Skip to Main Content

Java Card

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Interested in getting your voice heard by members of the Developer Marketing team at Oracle? Check out this post for AppDev or this post for AI focus group information.

EMV-Retrieve ICC PK

User_XBDBADec 13 2022

I'm encounter some EMV certification issues right now.
Flow the EMV CDA flow, now I got CA mudule, clear IPK, but when retrieve ICC PKC it reported format error. I would like to know, is the ICCPKC(9F46) has wrong value or the Clear IPK and ICCPKC is not a pair? This is for MasterCard, and Below is the details:
<<===== 1.Retrieve CA PK =====>>

CA PK index: (Tag=0x8f, Len=0x01)
06

CA PK modulus: (Len=0xF8)
CB 26 FC 83 0B 43 78 5B 2B CE 37 C8 1E D3 34 62
2F 96 22 F4 C8 9A AE 64 10 46 B2 35 34 33 88 3F
30 7F B7 C9 74 16 2D A7 2F 7A 4E C7 5D 9D 65 73
36 86 5B 8D 30 23 D3 D6 45 66 76 25 C9 A0 7A 6B
7A 13 7C F0 C6 41 98 AE 38 FC 23 80 06 FB 26 03
F4 1F 4F 3B B9 DA 13 47 27 0F 2F 5D 8C 60 6E 42
09 58 C5 F7 D5 0A 71 DE 30 14 2F 70 DE 46 88 89
B5 E3 A0 86 95 B9 38 A5 0F C9 80 39 3A 9C BC E4
4A D2 D6 4F 63 0B B3 3A D3 F5 F5 FD 49 5D 31 F3
78 18 C1 D9 40 71 34 2E 07 F1 BE C2 19 4F 60 35
BA 5D ED 39 36 50 0E B8 2D FD A6 E8 AF B6 55 B1
EF 3D 0D 7E BF 86 B6 6D D9 F2 9F 6B 1D 32 4F E8
B2 6C E3 8A B2 01 3D D1 3F 61 1E 7A 59 4D 67 5C
44 32 35 0E A2 44 CC 34 F3 87 3C BA 06 59 29 87
A1 D7 E8 52 AD C2 2E F5 A2 EE 28 13 20 31 E4 8F
74 03 7E 3B 34 AB 74 7F

CA PK exponent: (Len=0x01)
03

<<===== 2.Retrieve Issuer PK =====>>

Issuer PK Certificate: (Tag=0x90, Len=0xF8)
B0 19 04 D3 B8 BC 7A 8E 3F B7 C0 E5 53 36 3F C9
21 58 91 AA 06 FD 23 60 68 8E 30 30 41 18 29 77
82 A1 77 71 0A B3 C7 51 91 54 13 B4 4F 42 3F F4
E9 4F 67 1C 42 3A 57 E6 AF BD A0 B1 18 F7 32 25
88 91 07 98 82 64 10 EB D9 5A CE 65 C4 BC F5 41
F2 E3 DC 98 AD 12 98 85 AA 62 CE 93 36 BB 05 C9
39 5B 9E 1C F0 3F 3C 93 7C AA BE 8D 68 FD E2 2D
0E 67 9E 88 0E 98 03 A3 F2 71 CB 09 2B 10 03 E6
45 D5 CC C9 55 E9 72 49 29 99 B7 C9 F4 00 EA 90
77 6B D3 B1 53 81 8E 5A F2 C4 D2 B7 71 7F C4 AA
7C 7A AE 4C D9 B6 45 21 E7 2A 9A 98 F4 47 6C 01
3D FF CE 71 E4 70 84 7C A2 63 B2 76 E0 DA 68 02
E0 59 AF 53 3D 0C A2 0F D0 4C 62 E7 BF 06 6E 6D
C1 29 B7 E6 45 A8 71 74 BA E5 AE 3C F7 9A D1 78
E2 7E 82 6B D4 0D CD 45 7E 76 68 51 DC D1 C6 61
15 5E 06 E0 0B 57 B2 82

