Card Specification Amendment A March 2004
|
|
- Jeremy Fowler
- 5 years ago
- Views:
Transcription
1 Card Specification March 2004 Use of this information is governed by the GlobalPlatform license agreement and any use inconsistent with that agreement is strictly prohibited.
2 2 GlobalPlatform Card Specification /2004
3 03/2004 GlobalPlatform Card Specification Table of Contents DEFINITION OF AMENDMENT...4 TABLE OF EXTENSIONS...4 A.1 STORE DATA Command...5 A.1.1 Reference Control Parameter P1...5 A.1.2 Command Message Data Field...6 A.1.3 Response Message Processing State...6 Command Pre-Processing...7 A.2 Pseudo-Random Card Challenge...7 A.2.1 Secure Channel Protocol 02 Pseudo-Random Card Challenge...7 A.2.2 Secure Channel Protocol 02 Options Identifier...7 A.3 Data Element Tags and Values Allocation...8 A.3.1 Data Element Tags...8 A.3.2 Key Type Values...9 A.4 Card and Application Management...9 A.4.1 Executable Load File Version Number...9 A.4.2 Runtime Environment Version Number...10 A.4.3 GET STATUS Parameter P1 Extensions...10 Use of this information is governed by the GlobalPlatform license agreement and any use inconsistent with that agreement is strictly prohibited.
4 4 GlobalPlatform Card Specification /2004 Definition of Amendment A GlobalPlatform Amendment includes a set of optional extensions to the latest version of a GlobalPlatform specification, that address few limited technical change requests. An Amendment is intended to be incorporated as is in a subsequent release of the GlobalPlatform specification it amends. When implemented, an optional extension shall comply to the description provided in the corresponding Amendment. Table of Extensions This Card Specification is a set of optional extensions to the current Card Specification version These extensions provide support for the latest GlobalPlatform Scripting Specification, EMV Card Personalization Specification (see and Smart Card Platform TS and TS specifications (see Each part of this Amendment: A.1, A.2, A.3 or A.4, describes a self-contained extension that may be implemented independently of each other. The following table classifies the different parts of this Amendment into a sequential order that reflects the Card Specification index. The additions to the current specification are in blue characters. Amendment Card Specification number section number Description A.1 sections & 9.11 STORE DATA Command A.3 sections 9.1.6, , Data Element Tags and Values Allocation & A.4 sections , Card and Application Management & appendix F.2 A.2 appendices E.1.1 & E.4.2 Pseudo-Random Card Challenge
5 03/2004 GlobalPlatform Card Specification A.1 STORE DATA Command The STORE DATA command functionality is extended to support Application data format and data encryption management. Implementing this extension A.1 requires supporting BER-TLV format for non-encrypted (Issuer) Security Domain data transfer, that is: reference control parameter P1 bits b7-b6-b5-b4 set to 0010 with the corresponding data field coding. Section 9.11 STORE DATA Command of version is extended as described hereafter. A.1.1 Reference Control Parameter P1 Reference control parameter P1 of the STORE DATA command coding is extendedwith Application data format and data encryption information. Zero values for bits b4, b5, b6 and b7 ensure backward compatibility with the existing GlobalPlatform Card Specification. Section STORE DATA Reference Control Parameter P1 is extended as follows: b8 b7 b6 b5 b4 b3 b2 b1 Meaning 0 More blocks 1 Last block 0 0 No general encryption information or nonencrypted data 0 1 Application dependent encryption of the data 1 0 RFU (encryption indicator) 1 1 Encrypted data 0 0 No general data structure information 0 1 DGI format of the command data field 1 0 BER-TLV format of the command data field 1 1 RFU (data structure information) X X X RFU Table 9-62: STORE DATA Reference Control Parameter P1 Bits b5 and b4 provide information on the data structure of the command message data field. b5 - b4 = 00 indicate that no general information on the data structure is provided, i.e. the data structure is Application dependent, b5 - b4 = 01 indicate that the command message data field is coded as one or more DGI structures, according to GlobalPlatform Scripting Specification version 1.1, b5 - b4 = 10 indicate that the command message data field is coded as one or more BER- TLV structures, according to ISO Bits b7 and b6 provide information on the encryption of the value fields of the data structure present in the command message data field. b7 b6 = 00 indicate that no general information on the data encryption is provided, i.e. the encryption (or non-encryption) of the data is Application dependent, or that the data value fields of all the data structures present in the current command message are not encrypted, b7 b6 = 01 indicate that the encryption (or non-encryption) of the data structure value fields is Application dependent, e.g. when multiple data structures are present in the current command message, some may have encrypted data value fields and other data value fields may be non-encrypted b7 b6 = 11 indicate that the data value fields of all the data structures present in the current command message are encrypted.
