Access problem in my Cryptoflex 8K Smart Card

Hi everybody,
I have a terrible problem with a cryptoflex 8K smartcard, maybe there are no solutions.
I ask your help, please.

ATR: 3B951540FF6801020204

Commands that I sent to the card:

1) SELECT Master File  ( APDU: 0xC0A40000023F00 )   
2) GET RESPONSE to get more info about Master File ( APDU: 0xC0C0000014 )
    Answer: 0x00001BFC3F0038FF4F44440105000002000000009000
    This means that:
     - (3-4) 1BFC: 7164 bytes free in DF
     - (8-11) FF4F4444: ACs - AUT for DirNext, DeleteFile and CreateFile
     - (12) 01: File status = activated
     - (13) 05: No CHV data !!!
     - (14) 00: CHV1 absent or invalidated
     - (15) 00: 0 DFs under the MF
     - (16) 02: 2 EFs under the MF
     - (17) 00: CHV files absent !!!!
    If the DF has no relevant CHV file, then the the Get Response length is 17 bytes.
    If CHV1 exists, then the response length is 20 bytes. If CHV2 exists, then the response is
    the full 23 bytes.

I want to create and manupulate files on the card but I can't because authentication is required.

3) SELECT CHV1 File ( APUD: 0xC0A40000020000)
    The CHV1 reserved file ID is 0000. Answer is 0x6A82 (File ID not found)
4) SELECT CHV2 File ( APUD: 0xC0A40000020100)
    The CHV1 reserved file ID is 0100. Answer is 0x6A82 (File ID not found)

I used this card some months ago and I remember that I got the control using the PIN 2C15E526E93E8A19. Now seems that there aren't pin files in the card so using VERIFY CHV command I get (rightly) an error. This is really strange because I never touched the card !!!

5) VERIFY CHV (APDU: 0xC0200001082C15E526E93E8A19)
    Answer 0x6981 : No EF exists or no CHV or Key defined

So how can get the control of the card ?

I know that there are two file under the MF.
One of those is the card serial number file with reserved ID of 0002.
The following commands demostrate this:

6) SELECT card serial number EF (APDU: 0xC0A40000020002)
    Answer: 0x610F
7) GET RESPONSE (APDU: 0xC0C000000F)
    Info: 0x000000080002010004FFFF010100009000

The other file is an external key file with reserved ID of 0011.
The following commands demostrate this:

6) SELECT external key file (APDU: 0xC0A40000020011)
    Answer: 0x610F
7) GET RESPONSE (APDU: 0xC0C000000F)
    Info:  0x00000026001101FFF4FF44010100009000
     - (3-4) 0026: file body size of 38 bytes
     - (7) 01: transparent file
     - (8-11) FFF4FF44: Acs -
     - (12) 01: the file is active

I try to create a trasparent file di 10 byte with the ID 2222 under the MF without ACs

8) CREATE FILE (APDU: 0xF0E000001000000010222201000000000103000000)
    Answer 0x6982: Access condition not met !!!!

So I cannot recreate the CHV file with this command because I don't met access condition.

A virgin Cryptoflex 8K card has an 8-byte transport key in the external key file in the MF (ID=0011) that is set to offer 3 key attempts. The first key block (key 0) is used for an 8-byte factory key, which Schlumberger does not distribute. The transport key resides in the second key block (key 1).

I think that the only way to gain card control is to send the VERIFY KEY command with the key number, key length, and transport key string. Then so I will can recreate CHV files.
I can only hope that this file was not changed in the past.

The problem is, what is the default Cryptoflex 8K transport key ?

--
Angella Andrea
Microsoft Certified Technology Specialist
http://www.angellaa.it/


_______________________________________________
Muscle mailing list
Muscle@...
http://lists.drizzle.com/mailman/listinfo/muscle

AFAICR, there should be a default key value in the SLB Cryptoflex Programmer's Guide.

  T.
Sent from my BlackBerry® wireless device

-----Original Message-----
From: Andrea Angella <angella.andrea@...>
Date: Sat, 12 Sep 2009 20:43:39
To: MUSCLE<muscle@...>
Subject: [Muscle] Access problem in my Cryptoflex 8K Smart Card

_______________________________________________
Muscle mailing list
Muscle@...
http://lists.drizzle.com/mailman/listinfo/muscle


_______________________________________________
Muscle mailing list
Muscle@...
http://lists.drizzle.com/mailman/listinfo/muscle

Hi Tommaso,
In the Cryptoflex 8K manual there isn't the default key value.

In the Cryptoflex 16K and 32K manual here http://www.polman-software.com.pl/pdf/CryptoflexPG.pdf I found that:

Application authorization key (AAK), also called the transport key:2C15E526E93E8A19

I reported this value as a PIN value in the previous email.

Now I try to send the VERIFY KEY command using this key and then I say you results.
I hope so !!!!

Andrea

_______________________________________________
Muscle mailing list
Muscle@...
http://lists.drizzle.com/mailman/listinfo/muscle

OK, with VERIFY PIN I gained access to the card !!!

I tryied a lot of commands like CREATE FILE, UPDATE BINARY, READ BINARY and all is OK !

So I decided to create the CHV1 file (ID: 0000) as an 8 byte transparent file. I write on it the code 1111111111111111. Reading the property of master file now I see that there is CHV1 data, good. The problem is that b0=0 say that the CHV1 data are invalid. In fact I cannot authenticate using the command VERIFY CHV. Maybe is needed a different file structure inside the CHV1 file.

However now I'am happy because I can use my card without problems.





--
Angella Andrea
Microsoft Certified Technology Specialist
http://www.angellaa.it/


_______________________________________________
Muscle mailing list
Muscle@...
http://lists.drizzle.com/mailman/listinfo/muscle