EMVCo Letter of Approval - Contact Terminal Level 2 - Renewal

Similar documents
EMVCo Letter of Approval - Contact Terminal Level 2

EMVCo Letter of Approval - Contact Terminal Level 2

EMVCo Letter of Approval - Contact Terminal Level 2

EMVCo Letter of Approval - Terminal Level 2

EMVCo Letter of Approval - Terminal Level 2

Re: EMVCo Letter of Approval - Contact Terminal Level 2

S-TUU a OS-TUU a

EMVS Kernel Capabilities

EMV Contactless Specifications for Payment Systems

EMV Contactless Specifications for Payment Systems

EMV2000 Integrated Circuit Card Specifications for Payment Systems

EMV Contactless Specifications for Payment Systems

EMV ContactlessSpecifications for Payment Systems

CDA Modified Terminal Behaviour

EMV 96 Integrated Circuit Card Application Specification for Payment Systems

PayPass M-TIP Test Case User Guide. July 2014

Acquirer JCB Dual Interface EMV Test Card Set

JR/T Translated English of Chinese Standard: JR/T

PayPass M/Chip Application Note #17

First Data U.S. Debit Test Card Set. Version 1.20

Acquirer JCB EMV Test Card Set

EMV Contactless Specifications for Payment Systems

Common Payment Application Contactless Extension CPACE. Functional Specification. Terminal Kernel

7. Best Practice. 7.1 Introduction. 7.2 Documentation. 7.3 Terminal Categories

Interac USA Interoperability EMV Test Card Set

First Data DCC Test Card Set. Version 1.30

First Data EMV Test Card Set. Version 1.30

First Data EMV Test Card Set. Version 2.00

First Data Dual Interface EMV Test Card Set. Version 1.20

PayPass Testing Environment

EMV Integrated Circuit Card Specifications for Payment Systems

Visa paywave Implementation Overview and European Pilot Operating Principles Member Letter: VE 08/08 Type: General 16 April 2008

Common Payment Application Contactless Extension CPACE. Functional Specification. CPACE for Dual Interface Cards

EMV Integrated Circuit Card Specifications for Payment Systems

PayPass M/Chip 4. Card Technical Specification

UnionPay QuickPass Terminal Product Certification Rules

User Acceptance Test (UAT) ATM EMV Test Card Set Summary

Chip Card Acceptance Device

Terminal Architecture for PSAM Applications (TAPA) Application Architecture Specification. Version 2.1. February 2001

Card Specification Amendment A March 2004

EMV Integrated Circuit Card Specifications for Payment Systems

Practical EMV PIN interception and fraud detection

M/Chip Advance V1.1 Personalization Guide

USA Debit EMV Test Plan. Version 1.30

AUTHORISATION AND SETTLEMENT TECHNICAL SPECIFICATIONS

QR Code Specification for Payment Systems (EMV QRCPS)

Payment Card Industry (PCI) PIN Transaction Security (PTS) Point of Interaction (POI) Modular Evaluation Vendor Questionnaire Version 3.

AMENDMENT FORM FOR AMERICAN EXPRESS CORPORATE GREEN CARD COMPANY CLIENTS POWER(S) OF ATTORNEY

MasterCard NFC Mobile Device Approval Guide v July 2015

Q2. Why is there an Australian specific device approval process?

EPC SEPA CARDS STANDARDISATION (SCS) VOLUME

OSCAR POS INTEGRATION SPECIFICATION FOR SEPA COMPLIANT TERMINALS

Security Requirements and Assessment Procedures for EMV 3-D Secure Core Components: ACS, DS, and 3DS Server

Clover Flex Security Policy

Payment Card Industry (PCI) Data Security Standard

CEPTEST Application Note

MIFARE Security Evaluation Scheme

American Express Online PIN & PIN Security Requirements

Payment Card Industry (PCI) Data Security Standard

Payment Card Industry (PCI) Data Security Standard

Table of Contents. PCI Information Security Policy

Payment Card Industry (PCI) Data Security Standard

Presentation of the Interoperability specification for ICCs and Personal Computer Systems, Revision 2.0

Mobile MasterCard. PayPass User Interface Application Design Guide. User Experience, Use Cases, Screen Layouts and Design. Version 1.

SELF-CERTIFICATION USING THE UL STP

Payment Card Industry (PCI) PIN Security. Requirements and Testing Procedures. Version 2.0. December 2014

OSCAR POS INTEGRATION SPECIFICATION FOR SEPA COMPLIANT TERMINALS

Transaction Security. Mastercard M-TIP. Customer Guide. Oct 2016 v2.3

PCI PA DSS. PBMUECR Implementation Guide

Payment Card Industry (PCI) Data Security Standard

DynaPro Go. Secure PIN Entry Device PCI PTS POI Security Policy. September Document Number: D REGISTERED TO ISO 9001:2008

Payment Card Industry (PCI) Data Security Standard

Payment Card Industry (PCI) Data Security Standard

Payment Card Industry (PCI) Data Security Standard

Payment Card Industry (PCI) Data Security Standard

HEALTHCOMP (85729) ERA ENROLLMENT INSTRUCTIONS

CB TEST PRODUCTS & SERVICES CATALOGUE

Payment Card Industry (PCI) PIN Transaction Security (PTS) Hardware Security Module (HSM) Evaluation Vendor Questionnaire Version 2.