6 6 GlobalPlatform Card Specification /2004 A.1.2 Command Message Data Field The data field coding of the STORE DATA command reflects the different data formats indicated in the command Reference Control Parameter P1. Section STORE DATA Command Data Field is extended as follows: The STORE DATA command data field may be formatted according to an Application's or Security Domain s requirements. Application dependent format applies when no information is available on the format of the incoming command data: bits b5-b4 of reference control parameter P1 are set to 00. In this case, information on the encryption (or non-encryption) of the incoming command data is usually not available (parameter P1 bits b7-b6 set to 00 ): the format and eventual encryption of the incoming command data are implicitly known by the Application. DGI formatting applies when all data structures that are present in the command data field are formatted as DGI structures (as defined in the Scripting Specification): bits b5-b4 of reference control parameter P1 are set to 01. In this case, some information may be available on the encryption (or non-encryption) of the value fields of the DGI data structures: reference control parameter P1 bits b7-b6 are set accordingly. BER-TLV formatting applies when all data structures that are present in the command data field are formatted as BER-TLV structures (as defined in ISO 8825): bits b5-b4 of reference control parameter P1 are set to 10. In this case, some information may be available on the encryption (or non-encryption) of the value fields of the TLV data structures: reference control parameter P1 bits b7-b6 are set accordingly. If the overall length of the intended command message exceeds 255 bytes, the individual (or group of) data shall be sent in multiple consecutive STORE DATA commands. Whether the data format is a DGI or BER-TLV data structure, the following rules shall apply: The data structure length indicators shall always reflect the actual full length of the data structure value field, The data structure value field shall be truncated in the STORE DATA command message containing the data structure length indicator (e.g. at the maximum length of the command message), The subsequent STORE DATA command shall contain the remainder of the data structure value field (that may be followed by one or more data structure(s) in this same command message) note: for very large data, more than one subsequent STORE DATA command message may be required for the remainder of the data structure value field, The receiving Application or Security Domain shall use the last data structure length indicator of a STORE DATA command message to determine whether a subsequent STORE DATA command is expected to contain the remainder of the data structure value field. A.1.3 Response Message Processing State The list of error conditions applicable to the STORE DATA command is completed with an additional data processing error. Table 9-63 of section STORE DATA Response Processing State is extended as follows: SW1 SW2 Meaning '6A' '80' Incorrect values in command data 6A 88 Referenced data not found Table 9-63: STORE DATA Error Condition
7 03/2004 GlobalPlatform Card Specification A.1.4 Command Pre-Processing The following applies only when STORE DATA command pre-processing is implemented. When the Security Domain receives a STORE DATA command destined to an Application, the preprocessing of the STORE DATA command by that Security Domain is not impacted by the new optional STORE DATA command functionality. Section Security Domain access to Applications is extended with the following precision: The Security Domain unwraps this command according to the current Security Level of the current Secure Channel Session and prior to the command being forwarded to the Application. This pre-processing leaves as is the data structures of the command message as well as the eventual encryption of the data value fields of these data structures. A.2 Pseudo-Random Card Challenge In Explicit Secure Channel Initiation mode of Secure Channel Protocol 02, a pseudo-random generation algorithm provides the option to pre-compute the card challenge as opposed to it always being random. This would allow an off-card entity, with knowledge of the relevant Secure Channel secret keys and the ability to track the Secure Channel Sequence Counter, to precompute an authentication sequence without first communicating with the card. A.2.1 Secure Channel Protocol 02 Pseudo-Random Card Challenge Appendix E.4.2 Authentication Cryptograms in SCP 02 Explicit Secure Channel Initiation is extended as follows: Card Challenge The card challenge is either a random or pseudo-random number that shall be unique to a Secure Channel Session. A pseudo-random card challenge may be generated as follows: The AID of the currently selected Application is padded according to the padding rules defined in Appendix B.4 DES Padding; A MAC is calculated across the padded data as defined in Appendix B Single DES plus final triple DES, using the C-MAC session key and an ICV of binary zeroes; The six leftmost bytes of the resultant MAC constitute the card challenge. A.2.2 Secure Channel Protocol 02 Options Identifier To indicate support of a GlobalPlatform specified card challenge generation algorithm to an offcard entity, the SCP 02 options identifier is extended with new values. Appendix E.1.1 SCP 02 Secure Channel is extended as follows: "i" = '44': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, no ICV encryption, 1 Secure Channel base key, well-known pseudo-random algorithm (card challenge), "i" = '45': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, no ICV encryption, 3 Secure Channel Keys, well-known pseudo-random algorithm (card challenge), "i" = '54': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, ICV encryption for C-MAC session, 1 Secure Channel base key, well-known pseudo-random algorithm (card challenge), "i" = '55': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, ICV encryption for C-MAC session, 3 Secure Channel Keys, well-known pseudo-random algorithm (card challenge).
