Quantcast
Channel: Thales Simulator Library
Viewing all 332 articles
Browse latest View live

New Post: hsm 8000 issue

March 11, 2015, 11:46 am
$
0
0
Hi,

It happens when power unplugged for a long time. Try to reload the firmware and leave it powered at least 1 week.
The tool required to load the firmware comes in a CD with the package. Also you may find the firmware in that CD.

Regards
Search

New Post: hsm 8000 issue

March 12, 2015, 1:47 am
$
0
0
my problem is that the customer no longer has the cd. i cannot even connect to the console. the management port was never configured. i am trying another serial null modem cable to see if i am able to connect to the console

Shingai Jinguri
Senior Systems Engineer
Strategic Information Systems
Suite 2 Fountain Court, Westgate
Harare,Zimbabwe
Tel +2634333667
Mob +263731357215
E-mail [email removed]


<f

New Post: generate IPEK

March 16, 2015, 5:23 am
$
0
0
Hi all,

if I have a KSN and BDK how do I generate the IPEK using the ThalesKeyManagement class.
What are the steps or is it not possible using the ThalesKeyManagement?

is there any other source code available for this?

thanks for all the support.

New Post: Connecting to HSM Simulator

April 2, 2015, 9:23 pm
$
0
0
I am working on thales simulator on windows 7. I am trying to connect to simulator using another socket application running on same system. I am able to connect to simulator using my socket application. I'm getting message in Application Event field in simulator like Client from 127.0.0.1:49647 is connected. Now i'm trying to send command to the simulator like this: 0006303030304e43. But the simulator is not receiving anything. Do i need to do any extra configuration? Help highly appreciated.

New Post: hsm 8000 issue

April 16, 2015, 7:50 am
$
0
0
Unfortunately manufacture of the Thales HSM8000 stopped about 5 years ago and support finished last year.
There is a replacement device - the payShield 9000 - you should maybe consider that instead?

8-

New Post: Connecting to HSM Simulator

April 18, 2015, 6:57 am
$
0
0
Hi,

Simulator does not support DUKPT, you are sending 'A' option.

Regards,
Juris

New Post: Connecting to HSM Simulator

April 19, 2015, 10:40 pm

New Post: Thales 9000 Encryption Method

April 28, 2015, 1:58 am
$
0
0
Hi all,

I used HSM host command JA to generate a random pin. The result is pin under LMK. Then I used JG command to translate the pin from LMK to ZPK.

The problem is when I get the pin block under ZPK result from JG command, I need to send to another party. But how is the other party to decrypt the pin block under ZPK? How can I know which encryption algorithm the HSM box is using?

Thanks in advance.
Search

New Post: Thales 9000 Encryption Method

April 29, 2015, 8:50 am
$
0
0
Hi,

The encryption is 3DES/ECB.

You need to share this ZPK with another part. You can do it by exporting ZPK under ZMK using KE command and send ZMK clear components to 3rd party and ZPK under ZMK. 3rd party will import that ZPK under their LMK or decrypt it by some software.

Let us know if you need assistance in key export under ZMK.

Regards,
Juris

New Post: Thales 9000 Encryption Method

April 29, 2015, 8:04 pm
$
0
0
Hi Juris,

Thanks for your reply.

Is there any documents I can refer to for the HSM box encryption method? I tried to search in the Thales manual but couldn't find any info on it. What I can only get from the manual is the pin encryption method is either Visa method or Racal method during security setup using console command CS.

For the key export, I already have an image on it and I can find the steps you shared out in some other threads.

Thank you.

New Post: Thales 9000 Encryption Method

June 26, 2015, 5:22 am
$
0
0
As long as you export PIN under 3DES key the encryption algorithm has to be 3DES. Encryption mode of resulting PIN block is defined by PIN block format. Description of PIN block formats can be found in General Information HSM manual.
Visa/Racal method you are referring to is a method of encrypting PIN and PAN under LMK only.

New Post: Font for PIN print

June 26, 2015, 5:33 am
$
0
0
You need to send them with PA host command just before sending a print command (e.g. PE). For syntax see Print Formatting Symbols section in Host Programmer HSM manual.

