Implementing Electronic Card Payment Systems (Artech House Computer Security Series)

2017-07-07 02:10:07

D

Data authentication, 301-2, 367

components , 369

enforcing, 369

See also Security services

Data confidentiality, 367

Data modification threat, 297-98

active wiretapping assumption, 365

forms, 365

See also Communications channel threats; Threats

Data object list (DOL), 87

contents, 87

dynamic (DDOL), 263

variable command data input with, 88

Data objects

in cardholder verification, 181-83

CRM, 278

EMV ¢ defined, 248-49

financial accumulators, 281-83

processing counters, 280-81

proprietary-defined, 249-53

sharable , 250-51

Terminal Type, 265

transaction flow flags, 279-80

Data transmission protocols (layer 2), 65

Debit cards, 16-17

defined, 17

stolen, 28

See also Payment cards

Dedicated files (DFs), 60

cryptographic keys, 62

as data container, 61

referencing, 62-63

See also Files

Denial-of-service attacks, 299, 365

DES block cipher, 402-4

Digital certificates, 311

Digital signature-based DDA, 395-96

Digital signature schemes, 380-83

with appendix, 382-83

attacks and, 382

items, 380-81

key generation algorithm, 380

ordinary signing protocol, 381

with PKCS#1, 414-16

requirements, 381-82

signature generation algorithm, 381

signature verification algorithm, 381

signing procedure, 381

See also Security mechanisms

Digital signature with recovery, 383, 410-13

defined, 410-11

signature generation, 411-12

signature verification, 412-13

Directories

entries, ADF/DDF, 114

entries, encoding, 108-9

implementation, 108

structure, 110-12

Directory definition files (DDFs), 84-86

defined, 86

directory entries, 114

in EMV ¢ file system, 108-12

as entry point to ADFs, 108

FCI of, 109-10

referencing, 86

Dual message network, 42

Dynamic authenticator

computation, 77

MAC-based, 75, 76

verification, 78, 79

Dynamic card authentication, 368

Dynamic data authentication (DDA), 94

conditions for performing, 161

digital signature-based, 395-96

MAC-based, 394-95

mechanisms, 394-97

off-line, 148, 161, 165-74

one-time passwords, 396-97

overview, 166-68

processing error, 276

successful processing, 174

Dynamic Data Object List (DDOL), 263

Категории

Search