8 8 GlobalPlatform Card Specification /2004 For backward compatibility with the existing SCP 02 options identifier values, appendix E.1.1 SCP 02 Secure Channel is extended with the following precision: "i" = '04': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, no ICV encryption, 1 Secure Channel base key, unspecified card challenge generation method, "i" = '05': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, no ICV encryption, 3 Secure Channel Keys, unspecified card challenge generation method, "i" = '14': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, ICV encryption for C-MAC session, 1 Secure Channel base key, unspecified card challenge generation method, "i" = '15': Initiation mode explicit, C-MAC on modified APDU, ICV set to zero, ICV encryption for C-MAC session, 3 Secure Channel Keys, unspecified card challenge generation method A.3 Data Element Tags and Values Allocation The following data element tags and values are allocated by GlobalPlatform. Please note that some data elements tags and values are reserved for use by Smart Card Platform technical specifications. A.3.1 Data Element Tags In coordination with the Smart Card Platform project, a range of data element tags is reserved by GlobalPlatform for Smart Card Platform specifications. Note that Smart Card Platform TS and GSM specifications already define tags FF 1F and FF 20 with GlobalPlatform GET DATA command implementation and tag CA with GlobalPlatform INSTALL command. The usage and rules associated to those data elements are outside the scope of GlobalPlatform and defined by the Smart Card Platform specifications. Section GET DATA command Parameter P1 and P2 is extended as follows: Tags in the range FF 00 to FF 1E are reserved for data elements defined by GlobalPlatform specifications, Tags in the range 'FF 1F' to 'FF 3F' are reserved for data elements defined by Smart Card Platform TS specification, Tags in the range FF 40 to FF 7F are reserved for future use (RFU) and may be allocated in the future by GlobalPlatform to specific card schemes/specifications. Table 9-35 of section INSTALL [for load] and INSTALL [for install] Parameters is extended as follows: Tag Length Value (Name) Presence 'C9' Variable Application Specific Mandatory Parameters 'EF' Variable System Specific Parameters Conditional 'C7' 2 Volatile data space limit Optional 'C8' 2 Non volatile data space limit Optional 'CA' Variable TS specific parameter Optional 'EA' Variable TS specific template Optional Table 9-35: Install Parameter Tags
9 03/2004 GlobalPlatform Card Specification A.3.2 Key Type Values Key Type coding is extended to include new values: 82 to 84, that support the KIc and KID key and algorithm identifier coding defined in Smart Card Platform TS specification. Table 9-10 of section Key Type Coding is extended as follows: Value '00'-'7F' '80' '81' '82' '83' '84' '85'-'9F 'A0' 'A1' 'A2' 'A3' 'A4' 'A5' 'A6' 'A7' 'A8' 'A9'-'FE' 'FF' Meaning Reserved for private use DES mode (EBC/CBC) implicitly known Reserved (triple DES) Triple DES in CBC mode DES in ECB mode DES in CBC mode RFU (symmetric algorithms) RSA Public Key - public exponent e component (clear text) RSA Public Key - modulus N component (clear text) RSA Private Key - modulus N component RSA Private Key - private exponent d component RSA Private Key - Chinese Remainder P component RSA Private Key - Chinese Remainder Q component RSA Private Key - Chinese Remainder PQ component RSA Private Key - Chinese Remainder DP1 component RSA Private Key - Chinese Remainder DQ1 component RFU (asymmetric algorithms) Not Available Table 9-10: Key Type Coding A.4 Card and Application Management More management information is made available to off-card systems tracking multiple versions of application code and multiple versions of card platforms. A.4.1 Executable Load File Version Number Information available to an off-card system with the GET STATUS command is extended to include the Executable Load File Version Number when retrieving Executable Load File or Executable Load File and its Executable Modules information. Section GET STATUS Response Message Data Field is extended as follows: Tag Length Value Presence 'E3' Variable GlobalPlatform Registry related data '4F' 1-n AID '9F70' '01' Life Cycle State 'C5' '01' Application Privileges Conditional 'CE' 1-n Executable Load File Version Number Optional '84' 1-n First or only Executable Module AID Conditional... '84' 1-n Last Executable Module AID Conditional Table 9-23: GlobalPlatform Registry Data (TLV)
10 10 GlobalPlatform Card Specification /2004 Note: the Executable Load File Version Number format and contents are beyond the scope of this specification. It shall consist of the version information contained in the original Load File: on a Java Card based card, this version number represent the major and minor version attributes of the original Load File Data Block. A.4.2 Runtime Environment Version Number The Card/Chip Details data object (sub-tag 66 ) of Card Recognition Data provides information on the card and chip. The description of this data object is extended to include information pertaining to the operating system or runtime environment identification and its version number. Appendix F.2 Structure of Card Recognition Data is extended with the following precision: Note 6: Tag '66': this data object may contain information about the card and chip implementation, such as the operating system/runtime environment or a security kernel. Such information shall be TLV encoded and may consist of one (or more) OID(s), each OID being introduced by tag 06 and indicating the organization responsible for specifying the operating system, runtime environment or security kernel, the identification of the corresponding specification and its version number. A.4.3 GET STATUS Parameter P1 Extensions The possibility to execute a combined interrogation of the card contents is added to the GET STATUS command. The GET STATUS command reference control parameter P1 is extended with new values representing combination of existing values. Some of these combinations were already listed in version of GlobalPlatform Card Specification, i.e. values: E0, C0, A0, and 60. Please note that any combination including both values 20 and 10 is equivalent to a combination with value 10 only. Section GET STATUS Reference Control Parameter P1 is extended as follows: The following combination values of the reference control parameter may apply: 'E0' Issuer Security Domain, Applications, Security Domains and Executable Load Files. 'D0' Issuer Security Domain, Applications and Security Domains, Executable Load Files and their Executable Modules. 'C0' Issuer Security Domain, Applications and Security Domains. 'A0' Issuer Security Domain and Executable Load Files. '90' Issuer Security Domain, Executable Load Files and their Executable Modules. '60' Applications, Security Domains and Executable Load Files. '50' Applications, Security Domains, Executable Load Files and their Executable Modules.
Card Specifications & 2.1 Frequently Asked Questions December 2004
