Slashdot Mirror
Linux May Succeed Windows XP As OS of Choice For ATMs
Dega704 sends this news from ComputerWorld:
"Some financial services companies are looking to migrate their ATM fleets from Windows to Linux in a bid to have better control over hardware and software upgrade cycles. Pushing them in that direction apparently is Microsoft's decision to end support for Windows XP on April 8, said David Tente, executive director, USA, of the ATM Industry Association. 'There is some heartburn in the industry' over Microsoft's end-of-support decision, Tente said. ATM operators would like to be able to synchronize their hardware and software upgrade cycles. But that's hard to do with Microsoft dictating the software upgrade timetable. As a result, 'some are looking at the possibility of using a non-Microsoft operating system to synch up their hardware and software upgrades,' Tente said."
and if it's really, really cheap to do.
Oh if only Microsoft had given them more than like 10 years notice of end-of-support, they might have had time to prepare....
But isn't it somewhat staggering that so many businesses, with years of knowledge that Windows XP would reach end of support, did absolutely nothing about it? Why would I trust that company no matter what OS they run on their ATM?
So does this mean we can expect our special hardened ATM Linux OS to have names like Filching Finch, Moneybiting Mongoose, Overcharging Oranguatan?
Linux is much more secure, and free. Why they actually went with XP is beyond reason.
What you're refering to as Linux, is in fact, GANOOOOOOOOOU Linux
What's a desktop operating system doing on an ATM anyway?
Pretty good is actually pretty bad.
I was told OS/2 was the choice for ATM operating systems!
I guess I'm missing the difference. Linux distros and kernels do indeed go EOL. When that happens there are no more security updates and backporting right? Well how is that different than what MS is doing right now with XP? In either case they will still have to face the fact that the OS isn't going to be supported anymore and will require them to upgrade software.
Or are they thinking they will go it alone and continue to update their Linux distro/kernel just because it is open source? Do they really think they are qualified to do that? Or is the hope that they can spend money to keep the OS in long-term-support status?
If you can't be good, be good at it!
That does not seem to be happening. Diebold and NCR are both pushing Windows 7, as is Hyosung. Linux should be used, but these companies are making too much money with upgrade.
The funny thing is between firewalls, IP lockdowns and certificates, the ATMs are just about the safest things ever put on a network.
And most of the companies with Windows XP ATMs are just going to pay Microsoft for another year or two of service.
people still use cash?? I just use my pin and chip card.
Yes it's free, but I'm sick of the "it's more secure" nonsense. It has the potential to be secured properly by the integrator, but that's it.
It still costs a shitload of money to change platforms for an established product - especially since Win7/8/... are quite different with regards to file structure, user management, security, etc. And by nowmost security holes have been closed in their version of XP. Well, now that they switch to something open, M$ won't be able to pull another XP on them :-)
Delta-Mike November Bravo Tango
Finally, the year of Linux on the... oh wait... ATM.
If Pandora's box is destined to be opened, *I* want to be the one to open it.
"Pulling an XP" ... is that some kind of euphemism for supporting a product long past industry standards for free? Funny you use the little $ in "MS", seeing as that they haven't asked me for a single cent for updates to my XP box since 2001.
Shhh.....don't confuse them with facts....
They should be developing their own OS anyway. I guess they'll call it ATMOS.
Get free satoshi (Bitcoin) and Dogecoins
So, I'm all for them switching away from MS....
But the idea that they need to sync their software upgrades with their hardware upgrades is RIDICULOUS.
Are you kidding me? How do they deal with patches? How do they deal with exploits?
Hardware on an ATM can't get replaced THAT often and if that's when they want to run software updates?
Windows based ATM machines are almost certainly running on XP Embedded, rather than the retail version of XP... support for Embedded doesn't end until January 2016. Thus, if the financial industry is moving away from XP to Linux, it isn't necessarily related to Microsoft's XP support schedules.
Why an ATM was hosted on XP in the first place is beyond me. I suppose you dance with the one who brought you and banks are solidly Windows shops, but using XP for a device where security and reliability is paramount seems like a bad choice, at least in hindsight. I suppose in the depths of the XP heyday, when the base design decisions where being made, Linux was a decidedly hit and miss affair (mostly miss). X support was spotty and other devices had limited support. I remember the heady days of installing slackware and configuring video card and monitor by editing that text file. XP must have looked pretty good.
