STANDARD. ISO/IEC. Second edition. Identification cards — Integrated circuit cards —. Part 5: Registration of application providers. ISO is one of most important standards in the smart card industry. Parts of ISO specify physical characteristics, dimensions and location of the. ISO , Section 5 contains basic organizations, data structures, file organization, file referencing methods, data referencing methods, record referencing.
|Country:||Central African Republic|
|Published (Last):||3 July 2004|
|PDF File Size:||14.73 Mb|
|ePub File Size:||10.86 Mb|
|Price:||Free* [*Free Regsitration Required]|
Created inamended in,updated in This clause contains information on the logical structure of data as seen at the interface, when processing interindustry commands for interchange. When numbered, its number is 0.
ISO/IEC – Wikipedia
If the auxiliary data is less than k bytes, then it is headed by bits set to 0, up to the block length. Within each EF of transparent structure, each data unit can be referenced by an offset e. Within each EF of linear structure, the logical positions shall be sequentially assigned when writing or appending i.
There are two types of digital signatures:. The tag field T consists of a single byte encoding only a number from 1 to e. Created inupdated inupdated in The digital signature computation is typically based upon asymmetric cryptographic techniques. The file reference denotes the file 786-5 the key reference is valid.
In the data field, the present SM format may be selected implicitly, i. This mechanism 7186-5 be used to provide a confidentiality service, e.
The following attributes are defined for EFs structured in records: Please download Chrome or Firefox or view our browser tips. Therefore the first created record is in the first logical position. If no initial data reference is present and no initial check block is implicitly selected, then the null block shall isk used. Cards with contacts — USB electrical interface and operating procedures”. Decoding conventions for Le If the isl of Le is coded in 1 or 2 byte s where the bits are not all null, then the value of Le is equal to the value of the byte s which lies in the range from 1 to or ; the null value of all the bits means the maximum value of Le: Size of the records: Those data objects shall integrate data block by data block in the current check block.
The status bytes 78166-5 of a response denote the processing state in the card. File-specific security status — It may be modified by the completion of a DF-related authentication procedure e.
Data encipherment — Using secret internal oso, the card deciphers a cryptogram received in a data field.
The first output results from the first data block. If the response descriptor provides auxiliary data, then the respective data object shall be empty in the response. Secure messaging is achieved by applying one or more security mechanisms. The following additional rule is defined oso linear structures and for cyclic structures: According to its abstract, it specifies interindustry commands for integrated circuit cards both with contacts and without contacts for card and file management, e.
In any command using secure messaging the following specific error conditions may occur: Referencing by path — Any file may be referenced by a path concatentation 7816–5 file identifiers. Data objects for confidentiality are intended for carrying a cryptogram which plain value consists of one of the following 3 cases: Short EF identifiers connot be used in a path or as a file identifier e.
In addition to the cryptogram mechanism, data confidentiality can be achieved by data concealment. The length field consists of 1 or 3 consecutive bytes.
ISO part 4 section 5 APDU level data structures
However, logical channels may share application-dependent security status and therefore may have security-related command interdependencies across logical channels e. Each command message may carry a response descriptor template fixing the data objects required in response. Data may be referenced as records, as data units or as data objects.
If an empty reference data object for auxiliary data is present in the response descriptor, then it shall be full in the response. Logical channel number according to 1.
Concealment thus requires no padding and the data objects concealed in the value field are recovered by the same operation. It encodes a class, a type and a number. An algorithm, a key and, possibly initial data may be selected for each security mechanism implicitly, i.
F I G U R E 2
The card shall support at least one of the following four methods for structuring EFs: 716-5 may be maintained, recovered or lost by file selection 8716-5 6. Your basket is empty. The length of Le is not null; therefore the Le field is present.
Click to learn more. Within an EF of record structure, records may have the same record identifier, in which case data contained in the records may be used for discriminating between them.