验证卡认证密码

【问题标题】:Verify Card Authentication Cryptogram验证卡认证密码
【发布时间】:2022-01-31 21:12:30
【问题描述】:

我在执行Verify Card Authentication Cryptogram 时遇到问题,signature 的结果不等于the cryptogram sent by the card

select_ret: 6F108408A000000003000000A5049F6501FF9000

AID: A000000003000000

host_challenge: 1122334455667788

init_update_ret: 00000000000000000000 FF02 005CD352A259A8F2 D5DF4D69873546C3 9000
                                           card_challenge   card_cryptogram?
key_diversification_data: 00000000000000000000

key_information_data: FF02

card_challenge: 005CD352A259A8F2

card_cryptogram: D5DF4D69873546C3

enc_session:  339F1D7F5D5841EB034F5CE234557894

cmac_session: C6713F31B8DC1F8905DFECB4065CB81E

dek_session:  06E72D52EEFBD1D8DB5C230C3F2B56E9
              
cryptogram_data: 1122334455667788 005CD352A259A8F2 8000000000000000
                 host_challenge   card_challenge
                                  
cryptogram_session: A9A159B6CB28156194027554A8603DDF 59A7313E1B3293B2
                                                     signature?

验证卡验证密码: 连接8-byte host challenge8-byte card challenge 得到a 16-byte block。使用enc_session 签署 数据1122334455667788 + 005CD352A259A8F2 + 8000000000000000DES_MAC4_ISO9797_M1, ICV=0

我尝试如下,但我得到签名(59A7313E1B3293B2)不等于 card_cryptogram(D5DF4D69873546C3)?

我卡在 MACEncrypt (DES_MAC4_ISO9797_M1),你认为这个函数正确吗?谢谢。

byte[] cryptogram_iv = ToHexBytes("0000000000000000");
byte[] cryptogram_key = ToHexBytes("339F1D7F5D5841EB034F5CE234557894");
byte[] host_challenge = ToHexBytes("1122334455667788");
byte[] card_challenge = ToHexBytes("005CD352A259A8F2");

byte[] cryptogram_data = Append(host_challenge, card_challenge, ToHexBytes("8000000000000000"));
    
byte[] cryptogram_session = MACEncrypt(cryptogram_iv, cryptogram_key, cryptogram_data);
// cryptogram_session = A9A159B6CB28156194027554A8603DDF 59A7313E1B3293B2

//

// DES_MAC4_ISO9797_M1
private byte[] MACEncrypt(byte[] iv, byte[] key, byte[] data) 
{
    try
    {
        MACTripleDES mac = new MACTripleDES(key);
        TripleDES tdes = new TripleDESCryptoServiceProvider();
        tdes.Mode = CipherMode.CBC;
        tdes.Padding = PaddingMode.None;
        MemoryStream streamOut = new MemoryStream();
        CryptoStream streamCrypto = new CryptoStream(streamOut, tdes.CreateEncryptor(key, iv), CryptoStreamMode.Write);
        streamCrypto.Write(data, 0, data.Length);
        streamCrypto.FlushFinalBlock();
        return streamOut.ToArray();
    }
    catch (Exception ex)
    {
        MessageBox.Show(ex.Message);
    }
    return new byte[0];
}

【问题讨论】:

    标签: c# javacard


    【解决方案1】:

    DES_MAC4_ISO9797_M1 工作正常,我的错误是在init_updateplain 之间使用了不同的sequence counter enc_session, cmac_session, and dek_session。在我匹配所有sequence counter 后,一切正常。

    【讨论】:

      猜你喜欢
      • 2014-10-18
      • 2013-09-18
      • 2015-04-03
      • 2023-02-23
      • 2011-08-23
      • 2017-12-06
      • 2021-07-24
      • 2011-06-09
      • 1970-01-01
      相关资源
      最近更新 更多
      热门标签
      Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode