manualshive.com logo in svg

IDTECH IDP-05-L1, User Manual, Page: 17 / 29

Share
Download
IDTECH IDP-05-L1 User Manual Download Page 17

Page | 17  

 

Generate ECDH shared secret: 

openssl> pkeyutl -derive -inkey TERMINAL_EPHEMERAL_PRIVATE.pem -
peerkey HANDSET_EPHEMERAL_PUBLIC.pem -out secret.bin 

 

6.1.3.

 

How To Extract Key Data To Load In The Lite-On Custom PiP 

Having generated the ECC Key Pair, the Lite-On Custom PiP requires the Private Key data to be loaded so 
that it can decrypt the pass information sent from the mobile device. To extract the required Key Data, 
use the following OpenSSL command line: 

>openssl.exe ec -noout -text -in private_key.pem 

 
This will output information to the screen. You should see the below as a minimum: 
 

Private-Key: (256 bit) 
priv: 
    00:f5:36:87:08:93:39:20:55:3b:7b:9f:fb:16:ae: 
    ed:9c:77:d5:bf:d9:66:2a:f1:49:a6:b9:f9:65:b7: 
    3f:0c:ca 

 
Copy the bytes of data and edit them to remove the colon characters. If, as in the example above, there 
are 33 bytes of data, remove the leading 

00

 to leave 32 bytes of key data. These are used in the 

C7-65

 

and 

C7-66

 commands detailed later in this document. 

 

 

Summary of Contents for IDP-05-L1

Page 1: ...ID TECH 10721 Walker Street Cypress CA 90630 4720 Tel 714 761 6368 Fax 714 761 8880 www idtechproducts com Lite On Custom PiP User Manual 80179403 001 Rev A 26 December 2022 ...

Page 2: ... other method or translated into another language or language form without the express written consent of ID TECH ID TECH is a registered trademark of International Technologies and Systems Corporation ViVOpay and Value through Innovation are trademarks of International Technologies and Systems Corporation Other trademarks are the property of the respective owner Warranty Disclaimer The services a...

Page 3: ...rence to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment into an outlet on a circuit different from that to which the receiver is connected Con...

Page 4: ... is installed in a portable host a separate SAR evaluation is required to confirm compliance with relevant FCC portable RF exposure rules 2 7 Antennas The following antennas have been certified for use with this module antennas of the same type with equal or lower gain may also be used with this module The antenna must be installed such that 20 cm can be maintained between the antenna and users An...

Page 5: ...itter and obtaining a separate FCC authorization Manual Information To the End User The OEM integrator has to be aware not to provide information to the end user regarding how to install or remove this RF module in the user s manual of the end product which integrates this module The end user manual shall include all required regulatory information warning as show in this manual OEM Host manufactu...

Page 6: ...e augmentée si l appareil peut être conservé aussi loin que possible du corps de l utilisateur ou que le dispositif est réglé sur la puissance de sortie la plus faible si une telle fonction est disponible This device is intended only for OEM integrators under the following conditions For module device use 1 The transmitter module may not be co located with any other transmitter or antenna As long ...

Page 7: ...e telle fonction est disponible Le produit final doit être étiqueté dans un endroit visible avec l inscription suivante Contient des IC 9847A PIPOEM Manual Information To the End User The OEM integrator has to be aware not to provide information to the end user regarding how to install or remove this RF module in the user s manual of the end product which integrates this module The end user manual...

Page 8: ...otes on Installation Locations 13 4 LITE ON CUSTOM PIP LED STATUS INDICATOR 14 5 RF INTERFERENCE 14 6 FIRMWARE COMMANDS 16 6 1 ECC Key Management 16 6 1 1 ECC Key Pair 16 6 1 2 How to Create an ECC Key Pair Using Open SSL 16 6 1 3 How To Extract Key Data To Load In The Lite On Custom PiP 17 6 2 Google Pay Smart Tap 2 1 Commands 18 6 2 1 Set Configurable Group 04 03 18 6 2 2 Set SmartTap LTPK C7 65...

