EMV INTERNAL AUTHENTICATE 6985 响应
[英]EMV INTERNAL AUTHENTICATE 6985 Respond
问题描述
I am trying to a Dynamic Data Authentication (DDA).
我正在尝试动态数据身份验证 (DDA)。 But when I sent the INTERNAL AUTHENTICATE I got 6985 responds.但是当我发送 INTERNAL AUTHENTICATE 时,我收到了 6985 条回复。 I am not sure What I am doing wrong.我不确定我做错了什么。
This are my APDU commands and responds.这是我的 APDU 命令和响应。
send:00A404000E325041592E5359532E444446303100 resp:6F5B840E325041592E5359532E4444463031A549BF0C4661224F07A0000000031010500A5649534120444542495487010142034741655F5502555361204F07A00000009808405008555320444542495487010242034741655F550255539000 send:00A404000E325041592E5359532E444446303100 resp:6F5B840E325041592E5359532E4444463031A549BF0C4661224F07A0000000031010500A5649534120444542495487010142034741655F5502555361204F07A00000009808405008555320444542495487010242034741655F550255539000
send:00A4040007A000000003101000 resp:6F4F8407A0000000031010A544500A564953412044454249548701019F38189F66049F02069F03069F1A0295055F2A029A039C019F37045F2D02656EBF0C129F5A0511084008405F5502555342034741659000 send:00A4040007A000000003101000 resp:6F4F8407A0000000031010A544500A564953412044454249548701019F38189F66049F02069F03069F1A0295055F2A029A039C019F37045F2D02656EBF0C129F5A0511084008405F5502555342034741659000
send:80A800002383212700400000000000000300000000000008400000000000084022121000E153F3E800 resp:7781E7820220009408080606001001030057134242424242424242D22010110000000718001F5F200F43415244484F4C4445522F564953415F3401009F100706061203A000009F260855C7CDB65C5FEFE09F2701809F360201289F4B8180FFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5C9810BE00EBEB933E55312CDA041DCA6BCAB1E537A854799E0E157ABB03C8FB1AC6F197EDA255D7205B195A226CB1FBD5A6E826329BA61D003C95625FD073660F3C55CEEEF26F670A49681834A138B0CB1C14BC534775190BC9D44FE9C4DA6D75BCC2D0BBCC24675CC4C857549238DCB59F6C0200009F6E04207000009000 send:80A800002383212700400000000000000300000000000008400000000000084022121000E153F3E800 resp:7781E7820220009408080606001001030057134242424242424242D22010110000000718001F5F200F43415244484F4C4445522F564953415F3401009F100706061203A000009F260855C7CDB65C5FEFE09F2701809F360201289F4B8180FFFFFFFFFFFFFFFFFFFFFFFFFFFFFF5C9810BE00EBEB933E55312CDA041DCA6BCAB1E537A854799E0E157ABB03C8FB1AC6F197EDA255D7205B195A226CB1FBD5A6E826329BA61D003C95625FD073660F3C55CEEEF26F670A49681834A138B0CB1C14BC534775190BC9D44FE9C4DA6D75BCC2D0BBCC24675CC4C857549238DCB59F6C0200009F6E04207000009000
send:0088000004E153F3E800 resp:6985发送:0088000004E153F3E800 回复:6985
Card should respond with a certificate containing that random number encrypted under ICC private key卡片应以包含在 ICC 私钥下加密的随机数的证书作为响应
1 个解决方案
解决方案1
2 2022-12-12 15:56:18
You are very wrong about what the card is supposed to do.您对卡应该做什么的看法大错特错。
What you already have in the response to GPO is signed data and instead of issuing internal authenticate you should be recovering the keys to verify the signature.您在对 GPO 的响应中已经拥有的是签名数据,而不是发出内部身份验证,您应该恢复密钥以验证签名。
You are dealing with a card that supports fDDA, not DDA and therefore are looking at incorrect standard.您正在处理支持 fDDA 而不是 DDA 的卡,因此正在查看不正确的标准。 Please refer to documentation of contactless kernel 3 (EMV CL Book C-3) for fDDA. fDDA 请参考非接触式 kernel 3(EMV CL Book C-3)的文档。
If you are indeed implementing DDA, you should be testing it over contact interface and referring to EMV Book 2 and Book 3 for details as you have not implemented the process of recovering keys (you skipped AFL processing).如果您确实在实施 DDA,您应该通过接触界面对其进行测试,并参考 EMV Book 2 和 Book 3 了解详细信息,因为您还没有实施恢复密钥的过程(您跳过了 AFL 处理)。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.