Payment Card Industry (PCI) Data Security Standard

CIPURSE V2 Certification Program

Feel free to scan and return the attached paperwork to or fax to HealthComp at (559) IMPORTANT:

Creating your own payment card Joost Kremers MSc CEH

Payment Card Industry (PCI) PIN Transaction Security (PTS) Point of Interaction (POI) Modular Evaluation Vendor Questionnaire Version 4.

Payment Card Industry (PCI) Data Security Standard

Section 1: Assessment Information

PKCS #15: Conformance Profile Specification

Payment Card Industry (PCI) Data Security Standard

Software-Based PIN Entry on COTS. Jeremy King International Director PCI Security Standards Council

Portico VT. User Guide FOR HEARTLAND MERCHANT USERS APRIL 2015 V2.8

DPS SKP200 / SCR200 Common Criteria Security Target Lite

Payment Card Industry (PCI) Data Security Standard

PCI PA DSS. MultiPOINT Implementation Guide

RMS-TD Bridge User s and Setup Guide Version 2.9.3

This document is a preview generated by EVS

Visa Chip Security Program Security Testing Process

Data Security Standard

CB TEST & DEVELOPMENT CARDS CATALOGUE

Point ipos Implementation Guide. Hypercom P2100 using the Point ipos Payment Core Hypercom H2210/K1200 using the Point ipos Payment Core

Payment Card Industry (PCI) Data Security Standard Self-Assessment Questionnaire A and Attestation of Compliance

ACOS 10 B/G PBOC 2.0 EDEP Card

Transcription:

August 02, 2017 Guenter Reich DPS Engineering GmbH Eiffestrasse 78 Hamburg D-20537 GERMANY Re: EMVCo Letter of Approval - Contact Terminal Level 2 - Renewal EMV Application Kernel: Approval Number(s): DPS ecms Client EMV.DLL Version 1.75.0 2-02922-1-1S-VOB-0814-4.3.c 2-02922-1-1OS-VOB-0814-4.3.c 2-02922-1-2OS-VOB-0814-4.3.c 2-04041-2-3OS-VOBZ-0718-4.3g The EMV Application Kernel has been tested on the following terminal Terminal: Keba Rondo 4cashcycle+ PinPad: n/a Operating System: 1OS = Windows 7 Version 6.1 2OS = Windows XP Version 5.1 3OS = Windows 10 Version 10.0 Renewal Date: 04-Aug-2021 Report ID Session 1: 2023-001 Version 1.1 - VÖB-ZVD Processing GmbH Kernel Checksum: EA32047401596F09467E86614332DFFECD4CEBAD Configuration Checksum: Config Vendor Config ID Terminal Checksum 1S 14 EA32047401596F09467E86614332DFFECD4CEBAD Page 1 of 7

Dear Guenter Reich: EMVCo, LLC ("EMVCo"), a Delaware limited liability company, has received your request for Level 2 terminal type approval for the EMV Application Kernel identified above (hereafter refered to as the "Application"). In connection with your request, we have reviewed all test file number(s) listed above. After assessing such file(s), EMVCo has found reasonable evidence that the submitted samples of the above referenced Application sufficiently conform to EMV Integrated Circuit Card Specifications for Payment Systems, Version 4.3 of vember 2011. EMVCo hereby grants your Application EMVCo Type Approval for Terminal Level 2, based on the requirements stated in the EMV 4.3 Specifications. Please note that EMVCo may publish this letter and publicly identify your Application as an approved Application, including in EMVCo's published list of approved Applications. EMVCo's grant to your Application is subject to and specifically incorporates (i) the General Terms and Conditions to the Letter of Approval enclosed as Exhibit A, and (ii) the Specific Terms and Conditions to the Letter of Approval attached hereto as Attachment 1. Because EMVCo's grant is subject to such limitations, including certain events of termination, you and any third parties should confirm that such approval is current and has not been terminated by referring to the list of approved Applications published on the EMVCo website (www.emvco.com). Please note that EMVCo makes certain logos available for use in connection with an Application that has received EMVCo approval. To obtain permission to use the "EMV Approved" certification mark, please contact EMVCo to request a license agreement. This Letter of Approval is valid while the approval number is posted on the EMVCo website. EMVCo, LLC, a Delaware limited liability company By: Name: Title: Frédéric Fortin EMVCo Terminal Type Approval Chair Page 2 of 7

