?? appendix-a.html
字號:
<H4 ALIGN="LEFT"><A NAME="Heading19"></A><FONT COLOR="#000077">External Authenticate</FONT></H4>
<P><FONT SIZE="+1"><B>Description</B></FONT></P>
<P>This command conditionally updates the security status using the result of the computation by the card based on a challenge previously issued by the card, a (secret) key stored in the card, and authentication data supplied by the reader/terminal.
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Command Application Protocol Data Unit
<TR>
<TH WIDTH="10%" ALIGN="LEFT">CLA
<TH WIDTH="10%" ALIGN="LEFT">INS
<TH WIDTH="26%" ALIGN="LEFT">Parameter 1
<TH WIDTH="25%" ALIGN="LEFT">Parameter 2
<TH WIDTH="29%" ALIGN="LEFT">Parameter 3
<TR>
<TD COLSPAN="5"><HR>
<TR>
<TD VALIGN="TOP">C0<SUB>16</SUB>
<TD VALIGN="TOP">82<SUB>16</SUB>
<TD VALIGN="TOP">ID of algorithm in card
<TD>ID of secret (key) field or empty
<TD VALIGN="TOP">Length of data
<TR>
<TD COLSPAN="5"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><TR>
<TH WIDTH="45%" ALIGN="LEFT">Data Field 1
<TH WIDTH="55%" ALIGN="LEFT">Data Field 2
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>Empty or response to challenge
<TD>Empty
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Response Application Protocol Data Unit
<TR>
<TH WIDTH="100%" ALIGN="LEFT">Response
<TR>
<TD><HR>
<TR>
<TD>2-byte status
<TR>
<TD><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Example of Use
<TR>
<TH WIDTH="45%" ALIGN="LEFT">APDU
<TH WIDTH="55%" ALIGN="LEFT">Interpretation
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD VALIGN="TOP">C0<SUB>16</SUB>82<SUB>16</SUB>00<SUB>16</SUB>00<SUB>16</SUB> 03<SUB>16</SUB>03<SUB>16</SUB>02<SUB>16</SUB>01<SUB>16</SUB>03<SUB>16</SUB>
<TD>The card has previously generated a challenge number and sent it to the reader; the reader has encrypted it with a key it shares with the card and is now returning the encrypted challenge number to the card; if the card can validate it, then the response to this command will be a success status
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Error Codes
<TR>
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="30%" ALIGN="LEFT">Meaning
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="30%" ALIGN="LEFT">Meaning
<TR>
<TD COLSPAN="4"><HR>
<TR>
<TD>6300<SUB>16</SUB>
<TD>Invalid verify
<TD>63CX<SUB>16</SUB>
<TD>Success with retries
<TR>
<TD>6700<SUB>16</SUB>
<TD>Incorrect Lc field
<TD>6983<SUB>16</SUB>
<TD>Invalid authentication
<TR>
<TD>6984<SUB>16</SUB>
<TD>Data cancelled
<TD>6985<SUB>16</SUB>
<TD>Invalid conditions
<TR>
<TD>6A86<SUB>16</SUB>
<TD>P1 and P2 error
<TD>6A88<SUB>16</SUB>
<TD>Missing data object
<TR>
<TD COLSPAN="4"><HR>
</TABLE>
<H4 ALIGN="LEFT"><A NAME="Heading20"></A><FONT COLOR="#000077">Get Challenge</FONT></H4>
<P><FONT SIZE="+1"><B>Description</B></FONT></P>
<P>This command forces the issuing of a challenge (such as a random number) for use in a security related procedure such as an <TT>External Authenticate command</TT>.</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Command Application Protocol Data Unit
<TR>
<TH WIDTH="10%" ALIGN="LEFT">CLA
<TH WIDTH="10%" ALIGN="LEFT">INS
<TH WIDTH="26%" ALIGN="LEFT">Parameter 1
<TH WIDTH="25%" ALIGN="LEFT">Parameter 2
<TH WIDTH="29%" ALIGN="LEFT">Parameter 3
<TR>
<TD COLSPAN="5"><HR>
<TR>
<TD>C0<SUB>16</SUB>
<TD>84<SUB>16</SUB>
<TD>0000
<TD>Empty
<TD>Le field length
<TR>
<TD COLSPAN="5"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><TR>
<TH WIDTH="30%" ALIGN="LEFT">Data Field 1
<TH WIDTH="70%" ALIGN="LEFT">Data Field 2
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>Empty
<TD>Empty
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Response Application Protocol Data Unit
<TR>
<TH WIDTH="100%" ALIGN="LEFT">Response
<TR>
<TD><HR>
<TR>
<TD>Le bytes of challenge data plus 2-byte status
<TR>
<TD><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Example of Use
<TR>
<TH WIDTH="30%" ALIGN="LEFT">APDU
<TH WIDTH="70%" ALIGN="LEFT">Interpretation
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD VALIGN="TOP">C0<SUB>16</SUB>84<SUB>16</SUB>00<SUB>16</SUB>00<SUB>16</SUB> 06<SUB>16</SUB>
<TD>This command essentially asks the card to generate a 6-byte challenge string and return it to the reader-side application
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Error Codes
<TR>
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="30%" ALIGN="LEFT">Meaning
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="30%" ALIGN="LEFT">Meaning
<TR>
<TD COLSPAN="4"><HR>
<TR>
<TD>6A81<SUB>16</SUB>
<TD>Invalid function
<TD>6A86<SUB>16</SUB>
<TD>P1 and P2 error
<TR>
<TD COLSPAN="4"><HR>
</TABLE>
<H4 ALIGN="LEFT"><A NAME="Heading21"></A><FONT COLOR="#000077">Manage Channel</FONT></H4>
<P><FONT SIZE="+1"><B>Description</B></FONT></P>
<P>This command is used to open and close logical channels. A logical channel is essentially a connection between a reader-side application and a file. This is one mechanism that can be used to provide multiple reader-side applications “simultaneous” access to multiple files (applications) on the card.