Card Specifications 2.1.1 & 2.1 Frequently Asked Questions December 2004 The technology provided or described herein is subject to updates, revisions, and extensions by GlobalPlatform. Use of this information
More informationETSI TS V ( )
TS 102 226 V6.13.0 (2006-05) Technical Specification Smart Cards; Remote APDU structure for UICC based applications (Release 6) 2 TS 102 226 V6.13.0 (2006-05) Reference RTS/SCP-T0285r13 Keywords protocol,
More informationETSI TS V6.0.0 ( )
TS 102 226 V6.0.0 (2002-04) Technical Specification Smart cards; Remote APDU Structure for UICC based Applications (Release 6) 2 TS 102 226 V6.0.0 (2002-04) Reference DTS/SCP-000285 Keywords smart card,
More informationETSI TS V7.3.0 ( )
TS 102 226 V7.3.0 (2007-02) Technical Specification Smart Cards; Remote APDU structure for UICC based applications (Release 7) 2 TS 102 226 V7.3.0 (2007-02) Reference RTS/SCP-T02850r3 Keywords protocol,
More informationETSI TS V9.0.0 ( ) Technical Specification. Smart Cards; Remote APDU structure for UICC based applications (Release 9)
TS 102 226 V9.0.0 (2009-06) Technical Specification Smart Cards; Remote APDU structure for UICC based applications (Release 9) 2 TS 102 226 V9.0.0 (2009-06) Reference RTS/SCP-T02850v900 Keywords protocol,
More informationM/Chip Advance V1.1 Personalization Guide
M/Chip Advance V1.1 Personalization Guide v01.71 (November, 2017) All copyrights are reserved by KONA I Co., Ltd. This manual can be revised without any notification. Unauthorized copying is strictly prohibited
More informationPayPass M/Chip 4. Card Technical Specification
PayPass M/Chip 4 Card Technical Specification Version 1.3.1 - September 2008 Proprietary Rights The information contained in this document is proprietary and confidential to MasterCard International Incorporated,
More informationEMV 96 Integrated Circuit Card Application Specification for Payment Systems
EMV 96 Integrated Circuit Card Application Specification for Payment Systems Version 3.0 June 30, 1996 1996 Europay International S.A., MasterCard International Incorporated, and Visa International Service
More informationETSI TS V ( )
TS 102 226 V13.0.0 (2016-05) TECHNICAL SPECIFICATION Smart Cards; Remote APDU structure for UICC based applications (Release 13) 2 TS 102 226 V13.0.0 (2016-05) Reference RTS/SCP-T02850vd00 Keywords protocol,
More informationCALYPSO FUNCTIONAL SPECIFICATION. CNA Calypso rev 3.1 Applet Presentation
1 / 13 CALYPSO FUNCTIONAL SPECIFICATION VERSION The information contained in this document is public. (This document may be accessed at http://www.calypsonet-asso.org/) 2014. All rights reserved. The authors
More informationTechnical Specification Smart Cards; Extensible Authentication Protocol support in the UICC (Release 9)
TS 102 310 V9.1.0 (2012-09) Technical Specification Smart Cards; Extensible Authentication Protocol support in the UICC (Release 9) 2 TS 102 310 V9.1.0 (2012-09) Reference RTS/SCP-T0013v910 Keywords card,
More informationI N F O R M A T I O N S E C U R I T Y
NIST Special Publication 800-73-3 Interfaces for Personal Identity Verification Part 2: End-Point PIV Card Application Card Command Interface Ramaswamy Chandramouli David Cooper James F. Dray Hildegard
More informationETSI TS V5.3.0 ( )
TS 131 114 V5.3.0 (2003-03) Technical Specification Universal Mobile Telecommunications System (UMTS); USAT interpreter protocol and administration (3GPP TS 31.114 version 5.3.0 Release 5) 1 TS 131 114
More informationETSI TS V7.1.0 ( )
TS 102 222 V7.1.0 (2007-02) Technical Specification Integrated Circuit Cards (ICC); Administrative commands for telecommunications applications (Release 7) 2 TS 102 222 V7.1.0 (2007-02) Reference RTS/SCP-T00368r1
More informationACOS5-64. Functional Specifications V1.04. Subject to change without prior notice.
ACOS5-64 Functional Specifications V1.04 Subject to change without prior notice Table of Contents 1.0. Introduction... 4 1.1. Card Features... 4 1.2. History of Modifications... 5 2.0. Technical Specifications...
More informationTechnological foundation
Technological foundation Carte à puce et Java Card 2010-2011 Jean-Louis Lanet Jean-louis.lanet@unilim.fr Cryptology Authentication Secure upload Agenda Cryptology Cryptography / Cryptanalysis, Smart Cards
More informationFunctional Specification of the OpenPGP application on ISO Smart Card Operating Systems
Functional Specification of the OpenPGP application on ISO Smart Card Operating Systems Version 2.2 Author: Achim Pietig 2016 January 10th Author: Achim Pietig Lippstädter Weg 14 32756 Detmold Germany
More informationSETECS OneCARD PIV II Java Card Applet. on Gemalto GemCombi'Xpresso R4 E72K PK card
Tel: (301) 587-3000 Fax: (301) 587-7877 E-mail: info@setecs.com Web: www.setecs.com SETECS OneCARD PIV II Java Card Applet on Gemalto GemCombi'presso R4 E72K PK card (Applet Version 1.2) FIPS 140-2 Security
More informationEMV Contactless Specifications for Payment Systems
EMV Contactless Specifications for Payment Systems Book C-6 Kernel 6 Specification Version 2.6 February 2016 pursuant to the EMVCo Terms of Use agreement found at www.emvco.com, as supplemented by the
More informationETSI TS V ( )
TECHNICAL SPECIFICATION Integrated Circuit Cards (ICC); Administrative commands for telecommunications applications () 2 Reference RTS/SCP-T0368r9vf00 Keywords GSM, smart card, UMTS 650 Route des Lucioles
More informationI N F O R M A T I O N S E C U R I T Y
NIST Special Publication 800-73 Draft Interfaces for Personal Identity Verification I N F O R M A T I O N S E C U R I T Y Information Technology Laboratory National Institute of Standards and Technology
More informationFINEID - S1 Electronic ID Application
FINEID SPECIFICATION 25.01.2018 FINEID - S1 Electronic ID Application v3.0 Population Register Centre (VRK) Certification Authority Services P.O. Box 123 FIN-00531 Helsinki Finland http://www.fineid.fi
More informationETSI TS V9.0.0 ( ) Technical Specification
Technical Specification Smart Cards; UICC Application Programming Interface and Loader Requirements; Service description; () 2 Reference RTS/SCP-R0263v900 Keywords API, smart card 650 Route des Lucioles
More informationEMV Contactless Specifications for Payment Systems
EMV Contactless Specifications for Payment Systems Book B Entry Point Specification Version 2.6 July 2016 pursuant to the applicable agreement between the user and EMVCo found at www.emvco.com. EMV is
More informationMultiApp ID V2.1 Platform FIPS Cryptographic Module Security Policy
Table of Contents References...4 Acronyms and definitions...5 1 Introduction...6 1.2 Firmware and Logical Cryptographic Boundary... 8 1.3 Versions and mode of operation... 9 2 Cryptographic functionality...
