Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

Aladin E-Token PRO

73 views
Skip to first unread message

Friedemann Stoyan

unread,
Nov 14, 2009, 9:41:08 AM11/14/09
to
Hallo NG,

ich bin Besitzer eines gebrauchten "Aladdin Knowledge Systems eToken
Pro v4.1.5.x" geworden. Also schnell 'openct' und 'opensc'
installiert. Nach Einstecken ist der Token schon mal zu sehen:

$ opensc-tool -l
Readers known about:
Nr. Driver Name
0 openct Aladdin eToken PRO
1 openct OpenCT reader (detached)
2 openct OpenCT reader (detached)
3 openct OpenCT reader (detached)
4 openct OpenCT reader (detached)

Ich kann den Token sogar auslesen:

$ opensc-tool -f
3f00 type: DF, size: 4112
select[N/A] lock[NONE] delete[NONE] create[NONE] rehab[NONE] inval[NONE]
list[N/A] sec: 00:00:00:00:00:00:00:00:00
prop: 01:04:00

3f006666 [AKS] type: DF, size: 4112
select[N/A] lock[NEVR] delete[NEVR] create[CHV1] rehab[NEVR] inval[NEVR]
list[N/A] sec: FF:FF:01:FF:FF:FF:FF:01
prop: 01:00:FF
[...]
[opensc-tool] card-cardos.c:255:cardos_check_sw: required access right not
granted
[opensc-tool] iso7816.c:129:iso7816_read_binary: returning with: Security
status not satisfied
[opensc-tool] card.c:430:sc_read_binary: returning with: Security status not
satisfied
[...]

Dummerweise bekomme ich den Stick aber nicht (neu) initialisiert:

$ pkcs15-init -v --erase-card --create-pkcs15 --no-so-pin
Connecting to card in reader Aladdin eToken PRO...
Using card driver Siemens CardOS.
About to erase card.
About to create PKCS #15 meta structure.
[pkcs15-init] card-cardos.c:255:cardos_check_sw: not enough memory
[pkcs15-init] card.c:367:sc_create_file: returning with: Card command failed
[pkcs15-init] card-cardos.c:255:cardos_check_sw: not enough memory
[pkcs15-init] card.c:367:sc_create_file: returning with: Card command failed
Failed to create PKCS #15 meta structure: Card command failed

Ich vermute die Meldungen rühren daher, da ja bereits Daten auf dem
Stick drauf sind, die ich aber z.B. mit dem opensc-explorer nicht
gelöscht bekomme, da ich keine PIN kenne:

$ opensc-explorer
OpenSC Explorer version 0.11.4
OpenSC [3F00]> ls
FileID Type Size
[6666] DF 50 Name: AKS
[5015] DF 50
OpenSC [3F00]> cd 6666
OpenSC [3F00/6666]> ls
FileID Type Size
[1000] DF 50
[1001] DF 50
[1002] DF 50
[1003] DF 50
[5000] DF 50
[6000] DF 50
[7000] DF 50
OpenSC [3F00/6666]> rm 1000
[opensc-explorer] card-cardos.c:255:cardos_check_sw: required access right not granted
[opensc-explorer] card.c:388:sc_delete_file: returning with: Security status not satisfied
DELETE FILE failed: Security status not satisfied
ACL for operation: NEVR
OpenSC [3F00/6666]>

Lange Rede - kurzer Sinn: Habe ich überhaupt eine Chance, das Device
in Gang zu bringen?

mfg Friedemann

Friedemann Stoyan

unread,
Nov 14, 2009, 10:22:37 AM11/14/09
to
Hallo NG,

Der Token scheint auch schon etwas älter zu sein:

$ cardos-info
3b:e2:00:ff:c1:10:31:fe:55:c8:02:9c
Info : CardOS/M4.0 (C) Siemens AG 1994-1999 (Feb 15 2000)
Chip type: 20
Serial number: 10 94 cf 29 11 03
Full prom dump:
33 FF EB 31 FF FF FF FF 14 65 10 94 CF 29 11 03 3..1.....e...)..
00 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 ................
OS Version: 200.2 (that's CardOS M4.0)
Current life cycle: 32 (administration)
Security Status of current DF:
Free memory : 1024
ATR Status: 0x0 ROM-ATR
Packages installed:
01 04 01 01 C8 02 01 04 08 01 C8 02 01 04 03 01 ................
C8 02 01 04 0B 01 C8 02 01 04 07 03 C8 02 ..............
Ram size: 1024, Eeprom size: 16384, cpu type: 66, chip config: 61
Free eeprom memory: 50
System keys: PackageLoadKey (version 0x01, retries 10)
System keys: StartKey (version 0x01, retries 10)
Path to current DF:

0 new messages