Ref: 2016 2000022523

IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291

Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:1/128

Personalization Manual
For
M/Chip Advance v1.2.2

Ref: 2016 2000022523

P18-017/SAAAAR 092291

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:2/128

Contents

1 DOCUMENT EVOLUTIONS 8

2 OBJECT 10
2.1 INTRODUCTION . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
2.2 REFERENCE AND APPLICABLE DOCUMENTS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
2.3 CONVENTIONS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
2.3.1 Notation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10

3 INSTALLATION 12
3.1 Executable Load File . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
3.2 Module . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
3.3 Install parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
3.3.1 INSTALL PARAMETER ‘C9’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
3.3.2 INSTALL PARAMETER ‘53’ within ‘C9’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
3.3.3 INSTALL PARAMETER ‘54’ within ‘C9’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15

4 APDU COMMANDS 16
4.1 INTRODUCTION . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
4.2 INITIALIZE UPDATE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
4.2.1 Definition and scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
4.2.2 Command message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
4.2.2.1 PARAMETERS P1 / P2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
4.2.2.2 COMMAND DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
4.2.3 Response message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
4.2.3.1 RESPONSE DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
4.2.3.2 STATUS WORD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
4.3 EXTERNAL AUTHENTICATE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
4.3.1 Definition and scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
4.3.2 Command message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
4.3.2.1 PARAMETERS P1 / P2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
4.3.2.2 COMMAND DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
4.3.3 Response message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
4.3.3.1 RESPONSE DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
4.3.3.2 STATUS WORDS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
4.4 SELECT FILE . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
4.4.1 Definition and scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
4.4.2 Command message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
4.4.2.1 PARAMETERS P1 / P2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
4.4.2.2 COMMAND DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
4.4.3 Response message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
4.4.3.1 RESPONSE DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
4.4.3.2 STATUS WORDS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:3/128

4.5 GET DATA . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22

4.5.1 Definition and scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
4.5.2 Command message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
4.5.2.1 PARAMETERS P1 / P2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
4.5.2.2 COMMAND DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
4.5.3 Response message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
4.5.3.1 RESPONSE DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
4.5.3.2 STATUS WORDS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
4.6 STORE DATA . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
4.6.1 Definition and scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
4.6.2 Command message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
4.6.2.1 PARAMETERS P1 / P2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
4.6.2.2 COMMAND DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
4.6.3 Response message . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
4.6.3.1 RESPONSE DATA FIELD . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
4.6.3.2 STATUS WORDS . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26

5 DGIs 27
5.1 Common EMV DGIs - Overview . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
5.2 Common EMV DGIs - Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
5.2.1 DGI ‘ss rr’: External records . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
5.2.2 DGI ‘00 62’: Manual EF creation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
5.2.3 DGI ‘30 00’: Internal Data Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
5.2.4 DGI ‘30 01’: Internal Data Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
5.2.5 DGI ‘80 00’: EMV TDES Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
5.2.6 DGI ‘80 10’: PIN Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
5.2.7 DGI ‘82 0x’: DDA/PIN RSA CRT parts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
5.2.8 DGI ‘83 0x’: DDA/PIN RSA CRT parts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
5.2.9 DGI ‘90 00’: EMV TDES Keys KCVs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
5.2.10 DGI ‘90 10’: PIN Related data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
5.2.11 DGI ‘91 02’: Contact FCIs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
5.2.12 DGI ‘91 04’: AIP and AFL storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
5.3 Supported tags in DGIs ‘30 00’ and ‘30 01’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
5.4 Application-specific external DGIs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
5.5 Proprietary DGIs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
5.6 DGIs Description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
5.6.1 DGI ‘80 04’: AC Card Key (MAS4C) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
5.6.2 DGI ‘84 00’: Contact KDCVC3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
5.6.3 DGI ‘A0 02’: Common Risk Management Parameters . . . . . . . . . . . . . . . . . . . . . . . 35
5.6.4 DGI ‘A0 05’: Contact AIP and AFL . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
5.6.5 DGI ’A0 06’: Contact MKIDN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
5.6.6 DGI ‘A0 07’: Application Status and ATC Limit . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
5.6.7 DGI ‘A0 08’: PIN Decipherments Error Counter Limit . . . . . . . . . . . . . . . . . . . . . . . . 36
5.6.8 DGI ‘A0 09’: Application Life Cycle Data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:4/128

5.6.9 DGI ‘A0 0A’: Last Online Transaction Date . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37

5.6.10 DGI ‘A0 12’: Contact Risk Management Parameters . . . . . . . . . . . . . . . . . . . . . . . . 37
5.6.11 DGI ‘A0 13’: Contact Application Control . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
5.6.12 DGI ‘A0 14’: Contact Read Record Filter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
5.6.13 DGI ‘A0 15’: Contact Card Issuer Action Codes . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
5.6.14 DGI ‘A0 17’: Contact TDES Key Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
5.6.15 DGI ‘A0 28’: MAS4C TDES Key information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
5.6.16 DGI ‘A2 02’: Linked Application index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
5.6.17 DGI ‘B0 10’: Contact IVCVC3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
5.6.18 DGI ‘B1 00’: Contact Relay Resistance Protocol Parameters . . . . . . . . . . . . . . . . . . . 39
5.6.19 DGI ‘B1 02’: Linked Application index . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
5.6.20 DGI ‘54 00’: Optimized records list . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40

6 RULES AND BEHAVIORS 41

6.1 Data sharing . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
6.1.1 Container instances and data inheritance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
6.1.2 Granularity . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41
6.2 Automatic Data Element Creation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 42
6.3 Blowfuse Status Words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
6.4 Mandatory Data Elements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
6.5 Log file creation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

7 Personalization samples 46
7.1 Profile 1H . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 46
7.2 Profile Data Sharing CARD7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 74

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:5/128

List of Figures

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:6/128

List of Tables
1 Executable Load File AID . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
2 Module AID . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
3 ‘Install for Install’ - Parameter ‘C9’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12
4 ‘Install for Install’ - Parameter ‘53’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
5 ‘Install for Install’ - Install Parameter ‘53’, byte 1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
6 ‘Install for Install’ - Install Parameter ‘53’, byte 2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13
7 ‘Install for Install’ - Install Parameter ‘53’, byte 3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14
8 ‘Install for Install’ - Install Parameter ‘53’, byte 4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14
9 ‘Install for Install’ - Install Parameter ‘53’, byte 5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14
10 ‘Install for Install’ - Parameter ‘54’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
11 ‘Install for Install’ - Install Parameter ‘54’, byte 1 (mandatory) . . . . . . . . . . . . . . . . . . . . . . . 15
12 ‘Install for Install’ - Install Parameter ‘54’, byte 2 (optional) . . . . . . . . . . . . . . . . . . . . . . . . . 15
13 ‘Initialize Update’ - Command description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
14 ‘Initialize Update’ - Command data field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
15 ‘Initialize Update’ - Response data field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
16 ‘Initialize Update’ - Status words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
17 ‘External Authenticate’ - Command description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
18 ‘External Authenticate’ - P1 parameter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
19 ‘External Authenticate’ - Command data field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
20 ‘External Authenticate’ - Status words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
21 ‘Select File’ - Command description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
22 ‘Select File’ - Command data field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
23 ‘Select File’ - Response data field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
24 ‘Select File’ - Status words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
25 ‘Get Data’ - Command description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 22
26 Memory space types . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
27 ‘Get Data’ - Response data field - whole TLV . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
28 ‘Get Data’ - Status words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 24
29 ‘Store Data’ - Command description . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
30 ‘Store Data’ - ‘P1’ parameter . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
31 ‘Store Data’ - Command data field . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
32 ‘Store Data’ - Status words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
33 Common EMV DGIs – Availability . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27
34 DGI ‘ss rr’ - External records . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
35 DGI ‘00 62’ - Manual EF creation . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
36 DGI ‘30 00’ - Internal data storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
37 DGI ‘30 01’ - Internal data storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
38 DGI ‘80 00’ - EMV TDES Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
39 DGI ‘80 10’ - PIN Storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
40 DGI ‘82 01’, ‘82 02’, ‘82 03’, ‘82 04’ and ‘82 05’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
41 DGI ‘83 01’, ‘83 02’, ‘83 03’, ‘83 04’ and ‘83 05’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
42 DGI ‘90 00’ - EMV TDES Keys KCVs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:7/128

43 DGI ‘90 10’ - PIN Related data . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32

44 DGI ‘91 02’ - Contact FCIs . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
45 DGI ‘91 04’ - AIP and AFL storage . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
46 Tags supported by the DGIs ‘30 00’ and ‘30 01’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
47 DGIs Summary M/Chip Advance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
48 Proprietary DGIs Summary M/Chip Advance . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
49 DGI ‘80 04’ - M/Chip Advance AC Card Key (MAS4C) . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
50 DGI ‘84 00’ - M/Chip Advance Contact KDCVC3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
51 DGI ‘A0 02’ - M/Chip Advance Common Risk Management Parameters . . . . . . . . . . . . . . . . . 35
52 DGI ‘A0 05’ - M/Chip Advance Contact AIP and AFL . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
53 DGI ‘A0 06’ - M/Chip Advance Contact MKIDN . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
54 DGI ‘A0 07’ - M/Chip Advance Application Status and ATC Limit . . . . . . . . . . . . . . . . . . . . . . 36
55 DGI ‘A0 08’ - M/Chip Advance PIN Decipherment Error Counter Limit . . . . . . . . . . . . . . . . . . 36
56 DGI ‘A0 09’ - M/Chip Advance Application Life Cycle Data . . . . . . . . . . . . . . . . . . . . . . . . . 36
57 DGI ‘A0 0A’ - M/Chip Advance Last Online Transaction Date . . . . . . . . . . . . . . . . . . . . . . . . 37
58 DGI ‘A0 12’ - M/Chip Advance Contact Risk Management Parameters . . . . . . . . . . . . . . . . . . 37
59 DGI ‘A0 13’ - M/Chip Advance Contact Application Control . . . . . . . . . . . . . . . . . . . . . . . . . 37
60 DGI ‘A0 14’ - M/Chip Advance Contact Read Record Filter . . . . . . . . . . . . . . . . . . . . . . . . . 38
61 DGI ‘A0 15’ - M/Chip Advance Contact Card Issuer Action Codes . . . . . . . . . . . . . . . . . . . . . 38
62 DGI ‘A0 17’ - M/Chip Advance Contact TDES Key Information . . . . . . . . . . . . . . . . . . . . . . . 38
63 DGI ‘A0 28’ - M/Chip Advance MAS4C TDES Key information . . . . . . . . . . . . . . . . . . . . . . . 38
64 DGI ‘A2 02’ - M/Chip Advance Linked Application index . . . . . . . . . . . . . . . . . . . . . . . . . . 39
65 DGI ‘B0 10’ - M/Chip Advance contact IVCVC3-related data . . . . . . . . . . . . . . . . . . . . . . . . 39
66 DGI ‘B1 00’ - M/Chip Advance Contact Relay Resistance Protocol Parameters . . . . . . . . . . . . . 39
67 DGI ‘B1 02’ - M/Chip Advance Linked Application index . . . . . . . . . . . . . . . . . . . . . . . . . . 40
68 DGI ‘54 00’ - M/Chip Advance Optimized records list . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
69 Automatically created data elements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
70 Blowfuse Status Words . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
71 Mandatory data elements . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
72 Log files management rules – Dual-interface products . . . . . . . . . . . . . . . . . . . . . . . . . . . 45

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:8/128

1 DOCUMENT EVOLUTIONS

Date Revision Author Changes

- Update the layout to Idemia references and templates
- Update the Approval ID and RRP parameters
- Update the reference documents
2019-03-14 03 CLIMEN Bruno
- Update the install parameters
- Delete contactless data
- Delete Global PIN functionality
2017-09-11 02 MORPHO Updates regarding data sharing and RRP values
2017-02-23 01 MORPHO Initial Revision

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:9/128

Glossary
ADF Application Definition File. 15, 19, 21

AID Application Identifier. 16, 36

APDU Application Protocol Data Unit. 11

BER Basic Encoding Rules. 8, 10

CLA Class byte of the command message. 11–17, 19–21

CPLC Card Production Life Cycle data. 13

CSN Card Serial Number. 13

DGI Data Grouping Identifier. 19–21, 40

EMV Europay MasterCard Visa. 17, 21

ENC Encryption. 14

FCI File Control Information. 16

I/O Input/Output. 8

ICC IC Card. 13

INS Instruction. 11–17, 19–21

ISD Issuer Security Domain. 11, 12, 14

MAC Message Authentication Code. 13–15, 17, 19–21

P1 Parameter 1. 11–17, 19–21

P2 Parameter 2. 11–17, 19–21

Rcard Random Card. 12, 13

RFU Reserved for Future Use. 20

Rterm Random Terminal. 12

SCP02 Secure Channel Protocol ‘02’. 13

SFI Short File Identifier. 9

TLV Tag Length Value. 8, 10, 17

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:10/128

2 OBJECT

2.1 INTRODUCTION
The purpose of this document is to describe how to personalize an M/Chip Advance application.
This application is compliant with the [MCADP], [MCACPS] and [MCAPD] documents issued by MasterCard.

For Information on personalization of PSE and/or PPSE (if required), please refer to [xPSE Perso Manual].

Also note that the ”Version Number” and ”Approval ID” parts : the 8 first bytes of the Issuer Life Cycle Data must be
personalized (in the DGI ’A0 09’ as described in section 5.6.8) with the value :

• ’10 45 18 00 07 00 00’ for ”MCADP-C” on the SOLVO EVO 21 product.

