3 - Command Set
DynaPro Mini| PIN Encryption Device | Programmer’s Manual (Commands)
Page 45 of 128 (
D99875629-43
)
Info ID
Key Status
Data
length
Data
Description
0x80
kcv_type=0 4
KCV value
KCV**** for Auth key
0x80
kcv_type=1 4
KCV value
KCV for PIN key
0x80
kcv_type=2 4
KCV value
KCV for MSR key
0x80
kcv_type=3 4
KCV value
KCV for fixed PIN key
0x80
kcv_type=4 4
Hash value
Device authorization key signed by
PIN cert
0x80
kcv_type=5 4
Hash value
Device authorization key signed by
MSR cert
0x80
kcv_type=9 4
KCV value
KCV for Acquirer Master key
0x80
All other
kcv_types
0
KCV****
* lbllen = authorization key’s label length
** SN = serial number of cert; DN = distinguished names of subject or issuer of cert; Data length varies
with SN and DN length; max length is 59.
*** its corresponding CA cert
**** KCV = Key Check Value, where the lowest 6 digits are valid
3.4.15
Command 0x0F - Login/Authenticate
The host uses this command to authenticate with the device (log in) or to revoke authentication (log out).
The host must follow these steps to initiate authentication:
1)
Request an authentication token from the device using
2)
Decrypt the received token with the authentication key
3)
Transform the token and encrypt it with the authentication key
4)
Call the Login / Authenticate form of this command.
If an error occurs, the device will terminate the command and report the error in ACKSTS of
. For a full list of error codes, see
Appendix C Status and Message Table, Table
If no error occurs, authentication is successful.
Table 3-18 - Usage Table for Command 0x0F (For Login/Authenticate)
Bit
7
6
5
4
3
2
1
0
Byte 0
0x0F
Byte 1
0x00 = Logout
0x01 = Login / Authenticate