KS X 6922-2-2008 Integrated circuit card specification for payment systems－Part 2：Security and key management《支付系统的IC卡规格 第2部分 安全和密码管理》.pdf

1、 KSKSKSKSKSKSKSK KSKSKS KSKSK KSKS KSK KS KS X 6922 2 IC 2： KS X 6922 2:2008 2008 12 19 http:/www.kats.go.krKS X 6922 2:2008 : e- ( ) ( ) () () ( ) : (http:/www.standard.go.kr) ： ：2003 12 30 ：2008 12 19 2008-0935 ： e- ： ( 02-509-7262) (http:/www.kats.go.kr). 10 5 , . KS X 6922 2:2008 i ii .1 1 1 2 1

2、 3 .2 4 .7 5 (Static Data Authentication： SDA).9 6 (Dynamic Data Authentication： DDA)14 7 .24 8 .27 9 .27 10 29 11 .39 A( ) .44 B( ) .47 C( ) 49 KS X 6922 2:2008 .50 KS X 6922 2:2008 ii . KS X 6922 2 . A( ) B( ) C( ) KS X 6922 “ IC ” . 1： IC (KS X 6922 1) 2： (KS X 6922 2) 3： (KS X 6922 3) 4： , (KS X

3、 6922 4) KS X 6922 2:2008 IC 2： Integrated circuit card specification for payment systems Part 2： Security and key management 2002 EMV 2000 2, Integrated circuit card specification for payment systems Part 2： Security and key management . 1 IC (Integrated Circuit Card： ICC) 2 IC . IC , , . , . (Stat

4、ic Data Authentication： SDA) (Dynamic Data Authentication： DDA) PIN . 2 . . ( ) . KS X 6315 1, 1： DEA KS X ISO/IEC 7816 4_2001： 2002, ID IC 4： KS X ISO 9564 1, 1： ATM POS PINKS X 6922 2:2008 2 KS X ISO 9564 2, 2： PIN KS X ISO/IEC 10116, n KS X ISO/IEC 10118 3_2001： 2006, 3： ISO/IEC 9796 2： 1997, Inf

5、ormation technology Security techniques Digital signature scheme giving message recovery Part 2： Mechanism using a hash function(KS X ISO/IEC 996 2 ) ISO 13491： 1997, Banking Secure cryptographic devices(retail)(KS X ISO 134912 ) EMV 4.0 Book 3, EMV Integrated Circuit Card Specification for Payment

6、Systems Book 3： Application Specification, Version 4.0 EMV 4.0 Book 4, EMV Integrated Circuit Card Specification for Payment Systems Book 4： Terminal Specification, Version 4.0 FIPS Pub 180 1： 1995, Secure Hash Standard 3 . 3.1 (accelerated revocation) . 3.2 (application) 3.3 (asymmetric cryptograph

7、ic technique) , (public) ( .) (private) ( .) . ( ) . 3.4 (authentication) ( ) 3.5 (byte) 8 3.6 (card) 3.7 (certificate) ( ) , . KS X 6922 2:2008 3 3.8 (certificate revocation) ( ) 3.9 (certification authority) 3 3.10 (ciphertext) 3.11 (command) IC IC 3.12 (compromise) . 3.13 (concatenation) (element

8、) 2 . IC , . . . 3.14 (cryptogram) 3.15 (cryptographic algorithm) 3.16 (cryptoperiod) 3.17 (data integrity) 3.18 (decipherment) KS X 6922 2:2008 4 3.19 (deactivation sequence) 2.1.5 . 3.20 (digital signature) . , 3 , . 3.21 (encipherment) 3.22 (financial transaction) (acquirer) 3.23 (hash function)

9、 . (output) . 2 . , . 2 . 3.24 (hash result) 3.25 (integrated circuit) 3.26 IC (integrated circuit card) 3.27 (interface device) IC . 3.28 (key) KS X 6922 2:2008 5 3.29 (key expiry date) . . . 3.30 (key introduction) 3.31 (key life cycle) , . 3.32 (key replacement) . 3.33 (key revocation) . . 3.34

