1、BRITISH STANDARD BS EN 726-3:1996 Identification card systems Telecommunications integrated circuit(s) cards and terminals Part 3: Application independent card requirements The European Standard EN726-3:1994 has the status of a British StandardBSEN726-3:1996 This British Standard, having been prepar
2、ed under the directionof the Information Systems Technology Assembly, was published under the authorityof the Standards Boardand comes into effect on 15January1996 BSI 09-1999 The following BSI references relate to the work on this standard: Committee reference IST/17 Draft for comment 92/62271 DC I
3、SBN 0 580 24273 0 Committees responsible for this British Standard The preparation of this British Standard was entrusted to Technical Committee IST/17, Identification cards and related devices, upon which the following bodies were represented: Ailec Associates APACS (Barclaycard) APACS (Barclays Ba
4、nk) APACS (Girobank) APACS (Lloyds Bank) APACS (Midland Bank) APACS (National Westminster Bank) Association for Payment Clearing Services (APACS) BT Laboratories Cellnet Consumer Policy Committee of BSI Electricity Association GEC Card Technology HMSO Rochford Thompson Equipment Shell UK Thorn Trans
5、it Systems International Vodafone Ltd. Westinghouse Cubic Ltd. News Datacom Ltd. Amendments issued since publication Amd. No. Date CommentsBSEN726-3:1996 BSI 09-1999 i Contents Page Committees responsible Inside front cover National foreword ii Foreword 2 Text of EN 726-3 5BSEN726-3:1996 ii BSI 09-1
6、999 National foreword This Part of BS EN726 has been prepared by Technical Committee IST/17 and is the English language version of EN726-3:1994 Identification card systems Telecommunications integrated circuit(s) cards and terminals Part3:Application independent card requirements published by the Eu
7、ropean Committee for Standardization (CEN). This British Standard is the English language version of EN726-3:1994 and implements it as the UK national standard. This British Standard is published under the direction of the Information Systems Technology Assembly whose Technical Committee IST/17 has
8、the responsibility to: aid enquirers to understand the text; present to the responsible European committee any enquiries on interpretation, or proposals for change, and keep UK interests informed; monitor related international and European developments and promulgate them in the UK. NOTEInternationa
9、l and European Standards, as well as overseas standards, are available from Customer Services, BSI, 389 Chiswick High Road, London W4 4AL. Cross references International Standard British Standard EN 27810:1989 BS EN 27810:1991 Guide to design, construction and use of identification cards BS EN 27811
10、 Identification cards. Recording technique a EN 27811-1:1989 Part 1:1989 Embossing EN 27811-2:1989 Part 2:1989 Magnetic stripe EN 27812:1989 BS EN 27812:1989 Procedure for allocating international issuer identification numbers (IINs) for use on identification cards BS EN 27816 Guide to design and us
11、e of identification cards having integrated circuits with contacts EN 27816-1:1989 Part 1:1991 Physical characteristics EN 27816-2:1989 Part 2:1991 Contact locations and minimum size EN 27816-3:1989 Part 3:1992 Electronic signals and transmission protocols ISO 639:1988 BS 3862:1989 Specification for
12、 the representation of names of languages ISO 3166:1993 BS 23166:1994 Specification for codes for the representation of names of countries BS 7203 8-bit single-byte coded graphic character sets. ISO 8859-1:1987 Part 1:1989 Latin alphabet No. 1 BS EN 29564 Banking. Personal identification number mana
13、gement and security a EN 29564-1:1991 (ISO 9564-1:1991) Part 1:1994 PIN protection principles and techniques EN 29564-2:1991 (ISO 9564-2:1991) Part 2:1994 Approved algorithm(s) for PIN encipherment ISO 9807:1991 BS ISO 9807:1991 Banking and related financial services. Requirements for message authen
14、tication (retail) a Other parts of these standards are in preparation.BSEN726-3:1996 BSI 09-1999 iii A British Standard does not purport to include all the necessary provisions of a contract. Users of British Standards are responsible for their correct application. Compliance with a British Standard
15、 does not of itself confer immunity from legal obligations. International Standard British Standard BS EN 29992 Financial transaction cards. Messages between the integrated circuit card and the card accepting device EN 29992-1:1993 (ISO 9992-1:1991) Part 1:1993 Concepts and structures BS EN 30202 Fi
16、nancial transaction cards. Security architecture of financial transaction systems using integrated circuit cards EN 30202-1:1993 (ISO 10202-1:1991) Part 1:1993 Card life cycle a a Other parts of these standards are in preparation. Summary of pages This document comprises a front cover, an inside fro
