C.I.E – Carta di Identità Elettronica Functional Specification Version 2.0

More documents

Recommendations

Info

Confidentiality (CON)B883h84h1 Object IDPSO_DECPSO_ENCAuthentication component (TEST)A483h84h1 Object ID EXT AUTHDigital Signature Component (CDS) B683h84h1 Object ID PSO_CDSTable 52: P2 and Data Field coding for MSE SET commandThe CSE is the card security status, stored in volatile memory, and reset at every card session (i.e.after each reset of the card). For details on the CSE structure, see the dedicated chapter.To illustrate the use of the CSE, consider the PSO_ENC and PSO_DEC commands. Thesecommands use an explicit secure object where the key (public or private) is stored.Thus, before the execution of a PSO command, the CSE component CON is set (via RESTORE orSET): this component refers to the BS object, which has to be used for the 3DES/RSA algorithms.The CSE contains 3 components:Component Type of Objects UsedRelated CommandsCONRSA KPRI CRYPT/DECRYPT3DES CRYPT/DECRYPTPSO_DECPSO_ENCDS RSA KPRI SIGN PSO_CDSTEST3DES EXT AUTHRSA KPUB EXT AUTHEXT AUTHTable 53: CSE components12.16.1 MSE mode RESTOREThe functionality of the MSE command in the RESTORE mode is the following:• Use the backtracking mechanism to search the SE object whose ID is in P2• If the wanted SE object is found, it becomes the CSE. Afterward the CSE can be used forexecute the commands PSO_DEC, PSO_ENC, PSO_CDS, EXT AUTH.• To execute the MSE RESTORE, the specified SE object has to be created in advance by thecommand PUT DATA – SECI.CIE - Functional Specification v 2.0 -Page 66/76
Security:The access condition to satisfy is AC_RESTORE.12.16.2 MSE mode SETThis mode is valid only when a CSE is loaded in RAM by a previous MSE RESTORE command. Itis used to set up the specific CSE component referenced by P2. The data field contains TLV datawhere the value field is the ID of the object to be used.Security:no access condition to satisfy.12.17 GENERATE KEY PAIRCLA INS P1 P2 P3 Data FieldPvk (2 bytes)Pbk (2 bytes)00 46 00 00 LC=length of data fieldARMT (1 bytes)Dif_pq (1 bytes)Pub_Exp (2 bytes)Table 54: GENERATE KEY PAIR commandThis command is used to generate a key pair for RSA computations.Proprietary data meaning:• Pvk =The ID of the RSA KPRI object. The ID is 2 bytes long. The first byte is the objectclass and the second is the object ID. The RSA KPRI object has to be in the current DF.• Pbk =The ID of the file that will contain the public key (LINEAR TLV type). The file has tobe created empty in the current DF. The GENERATE KEY PAIR will create two TLVrecords with tags:oo10h for the key module11h for the key exponentand will put the key components in these records.The format for the key modulus is:CIE - Functional Specification v 2.0 -Page 67/76
Page 1 and 2:
C.I.E. - Carta di Identità Elettro
Page 3 and 4:
Table of Contents1. Revision Histor
Page 5 and 6:
12.17 GENERATE KEY PAIR ...........
Page 7 and 8:
2. IntroductionThis document is the
Page 9 and 10:
4. Reference Documents1. ISO/IEC 78
Page 11 and 12:
Public Key - That key of an entity
Page 13 and 14:
lsbLSBMACMFmsbMSBMSEMTSCOSOCIPINPPP
Page 15 and 16: 6. Electrical ParametersFor all ele
Page 17 and 18: 8. Answer To Reset (ATR)The Answer
Page 19 and 20: XXh XXh H5/H6 Y02h H7 Y49h H8 Y54h
Page 21 and 22: 9. Application SelectionNo explicit
Page 23 and 24: Record structure:The EF is seen at
Page 25 and 26: Linear Variable TLV or Cyclic EFSiz
Page 27 and 28: The card maintains an internal Secu
Page 29 and 30: BSO ID 1 01h to 1FhOPTION 1 See Tab
Page 31 and 32: RSA public key Exponent for Authent
Page 33 and 34: 11.4 Secure MessagingThe Secure Mes
Page 35 and 36: Byte Nr. SM Condition1 ENC USE IN2
Page 37 and 38: • Step 4: APDU command set up in
Page 39 and 40: 11.4.5 SM Response in SM_ENCOrigina
Page 41 and 42: 11.4.7 SM Response in SM_ENC_SIGOri
Page 43 and 44: 12. APDU ReferenceThe CIE supports
Page 45 and 46: 6A 86 Incorrect P1-P26A 87 Lc incon
Page 47 and 48: The PUT DATA - DATA_OCI acts on the
Page 49 and 50: 3DES - SM Cipher 10h 83h 03h3DES -
Page 51 and 52: 3 8Fh 6 BYTE 1: Not used - MUST be
Page 53 and 54: Table35Table 34: SELECT FILE Comman
Page 55 and 56: The operation is possible if the ac
Page 57 and 58: n has to be different from FFh.P1=0
Page 59 and 60: First and NextLast and PreviousSecu
Page 61 and 62: acktrackingallowed.b6 = 0b5 = 0b4 -
Page 63 and 64: 12.13 RESET RETRY COUNTERCLA INS P1
Page 65: 12.15 GIVE RANDOMCLA INS P1 P2 P3 D
Page 69 and 70: The access condition to satisfy is
Page 71 and 72: 0X 04 00 00 LC = 00 EmptyTable 59:
Page 73 and 74: • The length in bits of the priva
Page 75 and 76: • a sequence of q cipher text blo
show all

C.I.E – Carta di Identità Elettronica Functional Specification Version 2.0

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?