• ’10 45 18 00 08 00 00’ for ”MCADP-C NO RSA” on the SOLVO EVO 21 product.

Recommended values for RRP parameters (in the DGI ’B1 00’as described in sections 5.6.18) for this product are:

• Min time for Processing Relay Resistance APDU : ’00 14’ (2.0 ms)

• Max time for Processing Relay Resistance APDU : ’00 64’ (10.0 ms)

• Transmission Time for Processing Relay Resistance APDU : ’00 C8’ (20.0 ms)

2.2 REFERENCE AND APPLICABLE DOCUMENTS

[xPSE Perso Manual] 2017 2000024634 - Personalization Manual - XPSE. 2017.
[EMV CPS] EMV Card Personalization Specification.
[ISO 9564-1] Financial services Personal Identification Number (PIN) management and security. 2011.
[GP 2.1.1] GlobalPlatform Card Specification v2.1.1. Mar. 2003.
[MCAPD] M/Chip Advance 1.2.2, Product Derivation. Oct. 2017.
[MCADP] M/Chip Advance Card Application Specification - Payment v1.2.2. Sept. 2017.
[MCACPS] M/Chip Advance, Common personalization Specification v1.2.2. Sept. 2017.
[MCMAR] M/Chip Multi-application Requirements v1.2.2. May 2017.

2.3 CONVENTIONS
2.3.1 Notation

I Hexadecimal Notation
The values expressed in hexadecimal are between simple hooks (‘ ’). For example, the decimal value 27509 is
noted ‘6B 75’ in hexadecimal.

I Decimal Notation
The decimal values are expressed in rough format. For example the hexadecimal-noted value ‘08’ is noted 8 in
decimal.

I Binary Notation
The binary values are followed by a “b” in lower case. For example, the value 8 is noted 00001000b in binary.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:11/128

I Various Notations
The free or not fixed values are noted ‘XX XX’ (several bytes) or ‘XX’ (only one byte). The symbol “ || ” is used
to represent the concatenation of two elements.
M/C/O/N - M for Mandatory, C for Conditional, O for Optional and N for Never.
∅ stands for ‘No data’.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:12/128

3 INSTALLATION
This paragraph describes the M/Chip Advance-specific values to be used in the data field of an INSTALL command.
For more details on the INSTALL (for INSTALL, for PERSO) command, please refer to the [GP 2.1.1] document, or
the specification of the underlying platform.

3.1 Executable Load File

Please find hereunder the Executable Load File AID for this application.

Executable Load File Related AID

M/Chip Advance ‘A0 00 00 00 04 10 01’

Table 1: Executable Load File AID

3.2 Module
Please find hereunder the Module AID for this application.

Module Related AID

M/Chip Advance ‘A0 00 00 00 04 10 10’

Table 2: Module AID

3.3 Install parameters

This paragraph describes the content of the ‘C9’ data element of the INSTALL command usable for an M/Chip
Advance instantiation.

3.3.1 INSTALL PARAMETER ‘C9’

TAG LEN. MEANING M/C/O/N

‘C9’ Var. Application specific parameter M
TAG LEN. MEANING
‘53’ ‘05’ See Table 4. M
‘54’ ‘01’ or ‘02’ See Table 10. O
• If the tag ‘54’ is absent, the default value is ‘20 00’: Please refer to the section 3.3.3
for more details about this default value.

Table 3: ‘Install for Install’ - Parameter ‘C9’

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:13/128

3.3.2 INSTALL PARAMETER ‘53’ within ‘C9’

TAG LEN. MEANING

Main application install parameters
‘53’ Var.
(Proprietary data not coded in BER TLV.)
OFF. LEN. MEANING
Main application common parameters
‘00’ ‘05’
See Table 5, Table 6, Table 7, Table 8, and Table 9.

Table 4: ‘Install for Install’ - Parameter ‘53’

The ‘53’ tag and its five bytes are mandatory to be able to address an M/Chip Advance 1.2.2 application with or
without RSA. All the RFU bits must be set to 0.

b8 b7 b6 b5 b4 b3 b2 b1 MISCELLANEOUS OPTIONS
X X RFU
X X I/O availability
0 1 Contact Only
X X X X RFU

Table 5: ‘Install for Install’ - Install Parameter ‘53’, byte 1

b8 b7 b6 b5 b4 b3 b2 b1 COMMAND AVAILABLE IF SET

X Verify / Get Challenge
X Pin Change/Unblock
X Issuer Updates
X Application block
X Application unblock
X Card block
X Update record
X Put data

Table 6: ‘Install for Install’ - Install Parameter ‘53’, byte 2

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:14/128

b8 b7 b6 b5 b4 b3 b2 b1 BEHAVIOUR
X X X X X RFU
Internal data checks functionality
X This bit allows the application to search for the
mandatory data (as defined within 6.4)
Activated
0
(default if tag ‘53’ absent or if this byte is absent)
1 Not activated
X RFU
X Contact Log File
Not activated
0
(default if tag ‘53’ absent)
1 Activated

Table 7: ‘Install for Install’ - Install Parameter ‘53’, byte 3

b8 b7 b6 b5 b4 b3 b2 b1 MEANING
X X X X X X X X RFU

Table 8: ‘Install for Install’ - Install Parameter ‘53’, byte 4

b8 b7 b6 b5 b4 b3 b2 b1 MEANING
X X X X RFU
X M/Chip Advance version
1 1.2.2 Only
X No RSA mode
0 Not Activated
1 Activated
X X RFU

Table 9: ‘Install for Install’ - Install Parameter ‘53’, byte 5

The main remarks concerning the application instance creation with this Install for Install command are:

• The log file has to be taken into account by raising the corresponding bit(s) in the ‘53’ data, creating the log file
and registering its Short File Identifier (SFI) within the ‘9F 4D’ data during the application blowfuse. The ‘9F 4F’
tag must be personalized. More details on the transaction logging activation in section 6.5.

• Please refer to the section 6.3 for further information concerning the ‘Internal Data Checks’ bit.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:15/128

3.3.3 INSTALL PARAMETER ‘54’ within ‘C9’

TAG LEN. MEANING

Main application install parameters
‘54’ Var.
(Proprietary data not coded in BER TLV.)
OFF. LEN. MEANING
Main application common parameters
‘00’ ‘01’ or ‘02’
See Table 11 and Table 12.

Table 10: ‘Install for Install’ - Parameter ‘54’

If the ‘54’ tag is absent, the application considers, during the creation of an M/Chip advance application, the following
default value, on two bytes:

• ‘20’ (= 32) for the first byte (please refer to the Table 11 for the significations),

• ‘00’ for the second byte (please refer to the Table 12 for the significations).

Otherwise, the main application common parameters are defined as follows:

Install parameter ‘54’, byte 1

Maximum record number
(default value is ‘20’ (= 32) if tag ‘54’ absent)

Table 11: ‘Install for Install’ - Install Parameter ‘54’, byte 1 (mandatory)

b8 b7 b6 b5 b4 b3 b2 b1 MISCELLANEOUS OPTIONS
X X RFU
Data sharing
X
for a payment instance only
0 Not Activated (default if tag ‘54’ absent)
1 Activated
X X X X X RFU

Table 12: ‘Install for Install’ - Install Parameter ‘54’, byte 2 (optional)

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:16/128

4 APDU COMMANDS

4.1 INTRODUCTION
This chapter gives the Application Protocol Data Unit (APDU) commands used during the personalization phase.
These commands are described either within documents [EMV CPS] or [GP 2.1.1].
Concerning all these commands, the following rules apply to the Class byte of the command message (CLA) and
Instruction (INS) bytes:

• If the CLA byte is unknown, the application sends back the ‘6E 00’ status word,

• If the INS byte is unknown, the application sends back the ‘6D 00’ status word,

• If, for the given INS byte, the CLA byte is incorrect, the application sends back the ‘69 85’ status word,

• For the commands which are to be received under a secure session (please refer to document [EMV CPS] for
further details), their reception outside a secure session makes the application send back the ‘69 85’ status
word,

• For the commands which are to be received under a secure session (please refer to document [EMV CPS] for
further details), if the CLA is not coherent with the security level required by the session, the application sends
back the ‘69 82’ status word.

• Depending on the platform and its support of the logical channels functionality, the MANAGE CHANNEL com-
mand (CLA byte = ’70’) may be intercepted and processed by the Issuer Security Domain (ISD), possible status
words sent back by the platform are outside the scope of this document.

• For the same reason, depending on the platform, unknown CLA for which bit 1 and/or 2 are set may provoke a
return of status words outside the scope of this document.

If nothing is further mentioned, the following rules apply to the ISD life state, Lc, Parameter 1 (P1) and Parameter 2
(P2):

• If the ISD life state is ‘Card Locked’ and the APDU command cannot be processed in this state, the application
sends back the Status Word ‘69 85’ ,

• If either P1 or P2 is incorrect, the application sends back the Status Word ‘6A 86’,

• If the Lc byte is incorrect, the application sends back the Status Word ‘67 00’.

4.2 INITIALIZE UPDATE

4.2.1 Definition and scope

Please note that this command is fully processed by the operating system, even if the application has been
explicitly selected beforehand. For more details about the processing of this command, refer to the document of the
appropriate platform.
This command is the first one to be sent in order to authenticate the card to the host and vice-versa (two commands
are required, please refer to section 4.3 for the second command).
From there, a secure channel is opened and the data storage can begin (please refer to section 4.6).

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:17/128

The application sends back a card cryptogram that is used by the host to authenticate the card. Data involved in
mutual authentication are exchanged (Random Terminal (Rterm) and Random Card (Rcard)).
As cryptography computation are performed by the operating system, hence key used are the ones of the ISD.

4.2.2 Command message

The ‘Initialize Update’ command is built as follows:

COMMAND
CLA ‘80’
INS ‘50’
P1 ‘XX’ Version of the key to activate (‘00’ for using the default keyset)
P2 ‘00’
Lc ‘08’ Length of data.
Data In ‘XX...XX’ 8-byte host random (i.e. Rterm).
Le - None

Table 13: ‘Initialize Update’ - Command description

4.2.2.1 PARAMETERS P1 / P2

P2 is set to ‘00’. P1 is set either to ‘00’ or to the version of the key to activate, as mentioned within the previous table.

4.2.2.2 COMMAND DATA FIELD

The data field is formatted as follows:

DATA FIELD
OFFSET LENGTH MEANING
0 ‘08’ Rterm generated by the embedder

Table 14: ‘Initialize Update’ - Command data field

4.2.3 Response message

4.2.3.1 RESPONSE DATA FIELD

The response is formatted as follows:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:18/128

RESPONSE
OFFSET LENGTH MEANING
Identifier of the keyset from which comes the ‘Card Key’
0 ‘06’
required by the terminal in the P1 parameter
CSN
6 ‘04’
Card Serial Number (Equal to ICC Serial Number in CPLC)
10 ‘01’ P1 associated key version
Identifier for Secure Channel Protocol:
11 ‘01’
‘02’ (identifies the SCP02 protocol)
12 ‘02’ Sequence counter
Rcard
14 ‘06’
Card challenge generated by the card
20 ‘08’ Card cryptogram

Table 15: ‘Initialize Update’ - Response data field

4.2.3.2 STATUS WORD

In addition to the common error status words resulting in incoherency between CLA, INS, P1 and P2 (for that matter,
please refer to section 4.1), the status words list is the following:

STATUS WORD MEANING

‘90 00’ Success.
Parameters P1 / P2 are invalid
‘6A 86’
(P2 different from ‘00’, or P1 strictly greater than ‘6F’ and different from ‘FF’)
‘6A 88’ P1 indicates an unknown keyset and is less than (or equal to) ‘6F’.
‘69 82’ Failed Session keys derivation (keys absent, failed session key storage)
‘67 00’ Length of data field invalid - Lc incorrect

Table 16: ‘Initialize Update’ - Status words

4.3 EXTERNAL AUTHENTICATE

4.3.1 Definition and scope

Please note that this command is fully processed by the operating system, even if the application has been
explicitly selected beforehand. For more details about the processing of this command, refer to the document of the
appropriate platform.
This command follows the ‘Initialize Update’ command and completes the opening of the secure channel. The ‘Ex-
ternal Authenticate’ command contains a host cryptogram that is used by the card to authenticate the embedder or
the personalizer. A Message Authentication Code (MAC) is required

If the host cryptogram verification fails, the application returns the ‘63 00’ status word and a failure counter is incre-
mented.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:19/128

If the MAC verification fails, the application returns the ‘69 82’ status word and a failure counter is incremented. As
cryptography computation are performed by the operating system, hence key used are the ones of the ISD.

4.3.2 Command message

The ‘External Authenticate’ command is built as follows:

COMMAND
CLA ‘84’
INS ‘82’
P1 ‘XX’ Security level (see table 18)
P2 ‘00’
Lc ‘10’ Length of data and MAC.
Data In ‘XX...XX’ Host Cryptogram k MAC.
Le - None

Table 17: ‘External Authenticate’ - Command description

4.3.2.1 PARAMETERS P1 / P2

The parameter P2 has to be set to ‘00’ and P1 is coded as follows:

P1 parameter
VALUE MEANING
No security:
All subsequent ‘Store Data’ commands received by the application
‘00’
application will not include any security, i.e. no MAC and no
encryption of the entire command data.
MAC:
‘01’ All subsequent ‘Store Data’ commands received by the application
application must contain a MAC .
Encryption and MAC:
All subsequent ‘Store Data’ commands received by the application
‘03’ application will include a MACand the command
data field will be encrypted by the session key associated to the
current keyset’s ENC key

Table 18: ‘External Authenticate’ - P1 parameter

Important remarks:

• The unconditional to-be-enciphered data elements (i.e. the secrets) are enciphered whatever is the security
level.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:20/128

4.3.2.2 COMMAND DATA FIELD

The data field is formatted as follows:

DATA FIELD
OFFSET LENGTH MEANING
0 ‘08’ Host cryptogram generated by the embedder or the personalizer.

