security - EMV DDA 克隆
问题描述
有人可以澄清一下 DDA 如何保护 EMV 卡免受克隆吗
根据我到目前为止所学到的知识,终端会生成一个随机唯一编号并发送到卡
卡片会生成一个私钥/公钥,然后用私钥对卡片数据进行签名并发送给终端进行验证
这如何防止克隆?
解决方案
Card will not generate private and public keys. Private and Public keys are encoded into the chip during personalization. First you need to understand what the terminal and card have in hand to understand this. Go through this answer.
Now that you know where each keys come from, during DDA, using the ICC private key, card will generate a certificate, and terminal will validate the certificate using ICC Public Key.
Detailed process is explained in EMV 4.3 Book 2 Security and Key Management, section 5 and 6. Download from here . Start reading from SDA and have the basis clear.
推荐阅读
- python - 如何检查单元格中的值是否在范围内。基于将不同的“分数”分配给新列
- java - Vert.x Auth JWT 中的身份验证失败原因
- php - Laravel,如何使用 ajax 提交显示表单错误?
- excel - 计算两个日期之间的间隔,每个日期有两列
- javascript - 处理 SQL/PHP 输出并转换成 java
- ocaml - 带有可选和可变字段的记录
- android - Android API 28 上的运行时权限错误(我必须重新启动我的应用程序才能显示捕获的图像)
- angular - renderModuleFactory 中的 Angular 6 访问依赖注入器
- atom-editor - Atom 编辑器 - web2py 标识符的 linter 忽略
- spring - spring-data-jpa 如果有子实体,避免删除父实体