In order to thank you for all members' support of our website, we are holding new events - Getting Free Samples by Paying Freight only.
Want to get free samples? Please check this post for more details.

How can I use MAC session key without card challenge value?

Communication

Moderator: UNKNwYSHSA

User avatar
Marshaldll
Posts: 13
Joined: Thu Jun 11, 2015 2:53 am
Points :32
Contact:

How can I use MAC session key without card challenge value?

Post by Marshaldll » Fri Dec 11, 2015 2:08 am

As GP 2.2.1 described, the pseudo random is generated as follows:

- The AID of the Application requesting to open the Secure Channel is padded according to the
padding rules defined in appendix B.4 - DES Padding;
- A MAC is calculated across the padded data as defined in appendix B.1.2.2 - Single DES Plus
Final Triple DES MAC , using the C - MAC session key and an ICV of binary zeroes;
- The six leftmost bytes of the resultant MAC constitute the card challenge.

How can I use MAC session key without card challenge value? Could anyone help me out?

User avatar
horse dream
Posts: 76
Joined: Thu May 21, 2015 11:48 pm
Points :136
Contact:

Re: How can I use MAC session key without card challenge value?

Post by horse dream » Sun Dec 20, 2015 11:44 pm

As far as I know, MAC session keys are generated after receiving card challenge value!

User avatar
UNKNwYSHSA
Posts: 630
Joined: Thu May 21, 2015 4:05 am
Points :3023
Contact:

Re: How can I use MAC session key without card challenge value?

Post by UNKNwYSHSA » Mon Dec 21, 2015 4:50 am

Specification GlobalPlatform Card Specification 2.2.1 said:
Generating the Secure Channel C-MAC session keys using the Secure Channel base key or
MAC key (S-MAC) and the session keys derivation data with a constant of '0101';

Key Derivation data is consists with:

Code: Select all

Constant(2 bytes) + Sequence Coutner(2 bytes) + '00' Padding(12 bytes)

So, this type of Card Challenge (said as Pseudo-random number) can be generated without Card Challenge.
And, other type of Card Challenge is a random. It is generated without the C-MAC session key.
sense and simplicity

Post Reply Previous topicNext topic

Who is online

Users browsing this forum: No registered users and 1 guest

JavaCard OS : Disclaimer