Filter
Top Products
PIN_Change/Unblock CCA Release 2.54
The first 8 or 16 bytes of data should contain the value used to form the
smart-card-specific authentication value and the PIN-block encryption key.
The next two bytes of data contain the 16-bit ATC counter used to further
diversify the ENC-MDK key to form the session key used to encrypt the
output PIN block. The high-order counter bit is in the left-most counter
byte.
When using the TDESEMV2 or TDESEMV4 tree-based diversification
process, you can concatenate an optional 16-byte Initial Value. (Otherwise
the verb substitutes 16 bytes of X'00'.)
new_reference_PIN_key_identifier_length
The new_reference_PIN_key_identifier_length parameter points to an integer
variable set to 64. This is the string length of the related key identifier.
new_reference_PIN_key_identifier
The new_reference_PIN_key_identifier parameter points to a string variable
containing an internal key-token or a key label of an internal key-token record
in key storage. The internal key-token contains the key used to decrypt the
new_reference_PIN_block. The control vector for this key must specify either
an IPINENC or an OPINENC key type.
new_reference_PIN_block
The new_reference_PIN_block parameter points to an 8-byte string variable
containing an encrypted PIN block which in turn contains the
new_reference_PIN.
new_reference_PIN_profile
The new_reference_PIN_profile parameter points to an array of three, 8-byte
string variables which define the new_reference_PIN_block format. For more
information about a PIN profile, see “PIN Profile” on page 8-10.
new_reference_PIN_PAN_data
The new_reference_PIN_PAN_data parameter points to a 12-byte string
variable containing the PAN data. PAN data is used to recover a PIN from an
ISO-0 PIN block. If the PIN block is not in ISO-0 format, this value will be
ignored, but a 12-byte variable must be specified.
current_reference_PIN_key_identifier_length
The current_reference_PIN_key_identifier_length parameter points to an integer
variable set to 0 or 64 providing the length in bytes of the
current_reference_PIN_key_identifier variable. If the VISAPCU2 keyword is
used a key must be specified and this variable must be 64, else 0.
current_reference_PIN_key_identifier
The current_reference_PIN_key_identifier parameter points to a string variable.
The contents of this variable are inspected when the VISAPCU2 rule-array
keyword is present. The variable should contain an internal key-token or a key
label of an internal key-token record in key storage. The internal key-token
contains the key used to decrypt the current_reference_PIN_block. The control
vector for this key must specify either an IPINENC or an OPINENC key type.
current_reference_PIN_block
The current_reference_PIN_block parameter points to an 8-byte string variable.
The contents of this variable are inspected when the VISAPCU2 rule-array
keyword is present. The variable should contain an encrypted PIN block which
in turn contains the current_reference_PIN.
8-56 IBM 4758 CCA Basic Services, Release 2.54, February 2005