The PRSP DLL communicate with the FS server over internet and must therefore use encryption. The encryption is accomplished with a certificate containing the public part of a crypto key pair. Flowbird keeps the private part of the key so messages cannot be decrypted by others. For this, Flowbird has its own Certificate Authority (CA) where certificates are requested for, and distributed to CWT terminals.
| A certificate can only be used by one terminal and for the park which it is configured for. |
All communication between the DLL and the server is secure using TLS 1.2. The DLL uses a certificate when starting a connection with the server that is providing the data service. After the first identification with the certificate, a JSON Web Token (JWT) will take over as the authentication method between the DLL and the server. The JWT is valid for 48 hours and then the certificate must be used again. This is all handled automatically by the DLL.
•Install a certificate remote with Flowbird WebOffice (FWO)
•Install a certificate during start-up
•Install a certificate from the service menu
•Renew an existing certificate
•Certificate related files in the sd-card folder ExternalPayUnits\Certificates