***WARNING*** NO Issuer PK remainder, tag 92.
Issuer PK exponent: (Tag=0x9f32, Len=0x01)
03

Clear_IPKCert: (Len=0xF8)
6A 02 54 21 83 FF 12 30 01 44 B9 01 01 B0 01 E9
A3 73 AD DF 50 E8 17 CC A5 5E F8 94 32 9C EC 72
8C DA 67 DB 62 29 AF EB C7 E2 38 E2 CF EB 37 03
E1 0B 4B 44 97 8F F8 A0 F4 99 62 B5 62 5F BA 48
9D 50 83 EF BD 88 09 49 48 E1 E0 34 63 AD 4A CD
F1 AA BB A5 D7 23 77 A2 76 46 F9 B9 62 5D CB 8B
AD 93 95 67 0F DD 83 2B 9B 7B 34 19 F9 AB 0F 56
E9 63 30 85 64 0B D0 27 FF F5 65 4E 28 41 9F 60
63 05 E6 20 11 42 3F 89 D4 0C 32 92 AD DE 0D 72
F8 C6 91 72 90 51 F2 60 42 26 91 0E DF 85 FF 8F
5F DA 73 9D 83 9B B7 EB 48 2B B0 1D 9F A3 2C 38
90 6B AC 7F A7 F5 4A D3 EB DA C4 BF 52 74 7B BB
BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB
BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB
BB BB BB 40 E0 51 8D AA A4 80 0A 4E 3C F7 1D 39
05 DE 08 43 0A 8A B8 BC

Recovered data header: (Len=0x01)
6A

Recovered certificate format: (Len=0x01)
02

Recovered data trailer: (Len=0x01)
BC

Recovered hash result: (Len=0x14)
40 E0 51 8D AA A4 80 0A 4E 3C F7 1D 39 05 DE 08
43 0A 8A B8

Concatenated data to hash: (Len=0xE3)
02 54 21 83 FF 12 30 01 44 B9 01 01 B0 01 E9 A3
73 AD DF 50 E8 17 CC A5 5E F8 94 32 9C EC 72 8C
DA 67 DB 62 29 AF EB C7 E2 38 E2 CF EB 37 03 E1
0B 4B 44 97 8F F8 A0 F4 99 62 B5 62 5F BA 48 9D
50 83 EF BD 88 09 49 48 E1 E0 34 63 AD 4A CD F1
AA BB A5 D7 23 77 A2 76 46 F9 B9 62 5D CB 8B AD
93 95 67 0F DD 83 2B 9B 7B 34 19 F9 AB 0F 56 E9
63 30 85 64 0B D0 27 FF F5 65 4E 28 41 9F 60 63
05 E6 20 11 42 3F 89 D4 0C 32 92 AD DE 0D 72 F8
C6 91 72 90 51 F2 60 42 26 91 0E DF 85 FF 8F 5F
DA 73 9D 83 9B B7 EB 48 2B B0 1D 9F A3 2C 38 90
6B AC 7F A7 F5 4A D3 EB DA C4 BF 52 74 7B BB BB
BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB
BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB BB
BB BB 03

Calculated hash values: (Len=0x14)
40 E0 51 8D AA A4 80 0A 4E 3C F7 1D 39 05 DE 08
43 0A 8A B8

Recovered BIN from IPK certificate: (Len=0x04)
54 21 83 FF

BIN get from the PAN: (Len=0x04)
54 21 83 FF

Recovered hash algorithm indicator (Len=0x01)
01

IPK Modulus: (Len=0xB0)
E9 A3 73 AD DF 50 E8 17 CC A5 5E F8 94 32 9C EC
72 8C DA 67 DB 62 29 AF EB C7 E2 38 E2 CF EB 37
03 E1 0B 4B 44 97 8F F8 A0 F4 99 62 B5 62 5F BA
48 9D 50 83 EF BD 88 09 49 48 E1 E0 34 63 AD 4A
CD F1 AA BB A5 D7 23 77 A2 76 46 F9 B9 62 5D CB
8B AD 93 95 67 0F DD 83 2B 9B 7B 34 19 F9 AB 0F
56 E9 63 30 85 64 0B D0 27 FF F5 65 4E 28 41 9F
60 63 05 E6 20 11 42 3F 89 D4 0C 32 92 AD DE 0D
72 F8 C6 91 72 90 51 F2 60 42 26 91 0E DF 85 FF
8F 5F DA 73 9D 83 9B B7 EB 48 2B B0 1D 9F A3 2C
38 90 6B AC 7F A7 F5 4A D3 EB DA C4 BF 52 74 7B