More informationETSI TS V6.2.0 ( )
TS 102 225 V6.2.0 (2003-06) Technical Specification Smart cards; Secured packet structure for UICC based applications (Release 6) 2 TS 102 225 V6.2.0 (2003-06) Reference RTS/SCP-000283r2 Keywords smart
More informationA Novel Scheme for On-demand Distribution of Secure Element Keys
A Novel Scheme for On-demand Distribution of Secure Element Keys Vincent Alimi Normandie Univ, France UNICAEN, ENSICAEN, GREYC CNRS, UMR 6072 F-14032 Caen, France fvincent.alimi@ensicaen.fr ABSTRACT: The
More informationETSI TS V7.0.0 ( ) Technical Specification. Smart Cards; Extensible Authentication Protocol support in the UICC (Release 7)
TS 102 310 V7.0.0 (2008-09) Technical Specification Smart Cards; Extensible Authentication Protocol support in the UICC (Release 7) 2 TS 102 310 V7.0.0 (2008-09) Reference RTS/SCP-T0013v700 Keywords card,
More informationGemXpresso R4 E36/E72 PK. Security Policy
GemXpresso R4 E36/E72 PK Security Policy TITLE REF. SP01R10630 - _05 DATE: 06/10/06 GemXpresso R4 E36/E72 PK - Security Policy 1 TABLE OF CONTENTS 4.1.1 PIN assignments and contact dimensions:... 10 4.1.2
More informationFunctional Specification of the OpenPGP application on ISO Smart Card Operating Systems
Functional Specification of the OpenPGP application on ISO Smart Card Operating Systems Version 3.1 Author: Achim Pietig 2016 January 10th Author: Achim Pietig Lippstädter Weg 14 32756 Detmold Germany
More information3GPP TS V9.1.0 ( )
TS 31.101 V9.1.0 (2010-06) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; UICC-terminal interface; Physical and logical characteristics
More informationEMVCo Letter of Approval - Contact Terminal Level 2 - Renewal
August 02, 2017 Guenter Reich DPS Engineering GmbH Eiffestrasse 78 Hamburg D-20537 GERMANY Re: EMVCo Letter of Approval - Contact Terminal Level 2 - Renewal EMV Application Kernel: Approval Number(s):
More informationETSI TS V7.1.0 ( )
TS 102 266 V7.1.0 (2006-01) Technical Specification Smart Cards; USSM: UICC Security Service Module; Stage 1 2 TS 102 266 V7.1.0 (2006-01) Reference RTS/SCP-R0002r1 Keywords smart card, security 650 Route
More informationEntrust IdentityGuard PIV Credential FIPS Cryptographic Module Security Policy Version: 1.0 Date: January 24, 2013
FIPS 140-2 Cryptographic Module Security Policy Version: 1.0 Date: January 24, 2013 Copyright 2013 Entrust 1000 Innovation Drive, Ottawa, ON, Canada K2K 3E7 Table of Contents 1 Introduction...4 1.1 Hardware
More informationFunctional Specification of the OpenPGP application on ISO Smart Card Operating Systems
Functional Specification of the OpenPGP application on ISO Smart Card Operating Systems Version 1.0 Author: Achim Pietig 2003 PPC Card Systems GmbH September 18, 2003 Author: Achim Pietig PPC Card Systems
More informationETSI TS V ( )
TS 102 225 V12.1.0 (2014-10) TECHNICAL SPECIFICATION Smart Cards; Secured packet structure for UICC based applications (Release 12) 2 TS 102 225 V12.1.0 (2014-10) Reference RTS/SCP-T0284vc10 Keywords security,
More informationEMVCo Letter of Approval - Contact Terminal Level 2
May 17, 2018 Richard Pohl Triton Systems of Delaware, LLC 21405 B Street Long Beach MS 39560 UNITED STATES OF AMERICA Re: EMV Application Kernel: Approval Number(s): EMVCo Letter of Approval - Contact
More informationACOS 3 Contact Card. Functional Specification. Subject to change without prior notice
ACOS 3 Contact Card Functional Specification Subject to change without prior notice Table of Contents 1.0. Introduction... 3 1.1. Features...3 1.2. Technical Specifications...3 1.2.1. Electrical...3 1.2.2.
More informationEMV Contactless Specifications for Payment Systems
EMV Contactless Specifications for Payment Systems Book C-7 Kernel 7 Specification Version 2.6 February 2016 February 2016 Page i Legal Notice Unless the user has an applicable separate agreement with
More informationTechnical Specification Smart Cards; Secured packet structure for UICC based applications (Release 8)
TS 102 225 V8.5.0 (2012-03) Technical Specification Smart Cards; Secured packet structure for UICC based applications (Release 8) 2 TS 102 225 V8.5.0 (2012-03) Reference RTS/SCP-T0284v850 Keywords security,
More information3GPP TS V ( )
TS 31.116 V11.0.0 (2012-09) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; Remote APDU Structure for (U)SIM Toolkit applications (Release
More informationPKCS #15: Conformance Profile Specification
Table of Contents PKCS #15: Conformance Profile Specification RSA Laboratories August 1, 2000 1 INTRODUCTION... 2 1 REFERENCES AND RELATED DOCUMENTS... 2 2 DEFINITIONS... 2 3 SYMBOLS AND ABBREVIATIONS...