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Command Application Protocol Data Unit
<TR>
<TH WIDTH="10%" ALIGN="LEFT">CLA
<TH WIDTH="10%" ALIGN="LEFT">INS
<TH WIDTH="26%" ALIGN="LEFT">Parameter 1
<TH WIDTH="25%" ALIGN="LEFT">Parameter 2
<TH WIDTH="29%" ALIGN="LEFT">Parameter 3
<TR>
<TD COLSPAN="5"><HR>
<TR>
<TD>C0<SUB>16</SUB>
<TD>70<SUB>16</SUB>
<TD>00<SUB>16</SUB>=open
<TD>Channel ID
<TD>Empty or 0000<SUB>16</SUB>
<TR>
<TD>
<TD>
<TD>80<SUB>16</SUB>=close
<TD>00<SUB>16</SUB>-03<SUB>16</SUB>
<TD>
<TR>
<TD COLSPAN="5"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><TR>
<TH WIDTH="30%" ALIGN="LEFT">Data Field 1
<TH WIDTH="70%" ALIGN="LEFT">Data Field 2
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>Empty
<TD>Empty
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Response Application Protocol Data Unit
<TR>
<TH WIDTH="100%" ALIGN="LEFT">Response
<TR>
<TD><HR>
<TR>
<TD>Empty or logical channel number plus 2-byte status
<TR>
<TD><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Example of Use
<TR>
<TH WIDTH="30%" ALIGN="LEFT">APDU
<TH WIDTH="70%" ALIGN="LEFT">Interpretation
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD VALIGN="TOP">C0<SUB>16</SUB>70<SUB>16</SUB>00<SUB>16</SUB>01<SUB>16</SUB>
<TD>This command causes the card to assign logical channel 1; in subsequent commands such as <TT>Select File</TT>, channel 1 can be indicated in the CLA value
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Error Codes
<TR>
<TH WIDTH="25%" ALIGN="LEFT">Status
<TH WIDTH="75%" ALIGN="LEFT">Meaning
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>6200<SUB>16</SUB>
<TD>Insufficient data
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<H4 ALIGN="LEFT"><A NAME="Heading22"></A><FONT COLOR="#000077">Get Response</FONT></H4>
<P><FONT SIZE="+1"><B>Description</B></FONT></P>
<P>This command is used to transmit from the card to the reader APDUs or parts of APDUs which otherwise would not be transmitted by the protocols in use.