Table 19: ‘External Authenticate’ - Command data field

4.3.3 Response message

4.3.3.1 RESPONSE DATA FIELD

The response data field is absent.

4.3.3.2 STATUS WORDS

In addition to the common error status words resulting in incoherency between CLA, INS, P1 and P2 (for that matter,
please refer to section 4.1), the status words list is the following:

STATUS WORD MEANING

‘90 00’ Success.
‘6A 86’ Parameters P1 / P2 are invalid
Authentication scheme not respected (i.e. the immediately
‘69 85’
preceded command was not ‘Initialize Update’).
‘69 82’ Invalid or missing MAC
‘67 00’ Length of data field invalid Lc incorrect
‘63 00’ Invalid host cryptogram

Table 20: ‘External Authenticate’ - Status words

4.4 SELECT FILE

4.4.1 Definition and scope

This command allows the personalizer to select an Application Definition File (ADF) already created. This operation
allows one to personalize specific data to a single application by selecting it before sending the further ‘Store Data’
commands.

This command must not include a MAC. Otherwise:

• Either the MAC is wrong (and the application returns ‘69 82’),

• Or the MAC is correct with CLA set to ‘04’, and the application returns ‘6E 00’.

In a general way, a ‘Select’ command is sent without MAC, and may not break the Secure Messaging session

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:21/128

4.4.2 Command message

The ‘Select File’ command is built as follows:

COMMAND
CLA ‘00’
INS ‘A4’
P1 ‘04’ Select by name
P2 ‘00’ Only one occurrence
Lc ‘XX’ Length of name.
Data In ‘XX...XX’ Name (can be the AID)
Le ‘00’

Table 21: ‘Select File’ - Command description

4.4.2.1 PARAMETERS P1 / P2

The parameters P1 and P2 are respectively set to ‘04’ and ‘00’.

4.4.2.2 COMMAND DATA FIELD

The data field is formatted as follows:

DATA FIELD
OFFSET LENGTH MEANING
0 Var. from ‘05’ to ‘10’ AID

Table 22: ‘Select File’ - Command data field

4.4.3 Response message

4.4.3.1 RESPONSE DATA FIELD

If present, the ISD returns the File Control Information (FCI) of the selected application as follows:

RESPONSE
OFFSET LENGTH MEANING
‘6F’ Var. FCI template

Table 23: ‘Select File’ - Response data field

4.4.3.2 STATUS WORDS

In addition to the common error status words resulting in incoherency between CLA, INS, P1 and P2 (for that matter,
please refer to the section 4.1), the status words list is the following:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:22/128

STATUS WORD MEANING

‘90 00’ Success
‘6A 86’ Parameters P1 / P2 are invalid
‘6A 82’ File not found
‘67 00’ Length of data invalid

Table 24: ‘Select File’ - Status words

4.5 GET DATA

4.5.1 Definition and scope

This command allows the host to retrieve the application data referenced by a tag. The supported tags are defined
in the personalization document of the specific Europay MasterCard Visa (EMV) application.

Although not mandatory, the ‘Get Data’ command can be sent outside and inside a session, in clear whatever is the
security level.

A ‘Get Data’ command sent in plain text format has no impact on the secure channel. For example, if the level of
security is ‘MAC’, a ‘Get Data’ without MAC can be sent between two ‘Store Data’ with MAC.

4.5.2 Command message

The ‘Get Data’ command is built as follows:

COMMAND
CLA ‘00’ or ‘80’
INS ‘CA’
P1 ‘XX’
Tag value
P2 ‘XX’
Le ‘XX’ Length of the output data

Table 25: ‘Get Data’ - Command description

4.5.2.1 PARAMETERS P1 / P2

P1 / P2 code the Tag of the TLV object to be read.

The tag values supported by the GET DATA command during personalization phase are:
• ‘9F 7D’: Application Version, see 4.5.2.1 .1

• ‘9F 01’: Memory space, see 4.5.2.1 .2

All other requested tag will be rejected with a ‘6A 88’ status word.
Please note that an M/Chip Advance must be explicitly selected for the application to answer to a GET DATA com-
mand with these tags. Then the GET DATA command is not functionnal if the personalization is performed through
the INSTALL for PERSO mechanism.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:23/128

4.5.2.1 .1 Application Version

The returned Application Version is an ASCII coded literal with the following format:
Variant[Option] Version where:

• ”Variant” can be:

– ”MCADDS” if Data Storage is supported

– ”MCADP” if Data Storage is not supported

• ”Option”, optional, if present, can be:

– ”-C”: Contact-only
– ”-CL”: Contactless-only

• ”Version”: vX.Y.Z with:

– X: Major
– Y: Minor
– Z: Patch

Note: An M/Chip Advance supporting dual interfaces and without data storage will return as variant[option]: MCADP,
but some MasterCard documents may refer to this variant as MCAP or MCADP-A.

4.5.2.1 .2 Memory space

This data element is 6 bytes long and consists of the amount of memory that is available to the applet.
The three types of memory are the following:

Offset Length Data element

0 2 Memory type Transient Reset
2 2 Memory type Transient Deselect
4 2 Memory type Persistent

Table 26: Memory space types

4.5.2.2 COMMAND DATA FIELD

The data field is absent.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:24/128

4.5.3 Response message

4.5.3.1 RESPONSE DATA FIELD

RESPONSE
OFFSET LEN MEANING AND VALUE
0 ‘01’ or ‘02’ Tag: ‘XX’ or ‘XX XX’
‘01’ or ‘02’ ‘01’ Length of the requested object
‘02’ or ‘03’ Var. Value

Table 27: ‘Get Data’ - Response data field - whole TLV

4.5.3.2 STATUS WORDS

In addition to the common error status words resulting in incoherency between CLA, INS, P1 and P2 (for that matter,
please refer to the section 4.1), the status words list is the following:

STATUS WORD MEANING

‘90 00’ Success
‘6A 88’ Unknown tag or tag not supported

Table 28: ‘Get Data’ - Status words

4.6 STORE DATA

4.6.1 Definition and scope

This command is used to personalize the applications. The ‘Store Data’ command sends one or several Data Group-
ing Identifiers (DGIs) to the application. The application supports data splitting.

When the ‘Last Store Data command’ bit is set within the P1 parameter, the application is blowfused and is turned to
user phase if the corresponding checks are successful.

Please note that it is the responsibility of the personalizer to send, for each previously created ADF, the ‘Last Store
Data’ (i.e. the applicative blowfuse) at the end. In other words, no ‘Store Data’ command should be sent for a given
ADF after its applicative blowfuse.

Please note that the applicative blowfuse, when performed with additional checks, can send back additional errors
status words (each of which is intended for a specific issue). These status words have the ‘9F 0x’ format.

Basically, when receiving such a command, the application will:

• Decipher the command data if ciphered, check the MAC if present,

• For each DGI :

– Send back ‘90 00’ and wait for the next command in case the ‘Data Splitting’ is not complete, otherwise
continue the processing by performing the next operations,

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:25/128

– Send back ‘6A 80’ if the data is complete and the length is incorrect,
– Send back ‘6A 88’ if the DGI is unknown,
– Process the DGI

4.6.2 Command message

The ‘Store Data’ command is built as follows:

COMMAND
CLA ‘80’ or ‘84’
INS ‘E2’
P1 ‘XX’ Reference control parameter P1 (See Table 30).
P2 ‘XX’ Sequence number.
Lc ‘XX’ Length of the data (and MAC if CLA = ‘84’)
Data In ‘XX...XX’ DGIs (and a concatenated MAC if CLA = ‘84’)
Le - None

Table 29: ‘Store Data’ - Command description

4.6.2.1 PARAMETERS P1 / P2

The parameter P1 is coded as follows:

P1 Parameter
b8 b7-b1 MEANING
X ‘Last Store Data’ command indicator
1 ‘Last Store Data’ command
0 Not ‘Last Store Data’ command
XXXXXXX RFU

Table 30: ‘Store Data’ - ‘P1’ parameter

The application expects enciphered DGIs when the previous mutual authentication (please refer to the section 4.3)
has been performed by mentioning this further behaviour within the P1 parameter (please refer to the section 4.3.2.1
).

4.6.2.2 COMMAND DATA FIELD

The data field is formatted as follows:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:26/128

DATA FIELD
OFFSET LENGTH MEANING
0 ‘02’ DGI #1 Identifier
2 ‘01’ Length of DGI #1 value (LDGI#1 )
3 LDGI#1 Value of DGI#1
... ...
... ‘02’ DGI #N Identifier
‘01’ Length of DGI #N value (LDGI#N )
LDGI#N Value of DGI#N

Table 31: ‘Store Data’ - Command data field

If the data field contains more than one DGI (i.e. N > 1) and one of the DGIs must be sent enciphered, only this DGI
is enciphered while others are sent in plaintext.

4.6.3 Response message

4.6.3.1 RESPONSE DATA FIELD

The data field is absent.

4.6.3.2 STATUS WORDS

In addition to the common error status words resulting in incoherency between CLA, INS, P1 and P2 (for that matter,
please refer to the section 4.1), the status words list is the following:

STATUS WORD MEANING

‘90 00’ Success, or waiting the rest of the data in case of data splitting
Invalid or missing MAC/enciphered data field or invalid P1 when
‘69 82’
‘All DGIs encrypted’ expected
Element already created (for the elements creation), memory
‘65 81’
full.
‘6A 88’ DGI not supported
Length of data field invalid,
‘6A 80’ Data field not consistent,
Other error not previously mentioned.
‘9F 0x’ Issue when blowfusing an EMV ADF.

Table 32: ‘Store Data’ - Status words

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:27/128

5 DGIs

5.1 Common EMV DGIs - Overview

Please find hereunder a table which sums up the common DGIs used to personalize EMV data elements. These
DGIs can be EMV-defined or proprietary.

DGI Enciphered with SKUDEK

‘ss rr’ -
‘00 62’ -
‘30 00’ -
‘30 01’ -
√
‘80 00’
√
‘80 10’
√
‘82 01’
√
‘82 02’
√
‘82 03’
√
‘82 04’
√
‘82 05’
√
‘83 01’
√
‘83 02’
√
‘83 03’
√
‘83 04’
√
‘83 05’
‘90 00’ -
‘90 10’ -
‘91 02’ -
‘91 04’ -

Table 33: Common EMV DGIs – Availability

5.2 Common EMV DGIs - Description

5.2.1 DGI ‘ss rr’: External records

This structure of DGI allows one to store external data (i.e. retrievable by the user-phase Read Record APDU com-
mand, which description is outside the scope of this document). ‘ss’ stands for SFI, and ‘rr’ stands for record.
Please note that there is a restriction on the ‘ss’ value: it has to be at least ‘01’, and the two most significant bits
have to be unset (the mask between the ‘ss’ byte and ‘C0’ must be null). It implies that the SFI number is comprised
between ‘01’ and ‘3F’.
Please note that any ‘ss rr’ DGI with ‘ss’ being strictly less than ‘0C’ must be TLV-encoded within a ‘70’ template.

Please note that for this DGI, it is possible to allocate more memory space if the personalized data is to be updated,
through UPDATE RECORD commands, with a higher length during use phase. For such matter, the proprietary tag

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:28/128

DGI LEN. MEANING

‘ss rr’ Var. External data coded in BER-TLV.
These data will be stored within the file of SFI ‘ss’, record ‘rr’

Table 34: DGI ‘ss rr’ - External records

’DF 7F’ shall be personalized at the highest DGI encapsulation level and shall be the last tag to be personalized.
Tag ’DF 7F’ shall be formated as follows : ’DF 7F 01 XX’ where ’XX’ is the number of additional bytes to be allocated.

Ex: STORE DATA command of a record without additional memory space :

80E200000B 0301 08 70065F2403201231
STORE DATA command of the same record with additional memory space of 6 bytes:
80E200000F 0301 0C 70065F2403201231 DF7F0106

5.2.2 DGI ‘00 62’: Manual EF creation

This DGI is used to manually create the log file. As the log file can be automatically created, this DGI should be used
only to explicitly create a shared log.

DGI LEN. MEANING

‘00 62’ Var. Manual EF creation
TAG LEN. MEANING M/O
‘62’ Var. File Control Parameters M
TAG LEN. MEANING M/O
‘82’ ‘05’ • File Descriptor Byte M
– ‘06’: Cyclic EF
• RFU: ‘00’
• Maximum Record Size:
‘00 01’ to ‘00 FE’
• Number of records:
‘01’ to ‘FF’

Table 35: DGI ‘00 62’ - Manual EF creation

5.2.3 DGI ‘30 00’: Internal Data Storage

This DGI is used to store internal data, and is commonly used to personalize the ATC and the Log Format. It can
nonetheless be used to replace the ‘30 01’ DGI.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:29/128

DGI LEN. MEANING

‘30 00’ Var. Internal data TLV-encoded
TAG LEN. MEANING
‘9F 36’ ‘02’ Application Transaction Counter
‘XX’ or ‘XX XX’ Var. Application internal data element

Table 36: DGI ‘30 00’ - Internal data storage

Please refer to section 5.3 to get the exhaustive list of data elements supported by DGIs ’30 00’ and ’30 01’.

