This Standard specifies a method of key management for keys used in the authentication, encipherment and decipherment of electronic messages relating to financial transactions using transaction key, key identification techniques, and the data elements necessary for the transfer of security or key management information.
Table of contents
Header
About this publication
Preface
1 Scope
2 Application
3 Referenced documents
4 Definitions
5 Overview
5.1 General
5.2 Objectives of scheme
6 Key management specifications
6.1 Methods of key management
6.2 Method: DUKPT
6.3 The security management information data (SMID) element
6.4 Additional key management requirements for DUKPT
6.5 Cryptographic keys synchronization
6.6 Other considerations
Appendix A
A1 General
A2 Storage areas
A2.1 General
A2.2 PIN Processing
A2.3 Key management
A3 Processing algorithms
A4 Key management technique
A4.1 General
A4.2 Key transformation technique
A4.3 Derivation of PIN Encipherment Key
A5 DUKPT test data examples
A6 Variants of the current key
A7 Calculation and storage of DUKPT transaction keys at the terminal
A8 ‘Security module’ algorithm for automatic PIN Entry Device checking
A8.1 Temporary storage areas
A8.2 Processing algorithm
A8.3 TAG1
A8.4 TAG2
A9 Derivation of the initial key
Appendix B
B1 An example key serial number format
B2 IIN – 3 bytes—Issuer identification number
B3 CID – 1 byte—Customer id
B4 GID – 1 byte—Group id
B5 DID – 19 bit device id
B6 TCTR – 21 bit transaction counter
Appendix C
C1 PIN encipherment
C2 Message authentication
C3 Data encipherment
Cited references in this standard
Content history
AS 2805.6.7-2011 REC:2023
DR AS 2805.6.7
Please select a variation to view its description.