New Post: A1 response HSM is missing the U in key under ZMK when mode in A0 is a 1

July 10, 2015, 7:19 am
$
0
0
A0 command with mode 1 (generate and encrypt under ZMK)

Simulator trace
=== [A0], starts 19:50:58.122 =======
[Key,Value]=[Key Scheme LMK,U]
[Key,Value]=[Key Scheme ZMK,Z]
[Key,Value]=[Key Type,009]
[Key,Value]=[Mode,1]
[Key,Value]=[ZMK,BB839220AE2F70A754F05D356107D6E3]
[Key,Value]=[ZMK Scheme,U]

Key generated (clear): 8F02BA5BCE67C254E064DF8AB6DA139D
Key generated (LMK): UE02E8A668D9CFFD9443FB8D65BA5F087
Check value: 67CA48
ZMK (clear): 3E3BEC0BC2BCF789E3BFB0F8BF8F9EF2
Key under ZMK: AE5FF819A5D88A9EC62761564EB81339
=== [A0],   ends 19:50:58.142 =======
Hexdump

127.0.0.1:60279
30 30 30 30 41 31 30 30 | 0000A100
55 45 30 32 45 38 41 36 | UE02E8A6
36 38 44 39 43 46 46 44 | 68D9CFFD
39 34 34 33 46 42 38 44 | 9443FB8D
36 35 42 41 35 46 30 38 | 65BA5F08
37 41 45 35 46 46 38 31 | 7AE5FF81
39 41 35 44 38 38 41 39 | 9A5D88A9
45 43 36 32 37 36 31 35 | EC627615
36 34 45 42 38 31 33 33 | 64EB8133
39 36 37 43 41 34 38    | 967CA48
The spec indicates key under lmk to be 1 A + 32/48 H, the 1A part is not being sent by the HSM in the response.

New Post: A1 response HSM is missing the U in key under ZMK when mode in A0 is a 1

July 10, 2015, 9:16 am
$
0
0
'U' is the key scheme and it is exactly the 1A part

New Post: A1 response HSM is missing the U in key under ZMK when mode in A0 is a 1

July 13, 2015, 8:02 pm
$
0
0
teryakif wrote:
'U' is the key scheme and it is exactly the 1A part
Not sure what you are stating, the U is present . The problem is the the 1A part in the response for "Key under ZMK" [AE5FF819A5D88A9EC62761564EB81339] is missing. Its coming back without the scheme and is required as part of the Thales spec if is wider than 16 then a scheme is required (16 H or 1A + 32/48 H).
If you look at the hexdump its evident.
55 45 30 32 45 38 41 36 | UE02E8A6.....
This U is for the key generated under LMK , I am talking about the key under ZMK.
Search

New Post: A1 response HSM is missing the U in key under ZMK when mode in A0 is a 1

July 14, 2015, 3:51 am
$
0
0
You are right. If you have downloaded it from download tab codes are different. Try to download from source code tab and build them. It should work. They are different then in the downloads tab.

New Post: A1 response HSM is missing the U in key under ZMK when mode in A0 is a 1

July 14, 2015, 4:20 am
$
0
0
I have used the installable version. Will try building it and use. Thanks for the tip.

New Post: A1 response HSM is missing the U in key under ZMK when mode in A0 is a 1

July 14, 2015, 7:22 am
$
0
0
What do you guys use to build, Visual Studio 2008 is no longer available and the 2013 community edition does not like the project format. I dont use the Dev Studio environment so any tips would be appreciated.

New Post: How to use Keyblock LMK?

August 13, 2015, 7:50 am
$
0
0
How to use Keyblock LMK instead of Variant LMK?

Is it possible to use Keyblock LMK in simulator?

New Post: "SA" command

March 9, 2016, 7:25 am
$
0
0
Hi,

SA/SB command is a customisation added to 1141-0802 HSM8000 firmware - Export a key using 3DES/CBC mode. The structure of command is as follows:
Command:
Header - m A - command header
Command code - 2 A - value 'SA'
Key tyoe - 3 H - key from key type table 
ZMK - 32 H or 1A + 32 H or 1 A + 48 H - ZMK key (000)
Key to be exported - 1A + 32 H or 1 A + 48 H - Key under LMK
IV - 16 H - Initial vector
Atalla Variant - 1 N or 2 N - optional, Atalla Variant, if it is enabled in CS
Delimiter - 1 C - optional, value 0x19
Message Trailer - n A - optional 

Response:
Header - m A - response header, the same as in command
Response code - 2 A - value 'SB'
Error code - 2 N - error code as in error code table in Host Command Reference Manual
Key under ZMK - 32 H or 48 H - key under ZMK
KCV - 6 H - key check value
Delimiter - 1 C - optional, value 0x19
Message trailer - n A - optional, as in commnad
Regards,
Juris
Viewing all 332 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>