Change of the circle storage model of PBOC/EMV

Source: Internet
Author: User

Reprinted please indicate the source

Author: Pony


For more information about the concept of deposit, see my other article (e-cash application ):

Http://blog.csdn.net/pony_maggie/archive/2010/01/29/5270573.aspx

 

The promotion of PBOC/EMV in China not only brings about the change of IC card, but also will inevitably lead to changes in the entire industry, including financial terminal products. this article describes the changes that PBOC/EMV migration brings to the terminal storage mode.

 

Currently, many storage devices use the offline storage mode, which can be simply used to represent

To answer this question, you must first understand that the storage in this mode is offline.


Since it is offline, there must be security authentication measures. Otherwise, anyone who understands the card reading module's card writing instructions can write the IC card. samka is generally used for this security authentication. This samcard is also called isam, and is integrated with the card reader module. this Sam can authenticate the card reader and the card. Both parties are legal. the general process of authentication is as follows:

First, the sample card stores a CMK. When issuing a card, the card stores some information (such as the card number) generated by the CMK to the IC card, therefore, the sub-passwords of each card are different.

When an IC card is inserted into a card reader, the sam generates a random number and transmits it to the IC card. The IC card uses its own sub-Key to encrypt the data, generate a ciphertext, and then transmit it to the sam. The sam reads the card number, use this card number to distribute a sub-key. I call it key A. Use a to decrypt the received ciphertext and compare it with the previously generated random number. If the number is equal, the sub-key is valid.

 

Verify that the device is valid.

 

Let's take a look at the storage in PBOC/EMV mode, as shown in:

PBOC's IC card is a CPU card. Its complete operating system ensures its flexibility and functionality. hardware features determine the high security of keys in it. the PBOC/EMV specification requires that deposit and storage transactions must be authenticated online, and each transaction must have such a standard process. in this way, the sam can be removed during storage, and the operations are safer. you may say that the storage speed is slow, but what is the relationship between storage and storage is not consumption. Compared with its security, it is more important.

 

In fact, the change that PBOC brings to the storage pattern is not just about security.

 

I call Sam and card readers a card operation module. In this mode, the card operation module and IC card are provided by a company, and then they have a set of instruction sets. All operations use this instruction set. in addition to the card operation module provided by the company, it is impossible for any card operation module on the market to read and write this IC card. because PBOC/EMV card operation instructions are a standard in the industry, as long as the card reading device meets this standard can read and write the card. in this way, card reading modules and cards can be provided by different companies, and the original vertical industry model will become horizontal.

 

I remember reading the book <only paranoid to survive> written by Intel, in which he mentioned that the PC industry should inevitably change from a vertical industrial chain to a horizontal one. some companies did not see this trend, and the result went downhill, such as IBM. dell realized this problem before achieving today's Dell kingdom. in fact, this horizontal mode is a trend in many industries.

 

At first, an ATM was built by a company. This model is not good for customers (generally banks) or the development of the industry. for customers, In this mode, the price of ATM is unacceptable. for the industry, it is not conducive to competition and there will be no development without competition. let's take a look at the current ATM industry. The card reader is made by Company A, and the password and keyboard are made by Company B. The cash recognition module may be made by Company C. The products of many companies finally become an ATM machine, this horizontal industrial model brings about a natural price reduction, and the entire industry is thriving due to competition.

 

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.