> > Is CosmopolIC a 2.1.x card?
2.1 is the minimum, and newer cards are backwards compatible. > > > Does CosmopolIC have the on-card byte code verifier? > I think the cyberflex is the only one with a verifier. In my job, no card need it, including oberthur ones. > > I have no clue for Cyberflex, expect not using a Cyberflex. > > Well Cyberflex 32K is the easiest card to buy (amazingly, the > Gemalto webstore is still not offering the 64K card, making it > unavailable to end users like me!), and most other card makers are > not offering blank cards as ready-to-buy for end users (for > instance the highly certified Oberthur card has a dead US website > and a main website which just has a blank area for the "enterprise > solutions" usage class. Did you try this site? http://www.smartcardsource.com/ Here are my thoughts: cyberflex is a paranoid card, the on card verifier confirms this. But your apdu trace shows 0x80 CLA bytes, which signifies that you communicate with the card without security. I would bet that the 6985 (security status not satisfied) comes from here. Try forcing gpshell to append MACs to the commands. I see that you have asked it with open_sc -security 1 -keyind 0 -keyver 0 <ISK> but it does not seem to have worked, i don't know why. Also note that my successfull cardedge loading was made using SCShell, which comes with lots of scripts including one to load cardedge.cap.transf on cyberflex cards: http://www.openscdp.org/scsh3/index.html http://www.openscdp.org/scripts/musclecard/index.html this may be worth a try. Sebastien
_______________________________________________ Muscle mailing list [email protected] http://lists.drizzle.com/mailman/listinfo/muscle
