KS X ISO 13492-2011 Financial services－Key management related data element－Application and usage of ISO 8583 data elements 53 and 96《银行业务 相关数据元素的键管理(零售)》.pdf

1、 KSKSKSKSKSKSKSK KSKSKS KSKSK KSKS KSK KS KS X ISO 13492 KS X ISO 8583 53 96 KS X ISO 13492:2011 2011 12 29 http:/www.kats.go.krKS X ISO 13492:2011 : e- ( ) ( ) () ( ) : (http:/www.standard.go.kr) ： ：2001 12 31 ：2011 12 29 2011-0663 ： e- ：(ISO/TC68/SC2) ( 02-509-7262) (http:/www.kats.go.kr). 10 5 ,

2、. KS X ISO 13492:2011 i ii 1 1 2 1 3 .2 4 3 4.1 3 5 .3 5.1 .3 5.2 .3 5.3 - .4 6 ( 53).4 6.1 .4 6.2 - .7 7 ( 96).8 9 KS X ISO 13492:2011 10 KS X ISO 13492:2011 ii 2007 2 ISO 13492, Financial services Key management related data element Application and usage of ISO 8583 data elements 53 and 96 . KS X

3、ISO 13492:2011 KS X ISO 8583 53 96 Financial services Key management related data elementApplication and usage of ISO 8583 data elements 53 and 96 1 . KS X ISO 8583 ( 53) ( 96) . KS X ISO 8583 . . KS X ISO 11568 . KS X ISO 9564 KS X ISO 16609 . 2 . . ( ) . KS X 6311, KS X 6313, ( ) KS X 6318 1, ( )

4、1： KS X 6318 2, ( ) 2： KS X 6318 3, ( ) 3： KS X 6506 1, ID 1： KS X 6506 2, ID 2： KS X 6511, KS X ISO 9564 1, (PIN) 1： ATM POS PIN KS X ISO 9564 2, 2： PIN KS X ISO 9564 3, 3： ATM POS PIN KS X ISO 13492:2011 2 KS X ISO 16609, KS X ISO/IEC 10833( ), ANSI X3.92： 1987, Data Encryption Algorithm 3 . 3.1 (

5、asymmetric cipher) 3.2 (cipher) . . . . 3.3 (cryptographic algorithm) a) b) c) 3.4 (cryptographic key) (key) 3.5 (cryptographic service message) 3.6 (primary key) 3.7 (symmetric cipher) 3.8 (transaction message) KS X ISO 13492:2011 3 4 4.1 1 . 1 a byte . (A Z , a z ) . an byte . (A Z , a z ) (0 9) .

6、 ans byte . b bit . , “b 2” 19 16 “00 13” 2 bytes . n (16 0 9 ). , 16 0 . BCD(binary code dicimal) unsigned packed . 5 5.1 KS X ISO 8583 53( ) 96( ) . , , - , . . - (uniquely) . - , 96 - 2 (load). - - . . . . , (static) , ( , PIN ) 5.2 . KS X ISO 13492:2011 4 1( , ) 53 LL 96 LLL 1 53 96 . 2( , ) 53

7、LL 2 53 . 5.3 - - - . - . - . . (- ) . ( ) ( , ) - . 6 ( 53) 6.1 53 . . . . , A / , DUKPT(Derived Unique Key Per Transaction) B ANSI X9.24 1 . KS X ISO 13492:2011 5 2 53 A Bytes 1 b 1 4 - 5.3 - n 8 1 n 2 2 n 4 1 n 2 2 n 4 1 2 3 53 B Bytes 1 b 1 5 - 6.1.3 - n 10 5 ID 6.1.3.6 6.1.3.7 19-bit ID 21-bit

8、b 5 6.1.1 4 16 00 x00 A 01 x01 02 x02 / A 03 x03 04 x04 DEA, DUKPT B 05 x05 TDEA, DUKPT B 6.1.2 - , A 5 - A 16 00000000 x00000000 - nnnnnn01 xnnnnnn01 nnnnnna - 1 nnnnnn02 xnnnnnn02 nnnnnna - 2 nnnnnn99 xnnnnnn99 nnnnnna - 99 a nnnnnn 6.1.3.3 . KS X ISO 13492:2011 6 6.1.3 - , B 6.1.3.1 B - DUKPT . -

9、 1, B - . 1 B - 6.1.3.2 (Key Serial Number： KSN) DUKPT . 3-Byte IIN/IIC, 1-byte ID, 1-byte ID, 19-bits ID, 21-bits . KSN 1- B . 6.1.3.3 (Issuer Identification Number： IIN)/ (Institution Identification Code： IIC) 3 Byte / 6.2 6 . . 6.1.3.4 ID(Merchant Identity： MID) 1 Byte MID . , MID14 . MID , . 6.1

10、.3.5 ID(Group Identity： GID) 1 Byte GID . GID . GID . 6.1.3.6 ID(Device Identity： DID) 19 Bits 5 bytes . 19 bits ID 21 bits . DID GID . KS X ISO 13492:2011 7 6.1.3.7 (Transaction Counter： TC) 21 Bits 21 bits DUKPT . . 6.1.4 6 16 00 x00 01 x01 DEA 02 x02 RSA 03 x03 TDEA 04 x04 ECIEC KS X ISO/IEC 1803

11、3 2 05 99 KS X ISO/IEC 18033 6.1.5 7 16 0000 x0000 0008 x0001 56 bit ( , DEA ) 0016 x0016 112 bit ( , TDEA ) 0256 x0256 2 048-bit RSA 6.1.6 8 16 00 x00 01 x01 ECB (s)a03 x03 CBC (s)a04 x04 ANSI TR-31 a . 6.2 - - - ISO/IEC 7812 6 KS X ISO 8583 6 . ISO . KS X ISO 13492:2011 8 - . - . - . 7 ( 96) . . A

12、NSI X9 TR 31 - . Data Element 96 LLL 1, 2, n KS X ISO 13492:2011 9 1 KS X ISO 11568 1, ( ) 1： 2 KS X ISO 11568 2, ( ) 2： 3 KS X ISO 11568 4, ( ) 4： 4 ANSI X9 TR 31： 2005, Interoperable Secure Key Exchange Key Block Specification for Symmetric Algorithms 5 ANSI X9.24 1： 2004, Retail Financial Service

13、s Symmetric Key Management Part 1： Using Symmetric Techniques KS X ISO 13492:2011 10 KS X ISO 13492:2011 . 1 KS X ISO 8583( ) , . KS X ISO 8583 KS X ISO 11568 ( ) . . (bit) (data element) , 2 . KS X ISO 8583 53 96 153787 1 92 3(13) (02)26240114 (02)262401489 http:/ Korean Agency for Technology and Standards http:/www.kats.go.kr KS X ISO 13492:2011KSKSKS SKSKS KSKS SKS KS SKS KSKS SKSKS KSKSKS Financial services Key management related data element Application and usage of ISO 8583 data elements 53 and 96 ICS 35.240.40