GPO 命令被定义为一个 APDU 命令:
CLA INS P1 P2 Lc Data Le
80 A8 00 00 Lc Data 00
所以缺少的部分是我们必须从PDOL计算的Lc和数据(如果有的话)。如果没有给出,我们可以使用:
80 A8 00 00 02 8300 00
这适用于万事达卡,但对于 VISA,我得到了一个 PDOL 并尝试构建缺少的 APDU 部分(Lc 和数据)。
第 1 步 - 我从我的 EMV 卡中获取此 PDOL:
9F66049F02069F03069F1A0295055F2A029A039C019F3704
第 2 步 - 通过命令将其拆分:
9F6604 9F0206 9F0306 9F1A02 9505 5F2A02 9A03 9C01 9F3704
第 3 步 - 按字节长度再次拆分:
9F66 04 | 9F02 06 | 9F03 06 | 9F1A 02 | 95 05 | 5F2A 02 | 9A 03 | 9C 01 | 9F37 04
第 4 步 - 给出以下命令(删除长度):
描述“要插入的内容”
9F66 | 9F02 | 9F03 | 9F1A | 95 | 5F2A | 9A | 9C | 9F37
第 5 步 - 以及以下命令长度(删除命令):
描述“每个命令的长度”
04 | 06 | 06 | 02 | 05 | 02 | 03 | 01 | 04
第 6 步 - 假设长度为 2 位,将使我们加倍:
8 | 12 | 12 | 4 | 10 | 4 | 6 | 2 | 8
步骤 7 - 预期输出现在应如下所示:
aaaaaaaa bbbbbbbbbbbb cccccccccccc dddd eeeeeeeeee ffff gggggg hh iiiiiiii
步骤 8 - 查找命令以查找值:
9F66 | 9F02 | 9F03 | 9F1A | 95 | 5F2A | 9A | 9C | 9F37
https://www.emvlab.org/emvtags/show/t9F66/ = 未知(我用谷歌搜索发现它是:'终端交易限定符' = TTQ)
https://www.emvlab.org/emvtags/show/t9F02/ = 授权金额
https://www.emvlab.org/emvtags/show/t9F03/ = 次要/返现金额
https://www.emvlab.org/emvtags/show/t9F1A/ = ISO 3166 终端国家代码 (TCC)
https://www.emvlab.org/emvtags/show/t95/ = 终端验证结果 (TVR)
https://www.emvlab.org/emvtags/show/t5F2A/ = ISO 4217 货币代码 (CC)
https://www.emvlab.org/emvtags/show/t9A/ = 交易日期 YYMMDD
https://www.emvlab.org/emvtags/show/t9C/ = ISO 8583:1987 前 2 位数字(交易类型 - TT)
https://www.emvlab.org/emvtags/show/t9F37/ = 不可预测数(密码的随机数 - UN)
步骤 9 - 插入 obvios 数据:
9F66 aaaaaaaa TTQ
9F02 bbbbbbbbbbbb Amount 000000001000
9F03 cccccccccccc Cashback 000000000000
9F1A dddd TCC
95 eeeeeeeeee TVR
5F2A ffff CC
9A gggggg YYMMDD 190325
9C hh TT
9F37 iiiiiiii UN 12121212
第 10 步 - 终端交易限定符 (TTQ):
(支持的终端功能设置)
9F66 a1 a2 a3 a4
A. a1 - Hex to binary -> 00000000
B. a2 - Hex to binary -> 00000000
C. a3 - Hex to binary -> 00000000
D. a4 - Hex to binary -> 00000000 - RFU (Reserved Future Use)
每个零都可以打开或关闭。
A. a1 (hex to binary gives 8 numbers)
8. 0 - Contactless MSD - Example: 0 - false
7. 0 - Contactless VSDC - Example: 1 - true
6. 0 - Contactless qVSDC - Example: 0 - false
5. 0 - EMV contact chip - Example: 1 - true
4. 0 - Offline-only reader - Example: 0 - false
3. 0 - Online PIN - Example: 0 - false
2. 0 - Signature - Example: 0 - false
1. 0 - Offline data auth (ODA) - Example: 1 - true
示例给出:01010001。二进制到十六进制 -> 51
B. a2 (hex to binary gives 8 numbers)
8. 0 - Require Online Crypt - Example: 0 - false
7. 0 - CVM required . - Example: 0 - false
6. 0 - Offline PIN support - Example: 0 - false
5. 0 - RFU(Reserved Future Use) - Example: 0 - false
4. 0 - RFU(Reserved Future Use) - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:00000000。二进制到十六进制 -> 00
C. a3 (hex to binary gives 8 numbers)
8. 0 - Issuer update process - Example: 0 - false
7. 0 - Mobile functionality - Example: 1 - true
6. 0 - RFU(Reserved Future Use) - Example: 0 - false
5. 0 - RFU(Reserved Future Use) - Example: 0 - false
4. 0 - RFU(Reserved Future Use) - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:01000000。二进制到十六进制 -> 40
