Filter
Top Products
Diversified_Key_Generate CCA Release 2.54
Keyword Meaning
TDESEMV2,
TDESEMV4
Note: These options are available starting with Release 2.51.
Specifies that 10, 18, 26, or 34 bytes of clear data shall be
processed to form an EMV card-unique key and then a
session key as specified in the EMV 2000 Integrated Circuit
Card Specification for Payment Systems Version 4.0 (EMV4.0)
Book 2, Annex A1.3. See “VISA and EMV-Related Smart
Card Formats and Processes” on page E-17 for additional
details. The supplied data variable must contain the
concatenation of:
8 or 16 bytes of data to diversify the issuer-master-key.
2 bytes containing the Application Transaction Counter
(ATC) received from the smart card. Place the counter
value in a string construct with the high-order counter bit
first in the string.
Optionally, a 16-byte Initial Value used in obtaining the
session key from the card-unique key.
The key selected by the generating_key_identifier parameter
must specify a DKYGENKY key-type at level-0 (bits 12 to 14
B'000') and indicate permission to create one of several key
types in bits 19 to 22:
B'0001' DDATA, to generate a DATA key
B'0001' DMAC, to generate a MAC key
B'0001' DMV, to generate a MACVER key
B'1000' DMKEY, to generate a SECMSG SMKEY (used
in secure messaging, key encryption, see the
Secure_Messaging_for_Keys verb)
B'1001' DMPIN, to generate a SECMSG SMPIN (used in
secure messaging, PIN encryption, see the
Secure_Messaging_for_PINs verb).
The data_decrypting_key_identifier must identify a null
key-token.
A key token or key-token record identified by the
generated_key_identifier parameter that is not a null
key-token. The token must contain a control vector that
specifies a key type conforming to that specified in
control-vector bits 19-22 for the key-generating key. The
control vector must specify a double-length key.
5-38 IBM 4758 CCA Basic Services, Release 2.54, February 2005