<<===== 3.Retrieve ICC PK =====>>

ICCPK Certificate: (Tag=0x9f46, Len=0xB0)
8C 0D C4 25 06 EB C9 6B F3 A2 43 0D D6 74 F8 17
7D 95 8F FC 9B 7A B9 4F A3 46 F0 95 78 42 3E FB
62 15 18 1F DE 2D 53 63 1F A4 22 60 00 36 7C E9
0A 3B DD B0 47 2D FF 9E 19 42 97 5D 4B C1 B1 7A
9B 0D 72 E3 CD 08 B6 84 42 30 5D 25 45 7E 4C 96
62 4C 01 6C C7 38 79 75 51 52 2C A9 41 BB 3E C7
3B 66 CE 0C B4 35 44 22 C6 95 E8 09 F3 6D 6C 28
A6 7A F3 88 56 9B CA A9 ED 01 98 ED 18 39 C9 DD
4B 25 C6 88 FE 63 79 0B 07 20 83 24 6B 79 C8 53
1D 05 54 E9 92 47 F3 E3 C4 FB 70 F7 7F 39 15 36
AA 2C 38 F7 40 12 50 E4 C2 1B 0A 4E EB 72 4C B5

***Warning*** Could not retrieve ICCPK Remainder, Tag 9F48.

ICCPK exponent: (Tag=0x9f47, Len=0x01)
03

SDA tag list, (Tag=0x9F4A, Len=0x01)
82

Clear_ICCPKCert: (Len=0xB0)
85 52 51 55 2F 10 8A 30 BC BB 25 D1 66 70 41 5B
82 A6 C1 F5 DF D4 FE 8B A3 32 A9 E2 CB A2 B5 A1
82 B9 72 3F 31 78 A5 41 92 12 5C D5 11 24 A1 F6
38 D3 2E 69 97 C8 80 08 E8 B0 EC 58 3F 0B 7D 8F
13 A0 CA 56 E3 CB FA 63 30 19 F6 C2 69 AC 5B 8F
C3 C2 26 34 DC DB A9 03 B4 4F FA 1E EA DF 12 B9
C1 2B 79 16 C1 74 BF 4F F1 F0 1A 3D 5E A1 F3 8E
6B B6 7A 4B 65 0C EE 3F 36 17 E5 E9 B3 B1 86 EB
C9 8B C7 BD C4 EB B7 AA FD 81 40 DC C7 E1 CA 64
A3 55 95 E1 7A C2 09 13 4E F3 C3 A8 71 5A 90 D9
A4 FF 8E 64 5F 62 3D BC 70 C3 7A B5 BC FF C8 C7

Recovered data header: (Len=0x01)
85

***ERROR*** Recovered data header must be Hex value '6A'.
Recovered certificate format: (Len=0x01)
52

***ERROR*** Recovered certificate format must be Hex value '04'.
Recovered data trailer: (Len=0x01)
C7

***ERROR*** Recovered data trailer must be Hex value 'BC'.

<<<<< Dynamic Data Authentication Failed >>>>>>

Comments

Hiroshi Tonegawa May 31 2024

追加情報です。

リスナーからエラーメッセージでておりました。ただどうしたら良いのかわかりません。

そのlog(TNSLSNR.log)を添付しました。ここから原因、また対処法など解析できませんでしょうか?

大変困っております。よろしくお願いいたします。

TNSLSNR_496.log

1 - 1

Post Details

Added on Dec 13 2022
0 comments
901 views