[英]How to install applets on SSD?
I am trying to install a simple Javacard applet on a SSD in my card.我正在尝试在卡中的 SSD 上安装一个简单的 Javacard 小程序。 But I receive
6985
(Condition of use not satisfied).但我收到
6985
(不满足使用条件)。
D:\CardTools> python install_on_ssd.py
Connected to Card. ATR: <Censored>
***** STEP 01: Mutual Auth with ISD
---> 00 A4 04 00 08 A0 00 00 01 51 00 00 00
<--- 90 00
---> 80 50 00 00 08 07 95 E3 6B 7C 2B 96 0B
<--- 00 00 12 81 18 38 33 20 19 73 01 02 00 37 59 40 AE F9 C1 36 A6 0D 5B 09 E0 8D 2E D1 90 00
---> 84 82 00 00 10 C2 BA 4C 00 80 78 96 5B 54 C1 2B A7 F4 C1 71 84
<--- 90 00
***** STEP 02 : Install SSD
---> 80 E6 0C 00 1E 07 A0 00 00 01 51 53 50 08 A0 00 00 01 51 53 50 41 06 11 22 33 44 55 66 01 84 02 C9 00 00
<--- 00 90 00
**** STEP 03 : Mutual Auth with SSD
---> 00 A4 04 00 06 11 22 33 44 55 66
<--- 90 00
---> 80 50 00 00 08 A3 AC D2 73 A3 98 1E A5
<--- 00 00 12 81 18 38 33 20 19 73 01 02 00 38 A1 10 A3 9D 71 D0 67 E2 0D 85 2F 7B 0B 5E 90 00
---> 84 82 03 00 10 96 F3 83 9A B6 E4 46 DA 5A 04 CA 54 CD EE 22 B2
<--- 90 00
**** STEP 04 : Update SSD GP Keys
---> 84 D8 00 81 50 D2 F8 63 2B CF 26 4C 32 65 B0 BD EF 67 B8 4B 5F 62 CA BD 63 8E 77 EE FB EB BC 88 54 15 4A 85 C8 9A CA CA C0 9F 9D 0C B8 77 41 0C A3 8A 00 41 5A CC E9 47 FA D8 46 9B EB FC C8 5A FE 4C 5A 78 C2 2D 97 CC B6 6A DC 18 04 BC DA 60 4C 94 23 9A 34
<--- 01 A4 B7 D6 A4 B7 D6 A4 B7 D6 90 00
***** STEP 05 : Mutual Auth with SSD
---> 00 A4 04 00 06 11 22 33 44 55 66
<--- 90 00
---> 80 50 00 00 08 AB ED 75 BE EE 42 24 DF
<--- 55 66 12 81 18 38 33 20 19 73 01 02 00 00 89 FF 49 11 CD A8 AA 11 09 4D 7D 1E 86 C1 90 00
---> 84 82 03 00 10 12 AA 56 F4 26 87 F6 43 A0 F1 9C A2 AD C4 CB AC
<--- 90 00
***** STEP 06 : Install Applet.
---> 84 E6 02 00 20 55 3D 9B F7 00 AC 2F 21 C7 0D 81 28 55 3D 83 F0 7C 1E CF 51 0F F0 78 57 BF 98 1C F5 9A 58 EF 0B
<--- **Fail** 69 85
Failed to install applet. INSTALL for LOAD returns 6985
Note that注意
Please check if your SSD is able to manage its own contents.请检查您的 SSD 是否能够管理自己的内容。 The privilege Authorized Management should be set for this.
应为此设置权限授权管理。 Also Delegated Management can be used for this.
委派管理也可用于此。 GP specification v2.3.1, sect.
GP 规范 v2.3.1,节。 9.3.2 defines these requirements.
9.3.2 定义了这些要求。
Authorized Management can manage the whole card, Delegated Management needs a signed token.授权管理可以管理整张卡,委托管理需要签名的令牌。 This token permits the installation of a single application.
此令牌允许安装单个应用程序。 This signed token could be provided by the card issuer giving away part of the control to a different SSD to install an applet.
这个签名令牌可以由发卡机构提供,将部分控制权交给不同的 SSD 以安装小程序。
If none of these permissions is given, the SSD is a security container isolating the data from other SDs, but the SSD is not able to manage the contents.如果没有授予这些权限,SSD 是一个安全容器,将数据与其他 SD 隔离,但 SSD 无法管理内容。 The SSD is still useful without this feature, eg to be able to isolate data so that the SSD cannot access shared data from the ISD or vice versa.
SSD 在没有此功能的情况下仍然有用,例如能够隔离数据,以便 SSD 无法访问来自 ISD 的共享数据,反之亦然。 Or to fulfill other GlobalPlatform tasks like DAP verification, Token Verification, ...
或者完成其他 GlobalPlatform 任务,如 DAP 验证、令牌验证、...
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.