Add table and pics to HSM chapter

2025-10-29 15:36:59 +01:00 · 2025-10-29 15:36:59 +01:00 · dab9ed1eff
commit dab9ed1eff
parent 3d66deb9ba
38 changed files with 1076 additions and 528 deletions
--- a/chapter-hsms/chapter.tex
+++ b/chapter-hsms/chapter.tex
@ -145,7 +145,7 @@ outside-facing wall to detect attempts at drilling into it. Finally, we have fou
 mid-2000s era slot machines in Germany that includes a tamper-sensing mesh, presumably to prevent modification or
 cloning. This device will also be analyzed later in this chapter.

-\section{The Principles of Tamper-Sensing Mesh Construction and Monitoring}
+\section{Tamper-Sensing Mesh Design Principles}

 %\subsection{Tamper-sensing Mesh Manufacturing}

@ -176,7 +176,7 @@ basic construction and layout has not changed much since the early 1990ies~\cite
    macphersonImprovementsSecurityEnclosures1993,
    macphersonTamperRespondentEnclosure1999}.

-\subsection{Tamper-sensing Mesh Monitoring}
+\subsection{Monitoring Circuit Approaches}

 Tamper-sensing meshes are most effective when they are continuously monitored using a backup power supply when the
 larger system is powered off. In practice, the main challenge with continuous monitoring of tamper-sensing meshes is in
@ -230,7 +230,90 @@ meshes.

 Given their niche applications and high cost, devices incorporating tamper sensing meshes tend to be hard to find. For
 this survey, we chose 21 different models of card payment terminals, and 6 other devices. All devices were procured from
-ebay, and the majority were sold by electronic waste recycling companies.
+ebay, and the majority were sold by electronic waste recycling companies. A complete list of our samples can be found in
+Table~\ref{tab_hsm_survey_sample_list}. Photos of each device are shown in Figure~\ref{fig_hsm_survey_sample_pics}. 
+
+\begin{table}
+    \footnotesize
+    \rowcolors{2}{gray!15}{white}
+    \begin{tabular}[c]{c>{\RaggedRight\arraybackslash}p{35mm}>{\RaggedRight\arraybackslash}p{30mm}llc}
+        \textbf{ID} & \textbf{Device} & \textbf{Manufacturer} &  \textbf{Type code} & \textbf{Year} \\
+        \hline
+        H01 & PED & Verifone & VX 570 & ca. 2010 \\ 
+        H02 & Slot machine CPU & Merkur / ADP Gauselmann & Sam 12 EC2 & ca. 2012 \\ 
+        H03 & EPP & Sagem & USA1315-4240 R1A & 2014 \\ 
+        H04 & EPP & Sagem & USA1316-5120 R1A & 2007 \\ 
+        H05 & PED & Xac & xAPT-103 & 2014 \\ 
+        H06 & PED & Ingenico & iCT250-11T1860A & 2016-17 \\ 
+        H08 & PED & Sagem & NOR4100-4220 R1A & 2012 \\ 
+        H09 & PED & Hypercom & M4230 & 2010 \\ 
+        H10 & PED & Worldline & YOMANI XR & 2016 \\ 
+        H11 & PED & Banksys & C-ZAM Smash Portable & 2004 \\ 
+        H12 & PED & Hypercom & Optimum P2100 & 2010 \\ 
+        H13 & PED & Ingenico & iCT 220-11T2938A & 2016 \\ 
+        H14 & PED & Verifone & H5000 & 2016 \\ 
+        H15 & PED & Verifone & MX 925 & 2018 \\ 
+        H16 & PED & Verifone & V200c CTLS & 2021 \\ 
+        H17 & PED & Verifone & VX 680 & 2014 \\ 
+        H18 & PED & Ingenico & i7910 & 2010 \\ 
+        H19 & PED & Banksys & XENTA & 2004-2011 \\ 
+        H20 & PED & Verifone & VX 520 3G & 2017 \\ 
+        H21 & PED & Verifone & V400m Plus 4G & 2018 \\ 
+        H22 & PED & Ingenico & Move 3500 & 2020 \\ 
+        H23 & PED & Ingenico & iPP 350-11T1718A & 2015 \\ 
+        H24 & PED & Ingenico & iWL255-01T2117A & 2016 \\ 
+        H25 & Franking Machine & Neopost & IJ-25 & ca. 2001 \\ 
+        H27 & PED & Sumup & AIR1E205 & 2021 \\ 
+        H28 & EPP & NCR & 5814 UEPP & 2019 \\ 
+        H29 & HSM & SafeNet & VBD-05 & 2018 \\ 
+        H30 & HSM & Irdeto & Mayflower-IDX/C201 & 2011 \\ 
+    \end{tabular}
+    \label{tab_hsm_survey_sample_list}
+    \caption{The samples we dissected in our survey.}
+\end{table}
+
+\newcommand{\surveypic}[2]{
+    \begingroup
+        \setlength{\fboxsep}{0.2mm}
+        \begin{overpic}[percent,width=25mm]{#2}
+            \put(100,85){\makebox[0pt][r]{\colorbox{white}{\large H#1}}}
+        \end{overpic}
+    \endgroup
+    }
+
+\begin{figure}
+    \begin{tabular}[c]{cccc}
+        \surveypic{02}{survey_diag_S02.jpg}&
+        \surveypic{03}{survey_diag_S03.jpg}&
+        \surveypic{04}{survey_diag_S04.jpg}&
+        \surveypic{05}{survey_diag_S05.jpg}\\
+        \surveypic{06}{survey_diag_S06.jpg}&
+        \surveypic{08}{survey_diag_S08.jpg}&
+        \surveypic{09}{survey_diag_S09.jpg}&
+        \surveypic{10}{survey_diag_S10.jpg}\\
+        \surveypic{11}{survey_diag_S11.jpg}&
+        \surveypic{12}{survey_diag_S12.jpg}&
+        \surveypic{13}{survey_diag_S13.jpg}&
+        \surveypic{14}{survey_diag_S14.jpg}\\
+        \surveypic{15}{survey_diag_S15.jpg}&
+        \surveypic{16}{survey_diag_S16.jpg}&
+        \surveypic{17}{survey_diag_S17.jpg}&
+        \surveypic{18}{survey_diag_S18.jpg}\\
+        \surveypic{19}{survey_diag_S19.jpg}&
+        \surveypic{20}{survey_diag_S20.jpg}&
+        \surveypic{21}{survey_diag_S21.jpg}&
+        \surveypic{22}{survey_diag_S22.jpg}\\
+        \surveypic{23}{survey_diag_S23.jpg}&
+        \surveypic{24}{survey_diag_S24.jpg}&
+        \surveypic{25}{survey_diag_S25.jpg}&
+        \surveypic{27}{survey_diag_S27.jpg}\\
+        \surveypic{28}{survey_diag_S28.jpg}&
+        \surveypic{29}{survey_diag_S29.jpg}&
+        \surveypic{30}{survey_diag_S30.jpg}&
+    \end{tabular}
+    \label{fig_hsm_survey_sample_pics}
+    \caption{Photos of all survey samples}
+\end{figure}

 \subsubsection{Card Payment Terminals}

--- a/chapter-hsms/figures/survey_diag_S02.jpg
+++ b/chapter-hsms/figures/survey_diag_S02.jpg
--- a/chapter-hsms/figures/survey_diag_S03.jpg
+++ b/chapter-hsms/figures/survey_diag_S03.jpg
--- a/chapter-hsms/figures/survey_diag_S04.jpg
+++ b/chapter-hsms/figures/survey_diag_S04.jpg
--- a/chapter-hsms/figures/survey_diag_S05.jpg
+++ b/chapter-hsms/figures/survey_diag_S05.jpg
--- a/chapter-hsms/figures/survey_diag_S06.jpg
+++ b/chapter-hsms/figures/survey_diag_S06.jpg
--- a/chapter-hsms/figures/survey_diag_S07.jpg
+++ b/chapter-hsms/figures/survey_diag_S07.jpg
--- a/chapter-hsms/figures/survey_diag_S08.jpg
+++ b/chapter-hsms/figures/survey_diag_S08.jpg
--- a/chapter-hsms/figures/survey_diag_S09.jpg
+++ b/chapter-hsms/figures/survey_diag_S09.jpg
--- a/chapter-hsms/figures/survey_diag_S10.jpg
+++ b/chapter-hsms/figures/survey_diag_S10.jpg
--- a/chapter-hsms/figures/survey_diag_S11.jpg
+++ b/chapter-hsms/figures/survey_diag_S11.jpg
--- a/chapter-hsms/figures/survey_diag_S12.jpg
+++ b/chapter-hsms/figures/survey_diag_S12.jpg
--- a/chapter-hsms/figures/survey_diag_S13.jpg
+++ b/chapter-hsms/figures/survey_diag_S13.jpg
--- a/chapter-hsms/figures/survey_diag_S14.jpg
+++ b/chapter-hsms/figures/survey_diag_S14.jpg
--- a/chapter-hsms/figures/survey_diag_S15.jpg
+++ b/chapter-hsms/figures/survey_diag_S15.jpg
--- a/chapter-hsms/figures/survey_diag_S16.jpg
+++ b/chapter-hsms/figures/survey_diag_S16.jpg
--- a/chapter-hsms/figures/survey_diag_S17.jpg
+++ b/chapter-hsms/figures/survey_diag_S17.jpg
--- a/chapter-hsms/figures/survey_diag_S18.jpg
+++ b/chapter-hsms/figures/survey_diag_S18.jpg
--- a/chapter-hsms/figures/survey_diag_S19.jpg
+++ b/chapter-hsms/figures/survey_diag_S19.jpg
--- a/chapter-hsms/figures/survey_diag_S20.jpg
+++ b/chapter-hsms/figures/survey_diag_S20.jpg
--- a/chapter-hsms/figures/survey_diag_S21.jpg
+++ b/chapter-hsms/figures/survey_diag_S21.jpg
--- a/chapter-hsms/figures/survey_diag_S22.jpg
+++ b/chapter-hsms/figures/survey_diag_S22.jpg
--- a/chapter-hsms/figures/survey_diag_S23.jpg
+++ b/chapter-hsms/figures/survey_diag_S23.jpg
--- a/chapter-hsms/figures/survey_diag_S24.jpg
+++ b/chapter-hsms/figures/survey_diag_S24.jpg
--- a/chapter-hsms/figures/survey_diag_S25.jpg
+++ b/chapter-hsms/figures/survey_diag_S25.jpg
--- a/chapter-hsms/figures/survey_diag_S26.jpg
+++ b/chapter-hsms/figures/survey_diag_S26.jpg
--- a/chapter-hsms/figures/survey_diag_S27.jpg
+++ b/chapter-hsms/figures/survey_diag_S27.jpg
--- a/chapter-hsms/figures/survey_diag_S28.jpg
+++ b/chapter-hsms/figures/survey_diag_S28.jpg
--- a/chapter-hsms/figures/survey_diag_S29.jpg
+++ b/chapter-hsms/figures/survey_diag_S29.jpg
--- a/chapter-hsms/figures/survey_diag_S30.jpg
+++ b/chapter-hsms/figures/survey_diag_S30.jpg