JCOP的安全域的AID和

JCOP的安全域的AID和

关注
发信
关注(28)粉丝(399)

JCOP的安全域的AID和“未融合卡"的含义或“未预先个性化"

本文介绍了JCOP的安全域的AID和“未融合卡"的含义或“未预先个性化"的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!

问题描述

我从此处下载了名为 JCOP Manger 的软件,处理我的 CJ3A080 jcop Java卡.

I download a software named JCOP Manger from here to deal with my CJ3A080 jcop java card.

它可以立即识别我的卡.但它不允许我安装或列出小程序!为什么?

It recognize my card currectly. but it don't let my to install or list applets! why?

此软件的输出:

我尝试使用 CardTool (我用于将APDU发送到卡的软件)选择ISD,但是正如您在下面看到的那样,在卡上找不到常见的AID:

I try to select the ISD using CardTool (The software that I use to send APDU to card), but as you see below none of common AIDs not found on the card :

请注意, CardTool 的输出格式如下:

Note that, CardTool output format is as below : 

< CLA | INS | P1 | P2 | Lc | Le
< Command Data Field (If Possible)
> Response Data Field (If Possible)
> SW1 SW2

所以,这是 CardTool 的输出:

Answer-to-Reset
3B  F8  13  00  00  81  31  FE  45  4A  43  4F  50  76  32  34  31  B7

< 00 A4 04 00 08 00
< A0 00 00 00 03 00 00 00
> 6A82


< 00 A4 04 00 07 00
< A0 00 00 00 03 00 00
> 6A82

< 00 A4 04 00 08 00
< A0 00 00 00 18 43 4D 00
> 6A82

< 00 A4 04 00 08 00
< A0 00 00 01 51 00 00 00
> 6A82

< 00 A4 04 00 07 00
< A0 00 00 00 03 53 50
> 6A82

我也尝试使用 gp.exe 工具,这是它的输出:

I also try gp.exe tool, and this is its output :

E:\GP>gp -list
Exception in thread "main" java.lang.IllegalStateException: No selected ISD!
        at openkms.gp.GlobalPlatform.openSecureChannel(GlobalPlatform.java:327)
        at openkms.gp.GPTool.main(GPTool.java:280)

E:\GP>

问题是:

  • 1-这是什么意思? "未融合(未预先个性化)"
  • 2-我如何个性化它?
  • 3-如果卡片融合或不融合,我们如何找到它?
  • 4-安全域的AID是什么?
  • 1- What does this mean? "Not Fused (Not Pre-Personalized)"
  • 2- How I can personalize it?
  • 3- How we can find that if a card fused or not?
  • 4- What is the AID of Security Domain?

我在一个单一的主题中问了所有这四个问题,因为它们彼此之间密切相关

推荐答案

在使用智能卡之前,需要先对其进行预个性化"设置:需要编写一些基本设置,初始化ISD密钥等.如果卡未预先个性化,因此不会响应普通的APDU.个性化前的过程是特定于供应商的,并且涉及到信任链,因此您需要向卡供应商询问工具,密钥和文档,以便您能够做到.

Before a smart card can be used, it needs to be "pre-personalized": some basic settings need to be written, ISD keys initialized, etc. If a card is not pre-personalized, it will not respond to normal APDUs.The pre-personalization process is vendor-specific and there is a chain of trust involved, so you will need to ask your card supplier for the tools, keys and documentation so you can do it.

此博客文章 http://colinoflynn.com/tiki-view_blog_post.php?postId = 34 解释了如何通过将SELECT APDU发送到特殊的AID来知道JCOP卡是否已被预先个性化.您的屏幕快照使用的JCOP Manager工具发送的命令可能与该命令相同.

This blog post http://colinoflynn.com/tiki-view_blog_post.php?postId=34 explains how to know if a JCOP card has been pre-personalized, by sending a SELECT APDU to a special AID. It is probably the same command the JCOP Manager tool you used for your screenshot is sending.

这篇关于JCOP的安全域的AID和“未融合卡"的含义或“未预先个性化"的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持!

08-06 01:49
Powered by LMLPHP ©2024 JCOP的安全域的AID和 0.055249