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Command Application Protocol Data Unit
<TR>
<TH WIDTH="10%" ALIGN="LEFT">CLA
<TH WIDTH="10%" ALIGN="LEFT">INS
<TH WIDTH="25%" ALIGN="LEFT">Parameter 1
<TH WIDTH="25%" ALIGN="LEFT">Parameter 2
<TH WIDTH="30%" ALIGN="LEFT">Parameter 3
<TR>
<TD COLSPAN="5"><HR>
<TR>
<TD VALIGN="TOP">C0<SUB>16</SUB>
<TD VALIGN="TOP">C0<SUB>16</SUB>
<TD VALIGN="TOP">00<SUB>16</SUB>
<TD VALIGN="TOP">00<SUB>16</SUB>
<TD>The number of bytes of data to retrieve (Le)
<TR>
<TD COLSPAN="5"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><TR>
<TH WIDTH="30%" ALIGN="LEFT">Data Field 1
<TH WIDTH="70%" ALIGN="LEFT">Data Field 2
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>Empty
<TD>Empty
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Response Application Protocol Data Unit
<TR>
<TH WIDTH="100%" ALIGN="LEFT">Response
<TR>
<TD><HR>
<TR>
<TD>Le bytes of APDU response plus 2-byte response
<TR>
<TD><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Example of Use
<TR>
<TH WIDTH="40%" ALIGN="LEFT">APDU
<TH WIDTH="60%" ALIGN="LEFT">Interpretation
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD VALIGN="TOP">C0<SUB>16</SUB> C0<SUB>16</SUB> 00<SUB>16</SUB> 00<SUB>16</SUB> 14<SUB>16</SUB>
<TD>Retrieve the 20 bytes of information created when a <TT>Select File</TT> command is issued for a directory
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Error Codes
<TR>
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="30%" ALIGN="LEFT">Meaning
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="30%" ALIGN="LEFT">Meaning
<TR>
<TD COLSPAN="4"><HR>
<TR>
<TD>61XX<SUB>16</SUB>
<TD>Processing okay
<TD>6281<SUB>16</SUB>
<TD>Return data error
<TR>
<TD>6700<SUB>16</SUB>
<TD>Incorrect Le field
<TD>6A86<SUB>16</SUB>
<TD>P1 and P2 error
<TR>
<TD>6CXX<SUB>16</SUB>
<TD>Wrong Le length
<TD>
<TD>
<TR>
<TD COLSPAN="4"><HR>
</TABLE>
<H4 ALIGN="LEFT"><A NAME="Heading23"></A><FONT COLOR="#000077">Envelope</FONT></H4>
<P><FONT SIZE="+1"><B>Description</B></FONT></P>
<P>This command is used to transmit from the reader to the card APDUs or parts of APDUs that otherwise would not be transmitted by the protocols in use. Specifically, this allows a complete APDU to be encapsulated in the body of this APDU. This is necessary if you want to make use of secure messaging when using the T=0 link-level protocol.
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Command Application Protocol Data Unit
<TR>
<TH WIDTH="10%" ALIGN="LEFT">CLA
<TH WIDTH="10%" ALIGN="LEFT">INS
<TH WIDTH="26%" ALIGN="LEFT">Parameter 1
<TH WIDTH="25%" ALIGN="LEFT">Parameter 2
<TH WIDTH="29%" ALIGN="LEFT">Parameter 3
<TR>
<TD COLSPAN="5"><HR>
<TR>
<TD>C0<SUB>16</SUB>
<TD>C2<SUB>16</SUB>
<TD>00<SUB>16</SUB>
<TD>00<SUB>16</SUB>
<TD>Length of data field (Lc)
<TR>
<TD COLSPAN="5"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><TR>
<TH WIDTH="35%" ALIGN="LEFT">Data Field 1
<TH WIDTH="65%" ALIGN="LEFT">Data Field 2
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>Encapsulated APDU
<TD>Empty or length (Le)
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Response Application Protocol Data Unit
<TR>
<TH WIDTH="100%" ALIGN="LEFT">Response
<TR>
<TD><HR>
<TR>
<TD>Empty or part of APDU plus 2-byte status
<TR>
<TD><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Example of Use
<TR>
<TH WIDTH="45%" ALIGN="LEFT">APDU
<TH WIDTH="55%" ALIGN="LEFT">Interpretation
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>C0<SUB>16</SUB> C2<SUB>16</SUB> 00<SUB>16</SUB> 00<SUB>16</SUB> 07<SUB>16</SUB> C0<SUB>16</SUB> A4<SUB>16</SUB> 00<SUB>16</SUB> 00<SUB>16</SUB> 02<SUB>16</SUB> 3F<SUB>16</SUB> 00<SUB>16</SUB>
<TD VALIGN="TOP">This command encapsulates a <TT>Select File</TT> APDU inside it
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P>
</P>
<TABLE WIDTH="100%"><CAPTION ALIGN=LEFT>Error Codes
<TR>
<TH WIDTH="20%" ALIGN="LEFT">Status
<TH WIDTH="80%" ALIGN="LEFT">Meaning
<TR>
<TD COLSPAN="2"><HR>
<TR>
<TD>6700<SUB>16</SUB>
<TD>Incorrect Lc field
<TR>
<TD COLSPAN="2"><HR>
</TABLE>
<P><BR></P>
<CENTER>
<TABLE BORDER>
<TR>
<TD><A HREF="ewtoc.html">Table of Contents</A></TD>
</TR>
</TABLE>
</CENTER>
</BODY></HTML>
?? 快捷鍵說明
復制代碼
Ctrl + C
搜索代碼
Ctrl + F
全屏模式
F11
切換主題
Ctrl + Shift + D
顯示快捷鍵
?
增大字號
Ctrl + =
減小字號
Ctrl + -