5.2.4 DGI ‘30 01’: Internal Data Storage

This DGI is used to store internal data, and can be used to personalize all the internal data.

DGI LEN. MEANING

‘30 01’ Var. Internal data TLV-encoded
TAG LEN. MEANING
‘XX’ or ‘XX XX’ Var. Application internal data element

Table 37: DGI ‘30 01’ - Internal data storage

Please refer to section 5.3 to get the exhaustive list of data elements supported by DGIs ’30 00’ and ’30 01’.

5.2.5 DGI ‘80 00’: EMV TDES Keys

This DGI is used to store user-phase applications TDES keys. The elements must be personalized in the order shown
in the following table.

DGI LEN. MEANING

‘80 00’ Var. EMV TDES Keys
LEN. MEANING M/O
‘10’ M KAC M
‘10’ M KSM I O
‘10’ M KSM C O

Table 38: DGI ‘80 00’ - EMV TDES Keys

Please note that data sent along with this DGI are ciphered with the SKUDEK key derived from the current person-
alization keyset.

5.2.6 DGI ‘80 10’: PIN Storage

This DGI is used to store the user PIN.

DGI LEN. MEANING

‘80 10’ ‘08’ Offline PIN Data Block

Table 39: DGI ‘80 10’ - PIN Storage

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:30/128

Please note that:

• Data sent along with this DGI are ciphered with the SKUDEK key derived from the current personalization
keyset,

• The supported PIN formats for the personalization are the ISO-1 and ISO-2 (please refer to the [ISO 9564-1])
for further information.

5.2.7 DGI ‘82 0x’: DDA/PIN RSA CRT parts

These DGIs are used to store the different parts of a DDA RSA CRT key. Any of these two conventions can be used:

• p−1 mod q,

• q −1 mod p.

These parts become the PIN RSA CRT parts when the PIN RSA CRT key is not personalized (please refer to the
section 5.2.8).

DGI LEN. MEANING

‘82 01’ Var. Independent from the convention:
- CRT constant 1/p mod q, or
- CRT constant 1/q mod p
‘82 02’ Var. For p−1 convention:
- CRT constant d mod (p−1 )
For q −1 convention:
- CRT constant d mod (q −1 )
‘82 03’ Var. For p−1 convention:
- CRT constant d mod (q −1 )
For q −1 convention:
- CRT constant d mod (p−1 )
‘82 04’ Var. For p−1 convention:
- CRT constant prime factor p
For q −1 convention:
- CRT constant prime factor q
‘82 05’ Var. For p−1 convention:
- CRT constant prime factor q
For q −1 convention:
- CRT constant prime factor p

Table 40: DGI ‘82 01’, ‘82 02’, ‘82 03’, ‘82 04’ and ‘82 05’

Please note that data sent along with this DGI are ciphered with the SKUDEK key derived from the current person-
alization keyset.

5.2.8 DGI ‘83 0x’: DDA/PIN RSA CRT parts

These DGIs are used to store the different parts of a PIN RSA CRT key. Any of these two conventions can be used:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:31/128

• p−1 mod q,

• q −1 mod p.

DGI LEN. MEANING

‘83 01’ Var. Independent from the convention:
- CRT constant 1/p mod q, or
- CRT constant 1/q mod p
‘83 02’ Var. For p−1 convention:
- CRT constant d mod (p−1 )
For q −1 convention:
- CRT constant d mod (q −1 )
‘83 03’ Var. For p−1 convention:
- CRT constant d mod (q −1 )
For q −1 convention:
- CRT constant d mod (p−1 )
‘83 04’ Var. For p−1 convention:
- CRT constant prime factor p
For q −1 convention:
- CRT constant prime factor q
‘83 05’ Var. For p−1 convention:
- CRT constant prime factor q
For q −1 convention:
- CRT constant prime factor p

Table 41: DGI ‘83 01’, ‘83 02’, ‘83 03’, ‘83 04’ and ‘83 05’

Please note that data sent along with this DGI are ciphered with the SKUDEK key derived from the current person-
alization keyset.

5.2.9 DGI ‘90 00’: EMV TDES Keys KCVs

This DGI is used to check user contact TDES keys KCVs. It has to be sent after the storage of the corresponding
keys, otherwise its processing would result in an error.
The KCV is the three most significant bytes of the result of the ciphering of a block of zeroes with the given key. The
elements must be sent in the order shown in the following table.

DGI LEN. MEANING

‘90 00’ Var. EMV contact TDES Keys KCVs
LEN. MEANING M/O
‘03’ M KAC KCV M
‘03’ M KSM I KCV O
‘03’ M KSM C KCV O

Table 42: DGI ‘90 00’ - EMV TDES Keys KCVs

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:32/128

5.2.10 DGI ‘90 10’: PIN Related data

This DGI is used to store the PTC and the PTL corresponding to a user PIN.

DGI LEN. MEANING

‘90 10’ ‘02’ PIN Related data
LEN. MEANING M/O
‘01’ PTC M
‘01’ PTL M

Table 43: DGI ‘90 10’ - PIN Related data

5.2.11 DGI ‘91 02’: Contact FCIs

This DGI is used to store the content of the ‘A5’ template and the instance AID (tag ‘84’) of an application contact
FCIs.

DGI LEN. MEANING

‘91 02’ ‘Var.’ Select command response - Contact interface
TAG LEN. MEANING M/O
‘84’ Var. Instance AID O
‘A5’ Var. FCI Proprietary Template M

Table 44: DGI ‘91 02’ - Contact FCIs

Note that the instance AID (tag ‘84’) is optional.

If this data is absent in the DGI ‘91 02’, then it will be added automatically at the beginning of the application instance
FCI.
If it is present in the DGI ‘91 02’, it will be stored as is in the application instance FCI, and its value can differ from the
actual instance AID.
Please note that, if present, the tag ‘84’ must be at the beginning of the DGI ‘91 02’.

5.2.12 DGI ‘91 04’: AIP and AFL storage

This DGI is used to store the AIP and the AFL of an EMV application.

DGI LEN. MEANING

‘91 04’ ‘Var.’ AIP and AFL storage
TAG LEN. MEANING M/O
‘82’ ‘02’ AIP M
‘94’ Var. AFL M

Table 45: DGI ‘91 04’ - AIP and AFL storage

5.3 Supported tags in DGIs ‘30 00’ and ‘30 01’

Please find hereunder the list of the supported tags in the DGIs ‘30 00’ and ‘30 01’.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:33/128

Tag Meaning
‘D3’ Additional Check Table
‘9F 36’ Application Transaction Counter
‘DF 83’ Application Cryptogram (Recovery)
‘DF 84’ DS Status (Recovery)
‘DF 85’ DS Summary 2 (Recovery)
‘DF 86’ DS Summary 3 (Recovery)
‘DF 87’ Hash Result (Recovery)
‘DF 88’ Issuer Application Data (Recovery)
‘DF 8E’ Unpredictable Number (Recovery)
‘DF 90’ Application Transaction Counter (Recovery)
‘DF 91’ Cryptogram Information Data (Recovery)
‘DF 92’ CDA Transaction Flag (Recovery)
‘DF 9B’ RRP Performed Flag (Recovery)
‘DF 9C’ Device Relay Resistance Entropy (Recovery)
‘DF 9D’ Terminal Relay Resistance Entropy (Recovery)
‘DF 3B’ Accumulator 1 Amount
‘DF 13’ Accumulator 2 Amount
‘DF 1C’ Counter 1 Number
‘DF 20’ Counter 2 Number
‘DF 50’ Application Transaction Counter Limit

Table 46: Tags supported by the DGIs ‘30 00’ and ‘30 01’

5.4 Application-specific external DGIs

Please find hereunder the supported application-specific DGIs.

DGI Chapter Meaning Enciphered with SKUDEK

√
‘80 04’ 5.6.1 AC Card Key (MAS4C)
√
‘84 00’ 5.6.2 Contact KDCVC3
‘A0 02’ 5.6.3 CRM data -
‘A0 05’ 5.6.4 Contact AIP and AFL -
√
‘A0 06’ 5.6.5 Contact MKIDN
‘A0 07’ 5.6.6 Internal data -
‘A0 08’ 5.6.7 Internal limit -
‘A0 09’ 5.6.8 Application Life Cycle Data -
‘A0 0A’ 5.6.9 Remaining internal data -
‘A0 12’ 5.6.10 Contact internal data -
‘A0 13’ 5.6.11 Contact Application Control -
‘A0 14’ 5.6.12 Contact Read Record Filter -
‘A0 15’ 5.6.13 Contact Card Issuer Action Codes -
‘A0 17’ 5.6.14 Contact internal data -
‘A0 28’ 5.6.15 TDES Key Information (MAS4C) -

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:34/128

DGI Chapter Meaning Enciphered with SKUDEK

‘A2 02’ 5.6.16 Application Index -
‘B0 10’ 5.6.17 Contact IVCVC3-related data -
‘B1 00’ 5.6.18 Contact Relay Resistance Protocol Parameters -
‘B1 02’ 5.6.19 Linked Application Index -

Table 47: DGIs Summary M/Chip Advance

5.5 Proprietary DGIs

Please find hereunder the Morpho proprietary DGIs.

DGI Chapter Meaning

‘54 00’ 5.6.20 Optimized records list

Table 48: Proprietary DGIs Summary M/Chip Advance

5.6 DGIs Description

5.6.1 DGI ‘80 04’: AC Card Key (MAS4C)

This DGI is used to personalize the AC Card Key for the MAS4C processing flow.

DGI LEN. ‘80 04’ DGI

‘80 04’ ‘10’ Data not coded in BER-TLV
OFF. LEN. MEANING
0 ‘10’ AC Card Key (MAS4C)

Table 49: DGI ‘80 04’ - M/Chip Advance AC Card Key (MAS4C)

Please note that data sent along with this DGI is ciphered with the SKUDEK key derived from the current personal-
ization keyset.

5.6.2 DGI ‘84 00’: Contact KDCVC3

This DGI is used to personalize the contact KDCVC3.

DGI LEN. MEANING

‘84 00’ ‘10’ Contact KDCVC3
OFF. LEN. MEANING
0 ‘10’ Contact KDCVC3

Table 50: DGI ‘84 00’ - M/Chip Advance Contact KDCVC3

Please note that data sent along with this DGI is ciphered with the SKUDEK key derived from the current personal-
ization keyset.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:35/128

5.6.3 DGI ‘A0 02’: Common Risk Management Parameters

This DGI is used to personalize the Contact Risk Management Parameters.

DGI LEN. ‘A0 02’ DGI

‘A0 02’ ‘6F’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ Accumulator 1 Currency Code ‘C9’
2 ‘19’ Accumulator 1 Currency Conversion Table ‘D1’
27 ‘06’ Accumulator 1 Lower Limit ‘CA’
33 ‘06’ Accumulator 1 Upper Limit ‘CB’
39 ‘02’ Accumulator 2 Currency Code ‘DF 16’
41 ‘19’ Accumulator 2 Currency Conversion Table ‘DF 17’
66 ‘06’ Accumulator 2 Lower Limit ‘DF 18’
72 ‘06’ Accumulator 2 Upper Limit ‘DF 19’
78 ‘12’ Additional Check Table ‘D3’
96 ‘01’ CDOL1 Related Data Length ‘C7’
97 ‘01’ Counter 1 Lower Limit ‘9F 14’
98 ‘01’ Counter 1 Upper Limit ‘9F 23’
99 ‘01’ Counter 2 Lower Limit ‘DF 1F’
100 ‘01’ Counter 2 Upper Limit ‘DF 21’
101 ‘02’ CRM Country Code ‘C8’
103 ‘01’ Cryptogram Version Number V2.x -
104 ‘02’ Default ARPC Response Code ‘D6’
106 ‘01’ Interface Enabling Switch ‘DF 30’
107 ‘02’ MTA Currency Code ‘DF 24’
109 ‘02’ Number Of Days Off Line Limit ‘DF 27’

Table 51: DGI ‘A0 02’ - M/Chip Advance Common Risk Management Parameters

5.6.4 DGI ‘A0 05’: Contact AIP and AFL

This DGI is used to personalize the AIP and the AFL of a MasterCard application.

DGI LEN. ‘A0 05’ DGI

‘A0 05’ Var. Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ Contact AIP ‘82’
2 Var. Contact AFL ‘94’

Table 52: DGI ‘A0 05’ - M/Chip Advance Contact AIP and AFL

5.6.5 DGI ’A0 06’: Contact MKIDN

This DGI is used to personalize the ICC Dynamic Number Master Key, noted MKIDN .

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:36/128

DGI LEN. ‘A0 06’ DGI

’A0 06’ ’10’ Data not coded in BER-TLV
OFF. LEN. MEANING
0 ‘10’ Contact ICC Dynamic Number Master Key MKIDN

Table 53: DGI ‘A0 06’ - M/Chip Advance Contact MKIDN

Please note that data sent along with this DGI is ciphered with the SKUDEK key derived from the current personal-
ization keyset.

5.6.6 DGI ‘A0 07’: Application Status and ATC Limit

This DGI is used to personalize the Application Status and ATC Limit.