Terminal Capabilities Card Data Input Capability Manual Key Entry Magnetic Stripe IC with Contacts CVM Capability Plaintext PIN for ICC Verification Enciphered PIN for online Verification Signature (Paper) Enciphered PIN for offline Verification CVM Required Security Capability Static Data Authentication and Dynamic Data Authentication Card Capture Combined Dynamic Data Authentication / Application Cryptogram Generation Transaction Type Capability Cash Goods Services Cash Back Inquiry Transfer Payment Administrative Cash Deposit Terminal Data Input Capability Does terminal have keypad Numeric Keys Alphabetic and Special Character Keys Command Keys Function Keys Terminal Data Output Capability Print, Attendant (Mandatory for terminals supporting signature) Print, Cardholder Display, Attendant (Mandatory for Attended terminals) Display Cardholder Code Table 10 Code Table 9 Code Table 8 Code Table 7 Code Table 6 Code Table 5 Code Table 4 Code Table 3 Code Table 2 Code Table 1 Value Supported Page 3 of 7

Terminal Capabilities Application Selection Support PSE selection Method Support Cardholder Selection & Confirmation Does Terminal have a preferred order of displaying applications Does terminal perfom partial AID selection Does the terminal have multi language support Does the terminal support the EMV Language Selection method Does the terminal support the Common Character Set as defined in Annex B table 20 Book 4 Selectable Kernel Configurations Is your Multi-Configuration Kernel capable of dynamically selecting a configuration at the time of transaction Data Authentication What is the maximun supported Certificate Authority Public Key Size (Mandatory for terminals supporting Data Authentication with minimal support for 248 bytes) What exponents does the terminal support (Mandatory for terminals supporting Data Authentication, 3 and 2^16+1) During data authentication does the terminal check validity for revocation of Issuer Public Key Certificate When supporting certificate revocation, what is the Certificate Revocation List format? Does the terminal contain a default DDOL (Mandatory for terminals supporting DDA) Is operator action required when loading CA Public Key fails CA Public Key verified with CA Public Key Check Sum Cardholder Verification Method Terminal supports bypass PIN Entry Terminal supports Subsequent bypass PIN Entry Terminal supports Get Data for PIN Try Counter Terminal supports Fail CVM Are amounts known before CVM processing Terminal Risk Management Floor Limit Checking (Mandatory for offline only terminals and offline terminals with online capability) Random Transaction Selection (Mandatory for offline terminals with online capability, except when cardholder controlled) Velocity Checking (Mandatory for offline only terminals and offline terminals with online capability) Transaction Log Exception File Performance of Terminal Risk Management irrespective of AIP setting (expected behavior) Value Supported n/a Page 4 of 7

Terminal Capabilities Value Supported Terminal Action Analysis Does the terminal support Terminal Action Codes Can the values of the Terminal Action Codes be changed Can the Terminal Action Codes be deleted or disabled? If yes what are the default TAC values supported? (according to Book 3 Section 10.7) TAC Denial: 0000000000 TAC Online: 0000000000 How does Offline Only Terminal process Default Action Codes prior to First Generate AC? (Offline Only Terminal shall support one option) How does online only terminal process TAC/IAC-Default when unable to go online? (Online Only Terminal shall support one option) Completion Processing Transaction Forced Online Capability TAC Default: 0000000000 Skipped Transaction Forced Acceptance Capability Does terminal Support advices Does the terminal support Issuer initiated Voice Referrals Does the terminal support Batch Data Capture Does the terminal support Online Data Capture Does the terminal support a Default TDOL Exception Handling What is the POS Entry Mode value when IC cannot be read and the transaction falls back using Magstripe (Mandatory for attended terminals) Miscellaneous Is the terminal equipped with a PIN Pad Is the amount and PIN entered at the same keypad Is the ICC/Magstripe Reader combined If Combined ICC/Magstripe reader is supported, is Magstripe read first Does the terminal support account type selection Does the terminal support 'on fly' script processing (not recommended behavior) Is the Issuer Script device limit greater than 128 bytes 80 If the Issuer Script device limit is greater than 128 bytes, what is the value supported 500 Does the terminal support Internal Date Management Is the Level 2 Contact Kernel Random Generator using the algorithm described in SB144 If the Level 2 Contact Kernel Random Generator is not using the algorithm described in SB144, is this function PCI approved If the Level 2 Contact Kernel Random Generator is not using the algorithm described in SB144, describe the function (such as algorithm used, etc) Is the Level 2 Contact Kernel Software dependent on the Terminal Hardware If answer to previous question is, describe the function and the Hardware Are the Cryptographic functions (RSA, Hash, etc) of the Level 2 Contact Kernel Software dependent on the Terminal Hardware If answer to previous question is, describe the Hardware Is any other functions of the Level 2 Contact Kernel Software dependent on the Terminal Hardware If answer to previous question is, describe the functions and the Hardware Does the terminal support Receipt (by printing or any electronic means)? Checksum Does the product comply with the Checksum rules as defined in Contact Terminal Level 2 administrative process This is an Initial submission or Subsequent submission or renewal of the original approved product prior to the effective date of checksum rules (cf Terminal Type Approval Bulletin. 134) Configuration Checksum (Static Kernel only) Page 5 of 7 As the runtime function rand() returns 15 random bits it will be called three times consecutively to fill all 32 bits of the unpredictable number. For further details please contact DPS. EA32047401596F09467E86614332DFFECD4CE

BAD Page 6 of 7

Attachment 1 Specific Terms and Conditions to the Letter of Approval Restriction: ne Page 7 of 7

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback