GETCHALLENGE issue(6D00) in EMV for MasterCard

前端未结

关注

 1  1984

暗喜 2021-01-21 10:28

In the case of GETCHALLENGE Request (0084000000) in EMV, we are getting the positive response for VISA\\DEBIT card, but for MASTERCARD we are getting the response as 6D00 (Instr

1条回答

北海茫月 (楼主)

2021-01-21 10:51

For ICC Dynamic number for CDOL, After GPO, Internal authenticate need to be issued to the card. This will give you Signed Dynamic Application Data( which is a certificate signed under ICC Private Key ).

Below are the contents of the certificate you provided which I opened using your ICC Public Key. You can see ICC dynamic data of which 08 is the length and C7C298C8C60E2984 is your dynamic number. Cheers, enjoy !!

As to how this is done, you need to read EMV 4.3 Book 2 Security and Key Management Section 6, Offline Dynamic Data Authentication. Happy learning. Let me know once you complete, and accept this answer

 DDA: Signed Dynamic Application Data Verification
 ****************************************
 ICC PK Modulus:
BC41FF9CEF143DBC67F3FBF9F17565F5C948B0106CFF664BCB54EE935AC5E2119B1879AB1DEF5F456FFB7C21FB30329FADE04E62E749719C7C2920B91E3C459712D296F2A0CB3566AA46C55DBBEA6BEB
 Signed Dynamic Application Data:
8464F182032BD432F415EC7DDAA3E601526A2B860FCC9785475F8F45F095186E3658BC0A55BCEB2D4C22FBDED8AF82BD81338E38961C5D000DD5A8F99D3EC0C774648534A2B362B55D4B9EE13F204373
 ----------------------------------------
 Recovered Data:                6A05010908C7C298C8C60E2984BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBF97A677485DC0A64971C54099583FBD0F39870D0BC
 Data Header:                   6A
 Signed Data Format:                05
 Hash Algorithm Indicator:          01
 Dynamic Data length:               09
 ICC Dynamic Data:              08C7C298C8C60E2984
 Pad Pattern:                   BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBB
 Hash Result:                   F97A677485DC0A64971C54099583FBD0F39870D0
 Data Trailer:                  BC
 ----------------------------------------
 Recovered Data validation:
 ----------------------------------------
 Step 1: Issuer PK Modulus and Signed Static Application Data having the same length: Passed
 Step 2: Recovered Data Trailer check:      Passed
 Step 3: Recovered Data Header check (0x6A):    Passed
 Step 4: Certificate Format check (0x03):   Passed
 Step 5: Hash Input Data:           05010908C7C298C8C60E2984BBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBBE153F3E8
 Step 6: Hashing Result:            F97A677485DC0A64971C54099583FBD0F39870D0
 Step 7: Hash Result Comparison:        Passed
 ----------------------------------------
 DDA Validation Succeed.

0 讨论(0)