Quantcast
Channel: thalessim Discussions Rss Feed
Viewing all 279 articles
Browse latest View live

New Post: IPEK export for injection into device.

June 11, 2014, 10:33 pm
$
0
0
Hi all,
I'm trying to realize how to inject HSM generated IPEK into device.
I was able to generate BDK, generate IPEK, export IPEK under ZMK. I need to get 'clear' IPEK to inject into device. What is the right approach for that?
Thanks in advance.
Search

New Post: IPEK export for injection into device.

June 12, 2014, 3:12 am
$
0
0
Hi!

You can do that into few steps:

1) generate single ZMK component using GC console command and save it;
2) form ZMK from that component into a key using FK console command;
3) export IPEK under ZMK in X scheme;
4) decrypt the result of export with any freeware DES calculator using ZMK component. Thee result of decryption will be your plain IPEK.

The calculator you can use can be downloaded from Codeplex, too: https://eftcalculator.codeplex.com/

Regards,
Juris

New Post: IPEK export for injection into device.

June 12, 2014, 8:47 am
$
0
0
Thanks, Juris!

That what I was doing but probably confused with step 4 and used wrong decryption scheme. Really appreciate!

Vitaly

New Post: IPEK export for injection into device.

June 13, 2014, 3:11 am
$
0
0
Hi Vitaly!

Sorry, but i did not understand. Did you get ready with IPEK export?

Do you need any future assistance?

Regards,
Juris

New Post: IPEK export for injection into device.

June 13, 2014, 8:29 am
$
0
0
Hi Juris.

I just wanted to say you thanks. Everything's working like a charm. No more assistance needed.

Vitaly

New Post: Formatin Option in HSM

June 14, 2014, 7:41 am
$
0
0
Hi!

Sorry, one additional question to understand your task completely. Do you want to print PIN "not black" but "grey", i mean "light black"? :)

Regards,
Juris

New Post: Formatin Option in HSM

June 14, 2014, 11:47 am
$
0
0
Hi Juris,

yes our task is to print the PIN "light black"

Best Regards
Artan Telkiu

New Post: Problem with verification of pin block generated with ZPK

July 12, 2014, 4:06 pm
$
0
0
Dear all,
I have generated an encrypted pin block under clear ZPK with my application.
now i want to verify the pin with hsm 8000.but i obtain veification failure.

my application is c# and i'm using .Net Tdes provider.i also crypted the pin under the thales simulator i get same pin block.

Please any help will be very appreciated.

Best Regards.
Search

New Post: Problem with verification of pin block generated with ZPK

July 13, 2014, 10:16 pm
$
0
0
Hi!

Give us pls more details what you have actually done and the error code HSM responds you.

Regards,
Juris

New Post: Problem with verification of pin block generated with ZPK

July 14, 2014, 12:43 am
$
0
0
Also. send us pls the PIN you want to verify, the card number and type of PIN-block (of course if that is test card :) ) you are trying to verify.

New Post: Problem with verification of pin block generated with ZPK

July 14, 2014, 2:34 pm
$
0
0
hi thanks for the reply,
here are the details you have requested:
account number= 196009475168 pin number=1111
pin block format=03
clear ZPK is 1A75A146A31B5F61ED2DE4DDD52B4C0A
actually i get the pin block 531AB0D823862DD9 using ECB methode in tdes .Net

but with command EC i'm actually getting verification Failiure.

Your help is very appreciated.

thanks.

Best Regards.

New Post: Problem with verification of pin block generated with ZPK

July 15, 2014, 1:00 am
$
0
0
Hi!

Show pls the command to HSM you are sending.

Regards,
Juris

New Post: Problem with verification of pin block generated with ZPK

July 15, 2014, 2:30 am
$
0
0
hi,

here is the command :
ECU425F4E50D22391AB8E8E9BF88ED4403E231F696E6D0C77941E4DC6005BE56FF4531AB0D823862

U425F4E50D22391AB8E8E9BF88ED4403E is the crypted key under ZMK.

i have also generated a Pin block with HSM commands BA and then JG the result with EC for this pinblock is veridication success.
thanks for your assistance.

Best regards.


2014-07-15 8:00 GMT+00:00 Manshtein <[email removed]>:

From: Manshtein

Hi!

Show pls the command to HSM you are sending.

Regards,
Juris

Read the full discussion online.

To add a post to this discussion, reply to this email ([email removed])

To start a new discussion for this project, email [email removed]

You are receiving this email because you subscribed to this discussion on CodePlex. You can unsubscribe on CodePlex.com.

Please note: Images and attachments will be removed from emails. Any posts to this discussion will also be available online at CodePlex.com


New Post: Problem with verification of pin block generated with ZPK

July 15, 2014, 2:41 am
$
0
0
Hi,

just notice please the pin block that was generated for account number= 196009475168 pin number=1111
pin block format=03 under clear ZPK 1A75A146A31B5F61ED2DE4DDD52B4C0A is 531AB0D823862DD9

the pin block was created using thales dll library as follow :


PIN = 1111
PINBlock = PIN.PadRight(16, 'F');
HexKey ZPKHex = new HexKey(ZPK);
EncryptedPINBlock = ThalesSim.Core.Cryptography.TripleDES.TripleDESEncrypt(ZPKHex, PINBlock);


Command HSM for verification is : ECU425F4E50D22391AB8E8E9BF88ED4403E231F696E6D0C77941E4DC6005BE56FF4531AB0D823862
result ED 24 : PIN is fewer than 4 or more than 12 digits
Best regards.

