I have Java Card specific problems with my Cyberflex e-gate 32k. Maybe here are people which can help.
Problem 2:
The method javacard.security.MessageDigest.update(byte[] inBuff, short inOffset, short inLength) of the Java Card 2.1.1 API doesn't work as aspected.
This method throws an CryptoException in spite of that this exception is not defined for this method. So I can't sign any documents and hash only data with the javacard.security.MessageDigest.doFinal() method.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Problem 1:
I own a Cyberflex e-gate 32k and want to use the Visa Open Platform features.
I get error 6985 when I run the ProviderSecurityDomain.unwrap() method.
I'm using a Cyberflex e-gate 32k. This card is compliant with JavaCard 2.1.1 and OpenPlatform 2.0.1'.
I retrieve the ProviderSecurityDomain in the select() method of the applet
securityObject = OPSystem.getSecurityDomain();
The IntitializeUpdate and ExternalAuthenticate methods are successful.
In InitializeUpdate I get the secureChannel by:
secureChannel = securityObject.openSecureChannel(apdu);
The ExternalAuthenticate method verifyExternalAuthenticate succeeds:
securityObject.verifyExternalAuthenticate(secureChannel, apdu);
The calculated MAC I'm using as the next initialization vector (icv) for the MAC of the next command for integrity in CBC mode. And I also used 0x84 als the class byte and I added 8 to Lc because of the MAC. The error 69 85 means SW_CONDITIONS_NOT_SATISFIED. So I believe the problem is not an incorrect authentication.
I use this code fragment:
apdu.setIncomingAndReceive();
securityObject.unwrap(secureChannel, apdu);Is it neccessary to exchange the transportation keys to make it work? But this isn't documented.
Regards, Karsten
_______________________________________________ Muscle mailing list [EMAIL PROTECTED] http://lists.drizzle.com/mailman/listinfo/muscle
