A User Centric Security Model for Tamper-Resistant Devices

C.6 Application Acquisition and Contractual Agreement Protocol
667 pointer , ( short ) 4) == 0) {
668 U t i l . arrayCopyNonAtomic ( i n B u f f e r , pointer , this . SPCookieArray ,
669 ( short ) 0 , ( short )
670 ( this . SPCookieArray . l e n g t h ) ) ;
671 p o i n t e r += ( short ) ( this . SPCookieArray . l e n g t h ) ;
672 }
673 c h i l d L e f t −= ( short ) 1 ;
674 }
675 }
676 void d h I n i t i a l i s a t i o n ( ) {
677 dhKey . setModulus ( ClassDH . dhModulus , ( short ) 0 ,
( short ) ClassDH . dhModulus . l e n g t h ) ;
678 }
679 void dhKeyConGen(byte [ ] i n b u f f , short i n b u f f O f f s e t , byte Oper_Mode) {
680 switch (Oper_Mode) {
681 case GEN_KEYCONTRIBUTION:
682 randomExponent = JCSystem . makeTransientByteArray ( ( short ) 32 ,
683 JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
684 randomDataGen . generateData ( randomExponent , ( short ) 0 , ( short )
685 randomExponent . l e n g t h ) ;
686 dhKey . setExponent ( randomExponent , ( short ) 0 , ( short )
687 randomExponent . l e n g t h ) ;
688 pkCipher . i n i t ( dhKey , Cipher .MODE_ENCRYPT) ;
689 pkCipher . doFinal ( ClassDH . dhBase , ( short ) 0 ,
( short ) ClassDH . dhBase . length , i n b u f f ,
690 i n b u f f O f f s e t ) ;
691 break ;
692 case GEN_DHKEY:
693 dhKey . setExponent ( randomExponent , ( short ) 0 , ( short )
694 randomExponent . l e n g t h ) ;
695 pkCipher . i n i t ( dhKey , Cipher .MODE_ENCRYPT) ;
696 SCSPDHGeneratedValue = JCSystem . makeTransientByteArray ( ( short )
697 ClassDH . dhModulus . length ,
JCSystem .MEMORY_TYPE_TRANSIENT_DESELECT) ;
698 pkCipher . doFinal ( i n b u f f , i n b u f f O f f s e t , ( short ) ( ( short )
699 i n b u f f . l e n g t h − ( short ) this . PTLVDataOffset ) ,
700 SCSPDHGeneratedValue , ( short ) 0) ;
701 break ;
702 default :
703 ISOException . throwIt ( ( short ) 0x5FA1) ;
704 }
705 }
706 void keygenerator ( ) {
707 AESKey sessionGenKey = (AESKey) KeyBuilder . buildKey
708 ( KeyBuilder .TYPE_AES_TRANSIENT_DESELECT,
709 KeyBuilder .LENGTH_AES_128, f a l s e ) ;
710 sessionGenKey . setKey ( SCSPDHGeneratedValue , ( short ) 0) ;
711 phMacGenerator . i n i t ( sessionGenKey , S i g n a t u r e .MODE_SIGN,
712 I n i t i a l i s a t i o n V e c t o r , ( short ) 0 , ( short )
713 I n i t i a l i s a t i o n V e c t o r . l e n g t h ) ;
714 byte [ ] keyGenMacData = JCSystem . makeTransientByteArray ( ( short ) 64 ,
347