DGI LEN. ‘A0 07’ DGI

‘A0 07’ ‘03’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ Application Transaction Counter Limit ‘DF 50’
2 ‘01’ Previous Transaction History ‘DF 49’

Table 54: DGI ‘A0 07’ - M/Chip Advance Application Status and ATC Limit

5.6.7 DGI ‘A0 08’: PIN Decipherments Error Counter Limit

This DGI is used to personalize the PIN Decipherment Error Counter Limit.

DGI LEN. ‘A0 08’ DGI

‘A0 08’ ‘02’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ PIN Decipherment Error Counter Limit ‘DF 36’

Table 55: DGI ‘A0 08’ - M/Chip Advance PIN Decipherment Error Counter Limit

5.6.8 DGI ‘A0 09’: Application Life Cycle Data

This DGI is used to personalize the Application Life Cycle Data.

Please refer to the introduction (section 2.1) for product-specific values meant to be personalized as the 8 first bytes
of the Application Life Cycle Data.

DGI LEN. ‘A0 09’ DGI

‘A0 09’ Var.(max ‘30’) Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 Var.(max ‘30’) Application Life Cycle Data ‘9F 7E’

Table 56: DGI ‘A0 09’ - M/Chip Advance Application Life Cycle Data

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:37/128

5.6.9 DGI ‘A0 0A’: Last Online Transaction Date

This DGI is used to personalize the Last Online Transaction Date.

DGI LEN. ‘A0 0A’ DGI

‘A0 0A’ ‘02’ Data not coded in BER-TLV
OFF. LEN. MEANING
0 ‘02’ Last Online Transaction Date

Table 57: DGI ‘A0 0A’ - M/Chip Advance Last Online Transaction Date

5.6.10 DGI ‘A0 12’: Contact Risk Management Parameters

This DGI is used to personalize contact risk management parameters for the M/Chip Advance application.

DGI LEN. ‘A0 12’ DGI

‘A0 12’ ‘1E’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘01’ Accumulator 1 Control (Contact) ‘DF 11’
1 ‘03’ Accumulator 1 CVR Dependency Data (Contact) ‘DF 28’
4 ‘01’ Accumulator 2 Control (Contact) ‘DF 14’
5 ‘03’ Accumulator 2 CVR Dependency Data (Contact) ‘DF 2A’
8 ‘01’ Counter 1 Control (Contact) ‘DF 1A’
9 ‘03’ Counter 1 CVR Dependency Data (Contact) ‘DF 2C’
12 ‘01’ Counter 2 Control (Contact) ‘DF 1D’
13 ‘03’ Counter 2 CVR Dependency Data (Contact) ‘DF 2E’
16 ‘01’ CVR Issuer Discretionary Data (Contact) ‘DF 3C’
17 ‘01’ Interface Identifier (Contact) ‘DF 3E’
18 ‘06’ MTA CVM (Contact) ‘DF 22’
24 ‘06’ MTA NoCVM (Contact) ‘DF 25’

Table 58: DGI ‘A0 12’ - M/Chip Advance Contact Risk Management Parameters

5.6.11 DGI ‘A0 13’: Contact Application Control

This DGI is used to personalize the ’Application Control (contact)’ data element.

DGI LEN. ‘A0 13’ DGI

‘A0 13’ ‘06’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘06’ Contact Application Control ‘D5’

Table 59: DGI ‘A0 13’ - M/Chip Advance Contact Application Control

5.6.12 DGI ‘A0 14’: Contact Read Record Filter

This DGI is used to personalize the ’Read Record Filter (contact)’ data element.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:38/128

DGI LEN. ‘A0 14’ DGI

‘A0 14’ ‘Var.’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘Var.’ Contact Read Record Filter ‘DF 3F’

Table 60: DGI ‘A0 14’ - M/Chip Advance Contact Read Record Filter

5.6.13 DGI ‘A0 15’: Contact Card Issuer Action Codes

This DGI is used to personalize the ’Card Issuer Action Codes (contact)’ data elements.

DGI LEN. ‘A0 15’ DGI

‘A0 15’ ‘09’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘03’ Contact Card Issuer Action Code Decline ‘C3’
3 ‘03’ Contact Card Issuer Action Code Default ‘C4’
6 ‘03’ Contact Card Issuer Action Code Online ‘C5’

Table 61: DGI ‘A0 15’ - M/Chip Advance Contact Card Issuer Action Codes

5.6.14 DGI ‘A0 17’: Contact TDES Key Information

This DGI is used to personalize contact internal data, and is only available for the M/Chip Advance application.

DGI LEN. ‘A0 17’ DGI

‘A0 17’ ‘05’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ Contact AC Session Key Counter Limit ‘DF 3A’
2 ‘01’ Contact Derivation Key Index ‘DF 89’
3 ‘02’ Contact SMI Session Key Counter ‘DF 32’

Table 62: DGI ‘A0 17’ - M/Chip Advance Contact TDES Key Information

5.6.15 DGI ‘A0 28’: MAS4C TDES Key information

This DGI is used to personalize MAS4C TDES Key information.

DGI LEN. ‘A0 28’ DGI

‘A0 28’ ‘03’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ AC Session Key Counter Limit (MAS4C) ‘DF 78’
2 ‘01’ Key Derivation Index (MAS4C) ‘DF 9A’

Table 63: DGI ‘A0 28’ - M/Chip Advance MAS4C TDES Key information

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:39/128

5.6.16 DGI ‘A2 02’: Linked Application index

This DGI is used to personalize the Application Index for the Linked Updates functionality.

Please note that this DGI a legacy from M/Chip Advance version 1.1. With version 1.2, the DGI which should be used
to personalize the Linked Application index is the DGI ‘B1 02’ (see 5.6.19).

DGI LEN. ‘A2 02’ DGI

‘A2 02’ ‘01’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘01’ Linked Application Index ‘DF 73’

Table 64: DGI ‘A2 02’ - M/Chip Advance Linked Application index

5.6.17 DGI ‘B0 10’: Contact IVCVC3

This DGI is used to personalize contact IVCVC3-related data.

DGI LEN. ‘B0 10’ DGI

‘B0 10’ ‘04’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ Contact IVCVC3 (Track1) ‘DF 38’
2 ‘02’ Contact IVCVC3 (Track2) ‘DF 39’

Table 65: DGI ‘B0 10’ - M/Chip Advance contact IVCVC3-related data

5.6.18 DGI ‘B1 00’: Contact Relay Resistance Protocol Parameters

This DGI is used to personalize the Contact Relay Resistance Protocol Parameters.

DGI LEN. ‘B1 00’ DGI

‘B1 00’ ‘06’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘02’ Min Time For Processing Relay Resistance APDU (Contact) ‘DF 05’
2 ‘02’ Max Time For Processing Relay Resistance APDU (Contact) ‘DF 04’
4 ‘02’ Transmission Time For Relay Resistance R-APDU (Contact) ‘DF 0B’

Table 66: DGI ‘B1 00’ - M/Chip Advance Contact Relay Resistance Protocol Parameters

5.6.19 DGI ‘B1 02’: Linked Application index

This DGI is used to personalize the Application Index for the Linked Updates functionality.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:40/128

DGI LEN. ‘B1 02’ DGI

‘B1 02’ ‘01’ Data not coded in BER-TLV
OFF. LEN. MEANING TAG
0 ‘01’ Linked Application Index ‘DF 73’

Table 67: DGI ‘B1 02’ - M/Chip Advance Linked Application index

5.6.20 DGI ‘54 00’: Optimized records list

This proprietary DGI is used to indicate which external records will be optimized in order to be read, by a READ
RECORD command, faster.

DGI LEN. ‘54 00’ DGI

‘54 00’ Var. Data not coded in BER-TLV
OFF. LEN. MEANING
0 ‘02’ Optimized record 1
2 ‘02’ Optimized record 2
- - ...
2*(N-1) ‘02’ Optimized record N

Table 68: DGI ‘54 00’ - M/Chip Advance Optimized records list

An optimized record is identified by a 2 bytes-long indicator ’SS RR’ where:

• ’SS’ is the SFI number

• ’RR’ is the record number

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:41/128

6 RULES AND BEHAVIORS

6.1 Data sharing

The data sharing requirements are specified in the [MCMAR] and [MC˙DSPP] documents.

6.1.1 Container instances and data inheritance

The sharing of data elements is performed through the use of a container instance.
A container instance is an instance of the M/Chip Advance, created with an INSTALL for INSTALL command, for
which the instance’s AID ends with ‘43 43’.
It is only possible to create one container instance. If a second one is created, then the first will not be usable to
share data elements.
Once created, the container instance can be personalized in the exact same way as a payment instance. Once
the container instance is blowfused (through the sending of a ’last store data’ command), it is not possible anymore
to use this instance for anything explicit, the SELECT command will be rejected.

If a container instance is already created, it is possible for a payment instance to be created with the indication that
this new instance will inherit data elements from the container (see ’Data sharing’ in install paremeters table 12).
When multiple payment instances are created in such a way, then the data elements inherited by all of the payment
instances will be shared amongst them. The group composed of these payments instances is called a sharing group.

Every data elements personalized directly under a payment instance is specific to this instance. During the processing
of the ’last store data’ command on a payment instance with data sharing activated, every data element which have
not been personalized under the instance will be inherited from the container.
Example: In order to share the ATC between two instances, one must:

• Create the container

• Create the two payment instances with the install parameter indicating the activation of data sharing.

• Personalize the ATC under the container thanks to Tag ’9F 36’ in DGI ’30 00’/’30 01’.

• NOT Personalize the ATC under the two payment instances.

Please note that concerning the external records, it is not possible, for a given SFI, to personalize records both in the
container and in the application. If done so, the application will only be able to access its specific records and not the
shared ones.

6.1.2 Granularity

The granularity of the data sharing mechanism is at a DGI level. This means that different data elements personalized
through a same DGI will all be either linked to a container or to a payment instance.
But data elements can be atomically personalized as specific to a payment instance by using DGI ’30 00’ or ’30 01’.
Please refer to section 5.3 to get the exhaustive list of data elements supported by DGIs ’30 00’ and ’30 01’.
For example, the [MCMAR] document describes a data sharing configuration, called ”Single Account Config 2” in

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:42/128

which all the content of the DGI ’A0 02’ must be shared except for the ”Additional Check Table” data element. To
obtain this configuration, a personalizer must :

• Personalize all the shared data elements: DGI ’A0 02’ under the container
Note that the Additional check table is also personalized here, but as it will be explicitly personalized as specific,
the value set in the container will be ignored.

• Personalize atomically the Additional check table: Tag ’D3’ in DGI ’30 00’/’30 01’.

Please note that the following DGIs must have the same sharing status, ie. they all must be sent either to the container
or to a specific instance:

• DGI ‘A0 02’: Common Risk Management Parameters

• DGI ‘A0 07’: Application Status and ATC Limit

• DGI ‘A0 08’: PIN Decipherments Error Counter Limit

• DGI ‘A0 0A’: Last Online Transaction Date

• DGI ‘A0 28’: MAS4C TDES Key information

6.2 Automatic Data Element Creation

Please note that the following data elements are automatically created at the blowfuse of the application, if not
present. These data elements are not shared with any other application.
Please note that unless indicated otherwise, the default value for these data elements is ‘00 ... 00’.

TAG LENGTH MEANING COMMENT

‘9F 36’ ‘02’ Application Transaction Counter -
‘DF 02’ ‘01’ Security Limits Status (contact) -
‘DF 13’ ‘06’ Accumulator 2 Amount -
‘DF 1C’ ‘01’ Counter 1 Number -
‘DF 20’ ‘01’ Counter 2 Number -
‘DF 22’ ‘06’ MTA CVM (contact) Set to ’99 ... 99’
‘DF 25’ ‘06’ MTA noCVM (contact) Set to ’99 ... 99’
‘DF 27’ ‘02’ Number of Days Offline Limit Set to ’FF FF’
‘DF 37’ ‘01’ Security Limit Status Common -
‘DF 3B’ ‘06’ Accumulator 1 Amount -
‘DF 49’ ‘01’ Previous Transaction History -
Proprietary Tag
‘DF 50’ ‘02’ Application Transaction Counter Limit
Set to ’FF FF’
‘DF 5A’ ‘02’ AC Session Key Counter (contact) -
‘DF 5C’ ‘02’ SMI Session Key Counter (contact) -
‘DF 5E’ ‘01’ Script Counter -
‘DF 83’ ‘08’ Application Cryptogram - Recovery Proprietary Tag
‘DF 84’ ‘01’ DS Status - Recovery Proprietary Tag

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:43/128

TAG LENGTH MEANING COMMENT

‘DF 85’ ‘08’ DS Summary 2 - Recovery Proprietary Tag
‘DF 86’ ‘08’ DS Summary 3 - Recovery Proprietary Tag
‘DF 87’ ‘14’ Hash Result - Recovery Proprietary Tag
‘DF 88’ ‘1D’ Issuer Application Data - Recovery Proprietary Tag
‘DF 8B’ ‘02’ Last Online ATC Proprietary Tag
‘DF 8C’ ‘02’ Last Online Transaction Date Proprietary Tag
‘DF 8D’ ‘02’ PIN Decipherment Error Counter Proprietary Tag
‘DF 8E’ ‘04’ Unpredictable Number - Recovery Proprietary Tag
‘DF 90’ ‘02’ ATC - Recovery Proprietary Tag
‘DF 91’ ‘01’ CID - Recovery Proprietary Tag
‘DF 92’ ‘01’ CDA Flag - Recovery Proprietary Tag
‘DF 99’ ‘02’ AC Session Key Counter (MAS4C) Proprietary Tag
‘DF 9B’ ‘01’ Relay Resistance Protocol Performed (recovery) Proprietary Tag
‘DF 9C’ ‘04’ Device Relay Resistance Entropy (recovery) Proprietary Tag
‘DF 9D’ ‘04’ Terminal Relay Resistance Entropy (recovery) Proprietary Tag

Table 69: Automatically created data elements

6.3 Blowfuse Status Words

The following status words can be sent by the application at the blowfuse for the associated reason :

Status Word DESCRIPTION

‘90 00’ Success.
‘9F 01’ The new status of the blowfused DF failed to be written in NVM.
‘9F 02’ Applicative blowfuse already performed on this application.
‘9F 03’ Missing mandatory data at the blowfuse. See 6.4
‘9F 04’ Failed log file management. See 6.5
‘9F 05’ Private RSA key container wrongly personalized.
‘9F 06’ Failed public RSA key container check.
‘9F 07’ The automatically created data (at the blowfuse) does not fit into the memory.