More informationExpert 3.2
Giesecke & Devrient Sm@rtCafé Expert 3.2 FIPS 140-2 Non-Proprietary Security Policy Level 3 Validation Version 1.6 December 2011 Copyright 2011 Giesecke & Devrient This document may be freely reproduced
More informationTechnical report. Signature creation and administration for eidas token Part 1: Functional Specification
Technical report Signature creation and administration for eidas token Part 1: Functional Specification Version 1.0 Date: 2015/07/21 Page 1 Foreword This technical report specifies an autonomous signature
More informationEMV Contactless Specifications for Payment Systems
EMV Contactless Specifications for Payment Systems Book C-5 Kernel 5 Specification Version 2.6 February 2016 Kernel 5 Spec v2.6 Legal Notice Unless the user has an applicable separate agreement with EMVCo
More informationCEPTEST Application Note
CEPTEST Application Note Version 1.0 Running Stress Tests Museumstr. 76 CH-8400 Winterthur Tel. 052 212 63 03 Fax 052 212 66 78 www.celsi.ch Version 1.0, 6th of March, 2006 1 1 Introduction.................................3
More informationExpert 3.2
Giesecke & Devrient Sm@rtCafé Expert 3.2 FIPS 140-2 Non-Proprietary Security Policy Level 3 Validation Version 1.5 June 2008 Copyright 2008 Giesecke & Devrient This document may be freely reproduced and
More informationI N F O R M A T I O N S E C U R I T Y
NIST Special Publication 800-73-2 2 nd DRAFT Interfaces for Personal Identity Verification Part 1: End-Point PIV Card Application Namespace, Data Model, and Representation James F. Dray Scott B. Guthery
More informationSecurity Policy for Schlumberger Cyberflex Access 32K Smart Card with ActivCard Applets
Security Policy for Schlumberger Cyberflex Access 32K Smart Card with ActivCard Applets TABLE OF CONTENTS 1 SCOPE OF DOCUMENT... 1 2 INTRODUCTION... 1 3 SECURITY LEVELS... 1 3.1 CRYPTOGRAPHIC MODULE SPECIFICATION...
More informationTerminal Architecture for PSAM Applications (TAPA) Application Architecture Specification. Version 2.1. February 2001
Terminal Architecture for PSAM Applications (TAPA) Application Architecture Specification Version 2.1 February 2001 i TABLE OF CONTENTS 1. REVISION LOG...1 2. DOCUMENT OVERVIEW...3 2.1 PURPOSE...3 2.2
More informationSecure UHF Tags with Strong Cryptography Development of ISO/IEC Compatible Secure RFID Tags and Presentation of First Results
Development of ISO/IEC 18000-63 Compatible Secure RFID Tags and Presentation of First Results Walter Hinz, Klaus Finkenzeller, Martin Seysen Barcelona, February 19 th, 2013 Agenda Motivation for Secure
More informationQR Code Specification for Payment Systems (EMV QRCPS)
EMV QR Code Specification for Payment Systems (EMV QRCPS) Merchant-Presented Mode Version 1.0 July 2017 Legal Notice The EMV Specifications are provided AS IS without warranties of any kind, and EMVCo
More informationFunctional Specification
Functional Specification ACOS5 Cryptographic Smart Card Advanced Card Systems Ltd. Website : www.acs.com.hk Email : info@acs.com.hk A C O S 5 S h o r t R e f e r e n c e M a n u a l CONTENTS 1.0. INTRODUCTION...
More informationTechnical Specification Smart Cards; UICC Application Programming Interface and Loader Requirements; Service description (Release 10)
TS 102 240 V10.1.0 (2011-12) Technical Specification Smart Cards; UICC Application Programming Interface and Loader Requirements; Service description (Release 10) 2 TS 102 240 V10.1.0 (2011-12) Reference
More informationKMIP 64-bit Binary Alignment Proposal
KMIP 64-bit Binary Alignment Proposal To: OASIS KMIP Technical Committee From: Matt Ball, Sun Microsystems, Inc. Date: May 6, 2009 Version: 2 Purpose: To propose a change to the binary encoding such that
More informationPayPass M-TIP Test Case User Guide. July 2014
PayPass M-TIP Test Case User Guide July 2014 Copyright The information contained in this manual is proprietary and confidential to MasterCard International Incorporated (MasterCard) and its members. This
More informationDICOM Conformance Statement, Biim Ultrasound App Version 1
Biim Ultrasound, AS Title: Document: DICOM Conformance Statement, Biim Ultrasound App Version 1 D00085 Rev B DICOM Conformance Statement, Biim Ultrasound App Version 1 Page 1 of 10 Table of Contents 1
More informationETSI TS V7.0.0 ( )
TS 131 113 V7.0.0 (2007-06) Technical Specification Universal Mobile Telecommunications System (UMTS); Universal Subscriber Identity Module Application Toolkit (USAT) interpreter byte codes (3GPP TS 31.113
More information3GPP TS V ( )
Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; Characteristics of the Hosting Party Subscription Identity Module (HPSIM) application
More informationETSI TS V7.8.0 ( )
TS 101 220 V7.8.0 (2007-02) Technical Specification Smart Cards; numbering system for telecommunication application providers (Release 7) 2 TS 101 220 V7.8.0 (2007-02) Reference RTS/SCP-T005r8 Keywords
More informationFINEID - S1 v2.1 Electronic ID Application
FINEID SPECIFICATION 5.12.2011 FINEID - S1 v2.1 Electronic ID Application Application Note 1 Population Register Centre (VRK) Certification Authority Services P.O. Box 70 FIN-00581 Helsinki Finland http://www.fineid.fi
More informationCommon Payment Application Contactless Extension CPACE. Functional Specification. CPACE for Dual Interface Cards
Common Payment Application Contactless Extension CPACE Functional Specification CPACE for Dual Interface Cards 18.10.2017 Groupement des Cartes Bancaires CB, ServiRed, SIBS MB, Sistema 4B. All rights reserved.
