Jpos and HSM implementation translate ZPK using command CA.

346 views
Skip to first unread message

I Ketut Gunawan

unread,
Oct 9, 2010, 6:13:02 PM10/9/10
to jpos-...@googlegroups.com
hi,

 I want to make an EDC do pinverificasition through a my host to the Host Bank.

My Host translate pin using the command CA. but response is "24"  (PIN is fewer than 4 or more than 12 digits in length.)

my questin is how to export HSM result tmk and tpk for EDC . 



Thank's
IKetutG

Alejandro Revilla

unread,
Oct 9, 2010, 6:52:28 PM10/9/10
to jpos-...@googlegroups.com
Hi IketutG,

A thousand things can go wrong. This is to vague of a question.

Mark Salter

unread,
Oct 9, 2010, 6:58:44 PM10/9/10
to jpos-...@googlegroups.com
On 09/10/2010 23:13, I Ketut Gunawan wrote:

> I want to make an EDC do pinverificasition through a my host to the
> Host Bank.

Not sure what you are trying to say here, can you rephrase it?

>
> My Host translate pin using the command CA. but response is "24" (PIN
> is fewer than 4 or more than 12 digits in length.)

I would have to suspect a bad key is being used, resulting in the HSM
seeing an invalid PIN length as it decrypted the PIN block and prepares
for re-encryption under the target TPK.

>
> my questin is how to export HSM result tmk and tpk for EDC .

What or who is EDC?

You need to make sure each side have matching keys, the mechanism for
secure key exchange would be agreed and conducted.

I am unsure exactly what you need to know, perhaps responding to my
questions above will give the hints I think I need 8).


--
Mark

AAO

unread,
Oct 10, 2010, 11:48:35 AM10/10/10
to jpos-...@googlegroups.com
It's hard to tell at all what you want here from your question, which reads like inscrutable Haiku.  You're asking about Thales interaction, but have left out that rather material part of your query.

You should be able to figure out what to do from my Thlales/jPOS-centric blog posts, which you can find here:

http://www.andyorrock.com/.services/blog/6a00d8341c507153ef00d83451ba8569e2/search?filter.q=thales

I specifically reference the CI (CJ) interchange in there, which is the DUKPT-to-Interchange version of your CA (CB) need (yours is the 'from TPK' equivalent). 

Andy Orrock

Mark, I suspect 'EDC' is Electronic Draft Capture.


--
jPOS is licensed under AGPL - free for community usage for your open-source project. Licenses are also available for commercial usage.
Please support jPOS, contact: sa...@jpos.org

You received this message because you are subscribed to the  "jPOS Users" group.
Please see http://jpos.org/wiki/JPOS_Mailing_List_Readme_first
To post to this group, send email to jpos-...@googlegroups.com
To unsubscribe, send email to jpos-users+...@googlegroups.com
For more options, visit this group at http://groups.google.com/group/jpos-users

Mark Salter

unread,
Oct 10, 2010, 12:21:56 PM10/10/10
to jpos-...@googlegroups.com
On 10/10/2010 16:48, AAO wrote:
> Mark, I suspect 'EDC' is Electronic Draft Capture.
>
Thanks Andy.

--
Mark

Reply all
Reply to author
Forward
0 new messages