Operation with keys 

 

Protecting system prohibiting the start of any programs unauthorized by the 

operator is realized in the device. For this purpose the algorithm DSA (digital signature) 

with the key length equal to 2048 bits is used, as well as manufacturer keys, operator 

key and the key for controlling the device. 

 

Manufacturer key

 

This key is used for checking the digital signature of the operator key. The 

secret part of this key is kept by the manufacturer.

 

 

Operator key 

This key is owned by the operator. The secret part of this key is preserved by 

the operator and used for signing the program started by the Bootstrap. This can 

be the core of bootstrap. 

  This key is also used for signing the image broadcast in a multicast group and it 

is used by bootstrap to update the file system located in the device. The public 

part of the key is installed in the device through the bootstrap menu or by 

assigning “oppubKEY” to the variable of the bootloader. The public part of the 

key must be signed using the manufacturer key. This digital signature is subject 

to checking before using the operator key.

 

 

Key for controlling the device 

This key is owned by the operator. The key is used for signing commands sent 

to the device. Operator must place the public part of this key in the device. 

Operator commands for controlling the device on the server are signed with the 

secret part of this key and are sent to the device. The digital signature is 

checked on the device using the public part of the key. If the digital signature is 

correct, the command shall be performed. Other variants of using this key are 

available on the discretion of the operator. This key is not used in the process of 

loading the basic program. Utilities 

dsign

mcsend

 and 

mcrec

, are supplied with 

the device basic program and allow realizing this algorithm and adapt other 

algorithms if necessary.

 

Operator key preparation 

In the process of the operator key preparation proceed as follows: 

1. Create the key 

Start: 

gpg --gen-key

 

 

20

Summary of Contents for MAG-200

Page 1: ...IPTV MAG 200 High resolution device Operator Guide Informir 2009...

Page 2: ...geupgrade 17 Server DHCP setting 17 Cyclic multicast server configuration 18 Description of the process of program upgrade wiuth the use of cyclic multicast groups 18 Work with keys 20 Preparation of...

Page 3: ...vice with changing loading regime 32 Supplements 33 Location of sections innor flash nand flash memory 33 Connectors on the back panel 33 Description of vendor specific options 34 Example of the file...

Page 4: ...n the front panel indicator The bootloader menu can be used to change the loading mode to set logo and operator key After the device is switched on the bootloader sets the following modes of video out...

Page 5: ...g resolution for the graphic window of the supplement If the value of the resolution specified exceeds the value of resolution of the video outputs the most appropriate resolution shall be used This i...

Page 6: ...Version The image version on the device is a number The version is set by the operator in the process of forming the image Standard bootstrap checks the version number on the device and performs upgra...

Page 7: ...his menu item sets the variable bootupgrade Auto Upgrade Starts the process of upgrading the second copy of the bootloader MC Upgrade Starts the process of upgrading the basic program using fixed mult...

Page 8: ...uccessfully finished 6 set the item Use upgrade to Yes When performing item 4 the device forms a dhcp request with the following parameters 1 vendor_class_id TeleTecMAG200upgboot 2 dhcp_client_id Tele...

Page 9: ...vice and before the basic program is started Information messages that reflect the process of the basic program loading are displayed on the background of the logo Logo preparation A file in the forma...

Page 10: ...r allow specifying correspondingly the colour of the background and the colour of the type in the format XRGB for displaying information messages in the process of loading If the process was successfu...

Page 11: ...ient_id TeleTecMAG200 XX XX XX XX XX XX where XX XX XX XX XX XX MAC device address 3 The section vendor_spec contains the following options a Bootloader version number Vernum a line in the format XXX...

Page 12: ...s class MAG200_boot match if option vendor class identifier TeleTecMAG200boot filename mag200 uImage next server 192 168 1 2 option root path 192 168 1 2 srv mag200 rootfs The last variant is most oft...

Page 13: ...s to the operator upgrading the basic program stored in the device and performing the necessary settings Bootstrap accepts checks and launches the image This image may be presented by the bootstrap si...

Page 14: ...cked If the image number is higher than the number of the image flashed no upgrading takes place If the numbers are equal the refreshing takes place only provided the item Image Info Forced in the boo...

Page 15: ...Starting the device in the DHCP mode Bootstrap loading from a multicast group or by fttp Digital signature check Bootstrap start Receiving the image from a multicast group for refreshing Checking the...

Page 16: ...n of images for broadcasting Before preparing the images set the operator key prepared by the operator or the default operator key To use the default key perform the following commands gpg import stb_...