D. a4 = RFU(Reserved Future Use) = 00000000 = 00
给出:00000000。二进制到十六进制 -> 00
将十六进制值放在一起返回:TTQ = 51004000
第 11 步 - 更新 ISO 值(谷歌它)并插入 TTQ:
参考:https : //en.wikipedia.org/wiki/ISO_8583
TT
Authorization: 00
Balance inquiry: 31
Sale: 00
Cash: 01
Void: 02
Mobile topup: 57
9F66 aaaaaaaa TTQ 51004000 TTQ
9F02 bbbbbbbbbbbb Amount 000000001000
9F03 cccccccccccc Cashback 000000000000
9F1A dddd TCC 0578 ISO 3166 Norway (not same as phone)
95 eeeeeeeeee TVR
5F2A ffff CC 0978 ISO 4217 Euro
9A gggggg YYMMDD 190325
9C hh TT 00 ISO 8583:1987 first 2 digits
9F37 iiiiiiii UN 12121212
第 12 步 - 终端验证结果 (TVR):
https://en.wikipedia.org/wiki/Terminal_verification_results
9F66 e1 e2 e3 e4 e5
A. e1 - Hex to binary -> 00000000
B. e2 - Hex to binary -> 00000000
C. e3 - Hex to binary -> 00000000
D. e4 - Hex to binary -> 00000000
E. e5 - Hex to binary -> 00000000
每个零都可以打开或关闭。
A. e1 (hex to binary gives 8 numbers)
8. 0 - Offline process not performed - Example: 0 - false
7. 0 - SDA failed - Example: 0 - false
6. 0 - ICC data missing - Example: 0 - false
5. 0 - Card number on hotlist - Example: 0 - false
4. 0 - DDA failed - Example: 0 - false
3. 0 - CDA failed - Example: 0 - false
2. 0 - RFU (SDA was selected) - Example: 0 - false
1. 0 - RFU - Example: 0 - false
示例给出:00000000。二进制到十六进制 -> 00
B. e2 (hex to binary gives 8 numbers)
8. 0 - Card/terminal version differ. - Example: 0 - false
7. 0 - Expired app - Example: 0 - false
6. 0 - App not yet effective - Example: 0 - false
5. 0 - Service not allowed for card - Example: 0 - false
4. 0 - New card - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:00000000。二进制到十六进制 -> 00
C. e3 (hex to binary gives 8 numbers)
8. 0 - Cardholder verification fail - Example: 0 - false
7. 0 - Unrecognised CVM - Example: 0 - false
6. 0 - PIN try limit exceeded - Example: 0 - false
5. 0 - PIN required, but no pinpad - Example: 0 - false
4. 0 - PIN req. & present & missing - Example: 0 - false
3. 0 - On-line PIN entered - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:00000000。二进制到十六进制 -> 00
D. e4 (hex to binary gives 8 numbers)
8. 0 - Transact. exceeds floor limit - Example: 0 - false
7. 0 - Lower offline limit exceeded - Example: 0 - false
6. 0 - Upper offline limit exceeded - Example: 0 - false
5. 0 - Transa. randomly sele. online - Example: 0 - false
4. 0 - Merch. forced online transac. - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:00000000。二进制到十六进制 -> 00
E. e5 (hex to binary gives 8 numbers)
8. 0 - Default TDOL Used - Example: 0 - false
7. 0 - Issuer authentication failed - Example: 0 - false
6. 0 - Script fail before final GAC - Example: 0 - false
5. 0 - Script fail after final GAC - Example: 0 - false
4. 0 - RFU(Reserved Future Use) - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:00000000。二进制到十六进制 -> 00
将所有十六进制值放在一起给出: TVR = 0000000000
第 13 步 - 最终命令:
9F66 aaaaaaaa TTQ 51004000
9F02 bbbbbbbbbbbb Amount 000000001000
9F03 cccccccccccc Cashback 000000000000
9F1A dddd TCC 0578
95 eeeeeeeeee TVR 0000000000
5F2A ffff CC 0978