Now, ATM venders are faced with having to port everything to newer versions of Windows, which forces them into more expensive hardware (faster CPU's, more memory, greater drive space, modern video hardware etc.). This in the face of being able to keep using the old proven hardware, put Linux on it and get another decade or two, not to mention control of your own destiny because the source code is available and free. You are going to pay to retool to Linux, but you get to step away from Microsoft license fees. It's a long term gain, short term loss.
Maybe they will make the right choice this time? Who are we kidding... You KNOW that Microsoft has pulled out all the stops on the Redmond FUD machine and would gladly cut some "deals" to keep these guys on the hook and make Linux look less desirable in terms of ROI.
"File to fit, pound to insert, paint to match" - Aircraft Maintenance 101
I got extra cash from an ATM withdrawal.
If Red Hat or any of the other well-known distros had a spin I could burn to a thumb-drive that was XP-user-friendly, I could show it off and expect what my company's receptionist once asked: "That looks nice, what version of Windows is this?"
A colleague had installed Linux on the reception PC, and left a yellow stick to tell the receptionists to ask me for the password.
--dave
davecb@spamcop.net
So how is support for RHEL 2.1 (a year younger than XP) these days?
Of course news about a fake are Fake News.
YEAR OF THE LINUX ATM!
For minimum transition costs I would seriously consider replacing existing XP instances with carefully tested ReactOS equivalent.
Given the long notice on Windows XP end of life, why is this just being considered now? I would expect vendors to announce they have completed or have started their migration to a newer platform. And Linux is a very reasonable choice for this, and it was years ago. QNX, VxWorks was as well. It's not like Linux became a reasonable embedded OS just this year, but it seems like the companies are thinking that. "Oh, hey, maybe Linux isn't too bad after all." Weird.
And, there is Windows 7 embedded, if you want to upgrade not port. I understand being conservative, but this just seems like bad crisis planning at the last minute. Also, with the new card standards coming up, it seems the industry knew there was a need for new systems in plenty of time to create and implement a migration plan.
If I remember right, XP came out around the time that the 2.2 kernel was around. Is anyone still actively maintaining patches for the 2.2 line? Assuming the ATM manufacturers don't have a team of kernel devs to backport patches, how would moving to Linux make they situation better?
Might be the push Linux needed.
This is not just about support, but also about availability and continuity. The fact that YOU did not have to pay a cent means nothing when compared to companies that licenced millions of copies of XP (>2.000.000 ATMs). and that soon will have to switch to another product for replacing old and/or broken machines. By industry standards, Microsoft is an unreliable player!
Delta-Mike November Bravo Tango
Please Sir, would you be so kind and eat your own shi^H shorts?
Delta-Mike November Bravo Tango
Looking at the lifecycle fact sheet, Microsoft are currently giving 9 years notice on when 8.1 will end extended support.
How many years do they want? If they cannot manage with nine years notice, realistically how will a few extra years help?
Secondly, what makes them think that if they installed Linux that they wouldn't need to do any further upgrades?
Avantslash - View Slashdot cleanly on your mobile phone.
I can remember the first of the small, low power netbook type computers coming on to the market - the EeePC type machines? And they all ran Linux because they couldn't run Vista.
So, if MS had terminated XP at that time they would have put themselves out of that market. Of course they were not prepared to do that at any cost, because it would have put Linux directly in the hands of consumers, so they extended XP and unfortunately Linux disappeared from all the netbook computers.
So, we have Linux to thank for the long support for XP, not charity on the part of MS.
...in order to extract more favourable terms during licensing negotiations with Microsoft, nothing more.
Nothing to see here.
What industry standards exactly? If these ATM companies went with any other vendor, they would have already had to upgrade their OS years ago due to EOL.
It makes more sense to go with something modular like linux or even bsd rather than a full blown desktop like windows 7/8. Plus, no license cost. I think a lot of corporations need to get off the MS product bandwagon and go with something that can be tailored to their need.