Page 9: ...to check the Downloads link on the ID TECH Knowledge Base no registration required 1 2 Encryption LITE ON CUSTOM PIP supports ECC 1 3 Features LITE ON CUSTOM PIP supports the following Apple VAS Google Pay Smart Tap Mifare 1K 4K Plus DesFire Ultralight UART Suitable for retail entertainment and other locations that use loyalty value added services but do not require payment Consumer Intuitive Equi...

Page 10: ...Page 10 1 6 Model Number IDP 05 L1 ...

Page 11: ...ronment Physical Length 78 mm Width 53mm Depth 4 8mm Environmental Operating Temperature 40 C to 85 C 40 F to 185 F non condensing Storage Temperature 40 C to 85 C 40 F to 185 F non condensing Operating Humidity Maximum 95 non condensing Storage Humidity Maximum 95 non condensing Transit Humidity Maximum 95 non condensing Operating Environment Outdoor IK Rating N A IP Rating N A Electrical Reader ...

Page 12: ... metal 3 2 1 Mounting Screws The back of the LITE ON CUSTOM PIP has fourth holes for mounting screws 4X Փ2 80 Make sure that the depth of the screws used for mounting does not exceed 4mm 3 3 Connecting to Power The Lite On Custom PiP is powered through the System connector 3 4 Connecting to the Data Port The Lite On Custom PiP transfers data via the system connector by UART signal 3 5 Using the LI...

Page 13: ...motors computer UPS systems microwave transmitters Wi Fi routers anti theft devices radio transmitters communications equipment and so on Tie all cables neatly with nylon cable ties and route them so that they are inaccessible and invisible to customers Test the LITE ON CUSTOM PIP installation using a test card to perform an end to end VAS transaction Even if the transaction is declined as it shou...

Page 14: ...cy interference RFI can originate from a wide number of sources at VAS related locations Some examples of sources of RF energy and RF interference include AM FM radio and TV transmitters 2 way radios and pagers Mobile telephones Power lines and transformers Medical equipment Microwaves Electromechanical switches Q What should I do if I suspect RF interference exists in my environment A Begin by in...

Page 15: ...ation or how low an interpreting signal can be in the presence of the equipment and cause problems Equipment can be particularly sensitive to very low signal levels of one frequency and yet be quite immune to high signal levels of another frequency so frequency is an important factor Some electronic system components are internally shielded and have a very high immunity to interference but general...

Page 16: ...ivate Key the private key must be kept private and injected into the ViVOpay device where it will be stored securely 6 1 2 How to Create an ECC Key Pair Using Open SSL Users have several options for generating the ECC key pair or the ECDSA digital signature key pair The example below uses the freely available OpenSSL package to generate a prime256v1 Elliptical Curve Cipher key pair and to sign mes...

Page 17: ...evice To extract the required Key Data use the following OpenSSL command line openssl exe ec noout text in private_key pem This will output information to the screen You should see the below as a minimum Private Key 256 bit priv 00 f5 36 87 08 93 39 20 55 3b 7b 9f fb 16 ae ed 9c 77 d5 bf d9 66 2a f1 49 a6 b9 f9 65 b7 3f 0c ca Copy the bytes of data and edit them to remove the colon characters If a...

Page 18: ... 13 Byte 14 Byte 15 Header Tag Protocol Version Command Status Code Data Length MSB Data Length LSB CRC MSB CRC LSB ViVOtech2 0 04h See Status Code Table 00h 00h 6 2 1 1 Example Usage Further information on the TLV Data Objects that can be set in the command frame are described in detail in the Google Pay Smart Tap 2 1 In ViVOpay Devices document The settings used with ID TECH s Demo Pass are show...

Page 19: ...FED050101DFED060100DFED070100 DFED27010DDFED3F0100DFED490100DFEF770100 6 2 2 Set SmartTap LTPK C7 65 For direct injection of the LTPK send firmware command C7 65 via serial connection to the offline device Developers should observe good cryptographic practices by for example injecting devices in a secure setup Command Frame Byte 0 9 Byte 10 Byte 11 Byte 12 Byte 13 Byte 14 Byte 15 Byte 16 Header Ta...