Page 17: ...ootfs where 5 the image version number which must be a number After successful upgrade with standard Bootstrap the Bootstrap variable Image_Version takes this value Test short description After succes...

Page 18: ...ast groups consists of the following stages Start of the device in the DHCP mode In doing so the device sends a dhcp request from vendor class identifier TeleTecMAG200boot and receives the answer from...

Page 19: ...ss 224 50 0 50 9000 and imageupdate broadcasting at the address 224 50 0 51 9001 Switch off the device Press the key menu on the remote control Switch on the device Select the menu item Upgrade Image...

Page 20: ...ootstrap menu or by assigning oppubKEY to the variable of the bootloader The public part of the key must be signed using the manufacturer key This digital signature is subject to checking before using...

Page 21: ...ters USER_ID STB_PUBLIC Key fingerprint 2CE3 2C86 F4D4 D561 E676 B77B 8D87 EE65 6BEE D1ED passphrase absent The file stb_secbin key contains the secret and public parts of this key The file stb_pub_si...

Page 22: ...nother you may use the following commands gpg o opsecbin KEY export secret keys key ID for preserving the information of the key in the file and gpg import opsecbin KEY for adding this key to gpg and...

Page 23: ...n 6 usr bin cmd_parse sh start for each operator command with the name of the command specified by the operator assigned thereto as the first parameter the second parameter contains the name of the fi...

Page 24: ...AND command name Command parameters text END COMMAND The file for the command Reboot can serve as and example Reboot END COMMAND The configuration of the transfer and handling of operator commands sub...

Page 25: ...n the DHCP mode Control from the browser The function stb E xecAction parameter EA can be called from the browser using JavaSript API This results in starting the file home default action sh with the...

Page 26: ...blishing the value of several bootloader variables and avoiding a re call of this utility As the result the variable var1 shall set the value 1 while the variable var2 shall set the value 2 If it is n...

Page 27: ...cast are received speed the rate of file broadcast Byte per second SerialNumber serial number of the file identifier time period of time after which the description of this broadcast must be sent ms i...

Page 28: ...to which the file is broadcast MulticastUDPPort the port to which the file is broadcast FileName name of the file to be broadcast ImageName similar to Filename Description the line of description to b...

Page 29: ...the file and restarting the utility for reception is possible In this manner the processing of the operator commands sent through multicast groups is organized Utility Front panel indicator control s...

Page 30: ...UP Each key is considered separately configured The configuration is performed via the file etc lirc lircd conf To configure mode 2 add the following after the key description in ten same line BUTTON_...

Page 31: ...e available for this utilities 1 Each pressing on the key is translated into the pressing a key on the keyboard corresponding to the keys fp_power fp_vol fp_vol fp_ch fp_ch while releasing the key is...

Page 32: ...0ms short pressing on the key vol is the movement to the left long pressing Exit short pressing on the key vol is the movement to the right long pressing OK Example of configuration file is shown in t...

Page 33: ...t loader extracts the file uImage and starts it after checking NAND mtd5 NAND FS 1 124 b The section of file system jffs2 assembled as a root system when starting in the mode NAND Back panel connector...

Page 34: ...r to which bootstrap can send reports Bootstrap port_log 15 integer 16 The port on the server to which bootstrap can send reports Bootstrap logo_x 16 integer 16 X axial coordinate of the logo left upp...

Page 35: ...ip address option TeleTec mcport_mng code 13 integer 16 option TeleTec ip_log code 14 ip address option TeleTec port_log code 15 integer 16 option TeleTec logo_x code 16 integer 16 option TeleTec logo...

Page 36: ...lor 0x00FFFFFF option TeleTec oppubfile mag200 op_stb_pub_sign key class MAG200_upgrade match if option vendor class identifier TeleTecMAG200upgrade filename mag200 Bootstrap next server 192 168 1 2 o...

Page 37: ...e of file mcast conf Server LogLevel 4 MulticastTTL 1 Stream Image bootstrap signed MulticastIPAddress 224 10 0 50 MulticastUDPPort 9000 FileName Bootstrap Description Bootstrap Image ImageType 1 Seri...

Page 38: ...ImageName imageupgrade Description upgrade filesystem SerialNumber 2 DirsPerCycle 128 DataRate 1000000 CycleTime 0 Example of configuration file for adjusting the front panel keys An example of adjust...

Page 39: ...peat 2 delay 4 prog fpxevent button fp_long_vol config Key ctrl Space Web end begin repeat 2 delay 4 prog fpxevent button fp_long_vol config Key Escape Web end List of changes The following items were...

Reviews:

No comments