Table 70: Blowfuse Status Words

6.4 Mandatory Data Elements

Please note that the following data elements are mandatory. If absent, the ‘9F 03’ status word is sent back during the
application blowfuse.
Some other data elements might be considered as mandatory by the application, which means that without these
data elements the application cannot properly run.

DGI
‘80 00’

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:44/128

DGI
‘80 10’
‘90 10’
‘91 02’
‘A0 02’
‘A0 05’
‘A0 07’
‘A0 09’
‘A0 12’
‘A0 13’
‘A0 14’
‘A0 15’
‘A0 06’
‘A0 17’
‘B1 00’

Table 71: Mandatory data elements

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 6.5 Log file creation
The creation can be made either in a container instance in order to share its data or in a functional instance in order to use it locally.
If required in the container, the shared Log file stored can only be manually created with the DGI ‘00 62’, and its format can optionally be set with the DGI
‘B0 02’.
There are two ways of creating a log file in a functional instance:

• Manual creation with the DGI ‘00 62’: In this case the log format is always created in the current instance either with the default format if ‘9F 4F’ (‘B0
02’) data has not been received or with a personalized format if ‘9F 4F’ (‘B0 02’) data has been received.

• Automatic creation. The rules for the creation of a log file are the following:

Byte 3 b1 or b2 No FCI No FCI FCI without ‘9F 4D’ FCI without ‘9F 4D’ FCI with ‘9F 4D’ FCI with ‘9F 4D’
of tag ‘53’ ‘B0 02’ not available ‘B0 02’ available ‘B0 02’ not available ‘B0 02’ available ‘B0 02’ not available ‘B0 02’ available
Log file not created. Log file not created. Log file not created. Log file not created.
both 0b Log functionality Log functionality Log functionality Log functionality ERROR ‘69 85’ ERROR ‘69 85’
not available not available not available not available

transmitted to a third party without prior written approval.

ERROR ‘9F 04’ ERROR ‘9F 04’ Log file created ERROR ‘9F 04’ Log file created with
for a payment for a payment as follow: for a payment SFI and number of
instance if a Log file not created. instance if a - SFI is ‘0B’ instance if a records
either one 1b shareable log file shareable log file - It contains 10 records shareable log file personalized
Personalization Manual
IDEMIA CONFIDENTIAL

is not available is not available is not available

Project: M/Chip Advance v1.2.2

Possibility to use a Possibility to use a Possibility to use a Possibility to use a

shared log file shared log file shared log file shared log file

Table 72: Log files management rules – Dual-interface products

Note that ‘9F 4F’ tag data is personalized within ‘B0 02’ tag.
In fact to create automatically a log file under the selected instance, ‘9F 4F’ (‘B0 02’) data must have been personalized under this selected instance.

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
Template’s reference: 000000213 - V1.1
Page:45/128
Date: 2019-03-14
P18-017/SAAAAR 092291
Ref: 2016 2000022523
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:46/128

7 Personalization samples

7.1 Profile 1H

Install and Personalization Mchip Advance Profile 1H

MChip Advance - Common Personalization Specification V1.2 June 2015
MChip Advance 1 2 - Complementary Personalization Profiles for IAT - 1.02 - October 2015
Document used : MChip Adv - Payment -
Personalization Profiles for Interface and Application Testing version 1.10 August 2013
Profile 1H : Default settings for a Functional testing session
Contains the highest RSA key lengths
[PC<--SC] : 3B789600008100035000079000
[PC-->SC] : 00A4040007 A0000001510000
[PC<--SC] : 615D
[PC-->SC] : 00C000005D
[PC<--SC] : 6F5B8407A0000001510000A550734A06
072A864886FC6B01600C060A2A864886
FC6B02020101630906072A864886FC6B
03640B06092A864886FC6B040215650B
06092B8510864864020103660C060A2B
060104012A026E01029F6501FF
9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF0200046D41
1C626FAA5FC74D6570D6F591
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0004
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:47/128

L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:A9875ADFB0F8402FB6F7DBF7F75FFAFA
SKUmac:
T:
L:10
V:C8F6243ECF0DF436AF901514F65C7EF9
SKUdek:
T:
L:10
V:9173A79C237D68991B6BBAF5DC2762B6

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0004
Rcard
T:
L:06
V:6D411C626FAA
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:A9875ADFB0F8402FB6F7DBF7F75FFAFA
Cryptogram computed by CPS profiler:
T:
L:08
V:5FC74D6570D6F591
Cryptogram computed by the card:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:48/128

T:
L:08
V:5FC74D6570D6F591

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0004
Rcard
T:
L:06
V:6D411C626FAA
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:A9875ADFB0F8402FB6F7DBF7F75FFAFA
Host:
T:
L:08
V:457B0B07385BFEDF

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:8482000010457B0B07385BFEDF
Data to be MACed:
T:
L:0D
V:8482000010457B0B07385BFEDF
SKUmac:
T:
L:10

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:49/128

V:C8F6243ECF0DF436AF901514F65C7EF9
MAC:
T:
L:08
V:E038203662DB4A1C

Compute Mac - End

[PC-->SC] : 8482000010 457B0B07385BFEDFE038203662DB4A1C

[PC<--SC] : 9000

Create M/Chip Advance Instance

Executable Load File AID
T:
L:07
V:A0000000041001
Executable Module AID
T:
L:07
V:A0000000041010
Application AID
T:
L:07
V:A0000000041010
Privileges
T:
L:01
V:00
Install Parameters Field
T:
L:07
V:C905530318FF01
Install Token
T:
L:00
V:
[PC-->SC] : 80E60C0023 07A000000004100107A0000000041010
07A0000000041010010007C905530318
FF0100
[PC<--SC] : 6101
[PC-->SC] : 00C0000001
[PC<--SC] : 00
9000
Install PPSE instanc

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:50/128

[PC-->SC] : 00A4040007 A0000000041010

[PC<--SC] : 9000

Application Version:
[PC-->SC] : 80CA9F7D00
[PC<--SC] : 9F7D0E4D434144502D435F76312E302E
30
9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF0200058687
73C770A009304F706DD814B0
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0005
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:114E70DD9FDAB543CE3BFCFD4C8531B8
SKUmac:
T:
L:10
V:9BC7F172011D9C5D5758BBA497E7B9E6
SKUdek:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:51/128

T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0005
Rcard
T:
L:06
V:868773C770A0
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:114E70DD9FDAB543CE3BFCFD4C8531B8
Cryptogram computed by CPS profiler:
T:
L:08
V:09304F706DD814B0
Cryptogram computed by the card:
T:
L:08
V:09304F706DD814B0

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0005
Rcard
T:
L:06

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:52/128

V:868773C770A0
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:114E70DD9FDAB543CE3BFCFD4C8531B8
Host:
T:
L:08
V:8B9B1EEB41A13C66

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:84820000108B9B1EEB41A13C66
Data to be MACed:
T:
L:0D
V:84820000108B9B1EEB41A13C66
SKUmac:
T:
L:10
V:9BC7F172011D9C5D5758BBA497E7B9E6
MAC:
T:
L:08
V:C7ABF385E78CEE99

Compute Mac - End

[PC-->SC] : 8482000010 8B9B1EEB41A13C66C7ABF385E78CEE99

[PC<--SC] : 9000

SFI 1 - RECORD 1 (CT and CL)

Mag. Stripe Application Version Number / Track 1 Bit Map for CVC3 / Track 1 Bit Map for UN and ATC
/ Track 1 Data
Track 1 Nr of ATC Digits / Track 2 Bit Map for CVC3 / Track 2 Bit Map for UN and ATC / Track 2 Data

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:53/128

Track 2 Nr of ATC Digits

[PC-->SC] : 80E200007A 01017770759F6C0200019F6206000000
3800009F630600000000E0E056344235
3431333333393030303030313531335E
202F5E32303132323031333330303033
33333030303232323232303030313131
31309F6401039F6502000E9F66020E70
9F6B135413339000001513D201220190
00990000000F9F670103
[PC<--SC] : 9000

SFI 2 - RECORD 1 (CT and CL)

Data to be authenticated
Application Expiration Date / Application Effective Date / Application Usage Control / PAN
IAC Default / IAC Denial / IAC Online / Issuer Country Code
[PC-->SC] : 80E200003D 02013A70385F24032012315F25030601
019F0702FF005A085413339000001513
9F0D05F8406420009F0E050010880000
9F0F05F86064F8005F28020056
[PC<--SC] : 9000

SFI 2 - RECORD 2 (CT and CL)

CDOL1 / CDOL2 / CVM List
[PC-->SC] : 80E2000058 02025570538C279F02069F03069F1A02
95055F2A029A039C019F37049F35019F
45029F4C089F34039F21039F7C148D12
910A8A0295059F37049F4C089F02069F
03068E14000000000000000042014403
41035E0342031F03
[PC<--SC] : 9000

SFI 2 - RECORD 3 (CT and CL)

Application Currency Code / Application Version Number / Track 2 equivalent data / DSDOL / DRDOL
[PC-->SC] : 80E2000029 02032670249F420209789F0802000257
125413339000001513D2012201000000
0000009F51039F3704
[PC<--SC] : 9000

SFI 2 - RECORD 4 (CT and CL)

Issuer PK Exponent
[PC-->SC] : 80E2000009 02040670049F320103
[PC<--SC] : 9000

SFI 3 - RECORD 1 (CT and CL)

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:54/128

CA Public key Index / Issuer Public key Remainder

[PC-->SC] : 80E200002E 03012B70298F01F492246E8042D075DD
C54E51300D03E44EBFF7140C0556B39C
A0D78B28553644A12365F40FA547
[PC<--SC] : 9000

SFI 3 - RECORD 2 (CT and CL)

Issuer Public key Certificate
[PC-->SC] : 80E20000B9 0302B67081B39081B0914315BDA0CCFC
820718C0225A278C2964B9668C697A4C
00451C75A10180B0BD3E2601BDD30D33
19DC4006E911E271B7C6AAEE28FA6531
2BB1F680489CDC9CD311980E156F5841
B7C6B0EFE3BD3DAA1C4D9DE235644F46
1C79DF0336A8C570CA69BAC1EA1570C5
90178AAC7532934839660F4C8F3B7402
3DBCD75E655240952AA1E4CB4ECF3227
49B51B72865B1B28C1000E542E562FF2
0E0F9FCA28C930831F8FDC06FC7B05E1
62CB37570E41C65D14
[PC<--SC] : 9000

SFI 3 - RECORD 3 (CT and CL)

ICC PK Exponent / ICC Public key Remainder / DDOL
[PC-->SC] : 80E200003E 03033B70399F47030100019F482AAE83
BF5BB436738AC650AC991DB606E56644
E9CCFC6A7035434D7D425C5FBF474799
E09F79E31472FBF39F49039F3704
[PC<--SC] : 9000

SFI 3 - RECORD 4 (CT and CL)

ICC PIN encipherment public key exponent / ICC PIN encipherment public key remainder
[PC-->SC] : 80E2000038 03043570339F2E030100019F2F2AC5C9
852EDB8C522912F3D49EADDDEF225729
7F73C9955499297DD3386999A8BD86FE
AB16F3191E15287B
[PC<--SC] : 9000

SFI 3 - RECORD 5 (CT and CL)

ICC PIN encipherment public key certificate
[PC-->SC] : 80E20000BA 0305B77081B49F2D81B00302F0561066
BC392C611A317ADFA285DF7859CE7F58
C84C98B9E5571606A5A7DC8D5FC578F6
F5858BCC0A212C821A4CE05FED68BB9E

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:55/128

B6B4368CEACDF913F5ADAD738EFA58B3
C4849B811DD53FE59DCC7353FACC2F3F
407EE3F789F4D5AB7F6527B075EE00C8
AA1C6BCC6AF1AF9E789D2E3898265325
8940BC7D5A32F38B2229183A8E585505
B795F827BF5F8C4207A3890B90E68C98
723302586581895921B8E22941E87730
515AA9F1E6C0C04E2F48
[PC<--SC] : 9000
SFI 4 - RECORD 1 (CL
Data to be authenticate
PAN Sequence Numbe
SFI 4 - RECORD 2 (CL
Signed Static Applicatio
SFI 4 - RECORD 3 (CL
ICC Public key Certificat
SFI 5 - RECORD 1 (CT)
Data to be authenticated
PAN Sequence Number
[PC-->SC] : 80E2000009 05010670045F340101
[PC<--SC] : 9000