More informationETSI TS V ( )
TS 131 116 V14.0.0 (2017-04) TECHNICAL SPECIFICATION Digital cellular telecommunications system (Phase 2+) (GSM); Universal Mobile Telecommunications System (UMTS); LTE; Remote APDU Structure for (U)SIM
More informationMACHINE READABLE TRAVEL DOCUMENTS
MACHINE READABLE TRAVEL DOCUMENTS TECHNICAL REPORT Supplemental Access Control for Machine Readable Travel Documents Version 1.1 Date 15 April 2014 Published by authority of the Secretary General ISO/IEC
More informationCommon Payment Application Contactless Extension CPACE. Functional Specification. Terminal Kernel
Common Payment Application Contactless Extension CPACE Functional Specification Terminal Kernel 12.07.2018 2016-2017-2018 Bancomat, Bancontact Company, BankAxept, Borica, Euro 6000, girocard/src, Groupement
More informationSmartCards as electronic signature devices Progress of standardization. Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany
SmartCards as electronic signature devices Progress of standardization Helmut Scherzer, CEN TC224/WG16 (Editor) IBM Germany scherzer@de.ibm.com Active CEN working groups(today) TC224 : "Machine readable
More informationISO/IEC INTERNATIONAL STANDARD. Identification cards Integrated circuit cards Part 4: Organization, security and commands for interchange
INTERNATIONAL STANDARD ISO/IEC 7816-4 Third edition 2013-04-15 Identification cards Integrated circuit cards Part 4: Organization, security and commands for interchange Cartes d'identification Cartes à
More informationSymantec Corporation
Symantec Corporation Symantec PGP Cryptographic Engine FIPS 140-2 Non-proprietary Security Policy Document Version 1.0.4 Revision Date 05/01/2015 Symantec Corporation, 2015 May be reproduced only in its
More informationID-One PIV (Type A) FIPS Security Policy. (PIV Applet Suite on ID-One Cosmo V7-n) Public Version
ID-One PIV (Type A) (PIV Applet Suite on ID-One Cosmo V7-n) FIPS 140-2 Security Policy Public Version Oberthur Technologies of America 4250 Pleasant Valley Road Chantilly, VA 20151-1221 - USA Document
More informationRole & Purpose of Privileges in Global Platform
International Journal of Scientific and Research Publications, Volume 5, Issue 7, July 2015 1 Role & Purpose of Privileges in Global Platform Abstract- In this paper, applicability of Privileges on SIM
More informationEMVCo Letter of Approval - Contact Terminal Level 2
July 01, 2015 Kyoungtae Kang AIONBANK, Inc. Unit 502, Small and Medium Business DMC Tower, 189 Seongam-ro, Mapo-gu Seoul 121-904 S.KOREA Re: EMV Application Kernel: Approval Number(s): EMVCo Letter of
More informationI N F O R M A T I O N S E C U R I T Y
NIST Special Publication 800-73-3 Interfaces for Personal Identity Verification Part 3: End-Point PIV Client Application Programming Interface Ramaswamy Chandramouli David Cooper James F. Dray Hildegard
More informationPKCS #15 v1.0: Cryptographic Token Information Format Standard
PKCS #15 v1.0: Cryptographic Token Information Format Standard Table of Contents RSA Laboratories April 23, 1999 1 INTRODUCTION... 3 2 REFERENCES AND RELATED DOCUMENTS... 5 3 DEFINITIONS... 7 4 SYMBOLS
More informationTechnical Specification Smart Cards; ETSI numbering system for telecommunication application providers (Release 12)
TS 101 220 V12.0.0 (2013-10) Technical Specification Smart Cards; numbering system for telecommunication application providers (Release 12) 2 TS 101 220 V12.0.0 (2013-10) Reference RTS/SCP-T070653vc00
More informationProvisioning Smartcard
Provisioning Smartcard Candidate Version 1.1 26 Feb 2008 Open Mobile Alliance OMA-WAP-TS-ProvSC-V1_1-20080226-C Continues the Technical Activities Originated in the WAP Forum OMA-WAP-TS-ProvSC-V1_1-20080226-C
More informationFIPS Level 3. Security Policy of Java Card Platform Implementation for Infineon on SLE 78 (SLJ 52GxxyyyzR) V1.0f. August Version 2.
FIPS 140-2 Level 3 Security Policy of Java Card Platform Implementation for Infineon on SLE 78 (SLJ 52GxxyyyzR) V1.0f August 2015 Version 2.3 Copyright 2014, Oracle and/or its affiliates. All rights reserved
More informationDesign and Implementation of a Mobile Transactions Client System: Secure UICC Mobile Wallet
Design and Implementation of a Mobile Transactions Client System: Secure UICC Mobile Wallet Hao Zhao, Sead Muftic School of Information and Communication Technologies (ICT) Royal Institute of Technology
More informationTechnical report. Signature creation and administration for eidas token. Version 1.0 Release Candidate 6. Version 1.0 Release Candidate 6
Technical report Signature creation and administration for eidas token Version 1.0 Release Candidate 6 Version 1.0 Release Candidate 6 Page 1 on 80 Foreword This technical report specifies an autonomous
More informationEMVCo Letter of Approval - Contact Terminal Level 2
February 25, 2016 CHARLY SEVAJOL ALX TECHNOLOGIES 302 rue de THOR PARC EUREKA MONTPELLIER 34000 FRANCE Re: EMV Application Kernel: Approval Number(s): EMVCo Letter of Approval - Contact Terminal Level
More informationAcquirer JCB EMV Test Card Set
Acquirer JCB EMV Test Card Set July, 2017 Powered by Disclaimer Information provided in this document describes capabilities available at the time of developing this document and information available
More informationWatchKey ProX USB Token Cryptographic Module Hardware Version: K023314A Firmware Version:
Watchdata Technologies Pte Ltd. 7F Qiming International Mansion, No.101, Wangjing Lize Middle Park, Chaoyang District, Beijing, P.R.China, 100102 Phone : (8610)6472 2288 (8610)8047 8166 Email : marketing@watchdata.com
More informationETSI TS V9.1.0 ( ) Technical Specification
TS 102 705 V9.1.0 (2011-01) Technical Specification Smart Cards; UICC Application Programming Interface for Java Card for Contactless Applications (Release 9) 2 TS 102 705 V9.1.0 (2011-01) Reference RTS/SCP-THCIAPIv910
More informationETSI TS V9.2.0 ( ) Technical Specification. Smart Cards; ETSI numbering system for telecommunication application providers (Release 9)
TS 101 220 V9.2.0 (2010-04) Technical Specification Smart Cards; numbering system for telecommunication application providers (Release 9) 2 TS 101 220 V9.2.0 (2010-04) Reference RTS/SCP-T070653v920 Keywords
More informationPKCS #11: Conformance Profile Specification
Table of Contents PKCS #11: Conformance Profile Specification RSA Laboratories October 1, 2000 1 INTRODUCTION... 2 1 REFERENCES AND RELATED DOCUMENTS... 2 2 DEFINITIONS... 3 3 SYMBOLS AND ABBREVIATIONS...
