Since I got the "Smart Card Handbook" (Rankl/Effing) as Andreas Jellinghaus suggested me - yes, it's a very good book - I have been playing with my eToken PRO. Now, I have another questions:
1.- I have seen that if we want to send a first succesfull command to the smartcard, we need to perform a T=1 S-Block "Resync request". Is that always need it? When we should do a resync? 2.- I have traced a sign operation with my etoken pro, before the "Perform Security Operation" is called, we do a "Set Security Environment". At http://www.fsk.dk/cgi-bin/doc-show.cgi?theme_id=7471&doc_id=19286&doc_type=29&eftmenu=3#8.7. I have find a description of this APDU, but this doesn't match with what pkcs15-crypt send. I mean, the pkcs15-tool sends: 00 22 01 B6 03 83 01 10 that is the same as: CLA=00 INS=22 P1=01 P2=B6 Lc=03 DATA = 83 01 10 Le=NULL According with that url, P2=B6 -> Value of DST in data field. In data field I found 83 01 10, but this doesn't match with any description that I have find in that url. I'm a little frustrated with that, I can't find any resource that shows all the APDU descriptions (values for INS, P1, P2, ...). What reference do u usually use for that? Is there any full complete resource about that (if possible to find at internet better)? 3.- Don't worry, that's the last question for today :P With a "Perform Security Operation" for sign a hash value I have detected that the hash value to be signed is send after some chain messages. That messages contains first a lot of FF FF FF... an finally, in the last message, the hash value. This is like some padding info that I don't know exactly what means, and why is send before the hash value. Any idea? As always, Thanx a lot!!!!!!! Sergio _______________________________________________ opensc-devel mailing list [email protected] http://www.opensc-project.org/mailman/listinfo/opensc-devel