17、nt cover, pages i to iv, theENtitle page, pages 2 to 80 and a back cover. This standard has been updated (see copyright date) and may have had amendments incorporated. This will be indicated in the amendment table on the inside front cover.iv blankEUROPEAN STANDARD NORME EUROPENNE EUROPISCHE NORM EN
18、 726-3 December 1994 ICS 33.120.00; 35.240.60 Descriptors: Telecommunications, IC cards, telecommunication terminals, specifications, characteristics English version Identification card systems Telecommunications integrated circuit(s) cards and terminals Part3:Application independent card requiremen
19、ts Systmes de cartes didentification Cartes circuit intgr et terminaux pour les tlcommunications Partie 3: Spcifications de la carte indpendantes des applications Identifikationskartensysteme Anforderungen an Chipkarten und Endgerte fr Telekommunikationszwecke Teil 3: Applikationsunabhngige Anforder
20、ungen an die Karte This European Standard was approved by CEN on 1994-12-05. CEN members are bound to comply with the CEN/CENELEC Internal Regulations which stipulate the conditions for giving this European Standard the status of a national standard without any alteration. Up-to-date lists and bibli
21、ographical references concerning such national standards may be obtained on application to the Central Secretariat or to any CEN member. This European Standard exists in three official versions (English, French, German). A version in any other language made by translation under the responsibility of
22、 a CEN member into its own language and notified to the Central Secretariat has the same status as the official versions. CEN members are the national standards bodies of Austria, Belgium, Denmark, Finland, France, Germany, Greece, Iceland, Ireland, Italy, Luxembourg, Netherlands, Norway, Portugal,
23、Spain, Sweden, Switzerland and United Kingdom. CEN European Committee for Standardization Comit Europen de Normalisation Europisches Komitee fr Normung Central Secretariat: rue de Stassart 36, B-1050 Brussels 1994 Copyright reserved to CEN members Ref. No. EN 726-3:1994 EEN726-3:1994 2 BSI 09-1999 F
24、oreword This European Standard was prepared by ETSISTC TE9 and adopted by CEN/TC224, Machine readable cards, related device interfaces and operations, the secretariat of which is held by AFNOR. This document was submitted to the formal vote and the result of the formal vote was positive. This Europe
25、an Standard shall be given the status of a national standard, either by publication of an identical text or by endorsement, at the latest by June1995, and conflicting national standards shall be withdrawn at the latest by June1995. According to CEN/CENELEC Internal Regulations, the following countri
26、es are bound to implement this European Standard: Austria, Belgium, Denmark, Finland, France, Germany, Greece, Iceland, Ireland, Italy, Luxembourg, Netherlands, Norway, Portugal, Spain, Sweden, Switzerland and United Kingdom. This European Standard consists of the following parts, under the general
27、title Identification card systems Telecommunications integrated circuit(s) cards and terminals: Part 1: Systems overview; Part 2: Security framework; Part 3: Application independent card requirements; Part 4: Application independent card related terminal requirements; Part 5: Payment methods; Part 6
28、: Telecommunication features; Part 7: Security module. Contents Page Foreword 2 1 Scope 5 2 Normative references 5 3 Definitions, abbreviations and symbols 6 4 Physical characteristics of the card 9 5 Electronic signals and transmissionprotocols 10 6 Logical model for IC cards 11 7 Security faciliti
29、es for the cards 15 8 Description of the functions 20 9 Description of the commands 35 10 Contents of special EFs 68 11 Interoperability of IC cards 76 12 Security aspects for card manufacturers, application providers and card issuers 76 Annex A (informative) Example of creating anapplication in the
30、 card 78 Annex B (informative) Examples of certificationmechanisms 78 Annex C (informative) Administrative actions 79 Figure 1 Data structure model for an IC card 11 Figure 2 Cyclic EF organization 13 Figure 3 Example of the general structure withaccess control 14 Figure 4 Possible access conditions
31、 15 Figure 5 Notation for a string of bytes 21 Figure B.1 Certification of external data 78 Figure B.2 Certification of data written inthecard (in EF1) 79 Table 1 Functions applicable on a DF 16 Table 2 Functions applicable on a keyfile 16 Table 3 Functions applicable on an EF 17 Table 4 Possible fu
32、nctions on files 17 Table 5 EF types 18 Table 6 Algorithm IDs 20 Table 7 Coding of the commands 36 Table 8 Coding of the SELECT command 37 Table 9 Coding of the selection control P1 37EN726-3:1994 BSI 09-1999 3 Page Table 10 Type of the selection P2 38 Table 11 Coding of the data field of SELECT com
33、mand (in case L cis not equal to “00”) 38 Table 12 Coding of the data field of SELECT command in case of absolute selection 38 Table 13 Coding of the SELECT response incaseof an MF or DF 38 Table 14 Clockstop 39 Table 15 Coding of the SELECT response incaseof an EF 40 Table 16 Coding of the SELECT r