New Post: Problem with verification of pin block generated with ZPK

July 16, 2014, 2:30 am
$
0
0
Hi!

Looks like the page can not display whole command you are sending.

My command:
EC
U6D344B2D3EEB2CD5F19CC0CB645BD006
UE69ACD0494852B45369F7D08EC3C7F95
531AB0D823862DD9
03
196009475168
1
1234
Returns ED01, that means 03 PIN block is suppoted in this command (note that keys are under my LMK).

Could you pls send whole command and VR console command output (REMOVE SERIAL NUMBER FROM OUTPUT)?

Regards,
Juris
Search

New Post: Problem with verification of pin block generated with ZPK

July 16, 2014, 3:21 am
$
0
0
Here is my command EC

EC
Uxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx key ZPK under LMK
231F696E6D0C7794
1E4DC6005BE56FF4
531AB0D823862DD9
03
196009475168
17611


the command returns ED24 witch is related to the pin block encryption.

hsm is thales 8000.

Best regards.

New Post: Problem with verification of pin block generated with ZPK

July 17, 2014, 5:26 am
$
0
0
Hi,
Could you please specify by witch command i can verify the generated pin block format 03 with the HSM.

Thanks for your help.

Best Regards.

New Post: A2 command fail

July 17, 2014, 6:24 am
$
0
0
Hi, I send command A2 to simulator and getting error in events. I using socket.
First I send command PA:
0000PA>L>003^0>033^1>L>003KEY COMPONENT PART 1: ^P;>L>003 KEY CHECK VALUE: ^T;>L>L>003 DO NOT DISCLOSE THIS COMPONENT TO ANYONE ELSE>L>F

Hex:
00883030303050413e4c3e3030335e303e3033335e313e4c3e3030334b455920434f4d504f4e454e54205041525420313a205e503b3e4c3e303033204b455920434845434b2056414c55453a205e543b3e4c3e4c3e30303320444f204e4f5420444953434c4f5345205448495320434f4d504f4e454e5420544f20414e594f4e4520454c53453e4c3e46

Response:
000000PB00


And send A2 command:
0001A20000A2000U >L>003^0>033^1>L>003KEY COMPONENT PART 1: ^P;>L>003 KEY CHECK VALUE: ^T;>L>L>003 DO NOT DISCLOSE THIS COMPONENT TO ANYONE ELSE>L>F

Hex:
009330303031413230303030413230303055203e4c3e3030335e303e3033335e313e4c3e3030334b455920434f4d504f4e454e54205041525420313a205e503b3e4c3e303033204b455920434845434b2056414c55453a205e543b3e4c3e4c3e30303320444f204e4f5420444953434c4f5345205448495320434f4d504f4e454e5420544f20414e594f4e4520454c53453e4c3e46

The error is:
Client from 127.0.0.1:63550 is connected
Client: 127.0.0.1:63550
Request: 0001A20000A2000U >L>003^0>033^1>L>003KEY COMPONENT PART 1: ^P;>L>003 KEY CHECK VALUE: ^T;>L>L>003 DO NOT DISCLOSE THIS COMPONENT TO ANYONE ELSE>L>F
Parsing header and code of message 0001A20000A2000U >L>003^0>033^1>L>003KEY COMPONENT PART 1: ^P;>L>003 KEY CHECK VALUE: ^T;>L>L>003 DO NOT DISCLOSE THIS COMPONENT TO ANYONE ELSE>L>F...
Searching for implementor of A2...
Found implementor ThalesSim.Core.HostCommands.BuildIn.GenerateAndPrintComponent_A2, instantiating...
Calling AcceptMessage()...
Calling ConstructResponse()...
Exception while processing message
System.InvalidOperationException: Invalid key scheme [Unspecified]
at ThalesSim.Core.Utility.CreateRandomKey(KeyScheme ks)
at ThalesSim.Core.HostCommands.BuildIn.GenerateAndPrintComponent_A2.ConstructResponse()
at ThalesSim.Core.ThalesMain.WCMessageArrived(WorkerClient sender, Byte[]& b, Int32 len)
Disconnecting client.
Calling Terminate()...

What is wrong ?

New Post: A2 command fail

July 17, 2014, 7:27 am
$
0
0
After click in "Change Authorized Mode" the command A2 return this:

000001A317

Meaning what ?

New Post: Problem with verification of pin block generated with ZPK

July 18, 2014, 12:44 am
$
0
0
Hi!

You can also try to verify the PIN block using Terminal key and host command DC. The only thing, you should form your plain ZPK using console command FK with key type 002 (TPK).

What firmware version your HSM running?

Currently I have tried 2 units of HSM8000 which I have online and both of them processes EC request with 03 PIN-block well.

Regards,
Juris
Viewing all 279 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>