SFI 5 - RECORD 2 (CT)

Signed Static Application
[PC-->SC] : 80E20000B9 0502B67081B39381B08DF93EE206F8F9
98F1919B44DDBE3F39337FCACCBFE9F4
8B7C29EDBF4F766CA0B53A67235D70CC
C580B4C166C9B3E3CDC3DCE06D36206A
A42EC0BB71366EEA9F2AC31387D138DF
4553F7ADE93C4E6C8DAD181435111904
A6A7F39A203291F632CF655A7C86FF78
72F518F72F946012D3EA7E22F733E4F8
5CC1D8DB710A80E9E5423B6F83B56F09
73121D5217D10E8668D2145283444685
0B26BA31506B1BF994065B2E3CB5D956
F5A8B0646BB232F60B
[PC<--SC] : 9000

SFI 5 - RECORD 3 (CT)

ICC Public key Certificate
[PC-->SC] : 80E20000BA 0503B77081B49F4681B07896EEC5FCF7
F1BF73BD60455E20667B6A72EE9F625E
6D97144A1BD0C4F589D271004EEC7DED
670A5614F9F9D58D9B1827C3299F8775

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:56/128

AC81B63C2DD76BC0AE94C236523F5330
9267F8F12DA0795F78CFC5F346DF0B16
A110C55F4419FAAC363334E7AEB3C5A2
A0AA008D49AA139ED8AFB8AA5447E52F
878F981126D866808E8EB6B36D2B8244
0C47C0ED8D9DE0BB58B7C1D6E9D7C308
EEF0BDB733E75367231396F338BFFFD1
D97B0759F32E719F9F02
[PC<--SC] : 9000

SFI 6 - RECORD 1 (CT)

Cardholder name
[PC-->SC] : 80E2000011 06010E700C5F20097465737420636172
64
[PC<--SC] : 9000

A002 (CT and CL)

Accumulator 1 Currency Code 2 / Accumulator 1 Currency Conversion Table 25 / Accumulator 1 Lower Limit
6 / Accumulator 1 Upper Limit 6 /
Accumulator 2 Currency Code 2 / Accumulator 2 Currency Conversion Table 25 / Accumulator 2 Lower Limit
6 / Accumulator 2 Upper Limit 6 /
Additional Check Table 18 / CDOL1 Related Data Length 1 /
Counter 1 Lower Limit 1 / Counter 1 Upper Limit 1 / Counter 2 Lower Limit 1 / Counter 2 Upper Limit
1 /
CRM Country Code 2 / Cryptogram Version Number V2.x 1 / Default ARPC Response Code 2 /
Interface Enabling Switch 1 / MTA Currency Code 2 / Number Of Days Off Line Limit 2
Alias for Interface Enabling Switch
[PC-->SC] : 80E2000072 A0026F09780978000000097800000009
78000000097800000009780000009999
99999999999999999999084008400000
00084000000008400000000840000000
08400000009999999999999999999999
991A0402FFFFFFFF00000000FFFFFFFF
FFFFFF42FFFFFFFF0056020010010978
FFFF
[PC<--SC] : 9000

B002 (CT and CL)

Log Data Table 9 / Log Format Var.
[PC-->SC] : 80E2000026 B0022300FFFFFFFFFFFFFFFF9F27019F
02065F2A029A039F36029F5206DF3E01
9F21039F7C14
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:57/128

A007 (CT and CL)

Application Transaction Counter Limit 2 / Previous Transaction History 1
[PC-->SC] : 80E2000006 A00703FFFF00
[PC<--SC] : 9000

A008 (CT and CL)

PIN Decipherments Error Counter Limit 2
[PC-->SC] : 80E2000005 A00802FF00
[PC<--SC] : 9000

A012 (CT)
Accumulator 1 Control 1 / Accumulator 1 CVR Dependency Data 3 / Accumulator 2 Control 1 /
Accumulator 2 CVR Dependency Data 3 / Counter 1 Control 1 /
Counter 1 CVR Dependency Data 3 / Counter 2 Control 1 / Counter 2 CVR Dependency Data 3 /
CVR Issuer Discretionary Data 1 / Interface Identifier 1 / MTA CVM 6 / MTA NoCVM 6
[PC-->SC] : 80E2000021 A0121EC5000000C5000000D500000055
00000001C19999999999999999999999
99
[PC<--SC] : 9000

A013 (CT)
Application Control 6
[PC-->SC] : 80E2000009 A013069C064098E10C
[PC<--SC] : 9000

A014 (CT)
Read Record Filter Var.
[PC-->SC] : 80E2000007 A014042001FF00
[PC<--SC] : 9000

A015 (CT)
Card Issuer Action Code Decline 3 / Card Issuer Action Code Default 3 / Card Issuer Action Code Online
3
[PC-->SC] : 80E200000C A01509000000000000000000
[PC<--SC] : 9000
A022 (CL
Accumulator 1 Control 1 / Accumulator 1 CVR Dependency Data 3 / Accumulator 2 Control 1
Accumulator 2 CVR Dependency Data 3 / Counter 1 Control
Counter 1 CVR Dependency Data 3 / Counter 2 Control 1 / Counter 2 CVR Dependency Data 3
CVR Issuer Discretionary Data 1 / Interface Identifier 1 / MTA CVM 6 / MTA NoCVM
A023 (CL
Application Control
A024 (CL
Read Record Filter Va

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:58/128

A025 (CL
Card Issuer Action Code Decline 3 / Card Issuer Action Code Default 3 / Card Issuer Action Code Online

A005 (CT)
Application Interchange Profile 4 / Application File Locator Var.
[PC-->SC] : 80E2000019 A0051679000801010010010401180105
002801030130010100
[PC<--SC] : 9000
B005 (CL
Application Interchange Profile 4 / Application File Locator Var
A017 (CT)
AC Session Key Counter Limit 2 / Key Derivation Index 1 / SMI Session Key Counter Limit 2
[PC-->SC] : 80E2000008 A01705FFF011FF00
[PC<--SC] : 9000
A027 (CL
AC Session Key Counter Limit 2 / Key Derivation Index 1 / SMI Session Key Counter Limit
B010 (CT)
IVCVC3(Track1) 2 / IVCVC3(Track2) 2
[PC-->SC] : 80E2000007 B010047FEE7298
[PC<--SC] : 9000
B023 (CL
IVCVC3(Track1) 2 / IVCVC3(Track2)
B100 (CT)
Min Time For Processing Relay Resistance APDU 2 / Max Time For Processing Relay Resistance APDU 2 /
Transmission Time For Relay Resistance R-APDU 2
[PC-->SC] : 80E2000009 B10006020204040246
[PC<--SC] : 9000
B101 (CL
Min Time For Processing Relay Resistance APDU 2 / Max Time For Processing Relay Resistance APDU 2 /
Transmission Time For Relay Resistance R-APDU
A028 (CT/CL)
AC Session Key Counter Limit (MAS4C) 2 / Key Derivation Index (MAS4C) 1
[PC-->SC] : 80E2000006 A02803FFF011
[PC<--SC] : 9000

8004 (CT/CL)
AC Master Key (MAS4C) 16
Encrypt data - Begin:

Input data:
T:
L:10
V:FA49038A1EDCBE8576FF05263C8C8C51
SKUdek:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:59/128

T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:10
V:98DC8AA83F29CAC649E993E8DFC4430D

Encrypt data - End:

[PC-->SC] : 80E2000013 80041098DC8AA83F29CAC649E993E8DF

C4430D
[PC<--SC] : 9000

A00A Last Online Transaction Date (CT/CL)

[PC-->SC] : 80E2000005 A00A020000
[PC<--SC] : 9000

8000 AC, SMI and SMC Master Key (CT)

Encrypt data - Begin:

Input data:
T:
L:30
V:FE5960267173B426A62024AF18E7D978
3AA7393DE680CEA2194CFCB478201095
EA054A594FD07C02843E11113B7A3AB0
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:30
V:5AC93A31987CAB473BFADD7CE66AD290
05E102406D28DD49378D339B644E0044
86866FFE6D059B779572D9795E34CC53

Encrypt data - End:

[PC-->SC] : 80E2000033 8000305AC93A31987CAB473BFADD7CE6

6AD29005E102406D28DD49378D339B64
4E004486866FFE6D059B779572D9795E
34CC53

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:60/128

[PC<--SC] : 9000

A006 Diversified key for ICC Dynamic number (CT)

Encrypt data - Begin:

Input data:
T:
L:10
V:4D2C44F0145EDE32BD1EA18EA5172490
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:10
V:A01A12B32891D50AF5719C511C25B899

Encrypt data - End:

[PC-->SC] : 80E2000013 A00610A01A12B32891D50AF5719C511C

25B899
[PC<--SC] : 9000

8400 Diversified key for Compute Cryptogram Checksum (CT)

Encrypt data - Begin:

Input data:
T:
L:10
V:CCDCCD6C53178CBABC034702B591A035
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:10
V:BC87DAB45718EA15424D46798C0CF729

Encrypt data - End:

[PC-->SC] : 80E2000013 840010BC87DAB45718EA15424D46798C

0CF729

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:61/128

[PC<--SC] : 9000
8001 Diversified key for the AC, SMI and SMC generation (CL
A016 Diversified key for ICC Dynamic number (CL
8401 Diversified key for Compute Cryptogram Checksum (CL
Store PIN value
Encrypt data - Begin:

Input data:
T:
L:08
V:241234FFFFFFFFFF
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:08
V:F269CA198C64F35F

Encrypt data - End:

[PC-->SC] : 80E200000B 801008F269CA198C64F35F

[PC<--SC] : 9000

Store PIN info

[PC-->SC] : 80E2000005 9010020303
[PC<--SC] : 9000

Store DDA keys

Factor q
Encrypt data - Begin:

Input data:
T:
L:58
V:CC4F5ADF0C77BDC4CFBF0B5A5C399BB8
DEAB6E6C54C77972E75E53BC10D8136F
FC07356BBAD2CFB90E22FD3A1C2E7695
E3950410D590D7304E4C4A76916296BE
BC1765185EF432841DB097BE6025E74F
86D49D00A8110A19
SKUdek:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:62/128

L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:CBCC0E2481A2290F31609E4620491D3E
FBCDACCEFD48C57EDBF1A5655B754F86
897934D6CDD8A852BF1498C776C5F1D0
12D569F5CE3EC111563F76D132BAC666
D0D88E79F31E61A51C90EB087200A33D
ED2DF610B09DDE93D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 820460CBCC0E2481A2290F31609E4620

491D3EFBCDACCEFD48C57EDBF1A5655B
754F86897934D6CDD8A852BF1498C776
C5F1D012D569F5CE3EC111563F76D132
BAC666D0D88E79F31E61A51C90EB0872
00A33DED2DF610B09DDE93D4955CCDB8
492ED6
[PC<--SC] : 9000

Factor p
Encrypt data - Begin:

Input data:
T:
L:58
V:CDA034417CDFB5ED4ED1A75DF8955A81
E3FF9A73154B30C19E5D23776A478796
89688FE6C879218A3CDA012963012CFA
6085009C2242EC407DE21CA69531424A
319BE4D7979C100BD37B585C8C58921F
DDE4DFE848594FEB
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:835A10309B052C4504246C77FDCA50EE
313BDB1C9C547AAF3341BDE652CE6075

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:63/128

F425C85BB16CC9092269B37EB65CBC27
CBE36C6E24C57AB52EDFEC234A554DC5
F88B601FEF0E0689A20EFE602ECC2827
49C4D1EE3CE151CDD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 820560835A10309B052C4504246C77FD

CA50EE313BDB1C9C547AAF3341BDE652
CE6075F425C85BB16CC9092269B37EB6
5CBC27CBE36C6E24C57AB52EDFEC234A
554DC5F88B601FEF0E0689A20EFE602E
CC282749C4D1EE3CE151CDD4955CCDB8
492ED6
[PC<--SC] : 9000

q-1 mod p
Encrypt data - Begin:

Input data:
T:
L:58
V:2F640ADC18D70966AC57EFB7CEDCE5E4
EFC284AE2457E22F2E3FB4ECBEE96C56
56EB09EF7A032393208C03F9B31B42BE
11E2319FAA6A3A99148388B9B46A2713
9274C4EB70D6A338B1C262F74B4502C3
9A7A5F4F5A48EB36
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:DDA8640C9EFF72B21207BC3456473C99
56F71C9537B187988E4E3B59F2CDB6F9
93770FF1441468A9BA0EBD7E083C8B51
A62C8CB520D4154483C2A58C4BBA0CD9
E2BFBF4826311209FF2CF2C80DCBFF06
3C2FF3C2E6D56235D4955CCDB8492ED6

Encrypt data - End:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:64/128

[PC-->SC] : 80E2000063 820160DDA8640C9EFF72B21207BC3456

473C9956F71C9537B187988E4E3B59F2
CDB6F993770FF1441468A9BA0EBD7E08
3C8B51A62C8CB520D4154483C2A58C4B
BA0CD9E2BFBF4826311209FF2CF2C80D
CBFF063C2FF3C2E6D56235D4955CCDB8
492ED6
[PC<--SC] : 9000

