|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: [Muscle] CardEdge ACLs
From: Karsten Ohme (widerstand
t-online.de)
Date: Mon Mar 28 2005 - 21:54:09 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Karsten Ohme wrote:
> In the CardEdge specification is written:
>
> MUSCLE Cryptographic Card Edge Definition
> cucinottasssup.it corcoranlinuxnet.com
> is associated with an ACL of three 2-bytes words, where each word
> corresponds
> to reading, writing and using permissions, respectively:
>
> But the CardEdge Applet does only use one byte for each permission. The
> specufication should be changed according to this.
I mean the method getKey():
Why is e.g. create_key_ACL only defined as byte? If i understand teh
check, the method should throw the exception SW_UNAUTHORIZED only if it
is forbidden to generate keys for everybody (0xFFFF) or nobody is logged
in and the ACL is not that everybody is allowed to create a key. But why
0xFF and 0x00 instead of Ox0000 and 0xFFFF.
/* Check that Identity n.0 is logged */
if ((create_key_ACL == (byte) 0xFF) ||
(((logged_ids & create_key_ACL) == (short) 0x0000) &&
(create_key_ACL != (byte) 0x00)))
ISOException.throwIt(SW_UNAUTHORIZED);
> _______________________________________________
> Muscle mailing list
> Musclelists.musclecard.com
> http://lists.drizzle.com/mailman/listinfo/muscle
_______________________________________________
Muscle mailing list
Musclelists.musclecard.com
http://lists.drizzle.com/mailman/listinfo/muscle
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]