9A gggggg YYMMDD 190325
9C hh TT 00
9F37 iiiiiiii UN 12121212
结果是:
51004000 000000001000 000000000000 0578 0000000000 0978 190325 00 12121212
步骤 14 - 获取标签长度值:
得到结果的长度:51004000000000001000000000000000578000000000009781903250012121212 = 66 个数字 它是 2 位,所以:66 个字符 / 2 = 33
Convert 33 to HEX = 21
tlv = 21
应在第 13 步的结果之前应用 tlv:
21 510040000000000010000000000000000578000000000009781903250012121212
第 15 步 - 添加“83”的 GPO 标签:
83 21 510040000000000010000000000000000578000000000009781903250012121212
所以,数据= 8321510040000000000010000000000010000578000000000009781903250012121212
步骤 16 - 获取整个命令 (Lc) 的标签长度值:
获取结果长度:
8321510040000000000010000000000000000578000000000009781903250012121212
= 70 numbers
It is 2-bits, so:
70 / 2 = 35 characters
Convert 35 to HEX = 23
Lc = 23
第 17 步 - 将它们放在一起:
请记住,缺少的部分是Lc & Data
CLA INS P1 P2 Lc Data Le
80 A8 00 00 Lc Data 00
80 A8 00 00 23 Data 00
添加数据:
APDU =
80A8000023832151004000000000001000000000000000057800000000000978190325001212121200
题
我生成的最终 apdu 命令不返回任何值。有谁知道我在哪一步失败了或者可以看到我做错了什么?
资源:
https://www.emvlab.org/emvtags/
https://en.wikipedia.org/wiki/Terminal_verification_results
https://www.rapidtables.com/convert/number/decimal-to-hex.html
https://tvr-decoder.appspot.com/t/home
解析 PDOL 以获取 EMV 事务中的 GET PROCESSING OPTIONS 命令
https://www.iban.com/currency-codes
我发现了错误。问题是在STEP 10 中设置正确的事务功能。
由于我的处理器只是一个 NFC 阅读器,我不得不将第 10 步修改为以下内容:
第 10 步 - 终端交易限定符 (TTQ):
(支持的终端功能设置)
9F66 a1 a2 a3 a4
A. a1 - Hex to binary -> 00000000
B. a2 - Hex to binary -> 00000000
C. a3 - Hex to binary -> 00000000
D. a4 - Hex to binary -> 00000000 - RFU (Reserved Future Use)
每个零都可以打开或关闭。
A. a1 (hex to binary gives 8 numbers)
8. 0 - Contactless MSD - Example: 1 - true
7. 0 - Contactless VSDC - Example: 1 - true
6. 0 - Contactless qVSDC - Example: 1 - true
5. 0 - EMV contact chip - Example: 1 - true
4. 0 - Offline-only reader - Example: 0 - false
3. 0 - Online PIN - Example: 0 - false
2. 0 - Signature - Example: 0 - false
1. 0 - Offline data auth (ODA) - Example: 0 - false
示例给出:11110000。二进制到十六进制 -> F0
B. a2 (hex to binary gives 8 numbers)
8. 0 - Require Online Crypt - Example: 0 - false
7. 0 - CVM required . - Example: 0 - false
6. 0 - Offline PIN support - Example: 1 - true
5. 0 - RFU(Reserved Future Use) - Example: 0 - false
4. 0 - RFU(Reserved Future Use) - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:00100000。二进制到十六进制 -> 20
C. a3 (hex to binary gives 8 numbers)
8. 0 - Issuer update process - Example: 0 - false
7. 0 - Mobile functionality - Example: 1 - true
6. 0 - RFU(Reserved Future Use) - Example: 0 - false
5. 0 - RFU(Reserved Future Use) - Example: 0 - false
4. 0 - RFU(Reserved Future Use) - Example: 0 - false
3. 0 - RFU(Reserved Future Use) - Example: 0 - false
2. 0 - RFU(Reserved Future Use) - Example: 0 - false
1. 0 - RFU(Reserved Future Use) - Example: 0 - false
示例给出:01000000。二进制到十六进制 -> 40
D. a4 = RFU(Reserved Future Use) = 00000000 = 00
给出:00000000。二进制到十六进制 -> 00
将十六进制值放在一起返回:TTQ = F0204000
因此将TTQ值更改为F0204000使卡响应 GPO 命令。:)