Вы находитесь на странице: 1из 7

Luna EFT

J apan PIN User Guide











Luna EFT J apan PIN User Guide

2
Documentation Version: Revision B (Mar 2013)
Part Number: 007-012066-001
2013 SafeNet, Inc. All rights reserved
Copyright
All intellectual property is protected by copyright. No part of this document may be reproduced, stored in a retrieval system or transmitted in any
form or by any means, electronic, mechanical, chemical, photocopy, recording or otherwise without the prior written permission of SafeNet.
SafeNet makes no representations or warranties with respect to the contents of this document and specifically disclaims any implied warranties
of merchantability or fitness for any particular purpose. Furthermore, SafeNet reserves the right to revise this publication and to make changes
from time to time in the content hereof without the obligation upon SafeNet to notify any person or organization of any such revisions or
changes.
SafeNet invites constructive comments on the contents of this document. These comments, together with your personal and/or company
details, should be sent to the address below.
4690 Millennium Drive
Belcamp, Maryland 21017, USA
Disclaimer
We have attempted to make this document complete, accurate, and useful, but we cannot guarantee it to be perfect. When we discover errors
or omissions, or they are brought to our attention, we endeavor to correct them in succeeding releases of the product. SafeNet, Inc. is not
responsible for any direct or indirect damages or loss of business resulting from inaccuracies or omissions. The specifications contained in this
document are subject to change without notice.
SafeNet Luna EFT (PH-EFT) is a trademark of SafeNet, Inc. All other product names referenced herein are trademarks or registered
trademarks of their respective manufacturers.
Technical Support
If you encounter a problem while installing, registering or operating this product, please make sure that you have read the documentation. If you
cannot resolve the issue, please contact your supplier or SafeNet support.
SafeNet support operates 24 hours a day, 7 days a week. Your level of access to this service is governed by the support plan arrangements
made between SafeNet and your organization. Please consult this support plan for further information about your entitlements, including the
hours when telephone support is available to you.
Technical Support Contact Information:
P
E
hone: 800-545-6608, 410-931-7520
mail: support@safenet-inc.com

Revision Software ID Action/Change Date


A M090600E Initial Release. J une 2012
B M090800E Updated for rebranding and copyright information updates. March 2013

Luna EFT J apan PIN User Guide

3
Table of Contents
Chapter 1 Introduction .......................................................................................................................................................... 4
Overview....................................................................................................................................................................................................................................................4
ConsoleOperationsSupport.............................................................................................................................................................................................................4
HostFunctionsSupport......................................................................................................................................................................................................................4
Chapter 2 Host Functions .................................................................................................................................................... 5
Overview....................................................................................................................................................................................................................................................5
FunctionMessageFormats...............................................................................................................................................................................................................5
ctionDescriptions.........................................................................................................................................................................................................................6
JapanPINTran.........................................................................................................................................................................................................................6
Fun
Appendix A Error Codes ...................................................................................................................................................... 7
FunctionErrorCodes...........................................................................................................................................................................................................................7

Luna EFT J apan PIN User Guide

4
Chapter 1 Introduction

Overview
This document defines the extended J apanese PIN option functionality for the software operating on a MarkII HSM.
This functionality is an optional extension to the standard SafeNet HSM functionality. Please refer to the Luna EFT Console User Guide, and
the Luna EFT Programmers Guide, for details of the standard functionality.
The J apanese PIN option functionality incorporates HSM Console Operations and Host Functions.
Note: To enable J apanese PIN option functionality, please contact SafeNet Technical Support.
Console Operations Support
An overview of the console operations supported by the J apan Options functionality is as follows:
Enabling or disabling of the J apan PIN translate host function.
Host Functions Support
The host functions include options to support:
The encryption of a clear/encrypted PIN.
Translation of a PIN from encryption under a PPK to encryption under another PPK.
The decryption of a PIN from encryption under a PPK to yield a clear PIN.

Luna EFT J apan PIN User Guide

5
C

hapter 2 Host Functions


Overview
This chapter details the extended formats and host functions supported by the Luna EFT for the J apanese Clear PIN customization. For the
standard Mark II functionality please refer to the Luna EFT Programmers Guide.
Function Message Formats
Data Item Representation in Request/Response Messages
Request and response content may use the following operators and qualifying letters.
Operator Meaning
e Encrypt in Electronic Code Book (ECB) mode.
Qualifier Meaning
V Variant
* Prefix to indicate a key pair.

Each field has an associated attribute and its length in bytes. The attributes are defined as follows:
Attribute Description
h Represents a hexadecimal digit. These are always grouped in pairs.

Luna EFT J apan PIN User Guide

6
Function Descriptions
JapanPINTran

Request Content Length Attribute Description
EF0601 3 h Function Code
Pfi,Pfo 1 h PIN format (input/output)
e*PPKi(PIN) or PIN 8 h Encrypted or clear PIN depending on translation
e*KMV1(PPKi) 16 h Input PPK encrypted by KM variant
e*KMV1(PPKo) 16 h Output PPK encrypted by KM variant
ANB 6 h Account Number Block
Response Content Length Attribute Description
EF0601 3 h Function Code
rc 1 h Return Code
e*PPKo(PIN) or PIN 8 h Encrypted or clear PIN depending on translation
T

his function allows translation of both the PIN block format and the PIN encryption key.
PFi and PFo High and low nibble respectively of the PIN format input and output. These specify the format of the
supplied PIN block and of the required PIN block. If format translation is not required, the PFi and PFo
fields must be set to the same value. The valid field values are:
0 =Clear PIN format
1 =AS/ANSI format
3 =PIN/PAD format
Examples:
PFi =3, PFo =0
The above will take a PIN in PIN/PAD format and return the PIN in the clear.
e*PPKi(PIN)
or PIN
This value is dependent on the type of translation being performed as specified by PFi. If PFi =0, this
value will be the PIN value in the clear. If PFi =1, or 3, this value must be the PIN encrypted by the
PIN Protect Key.
ANB is the 12-digit Account Number Block used in the formation of the clear AS/ANSI PIN Block.
e*PPKo(PIN)
or PIN
This value is dependent on the type of translation being performed as specified by PFo. If PFo =0,
this value will be the PIN value in the clear. If PFo =1, or 3, this value will be the PIN encrypted by
the PIN Protect Key.

Luna EFT J apan PIN User Guide

7
Appendix A Error Codes

Please refer to the Luna EFT Communications Guide for other host-connection-specific error codes.
F

unction Error Codes


Error Code Meaning
00 No error
01 DES Fault (system disabled)
02 Illegal Function Code
PIN MAILING not enabled
03 Incorrect message length
04 Invalid data in message: Character not in range (0-9, A-F).
05 Invalid key index: Index not defined or key with this Index not stored.
06 Invalid PIN format specifier:
only AS/ANSI =1 & PIN/PAD =3 specified.
07 PIN format error: PIN does not comply with the AS2805.3 specification, is in an invalid PIN/PAD format, or is in an invalid
Docutel format
08 Verification failure
09 Contents of key memory destroyed: e.g. the HSM was tampered or all KEYs deleted.
0A Uninitialised key accessed:
Key or Decimalization Table (DT) is not stored in the HSM.
0B Checklen error: customer PIN length is less than the minimum PVK length or less than Checklen in function.