I run windows 7/8 for .net development, netflix, little bit of office 2013, gaming(cod4). Well, if netflix(on linux hack slow with problems) and windows type gaming(wine not that great) were available on linux I would make linux my primary OS and just do the .net development in virtualbox.
Wouldn't we have Microsoft's own incompetence with Windows Vista to thank for that?
This is just a bid to get bargain basement pricing on the next Microsoft OS. Threaten to move to Linux and the Microsoft Sales Droids will cut the licensing fee for whatever Windows you want down to an almost reasonable price.
Though without Ballmer, that's not the slam dunk prediction it used to be...
This is the perfect example of why gratis doesn't mean so much. The really important thing here is that the user or even the "integrator" can have complete control of the system. They don't have to worry about ANYONE else interfering with the degree of control they want and the features that they want to be active.
The people building the ATM are in total control. For a device like an ATM, that's really how it should be.
Too bad e-voting machines aren't built to the same standard of reliability and auditiability.
Wouldn't we have Microsoft's own incompetence with Windows Vista to thank for that?
No, just Microsoft's determination to exclude others from the computer market.
The other thing I just remembered, was that XP was already being shut down at the time. Retail copies were no longer available. The only way you could still buy XP was to have it pre-installed on a tiny portable that was incapable of running any other MS product.
Yes, and the vendor would have made sure that their platform is backwards compatible. With Industry, I don't limit myself just to IT!
Delta-Mike November Bravo Tango
Really Linux, PCI compliant and adhering to all latest security and international IEEE standards? If you write an article about banking software at least get the requirements straight! No follow up for embedded Windows? Its not about maintenance, its about international compliancy. And then stating that there is no follow up on a lightweight OS from MS that is API compatible? Where have you been the last years? W8.1 runs on lightweight processors ARM and Intel based for a price tag lesser than the iPad which plenty of stores use these days for POS. Jeez, even I can put more sense in an article like this.
Comment removed based on user account deletion
Because 10+ years of continued support is just to god damn short of time to sync your release schedules.
My bank recently upgraded ATMs... It is obviously running a newer version of Windows, and the UI is the slower piece of crap I've ever encountered.
-=/\- Jizzbug -/\=-
You're an ATM designer in 1991, you need to choose an OS, you have people who know how to code in Basic PDS for Win 3.1 and Win/ME in the house. Hmm, what choice do you make? Yep, Windows: you at least know it will run on IBM PC clone hardware that you buy from anywhere. Linux? maybe, maybe not.
Maybe you run NT 3.0 or, eventually, 4.0
10 years later, you upgrade to XP. Same tools work, same software developers, etc. It's not that big a deal, you've got the whole registry thing figured out.
Maybe it's 2002, and you're thinking about going to Linux.. it's nowhere near plug and play, particularly if you need any peripherals other than mouse, keyboard and monitor. USB? sometimes it works, sometimes it doesn't. Audio? ALSA? OSS? good luck.
At least XP is stable and it works with "any PC". remember, you don't have people on staff who think "rebuild the kernel" is an afternoon's amusement. You're not interested in Debian vs Redhat vs Slackware vs Bob's Kustom Linux, nor are you interested in vi vs emacs, or gnome vs kde.
You want something that your application code just works, and that's XP. Simple, familiar, done.
You've got a stable product installed in millions of units. Why change?
Actually why change now at all.. why not just run XP until the machine physically disappears? It's not like you're interested in running the latest whiz-bang version of Outlook, as you communicate over your 1200 bps modem link for transaction data.
Indeed. And "file structure, user management, security, etc." have variations in the UNIX ecosystem, but many, many similarities. On API-level you often do not even notice what UNIX or UNIX-like OS you are running on. The MS API stability level today is maybe where UNIX was 40 years ago, namely when they were experimenting around a lot. MS never stopped experimenting, because they are not engineering driven (i.e. want a good product), but revenue driven. And then messes like the Win8 disaster happen that make everything different. Completely unacceptable for devices than run for decades.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
I thought exactly business like ATM fleets would be RedHat's target -- people who need robust Linux with support -- all negotiable.
MS is consumer-trash. The only reason any good OS vendor stops supporting an OS is when they go bankrupt, when nobody is using it anymore or when they have an adequate (i.e. no porting effort) replacement.
