EMV Perso Summary
来源:互联网 发布:太平洋软件 编辑:程序博客网 时间:2024/05/16 11:59
- Summary
- INITIALIZE UPDATE
- EXTERNAL AUTHENTICATE
- Session Keys
- STORE DATA
- C-MAC Command
- Reference
Summary
Work on EMV perso scripts recently, summarize a few points include Initialize Update, External Authenticate, Store Data.
For some detail data, can refer to my another blog entry GP(Global Platform) External authentication and MAC sending APDU.
INITIALIZE UPDATE
Initialize Update is used to begin the authentication with the applet or Card Manager. Data in will be the host challenge.
Response data is as below,
example as below,
<< 80500000080000000000000000>> 611C<< 00C000001C>> 0000507101046E6C8B70FF0200072503683B31FAB7F4E8D8857D0CB4
The host challenge data and response data will be used for external authentication.
EXTERNAL AUTHENTICATE
The External Authentication command authenticates the host to the current applet and open a secure channel to communicate to card. The command will include the security level.
Security level P1,
Session Keys
Continue with the first example, External Authentication command,
Random Data: 0000000000000000ENC: 404142434445464748494A4B4C4D4E4FMAC: 404142434445464748494A4B4C4D4E4FDEK: 404142434445464748494A4B4C4D4E4FSession ENC: A2268F71917EFE0F33CC6166E1154E27Session MAC: 7A227D376A9DBE23AB50B7DCB45B2093Session DEK: F39FCFB2383B09578723B8C2E03B2729<< 848201001080F1BB4686D30DF9A0B8829AF3E87A16>> 9000
STORE DATA
The STORE DATA command is used to personalize the EMV applications. Multiple DGI(Data Grouping Identifier) may be sent in one STORE DATA command.
STORE DATA Command Coding
Coding of P1 in STORE DATA COMMAND
DGI: 8201Length: 48 Original Data: 588C13E98E5294BE0161E432F8B0E77A208D8AAC95A7D8091099AFEC687A72A59C0CB179A327DFB044F0BFAA21D6232E0C29C99BBAD8A735B3952007F49DF43C8000000000000000 Session DEK: 33C1D105492068CD86923711B29E6475Encrypted: 6CF8E1732DE31C85318AB1549978C5D9D67C2CDE8668A4AEBFB36D2C766874B09D968A3DE64E0CE5C53A10F56B2818F4097804BCE8C27C4F9A6993B09C86D4FCC5D7FA98C3AEB6BE<< 80E2600D4B8201486CF8E1732DE31C85318AB1549978C5D9D67C2CDE8668A4AEBFB36D2C766874B09D968A3DE64E0CE5C53A10F56B2818F4097804BCE8C27C4F9A6993B09C86D4FCC5D7FA98C3AEB6BE>> 9000
C-MAC Command
If CLA = ‘84’, it will require to calculate the C-MAC and append to the end of the APDU command. The calculation will be using the session MAC key generated at the External Authentication step, and the IV will be using the C-MAC value generated in last C-MAC computing. Refer to my another blog entry for detail, GP(Global Platform) External authentication and MAC sending APDU.
Example:
Session MAC Key: 7A227D376A9DBE23AB50B7DCB45B2093IV: A0B8829AF3E87A16 << 84E60C002C06A0000000031607A00000000316500E315041592E5359532E4444463031011002C900007CC1FECDA12AA91E>> 6101<< 00C0000001>> 00>> 9000
Reference
1,Blog Entry: GP(Global Platform) External authentication and MAC sending APDU
2, EMV Card Personalization Specification
3, GlobalPlatform Card Specification Version 2.2 March 2006
- EMV Perso Summary
- Summary
- summary
- summary
- Summary
- Summary
- summary
- Summary
- summary
- summary
- summary
- summary
- summary
- summary
- summary
- summary
- Summary
- Summary
- OpenCV14(检测和绘制棋盘角点)
- 计算机知识--位、字节、字、字长
- MESI协议
- leetCode练习(18)
- [Mahout in Action] Representating Recommender Data
- EMV Perso Summary
- cuda
- android中的权限,了解一下
- [五维偏序 分块 bitset] HihoCoder #1236 2015北京网络赛 J Scores
- Bootstrap 网页乱码
- android Bitmap用法总结
- 输入字符串,反序输出
- SpringMVC的controller默认是单例的!跟Struts2的action不一样
- 【OpenCV学习笔记 006】基于类的图像处理