34、esponse incaseof an EF CHV 42 Table 17 Coding of the SELECT response incaseof a keyfile (EF KEY_MANor EF KEY_OP ) 43 Table 18 Coding of the STATUS command 44 Table 19 Coding of the STATUS response 44 Table 20 Coding of the CREATE FILEcommand 46 Table 21 Coding of the data field of the CREATEFILE com
35、mand (in case of creationofaDF) 46 Table 22 Coding of the data field of theCREATEFILE command (in case ofthecreationof an EF) 47 Table 23 Coding of the DELETE FILEcommand 47 Table 24 Coding of the data field of theDELETEFILE command 48 Table 25 Coding of the EXTEND command 48 Table 26 Coding of the
36、data field of theEXTENDcommand 48 Table 27 Coding of the EXECUTE command 48 Table 28 Coding of the UPDATE BINARYcommand 48 Table 29 Coding of the UPDATE RECORDcommand 49 Table 30 Coding of the CREATE RECORDcommand 49 Table 31 Coding of the data field of the CREATERECORD command 49 Table 32 Coding of
37、 the READ BINARYcommand 49 Table 33 Coding of the READ BINARYresponse 50 Page Table 34 Coding of the READ BINARYSTAMPED command 50 Table 35 Coding of the READ BINARYSTAMPED response 50 Table 36 Coding of the READ RECORDcommand 50 Table 37 Coding of the READ RECORDresponse 51 Table 38 Coding of the R
38、EAD RECORDSTAMPED command 51 Table 39 Coding of the READ RECORDSTAMPED response 51 Table 40 Coding of the SEEK command 51 Table 41 Coding of the data field of the SEEKcommand 52 Table 42 Coding of the SEEK response in caseoftype = 2 52 Table 43 Coding of the VERIFY CHV command 52 Table 44 Coding of
39、the data field of the VERIFYCHV command 52 Table 45 Coding of the CHANGE CHVcommand 52 Table 46 Coding of the data field of theCHANGECHV command 53 Table 47 Coding of the DISABLE CHVcommand 53 Table 48 Coding of the data field of theDISABLECHV command 53 Table 49 Coding of the ENABLE CHVcommand 53 T
40、able 50 Coding of the data field of the ENABLECHV command 53 Table 51 Coding of the UNBLOCK CHV command 53 Table 52 Coding of the data field of the UNBLOCK CHV command 54 Table 53 Coding of the INVALIDATE command 54 Table 54 Coding of the data field of theINVALIDATE command 54 Table 55 Coding of the
41、 REHABILITATEcommand 54 Table 56 Coding of the data field of theREHABILITATE command 54 Table 57 Coding of the INTERNAL AUTHENTICATION command 54EN726-3:1994 4 BSI 09-1999 Page Table 58 Coding of the data field of the INTERNAL AUTHENTICATION command 55 Table 59 Coding of the INTERNAL AUTHENTICATION
42、response 55 Table 60 Coding of the ASK RANDOM command 55 Table 61 Coding of the ASK RANDOM response 55 Table 62 Coding of the GIVE RANDOM command 55 Table 63 Coding of the data field of the GIVERANDOM command 55 Table 64 Coding of the EXTERNAL AUTHENTICATION command 56 Table 65 Coding of the data fi
43、eld of the EXTERNAL AUTHENTICATION command 56 Table 66 Coding of the CLOSE APPLICATIONcommand 56 Table 67 Coding of the WRITE BINARY command 56 Table 68 Coding of the data field of the WRITE BINARY command 56 Table 69 Coding of the WRITE RECORD command 57 Table 70 Coding of the data field of the WRI
44、TE RECORD command 57 Table 71 Coding of the LOCK command 57 Table 72 Group of functions with same ACrequirements 58 Table 73 Coding of the data field of the LOCKcommand 58 Table 74 Coding of the DECREASE command 59 Table 75 Coding of the data field of theDECREASE command 59 Table 76 Coding of the DE
45、CREASE response 59 Table 77 Coding of the DECREASE STAMPEDcommand 59 Table 78 Coding of the data field of the DECREASE STAMPED command 60 Table 79 Coding of the DECREASE STAMPEDresponse 60 Table 80 Coding of the INCREASE command 60 Table 81 Coding of the data field of theINCREASE command 60 Table 82
46、 Coding of the INCREASE response 60 Page Table 83 Coding of the INCREASE STAMPEDcommand 60 Table 84 Coding of the data field of the INCREASE STAMPED command 61 Table 85 Coding of the INCREASE STAMPEDresponse 61 Table 86 Coding of the LOAD KEY FILEcommand 61 Table 87 Coding of the data field of the L
47、OADKEY FILE command 61 Table 88 Coding of the GET RESPONSEcommand 62 Table 89 Coding of the ENVELOPE PUTcommand 62 Table 90 62 Table 91 Access condition coding 63 Table 92 Keynumber coding 63 Table 93 Access condition coding 63 Table 94 Keynumber coding 63 Table 95 Access condition coding 64 Table 9
48、6 Keynumber coding 64 Table 97 Status responses 66 Table 98 Status responses 67 Table 99 EF CHV 68 Table 100 EFDIR at MF-level 69 Table 101 EF IC 70 Table 102 EF ICC 70 Table 103 Clockstop 71 Table 104 Card profiles 72 Table 105 EF ID 73 Table 106 EF KEY_MAN 74 Table 107 EF KEY_OP 75 Table 107 EF LANG 75 Table 108 EF NAME 76EN726-3:1994 BSI 09-1999 5 1 Scope This part of EN726 specifies the application-independent characteristics of multi-application IC-cards and plug-in modules for telecommunication applications in order to ensure interoperability for telecommunication cards with the v