Page 20: ...Custom Lite On Custom PiP for use with the ID TECH Demo Pass the values used are shown below Version 0000000A Data F5368708933920553B7B9FFB16AEED9C77D5BFD9662AF149A6B9F965B73F0C CA The Data shown was obtained in Section 6 1 3 To set these default values in your Lite On Custom PiP use the USDK Demo App and select the Send NEO Command option Set the command fields as below then press Execute Command...

Page 21: ... Data Field Length bytes Description Merchant Record Index 1 The valid value is 1 6 Up to 6 records can be set ID Present 1 1 The Merchant ID is valid 0 The Merchant ID is not valid Merchant ID 32 The value of tag 9F25 SHA256 of pass name Length of Merchant URL 1 Can be zero if no URL is used real Merchant URL Length Merchant URL 64 The value of tag 9F29 padded with trailing zeroes to 64 bytes Len...

Page 22: ...01 Merchant ID AD9887C78E412F835E89D0A4F71E423320C7BB53B6FAACD8D1D1EED9E1E38D39 Length of Merchant URL 00 Merchant URL 00000000000000000000000000000000000000000000000000000000000000000 000000000000000000000000000000000000000000000000000000000000000 To set these default values in your Lite On Custom Lite On Custom PiP use the SDK Demo App and select the Send NEO Command option Set the command field...

Page 23: ...the Merchant Record Index does not exist this Private Key is used by all Merchant IDs If the Merchant Record Index exists this Private Key is used for the specified Merchant ID The valid value is 1 6 It can be set for 6 records Private Key 32 Apple VAS Private Key ta Field Length bytes Descript Response Frame Byte 0 9 Byte 10 Byte 11 Byte 12 Byte 13 Byte 14 Byte 14 n 1 Byte 14 n Byte15 n Header Ta...

Page 24: ...command it extracts the TLV encoded parameters from the data portion of the command and saves them to the default TLV Group in non volatile memory If a TLV data object is incorrectly formatted the reader stops processing the object A single command may contain more than one TLV data object This command can be used to set any EMV TLV object in the reader Note The Set Configuration command is the on...

Page 25: ...oup 0 DFED3F Optional VAS encryption on off flag Bit 0 Encrypt VAS data with device s data encryption key Bit 1 Decrypt Apple VAS data with Apple VAS private key Bit 2 to 7 RFU For example 56 69 56 4F 74 65 63 68 32 00 ViVOtech2 0 04 00 Set configuration 00 05 Data length DF ED 3F 01 01 Enable both the encryption of Smart Tap and Apple VAS BF 00 CRC16 ...

Page 26: ... Support Lite On Custom PiP can read several card formats without needing to be manually switched The ACT command and the template in the FFEE0E Tag handles reading EMV cards and Mifare cards using a single command Note The FFEE0E container tag is used in the same manner as FFEE06 and FFEE08 for Apple VAS and Google Pay Smart Tap 2 1 in relation to Poll On Demand Auto Poll behavior Tags used FFEE0...

Page 27: ...FFFFFFF The key from block 04 is KEY A FFFFFFFFFFFF The key from block 08 is KEY A FFFFFFFFFFFF Return Data FFEE0E length Error_Code Card_Type TLV_UID Card_Data Where length is the length of Error_Code Card_Type Card_Data Error_Code is defined as 0xE0 define ERROR_NO_ERROR 0xE1 define ERROR_TIMEOUT_ERROR 0xE2 define ERROR_AUTHENTICATE_ERROR 0xE3 define ERROR_READ_ERROR 0xE4 define ERROR_WRITE_ERRO...

Page 28: ... TECH representative to receive the most recent Lite On Custom PiP firmware Download the ZIP file and extract it to your computer 1 Connect the LITE ON CUSTOM PIP to your PC via serial port 2 Download and install the latest USDK Demo app from the ID TECH Knowledge Base if you cannot access the link please contact support 3 Open the USDK demo from the Windows Start menu ...

Page 29: ...eboot and enter the bootloader at which point the USDK demo begins updating the device 7 When the firmware update completes the LITE ON CUSTOM PIP will reboot again and the USDK demo will prompt Firmware Update Successful 8 Customer Support If you are unable to resolve any technical issues please contact support idtechproducts com sending an e mail to this address will automatically open a support...

Reviews:

No comments