More informationPKI BLADE Applet and Protiva PIV DL Card Security Policy
PKI BLADE Applet and Protiva PIV DL Card Security Policy TITLE PKI BLADE Applet and Protiva PIV DL Card - Security Policy REF. TBD 0.9 DATE: 26 April, 2011 1 TABLE OF CONTENTS 1 Scope... 5 2 Introduction...
More informationTechnical Specification Smart Cards; UICC Application Programming Interface for Java Card for Contactless Applications (Release 10)
TS 102 705 V10.1.0 (2013-09) Technical Specification Smart Cards; UICC Application Programming Interface for Java Card for Contactless Applications (Release 10) 2 TS 102 705 V10.1.0 (2013-09) Reference
More informationSecurity Target Lite SK e-pass V1.0
Ref.: Security Target Lite SK e-pass V1.0 Table of Contents 1 INTRODUCTION... 6 1.1 ST AND ST-LITE IDENTIFICATION... 6 1.2 TOE IDENTIFICATION... 6 1.3 CC AND PP CONFORMANCE... 6 1.4 CONVENTIONS... 7 1.5
More informationChanges to SP (SP ) Ketan Mehta NIST PIV Team NIST ITL Computer Security Division
Changes to SP 800-73 (SP 800-73-4) Ketan Mehta NIST PIV Team NIST ITL Computer Security Division mehta_ketan@nist.gov Smart Card Alliance, Government Conference October 30, 2014 Draft SP 800-73-4 Removed
More informationETSI TS V ( ) Technical Specification
TS 101 220 V11.0.0 (2011-06) Technical Specification Smart Cards; numbering system for telecommunication application providers (Release 11) 2 TS 101 220 V11.0.0 (2011-06) Reference RTS/SCP-T070653vb00
More informationDolphin DCI 1.2. FIPS Level 3 Validation. Non-Proprietary Security Policy. Version 1.0. DOL.TD DRM Page 1 Version 1.0 Doremi Cinema LLC
Dolphin DCI 1.2 FIPS 140-2 Level 3 Validation Non-Proprietary Security Policy Version 1.0 DOL.TD.000921.DRM Page 1 Version 1.0 Table of Contents 1 Introduction... 3 1.1 PURPOSE... 3 1.2 REFERENCES... 3
More informationISO Data Element Definitions
SECTION 4 ISO 8583 1987 DATA ELEMENT DEFINITIONS Overview...4-1 Bit Maps...4-2 Annotation Conventions For Data Element s...4-3 General Representation...4-3 Length s...4-4 Field Content s...4-5 Conventions
More informationKEYMAN. Security key and certificate management message. Edition 2016
EANCOM 2002 S4 Security key and certificate management message Edition 2016 1. Introduction... 2 2. Message Structure Chart... 3 3. Branching Diagram... 4 4. Segments Description... 5... 6 6. Example(s)...
More informationJR/T Translated English of Chinese Standard: JR/T
Translated English of Chinese Standard: JR/T0025.6-2013 www.chinesestandard.net Sales@ChineseStandard.net JR FINANCIAL INDUSTRY STANDARD OF THE PEOPLE S REPUBLIC OF CHINA ICS 35.240.40 A 11 Registration
More information3GPP TS V ( )
TS 31.103 V5.14.0 (2012-12) Technical Specification 3rd Generation Partnership Project; Technical Specification Group Core Network and Terminals; Characteristics of the IP Multimedia Services Identity
More informationInterfaces for Personal Identity Verification Part 1: PIV Card Application Namespace, Data Model and Representation
Draft NIST Special Publication 800-73-4 Interfaces for Personal Identity Verification Part 1: PIV Card Application Namespace, Data Model and Representation Ramaswamy Chandramouli David Cooper Hildegard
More informationETSI TS V5.2.0 ( )
TS 131 103 V5.2.0 (2002-12) Technical Specification Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Characteristics of the ISIM application (3GPP
More informationAcquirer JCB Dual Interface EMV Test Card Set
Acquirer JCB Dual Interface EMV Test Card Set.00 July, 2018 Powered by Disclaimer Information provided in this document describes capabilities available at the time of developing and delivering this document
More informationGLDA MAO-DOC-TEC-008 v2.28
Guide to Loading and Deleting Applications GLDA MAO-DOC-TEC-008 v2.28 GLDA Guide to Loading and Deleting MAO-DOC-TEC-008 v2.28 2017 MAOSCO Limited. MULTOS is a registered trademark of MULTOS Limited. Guide
More informationLogical Data Structure (LDS) for Storage of Data in the Contactless IC Doc LDS 2 New Applications
: Logical Data Structure (LDS) for Storage of Data in the Contactless IC Doc 9303-10 LDS 2 New Applications For Publication on the ICAO Website TECHNICAL REPORT Logical Data Structure (LDS) for Storage
More informationIntended status: Standards Track January 13, 2015 Expires: July 17, 2015
JOSE Working Group M. Jones Internet-Draft Microsoft Intended status: Standards Track January 13, 2015 Expires: July 17, 2015 Abstract JSON Web Algorithms (JWA) draft-ietf-jose-json-web-algorithms-40 The
More information