Most ACs are not even worth the keystrokes to insult them. Be generically insulted by this and ignored otherwise.
I seriously doubt this; it's all about getting better pricing from Microsoft, period.
A lot of ATMs run Windows CE. I think all of Hyosungs product line does anyway.
The only way you could still buy XP was to have it pre-installed on a tiny portable that was incapable of running any other MS product.
You could also buy machines that had a windows vista buisness (or ultimate if you wanted to throw money away) license but had XP pro installed under downgrade rights.
note: i'm known as plugwash most places but i screwd up registering that here somehow in the past and now can't register
Come on GEOS , now's your chance to shine as a replacement for Windows!
If telephones are outlawed, then only outlaws will have telephones.
There is not much you gain from using XPE (or a similar offering) on an ATM.
You don't want to run a broad selection of software, you just need one (quite simple) application.
Using XP dramatically increases the attack surface (that why you need security updates (that you must test and distribute) every month).
XPE allows you to tailor your system and remove unneeded components, but development and maintenance of XPE systems is a nightmare, especially if you have not exactly the same hardware in every installation (which rarely happens in real world projects).I have done it (not with ATM but with POS systems)
So the only real benefit are the development tools (for your application) and the integrated Windows protocols (SMB etc). Most of these protocols work really well in attended LAN environments (that's where you normally test), but are ill suited for unattended WANs (where connection errors occur)
And your a 5 MB application now requires a 1 GB installation.
If these systems are still using XP today, my bet is that they only rely on a small, stable, well-established subset of what we consider today's Windows API. It really wouldn't surprise me at all if a whole bunch of the software involved built flawlessly with winelib.
Anyone know if that's how they're going about it?
#sudo gvmemny -t\$ -n1000000
Most of the ATM's that I have seen still use OS/2 with less using Linux, and still even less using Windows.
I work for a medium-sized company developing ATM software (although this is just a very small part of the business). We use Windows (XP) simply because we have to use an abstractiong layer for the different vendors which is really only available for Windows. Why the vendors don't provide any additional version for Linux is up to speculation.
Anyway, the trend to commodity hard- and software is HUGE is industry. Previously I worked at a big company developing control systems for huge factories, coal mines, power plants (though not nuclear) etc. and they used Windows as well. I guess the price and ease of use (don't forget that EVERYBODY knows how to use Windows) is just too tempting.
Anyway, I find the discussion about the 'banks' developing some ATM software extremely funny. I don't know of a single bank - and I know quite a lot of them - which would go through the exercise of developing their own ATM driving software + testing + certification + ... instead of just buying one of the shelf.
IBM is more reliable, think $$.
That's because you're paying them to do that. If you have a contract with IBM or somebody else to provide the infrustructure, you're paying for them to keep it alive. At some point you're the only one left and you're paying the full cost of patching the software.
In this case, I don't see anything wrong being done by MS. XP was a decent OS, but the cost of securing and maintaining it has got to be higher than for newer versions of the OS.
For example, Redhat/CentOS is 10 years. However there is always the option to pay someone to roll-back updates into whatever version the ATM has, which is onet thing you can't do with a closed source OS. As far as security is concerned, I would have thought something like QNX would be a better choice than either Windows or Linux. Anyone know what EOL time QNX offer? I couldn't see just be glancing at their website.
I'm not buying that anything made in 1984 (or earlier) couldn't be replaced with newer and better software/hardware.
The only ATM I ever saw actually reboot (it was kinda fun) was running OS/2.
Is Windows XP really that widely-deployed on ATMs? It seems like an awful waste of resources.
More Linux exploits.
Oh goody.
Good God, I had no idea all our money was handled by Windows!
You'd think they would go for a security centric OS like OpenBSD or something even more exotic rather than Linux or *shudder* Windows. Yeesh.
Microsofts attempt to sale there latest and greatest backfires....hilarious, as well as just.
AFAIK the very reason that RedHat exists as a company is to provide technical support for its enterprise Linux distro. I'm pretty sure that IBM and Oracle work a lot with Linux as well, though rumour suggests Oracle might not be a good choice of vendor. Canonical also sells enterprise support for Ubuntu if I am not mistaken.
