Hi! > > You can add Reiner SCT's cyberJack RFID komfort and cyberJack RFID > > standard to this list (both also support SM, which is absolutely > > transparent to the application). I have been told that filtering VERIFY > > (or similar commands) is bound to a certain type of card. > > So the firewall is only active for certain cards but not all? > > I would like to add only exact and precise information in my lists. > This kind of information is hard to get without the help of the > manufacturer.
An APDU filter is required to get the certification for the German ID card (nPA), which both readers have. BSI TR-03119 states that VERIFY and CHANGE REFERENCE DATA must be blocked. Reiner SCT says that for convenient use with other cards customers are demanding that applications can fill out verify commands (which essentially means that customers want to use PIN-caching in their applications). Note that the two readers mentioned above do not use libccid.
pgpf7qmmAMBMK.pgp
Description: PGP signature
_______________________________________________ opensc-devel mailing list opensc-devel@lists.opensc-project.org http://www.opensc-project.org/mailman/listinfo/opensc-devel