JavaCard OS

JavaCardOS - JavaCardForum
https://www.javacardos.com/javacardforum/

Key Diversification Data

https://www.javacardos.com/javacardforum/viewtopic.php?f=15&t=1205

Page 1 of 1

Key Diversification Data

Posted: Tue Jun 06, 2017 3:40 am
by ngana
As we all know, the key diversification data is used to derive the session keys. And it is returned by init-update APDU. However, now I have a question. Does it make sense to generate the diversification data randomly for each session using RandomData class?

Re: Key Diversification Data

Posted: Wed Jun 07, 2017 4:25 am
by mabel
AFAIK, key diversification data is used to derive the card static keys, not the session keys. So basically, it's to some extent a standard known only by the Card Issuer.

Re: Key Diversification Data

Posted: Wed Jun 07, 2017 5:49 am
by Tarantino
You can try the command "80 50 00 00 08" (8 bytes of card challenge), you will see the response returned by the card with the first 10 bytes remains always the same. It's the key diversification data.
All times are UTC-04:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/