4 - Operation and Maintenance
DynaFlex II Go| Secure Card Reader | PCI PTS POI v6.2 Security Policy
Page 14 of 18 (
D998200596-100
)
4.2
Self-Test
DynaFlex II Go performs self-tests at power-up and after reset. By default, the device automatically
resets and performs self-tests every 23 hours if it is configured to automatically reset 23 hours after
booting, otherwise the device automatically resets and performs self-tests every 24 hours if it is
configured to automatically reset at a specific time of day. No manual intervention by the operator is
required. Self-tests include:
•
Checking the integrity and authenticity of the firmware and cryptographic keys.
•
Checking security mechanisms for signs of tampering.
4.3
Roles and Responsibilities
The secure card reader has no functionality that gives access to security-sensitive services based on roles.
Such services are managed through dedicated tools, using cryptographic authentication.
4.4
Passwords and Certificates
DynaFlex II Go products ship from the factory fully secure. The devices have no security related default
values (e.g., passwords/authentication codes/certificates) that require modification by the user to meet
PCI security requirements.
4.5
Tamper Response
If the device senses a physical or environmental attack, it erases all sensitive keys, and will have limited
functionality. While powered on, the SCR indicates it is in a tampered state by flashing green LEDs 1,3,
and 4 as depicted in
. If this occurs:
1)
Remove the device from service immediately.
2)
Store it securely for possible forensics investigation.
3)
Contact the manufacturer for assistance. The device will likely need to be returned to the
manufacturer for diagnosis and servicing.
Figure 4-2 Tamper Response
