4 - Security Levels
eDynamo| Secure Card Reader Authenticator | Programmer’s Manual (COMMANDS)
Page 34 of 245 (
D998200115-17
)
keys—that is, an Authentic Host. The host can use
Command 0x15 - Get / Set Security Level (MAC)
to determine the device’s current security level.
4.5
Command Behaviors By Security Level
shows the commands that are affected by the device’s security level. Commands that are not
affected by the security level are not listed. The key is as follows:
Y
means the command can run at the specified security level.
N
means the command is prohibited at the specified security level.
C
means the customer may specify
Y
or
S
for that command when ordering.
S
means the command is secured [may require MACing, see section
has special behavior. If an Authentication sequence has
failed, only a correctly MACed
Command 0x02 - Reset Device (MAC)
device. This is to prevent a dictionary attack on the keys and to minimize a denial of service (DoS)
attack.
Table 4-1 - Command Behaviors At Each Security Level
Command
Level 2 Level 3
Level 4
(MSR
Only)
Any command not listed in this table functions the same at Security
Level 2, Security Level 3, and Security Level 4.
Y
Y
Y
Command 0x01 - Set Property (MAC)
Y
S
S
Command 0x02 - Reset Device (MAC)
Y
*
*
Command 0x10 - Activate Authenticated Mode
N
Y
Y
Command 0x11 - Activation Challenge Response
N
Y
Y
Command 0x12 - Deactivate Authenticated Mode
N
Y
Y
Command 0x15 - Get / Set Security Level (MAC)
S
S
S
Extended Command 0x0300 - Initiate EMV Transaction (EMV Only) N
Y
Y
Extended Command 0x0302 - User Selection Result (Contact Only)
N
Y
Y
Extended Command 0x0303 - Online Processing Result / Acquirer
Response (EMV Only)
N
Y
Y
Extended Command 0x0304 - Cancel Transaction (EMV Only)
N
Y
Y
Extended Command 0x0305 - Modify Terminal Configuration (MAC) N
S
S
Extended Command 0x0307 - Modify Application Configuration
(MAC)
N
S
S
Extended Command 0x0309 - Modify Acquirer Public Key CAPK
(MAC, EMV Offline Only)
N
S
S
Extended Command 0x030C - Set Date and Time (MAC)
N
S
S
Extended Command 0x030E - Commit Configuration
N
Y
Y
Extended Command 0x0310 - Modify EMV Configuration (MAC)
N
S
S