10、key revocation date) , . . 3.35 (key withdrawal) , . 3.36 (logical compromise) , , . 3.37 (message) (string) . 3.38 (message authentication code) . KS X 6922 2:2008 6 3.39 (padding) . 3.40 (payment system) Europay International S.A., MasterCard International Incorporated Visa International Service

11、Association . 3.41 PIN (PIN pad) (PIN) . 3.42 (plaintext) 3.43 (physical compromise) 3.44 (planned revocation) . 3.45 (potential compromise) / 3.46 (private key) ( ) . . 3.47 (public key) ( ) . . 3.48 (public key certificate) ( ) . 3.49 (redundancy) KS X 6922 2:2008 7 3.50 (response) IC IC 3.51 (sec

12、ret key) , ( ) . 3.52 (symmetric cryptographic technique) . . 3.53 (terminal) IC . . 4 . AAC AC AFL AID APDU ARPC ARQC ATC ATM b CBC CDOL CLA cn DDA DDOL DES ECB FIPS hex. IC ICC LDD MAC MMYY n (Application Authentication Cryptogram) (Application Cryptogram) (Application File Locator) (Application I

13、dentifier) (Application Protocol Data Unit) (Authorization Response Cryptogram) (Authorization Request Cryptogram) (Application Transaction Counter) (Automatic Teller Machine) 2 (Binary) CBC (Cipher Block Chaining) (Card Risk Management Data Object List) (Class Byte of the Command Message) (Compress

14、ed Numeric) (Dynamic Data Authentication) (Dynamic Data Authentication Data Object List) (Data Encryption Standard) ECB (Electronic Code Book) (Federal Information Processing Standard) 16 , 16 (Hexadecimal) (Integrated Circuit) IC (Integrated Circuit Card) IC (Length of the ICC Dynamic Data) (Messag

15、e Authentication Code) , (Month, Year) (Numeric) KS X 6922 2:2008 8 NCA NI NIC NPE P1 P2 (Length of the Certification Authority Public Key Modulus) (Length of the Issuer Public Key Modulus) IC (Length of the ICC Public Key Modulus) IC (Length of the ICC PIN Public Key Modulus) 1(Parameter 1) 2(Param

16、eter 2) PAN PCA PI PIC PIN RID (Primary Account Number) (Certification Authority Public Key) (Issuer Public Key) IC (ICC Public Key) (Personal Identification Number) ID (Registered Application provider Identification) RSA SCA SDA SI SIC SHA TC var. , , (Rivest, Shamir, Adleman Algorithm) (Certificat

17、ion Authority Private Key) (Static Data Authentication) (Issuer Private Key) IC (ICC Private Key) (Secure Hash Algorithm) (Transaction Certificate) (variable) . 0 9 A F 16 A： B A B . A B A B . A B mod n A B n , d . (A B) dn A mod n n A reduction, r( 0r n) d . A dn r Y： ALG(K)X K A.1 64 X64 . X ALG 1

18、K)Y K A.1 64 Y64 . Y： Sign(Sk)X Sk A.2 X . X Recover(Pk)Y Pk A.2 X . C： (AB) n A m B , C 2mA B . H： HashMSG MSG 80 KS X 6922 2:2008 9 5 (Static Data Authentication： SDA) IC . IC AFL (Static Data Authentication Tag Lists) . IC . (CA) , . . (AID) . 1 . PI PCA PI . PI . 1 IC . (index)： IC 2 1 . ： ( )

19、SI ( )PI ( ) SCA ( )PCASCA PIIC TerminalIC Card IC Communication between IC Card and Terminal . ( ) KS X 6922 2:2008 10 . 5.3 . ： . 5.4 IC . (remainder)： . IC . 5.1 (exponent)： . 5.1 , ID(RID) 6 , ( , . 11.2.2 ). IC RID , . A.2.1 B.2 . 5.1 , 5.2 5.4 3 , . 5.1 (keys and certificates) IC , . IC . 8 , 1 . . SCA A.2.1 1 . NCA , NCA248 . 3 216 1 . SI A.2.1 2 . NI , NINCA248 . NI (NCA 36) , 2 . NCA 36 ( ) , KS X 6922 2:2008 11 NI (NCA 36) ( ) . 3 216 1 . 3 , IC . AID RID , READ RECORD . . 1 ( , ) 1 16 02 b ID 4 (PAN)