S-ENC, S-MAC & DEK keys
843851Nov 16 2009 — edited Nov 16 2009Hi, i've already managed to make the init-update/ext-auth correctly so i know that the S-ENC key goes into the encryption of the challenges, and the S-MAC for the MAC generation on ext-auth command, but, what about the DEK key? what should i do with it? I'm refering to the GP Specs 2.1.1 page 218 where it says "Sensitive data Decryption"
I've tested my implementation agaist the JCOP emulator and the S-ENC is also the key used to encrypt the "payload" on the APDU...
What is this DEK key used for? And how does the security domain knows when i am transmiting sensitive data?