Unsupported all time time, I think not.
I know, not a very popular subject line these days but bear with me. I think it is completely criminal that a critical function like handling people's money is done with software the bank does not own and control. The banks should be required to review and test every last line of code. Perhaps I missed where Microsoft handed out the source code to XP to all of the ATM manufacturers.
There's a maximum of 50,000 to 100,000 USD in an ATM depending on the bank and the average load is ~20,000 USD.. IF that goes missing.. we are not going to care from a OH-MY-GOD-MAMMON-A-WAD-OF-CASH-WENT-MISSING point of view, and our resident jews wont go OY!OY!OY! .. but we'll care from the general prevention perspective and the publicity angle. SO even if we do get 'ripped' off once in a while that woujdn't be the end of the world (and we'll take it anyhow from you whichever way we can). We're quiet happy if it only happens once in a while though and not every day, so that's why security on an ATM is somewhat rather important but not all thaaat important too at the same time.
because a guy said:
"but using XP for a device where security and reliability is paramount seems like a bad choice,"
:-) It still runs on a vintage Sony VAIO RX470DS.
Yee Haa.
XP is an emoticon.
Finishing my computer engineering degree this semester. The way I've been taught how to implement a system like this is the following :
1. The outermost "user land" control panel should use an OS that is both lightweight, will work on a lot of hardware (so you can switch hardware if during the production of the ATM a vendor goes out of business), and offers a lot of graphical libraries for a pretty interface. Android sounds ideal for this.
2. The android display would communicate via network (probably TCP/IP) with a small server running an embedded flavor of Linux. This server would be stripped down to the minimum features and services, running on a tiny little ARM architecture chip. It would be the computer that actually talks to the bank via encrypted link and controls the cash dispensing process.
3. For the actual physical interlocks and running the motors to dispense the cash, you'd communicate via a serial bus with several small microcontrollers or PLL controllers. Each would be running a very simple program written in C (or ladder logic tree) to do their jobs, which would be to do the actual dispensing and monitoring all the various switches and so forth.
The point of this hierarchy (rather than using one computer to do everything directly) is to compartmentalize the design, allowing you to debug it more easily and also improving security. Someone compromises the outer control panel - they won't be able to dispense cash.
Windows to run an ATM? That's nuts! An ATM has a simple menu and a money-dispensing robot. That's it. They'd be better off using a controller out of a washing machine.
d'oh?
I was amazed once to see win3.1 installed on my local ATM. Since been upgraded to XP. I noticed that Tesco's self service pos are all XP too, another opportunity for Linux to step in.
I can remember the first of the small, low power netbook type computers coming on to the market - the EeePC type machines? And they all ran Linux because they couldn't run Vista.
So, if MS had terminated XP at that time they would have put themselves out of that market. Of course they were not prepared to do that at any cost, because it would have put Linux directly in the hands of consumers, so they extended XP and unfortunately Linux disappeared from all the netbook computers.
So, we have Linux to thank for the long support for XP, not charity on the part of MS.
Sure, my EeePC may have come with Windows XP. That doesn't change the fact I removed it in less than 10 minutes and have been running Linux on it ever since. I'm posting from my EeePC right now, in fact. My hardware may be old, but it's still chugging along quite well without any problems, and I'm using a modern, secure, up-to-date distribution with kernel 3.13.6. If I had dug in my heels as a Windows user, I'd be forced to buy a new computer by now (which would be impossible for me at my income level) but I extended the life of this old and still very useful machine by using Linux.
It's no wonder banks are considering the switch to Linux. They see how foolishly expensive it would be to repeat this same mistake again, having their hardware support so closely tied in with their OS support. It's like being told to buy a new car just because your in-dash Bing GPS software isn't getting more map updates. I'd sooner find a way to put Linux in my car's dashboard than run to the dealership with my chequebook in hand like a scared, stupid consumer whore. I would bet my left nut that almost every ATM facing EOL has perfectly functional hardware, it's just the OS support that's making everyone shit their pants.
Gotta love big business though, eh? Don't deal with any problems unless they're happening RIGHT NOW, THIS FISCAL QUARTER, otherwise you're just wasting money.