Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email email@example.com
Re: [Muscle] MCardApplet
From: Karsten Ohme (widerstandt-online.de)
Date: Fri Dec 23 2005 - 09:37:13 CST
kammi cazze wrote:
> ok, my replies on your mail about the MCardApplet and globalplatform
> didn't make it to the mailing list for one reason or another :(
> Your information was very usefull. It is my last day of work for this
> year, so i will continue testing next year ;)
> You told somewhere in your mail that i got 10 try's before it is locked.
> Can it be unlocked and what commands count as an error?
No. The card is locked. Is is irreversible. You cannot install or remove
something on it anymore. Unsuccessful means, that the mutual
authentication between host and card has failed. This is done with 1 to
3 triple DES keys depending on the protocol. Everytime the counter is
decremented. For new cards the key(s) is the VISA default key: 40 41 42
...4F. But this key can be changed so that this card can only be managed
by an authorized authority. This is the idea behind the specification.
Only allowed authorities with the keys should be able to load and remove
applets on the card.
> I did use the helloInstall.txt with gpshell and got communication with
> the card, giving me a SW 6A 82 back, so i guess my command to switch to
> the security domain is faulty. But at least i know i have succefull
> communication ;)
No, this is not successful. Then you should try the GP211 version of the
file. You can also experiment with the list.txt and listGP211.txt to
find out the correct security protocol. The security protocol for OP and
GP cards is different.
> I never worked with ant, but i saw the eclipse ide is working with it by
You do not have to bother with it, just copy ant in the directory like
mentioned in the README.
> default, so i guess it will be quit easy to manage it. If i manage to
> make an ant file for the gemXpresso pro R3 card, i will post it here.
You should not have to build an own ant build file. It should be the
similar like the included ant files for the different cards (CFlex, GD,
JCOP). The custom file should work with no change, you only have to
adjust the properties file, the setenv ... everything mentioned in the
README. But if you have done this you can rename it and post it, of course.
> More to come.
> Best wishes to all,
> Muscle mailing list
Muscle mailing list