New Security Feature Added to LEGIC Orbit: LEGIC

January 23, 2020

Correct configuration of readers in the field forms the basis of secure ID solutions. In the latest version of LEGIC Orbit, the option to restrict configuration data to specific reader ICs is a very powerful new feature.

Enhanced security during reader configuration via LEGIC Orbit

LEGIC Orbit offers the possibility to transmit cryptographic keys and other configuration data from the management system securely to readers in the field. This works via so-called Versatile Configuration Packages (VCP), which are generated in a Hardware Security Module (HSM) and distributed to readers in the field via your smartphones or management system.

With this new feature, you can now restrict the validity of each VCP to specific reader devices based on their chipID which uniquely identifies every LEGIC reader IC. This feature provides additional protection against abuse of configuration data and can help prevent configuration errors.

For example, a cryptographic key for a specific building is generated in the secure LEGIC Orbit environment. Subsequent distribution of this key via VCP can now be restricted to readers installed only in that building. This feature makes it impossible to wrongly configure readers not belonging to that building.

Further information
Martin Buck
Head of Product Management
LEGIC Identsystems Ltd
Tel: +41 44 933 64 64
martin.buck@legic.com

Press inquiries
Natascha Marty
Corporate Communications Manager
LEGIC Identsystems Ltd
Tel: +41 44 933 64 64
natascha.marty@legic.com

Press releases

Back

Type	Name	Purpose	Lifetime	Provider
Website	CookieConsent	Saves your consent to using cookies.	1 year	HTML
Website	fe_typo_user	Assigns your browser to a session on the server.	session	HTTP
Pipedrive	_cf_bm	This cookie is used to distinguish between humans and bots.	1 day	HTTP

Type	Name	Purpose	Lifetime	Provider
Google	_gcl_au	Used by Google AdSense to experiment with advertisement efficiency.	3 months	HTML
Facebook	_fbp	Stores the unique visitor ID.	3 months	HTTP
Facebook	facebookPixel	If JavaScript is not enabled, this pixel initiates a connection to facebook.	session	Pixel
Twitter	i/adsct	missing translation: trackingobject.i/adsct.desc	session	Pixel
LinkedIn	JSESSIONID	Keeps the user's states in all page requests at.	session	HTTP
LinkedIn	li_gc	Saves the user's consent status for cookies on the current domain.	2 years	HTTP
LinkedIn	AnalyticsSyncHistory	Used in conjunction with data synchronisation with the third-party analytics service.	29 days	HTTP
LinkedIn	bcookie	Browser Identifier cookie to uniquely identify devices accessing LinkedIn to detect abuse on the platform.	2 years	HTTP
LinkedIn	bscookie	Used by the social networking service LinkedIn for tracking the use of embedded services.	2 years	HTTP
LinkedIn	lang	Used to memorize a user's language setting.	session	HTTP
LinkedIn	lidc	Used by the social networking service LinkedIn for tracking the use of embedded services.	1 day	HTTP
LinkedIn	UserMatchHistory	Ensures browsing security for visitors by preventing falsification of requests across pages. This cookie is essential for the security of the website and the visitor.	29 days	HTTP