FreeCalypso > hg > fc-pcsc-tools
comparison doc/Low-level-commands @ 96:3bce899bcf78
doc/Low-level-commands: a38 command documented
| author | Mychaela Falconia <falcon@freecalypso.org> |
|---|---|
| date | Wed, 17 Feb 2021 20:55:34 +0000 |
| parents | 7412cdd505b3 |
| children | 08ba6a5d8a3f |
comparison
equal
deleted
inserted
replaced
| 95:7412cdd505b3 | 96:3bce899bcf78 |
|---|---|
| 136 the reverse order from the last index to the first. | 136 the reverse order from the last index to the first. |
| 137 | 137 |
| 138 GSM authentication testing | 138 GSM authentication testing |
| 139 ========================== | 139 ========================== |
| 140 | 140 |
| 141 a38 | 141 a38 RAND |
| 142 | |
| 143 This fc-simtool command exercises the SIM card's RUN GSM ALGORITHM command. | |
| 144 The user-specified RAND value (a hex string of 16 bytes) is sent to the SIM, | |
| 145 and the SIM response is parsed to display SRES and Kc. | |
| 146 | |
| 147 Per SIM specs GSM TS 11.11 and 3GPP TS 51.011, RUN GSM ALGORITHM can only be | |
| 148 executed when DF_GSM is selected. fc-simtool a38 command does NOT include a | |
| 149 built-in SELECT of DF_GSM, hence you need to manually issue 'select DF_GSM' | |
| 150 first. | |
| 151 | |
| 152 This a38 command can be used to verify if the SIM card's Ki and A38 algorithm | |
| 153 match what you expect them to be. To perform this test, issue an a38 command | |
| 154 to the SIM with some made-up RAND and note the SRES and Kc response. Then use | |
| 155 the osmo-auc-gen utility from Osmocom to run the expected algorithm with the | |
| 156 expected Ki (and the expected OPc if MILENAGE is used) and the same RAND, and | |
| 157 see if SRES and Kc match. |