FreeCalypso > hg > fc-pcsc-tools
comparison doc/GrcardSIM2-security-model @ 192:edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
| author | Mychaela Falconia <falcon@freecalypso.org> |
|---|---|
| date | Sat, 06 Mar 2021 21:41:12 +0000 |
| parents | 7c24ae2ca648 |
| children | 810ea92d9f47 |
comparison
equal
deleted
inserted
replaced
| 191:7c24ae2ca648 | 192:edaccdbac95b |
|---|---|
| 49 grcard2-set-adm5-hex xxxxxxxxxxxxxxxx # set new ADM5, arbitrary hex format | 49 grcard2-set-adm5-hex xxxxxxxxxxxxxxxx # set new ADM5, arbitrary hex format |
| 50 | 50 |
| 51 grcard2-set-super XXXXXXXX # set new ADM11, decimal format | 51 grcard2-set-super XXXXXXXX # set new ADM11, decimal format |
| 52 grcard2-set-super-hex xxxxxxxxxxxxxxxx # set new ADM11, arbitrary hex format | 52 grcard2-set-super-hex xxxxxxxxxxxxxxxx # set new ADM11, arbitrary hex format |
| 53 | 53 |
| 54 ADM11 MF quirk | |
| 55 ============== | |
| 56 | |
| 57 The operation of authenticating with ADM11 (verify-ext 11 or verify-hex 11) is | |
| 58 only allowed when the currently selected directory is MF - either as the very | |
| 59 first command in an fc-simtool session, or after an explicit 'select MF'. If | |
| 60 the current directory is DF_GSM or DF_TELECOM, the command to authenticate with | |
| 61 ADM11 (VERIFY CHV with P2=0x0B) fails with SW of 0x9802. | |
| 62 | |
| 54 Setting PIN1/PIN2/PUK1/PUK2 | 63 Setting PIN1/PIN2/PUK1/PUK2 |
| 55 =========================== | 64 =========================== |
| 56 | 65 |
| 57 The following commands reset standard PIN and PUK secret codes after | 66 The following commands reset standard PIN and PUK secret codes after |
| 58 authenticating with either ADM5 or ADM11: | 67 authenticating with either ADM5 or ADM11: |
| 77 =================== | 86 =================== |
| 78 | 87 |
| 79 The initial default ADM11 secret code from Grcard factory is decimal 88888888, | 88 The initial default ADM11 secret code from Grcard factory is decimal 88888888, |
| 80 meaning that you need to authenticate as follows: | 89 meaning that you need to authenticate as follows: |
| 81 | 90 |
| 91 select MF | |
| 82 verify-ext 11 88888888 | 92 verify-ext 11 88888888 |
| 83 | 93 |
| 84 If your card is unprogrammed (if you haven't programmed it yourself with | 94 If your card is unprogrammed (if you haven't programmed it yourself with |
| 85 fc-simtool), all other secret codes should be regarded as unknown - you need to | 95 fc-simtool), all other secret codes should be regarded as unknown - you need to |
| 86 reset them yourself in your own card programming or provisioning operation. | 96 reset them yourself in your own card programming or provisioning operation. |