Track 3 masked data, Encrypted session id, Dukpt key serial number – MagTek MagneSafe V5 User Manual

Page 24: Encryption counter

Advertising
background image

MagneSafe V5

16

For an AAMVA card, the DL/ID# is masked as follows:

• The specified number of initial characters are sent unmasked. The specified

number of trailing characters are sent unmasked. If Mod 10 correction is
specified, all but one of the intermediate characters of the DL/ID#PAN are set to
zero; one of them will be set such that last digit of the DL/ID# calculates an
accurate Mod 10 check of the rest of the DL/ID# as transmitted. If the Mod 10
correction is not specified, all of the intermediate characters of the DL/ID# are set
to the specified mask character.

• The Expiration Date and Birth Date are transmitted unmasked.

• All other characters are set to the specified mask character.


Track 3 Masked Data

This field contains the Masked Track Data for track 3.

For an ISO/ABA card, the PAN is masked as follows:

• The specified number of initial characters are sent unmasked. The specified

number of trailing characters are sent unmasked. If Mod 10 correction is
specified, all but one of the intermediate characters of the PAN are set to zero;
one of them will be set such that last digit of the PAN calculates an accurate Mod
10 check of the rest of the PAN as transmitted. If the Mod 10 correction is not
specified, all of the intermediate characters of the PAN are set to the specified
mask character.

• All Field Separators are sent unmasked.

• All other characters are set to the specified mask character.


For an AAMVA card, the specified mask character is substituted for each of the characters read
from the card.

Encrypted Session ID

This 8-byte Binary field contains the encrypted version of the current Session ID. Its primary
purpose is to prevent replays. After a card is read, this property will be encrypted, along with the
card data, and supplied as part of the transaction message. The clear text version of this will
never be transmitted. To avoid replay, the application sets the Session ID property before a
transaction and verifies that the Encrypted Session ID returned with card data decrypts to the
value set.

DUKPT Key Serial Number

This 10-byte Binary field contains the DUKPT Key Serial Number used to encrypt the encrypted
fields in this message. This 80-bit field includes the Initial Key Serial Number in the leftmost 59
bits and a value for the Encryption Counter in the rightmost 21 bits. If no keys are loaded, all
bytes will have the value 0x00.

Encryption Counter

This 3-byte field contains the value of thet Encryption Counter at the end of this transaction. See
the Get Encryption Counter command for more information.

Advertising
Popular Brands
Popular manuals