Hi, the CPLC string, while present on all EMV cards, does not contribute in security-focused process (e.g. it isn't used for static or dynamic data authentication).
these data are only used for audit of a smartcard since they provide information on "who did what" prior its issuance. the content of this string is defined as follows: * 5 ROM identifiers (10 bytes), each consisting of 4 digits coded on 2 bytes: � IC Fabricator (2B) � IC Type (2B) � Operating System Provider Identifier (2B) � Operating System Release Date (2B) � Operating System Release Level (2B) * EEPROM Identifiers contain chip, card, pre-perso & personalizer info., in the given order : � Chip Identifiers: � IC Fabrication Date (2B) � IC Serial Number (4B) � IC Batch Identifier (2B) � Card identifiers : � IC Module Fabricator (2B) � IC Module Packaging Date (2B) � ICC Manufacturer (2B) � IC Embedding date (2B) � Pre-personalization identifiers : � Pre-personalizer Identifier (2B) � Pre-personalization Date (2B) � Pre-personalization Equipment (4B) � Personalization identifiers : � Personalizer Identifier (2B) � Personalization Date (2B) � Personalization Equipment (4B) cheers, Sylvain. At 13:50 24/10/2001 -0500, Shenny Sheth wrote: >Folks, > >CPLC -- the Card Production Life Cycle data stored on an MPCOS-EMV >card can be used for what? Can you really build security in your application >that checks and validates the card by reading and validating the CPLC data? > >In brief, What is the use of CPLC data for me as an application developer?? > >Thanks ... > >-- >Shenny Sheth >Telecommunications Systems Analyst >EBT Planning Division >Bureau of Nutrition Services >Texas Department of Health >1100 W.49th Street >Austin, TX 78756 USA >Voice : 512.458.7111 x.3465 >Fax Gateway : 512.458.7446 >MSN Messenger Display Name : Shenny Sheth >http://www.tdh.state.tx.us/wichd/ebt/ebt1.htm > > > > > > >--- > > Visit the OpenCard web site at http://www.opencard.org/ for more > > information on OpenCard---binaries, source code, documents. > > This list is being archived at http://www.opencard.org/archive/opencard/ > >! To unsubscribe from the [EMAIL PROTECTED] mailing list send an email >! to >! [EMAIL PROTECTED] >! containing the word >! unsubscribe >! in the body. --- > Visit the OpenCard web site at http://www.opencard.org/ for more > information on OpenCard---binaries, source code, documents. > This list is being archived at http://www.opencard.org/archive/opencard/ ! To unsubscribe from the [EMAIL PROTECTED] mailing list send an email ! to ! [EMAIL PROTECTED] ! containing the word ! unsubscribe ! in the body.