Exp mod (q-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:08A376512602CE184B3C65AB7D68C627
CBEA6DB1D0E7DA3FBC7EA585B7249BB5
C96F3898047F335F3CB4C80633F8D6F4
C179A4815DB65112EECC94FD6C6A41BB
70D28068C66306DBC5319948E861D1E4
EFEB7F73EEA741C9
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:B8C41FE48B0BC971EE308F7168D19C0F
E5CC19AFA76E3B069712BC83332B0B1A
C2CCB8AF1F75739CD7F754F45F8FA828
8BB4E7FB0CD51C052EB2BBD6D82CC199
FEDF2E45B198F6A2853E526C2DF3A612
5B646C7A49A03403D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 820260B8C41FE48B0BC971EE308F7168

D19C0FE5CC19AFA76E3B069712BC8333
2B0B1AC2CCB8AF1F75739CD7F754F45F
8FA8288BB4E7FB0CD51C052EB2BBD6D8
2CC199FEDF2E45B198F6A2853E526C2D
F3A6125B646C7A49A03403D4955CCDB8
492ED6

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:65/128

[PC<--SC] : 9000

Exp mod (p-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:640F483E71D89EBBCAB604BE9A9F7AFA
680B528A1BDB89EF3DF3CEB566574668
7F970D275D786C54CB85BE38F87F72F6
A78F311BC9244DB89849366DED7D99E7
66BA98A23C9969C98770A72FE9EF93B3
C41382CD929F3B5F
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:0307C2864DBAD3CF8466DDCE493E083D
703BE038F9C988768F4F9F312C661C9D
3AEC7E3AEC49CC857540953CB9C91E1D
D548371A44B00F3511C1446820D47DE4
E1AE732DD890C19E42495826A57B7655
32F2A3C9E1D4CCDFD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8203600307C2864DBAD3CF8466DDCE49

3E083D703BE038F9C988768F4F9F312C
661C9D3AEC7E3AEC49CC857540953CB9
C91E1DD548371A44B00F3511C1446820
D47DE4E1AE732DD890C19E42495826A5
7B765532F2A3C9E1D4CCDFD4955CCDB8
492ED6
[PC<--SC] : 9000

Store PIN RSA keys

Factor q
Encrypt data - Begin:

Input data:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:66/128

T:
L:58
V:C3C4C0C1E7633DD116DA5ED5E0029AFC
212338B0618037EB0E748EF27FBABC5B
DFE9FCC0C05231E7438271B40E935F20
A36E7CFAA8DA8FBED150D009D0199F5D
2B4CE74C88FA4B991C5E11D67476F86A
D7CA6DE15F08F5F1
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:9B86802EECE33001273501213A3866E8
5040390B0F9D468AEF6FECFB4C348F3D
263A406BA2732F0F168C98DE94F3111F
F60552721B01458099B2E25519CD5D1F
149A9A9C33CEBCB2760EB8731F5B8EAB
64B7454A62C5A6EBD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8304609B86802EECE33001273501213A

3866E85040390B0F9D468AEF6FECFB4C
348F3D263A406BA2732F0F168C98DE94
F3111FF60552721B01458099B2E25519
CD5D1F149A9A9C33CEBCB2760EB8731F
5B8EAB64B7454A62C5A6EBD4955CCDB8
492ED6
[PC<--SC] : 9000

Factor p
Encrypt data - Begin:

Input data:
T:
L:58
V:C942CF77E89DB6395E0D506969BA5A24
D6CAB3204A6EEC036B1F244655B16E68
0216D60CD80F46B493C8E0909369C7D4
877F9AB049064071E4B9E39E32194BAD
5BDB2A2DCA5242C29EA8490D85662F15

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:67/128

B1DA395521F4692B
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:7B29D8841CBD2CD3281141B3B056DF8A
BDD22FA42055BB524E2A46E91E729287
8D8AA2851F4F65AE3BB225ECFDABE211
DB2A9055D5D69DA5D767F121449D9F13
631F54E11B9E4F52C4F729A5B1FD518E
CC34A53B99264ABCD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8305607B29D8841CBD2CD3281141B3B0

56DF8ABDD22FA42055BB524E2A46E91E
7292878D8AA2851F4F65AE3BB225ECFD
ABE211DB2A9055D5D69DA5D767F12144
9D9F13631F54E11B9E4F52C4F729A5B1
FD518ECC34A53B99264ABCD4955CCDB8
492ED6
[PC<--SC] : 9000

q-1 mod p
Encrypt data - Begin:

Input data:
T:
L:58
V:1EE1D36F26D5BFD45659764E1703D850
503E7FBE3BCCE32664EEB96E7ECACAB1
03AD5501B9A19AC5BC8D8958307D7CD1
ED772AC73FF6922FF77B731004B748CF
09D2A39281D50ACC07D78809E17870AB
57C0285FD8CE7419
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:68/128

L:60
V:149C608267C40F3EC5DBB735583CBEFB
AD71CBCB9B9A4562B0D617B7FBB875E9
BF26686DDF2EFF604CC3DB7EE57513C4
B8371F1787D5F1E6359F66480419B8DC
42BF3EC2D546B5F5280F16D0C37DBEBB
9160764AEF091E76D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 830160149C608267C40F3EC5DBB73558

3CBEFBAD71CBCB9B9A4562B0D617B7FB
B875E9BF26686DDF2EFF604CC3DB7EE5
7513C4B8371F1787D5F1E6359F664804
19B8DC42BF3EC2D546B5F5280F16D0C3
7DBEBB9160764AEF091E76D4955CCDB8
492ED6
[PC<--SC] : 9000

Exp mod (q-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:BA5E367AE202D238991EEE25818A396D
4946B493055F00DCDEF80B95C40F4B7D
D35E77E62FB0901D6F6161495E8EE182
BAD3565B72200FB442A44248F5394F43
6D135B26BB483C6BD85B9D73A19018D1
EDF8A23E6930A8A1
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:C83257A819CA1DE5622A44D3C46E0270
1159092EFF8D1C43F8266C11209EBF0D
257AD7CD97D66C489147C2505C181C62
3A9CF1063B7F26DBD1CF80858E28A997
31862D01FBF86619CB36412ABF6297F6
0515F90366CBC4E9D4955CCDB8492ED6

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:69/128

Encrypt data - End:

[PC-->SC] : 80E2000063 830260C83257A819CA1DE5622A44D3C4

6E02701159092EFF8D1C43F8266C1120
9EBF0D257AD7CD97D66C489147C2505C
181C623A9CF1063B7F26DBD1CF80858E
28A99731862D01FBF86619CB36412ABF
6297F60515F90366CBC4E9D4955CCDB8
492ED6
[PC<--SC] : 9000

Exp mod (p-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:11CA3F0E89584F8038A9129F8EC1F32F
E870986ED54582C53695D51E067B1D98
41FF04C2B3E27DCC7E77B629F16DDB45
1509198255A220D63072A2051CC691A2
EC48AE2CC80287762E920F8B0B6CA1E2
D80AC3209C54BF6B
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:0C8C4AF5D3DCE2DCA2E8626003C2A3FA
7FAEB8CD072383B7EB9BE886E5B842FE
41838035B479A974DF3D5566F7DAFE2B
6A2918A40509FF27F3779E5A5996978D
B10F2312F4BF831404ABF6B6D3033335
B74E3FC1EC5BDCCED4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8303600C8C4AF5D3DCE2DCA2E8626003

C2A3FA7FAEB8CD072383B7EB9BE886E5
B842FE41838035B479A974DF3D5566F7
DAFE2B6A2918A40509FF27F3779E5A59

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:70/128

96978DB10F2312F4BF831404ABF6B6D3
033335B74E3FC1EC5BDCCED4955CCDB8
492ED6
[PC<--SC] : 9000

A009 (CT and CL)

Application Life Cycle Data Var. up to 48 bytes
[PC-->SC] : 80E2000033 A009300310041600070000A1A2A3A4A5
A6A7A8A9AAABACADAEAFB0B1B2B3B4C1
C2C3C4C5C6C7C8C9CACBCCCDCECFD0D1
D2D3D4
[PC<--SC] : 9000

Set FCI and Blow Fuse the card

[PC-->SC] : 80E2800028 9102258407A0000000041010A51A500A
4D6173746572436172649F38039F4005
BF0C059F4D020B0A
[PC<--SC] : 9000

Mutual Authenticatio
Select ROOT
[PC-->SC] : 00A4040007 A0000001510000
[PC<--SC] : 615D
[PC-->SC] : 00C000005D
[PC<--SC] : 6F5B8407A0000001510000A550734A06
072A864886FC6B01600C060A2A864886
FC6B02020101630906072A864886FC6B
03640B06092A864886FC6B040215650B
06092B8510864864020103660C060A2B
060104012A026E01029F6501FF
9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF020006F733
D9B42FF27D25D4144C583ADC
9000

Compute session keys - Begin

Sequence counter:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:71/128

L:02
V:0006
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:BA6AEECF0D6FFC90CD460EB9A16983DC
SKUmac:
T:
L:10
V:204AF90E980E997C5AF20A1D0C0E54AD
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0006
Rcard
T:
L:06
V:F733D9B42FF2
Rterm:
T:
L:08
V:1111111111111111
SKUenc:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:72/128

T:
L:10
V:BA6AEECF0D6FFC90CD460EB9A16983DC
Cryptogram computed by CPS profiler:
T:
L:08
V:7D25D4144C583ADC
Cryptogram computed by the card:
T:
L:08
V:7D25D4144C583ADC

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0006
Rcard
T:
L:06
V:F733D9B42FF2
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:BA6AEECF0D6FFC90CD460EB9A16983DC
Host:
T:
L:08
V:0AA2B05C6C3FF020

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:73/128

V:84820000100AA2B05C6C3FF020
Data to be MACed:
T:
L:0D
V:84820000100AA2B05C6C3FF020
SKUmac:
T:
L:10
V:204AF90E980E997C5AF20A1D0C0E54AD
MAC:
T:
L:08
V:9880B054C28EA69D

Compute Mac - End

[PC-->SC] : 8482000010 0AA2B05C6C3FF0209880B054C28EA69D

[PC<--SC] : 9000

DGI 9́F66:́ Update CPLC

[PC-->SC] : 80E200000B 9F6608DDDD6340DCBAABCD
[PC<--SC] : 9000
[PC-->SC] : 80E2000104 9F70010F
[PC<--SC] : 9000

[PC<--SC] : 3B68000081000350000F9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:74/128

7.2 Profile Data Sharing CARD7

Data Sharing Card 7

MCA Contact Only without DS - Data sharing Personalization profiles
Add-on v1.01
Card 7 : 2 applications of Group 2 + Indep 1
Internal data checks functionality is desactivated in the Install parameters due to DGI 3001
[PC<--SC] : 3B789600008100035000079000

Group2 Creation
[PC-->SC] : 00A4040007 A0000001510000
[PC<--SC] : 615D
[PC-->SC] : 00C000005D
[PC<--SC] : 6F5B8407A0000001510000A550734A06
072A864886FC6B01600C060A2A864886
FC6B02020101630906072A864886FC6B
03640B06092A864886FC6B040215650B
06092B8510864864020103660C060A2B
060104012A026E01029F6501FF
9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF020004A3EC
1ACFCE56E0D841E5BFD17B43
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0004
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:75/128

Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:A9875ADFB0F8402FB6F7DBF7F75FFAFA
SKUmac:
T:
L:10
V:C8F6243ECF0DF436AF901514F65C7EF9
SKUdek:
T:
L:10
V:9173A79C237D68991B6BBAF5DC2762B6

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0004
Rcard
T:
L:06
V:A3EC1ACFCE56
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:A9875ADFB0F8402FB6F7DBF7F75FFAFA
Cryptogram computed by CPS profiler:
T:
L:08
V:E0D841E5BFD17B43
Cryptogram computed by the card:
T:
L:08

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:76/128

V:E0D841E5BFD17B43

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0004
Rcard
T:
L:06
V:A3EC1ACFCE56
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:A9875ADFB0F8402FB6F7DBF7F75FFAFA
Host:
T:
L:08
V:71BBA15C685F2296

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:848200001071BBA15C685F2296
Data to be MACed:
T:
L:0D
V:848200001071BBA15C685F2296
SKUmac:
T:
L:10
V:C8F6243ECF0DF436AF901514F65C7EF9
MAC:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:77/128

T:
L:08
V:6615B581DB33AEDB

Compute Mac - End

[PC-->SC] : 8482000010 71BBA15C685F22966615B581DB33AEDB

[PC<--SC] : 9000

Executable Load File AID

T:
L:07
V:A0000000041001
Executable Module AID
T:
L:07
V:A0000000041010
Application AID
T:
L:07
V:A0000000044343
Privileges
T:
L:01
V:00
Install Parameters Field
T:
L:07
V:C905530318FF05
Install Token
T:
L:00
V:
[PC-->SC] : 80E60C0023 07A000000004100107A0000000041010
07A0000000044343010007C905530318
FF0500
[PC<--SC] : 6101
[PC-->SC] : 00C0000001
[PC<--SC] : 00
9000

Executable Load File AID

T:
L:07

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:78/128

V:A0000000041001
Executable Module AID
T:
L:07
V:A0000000041010
Application AID
T:
L:10
V:A0000000041010C44441010203040506
Privileges
T:
L:01
V:00
Install Parameters Field
T:
L:0B
V:C909530318FF0554022020
Install Token
T:
L:00
V:
[PC-->SC] : 80E60C0030 07A000000004100107A0000000041010
10A0000000041010C444410102030405
0601000BC909530318FF055402202000
[PC<--SC] : 6101
[PC-->SC] : 00C0000001
[PC<--SC] : 00
9000
Executable Load File AID
T:
L:07
V:A0000000041001
Executable Module AID
T:
L:07
V:A0000000041010
Application AID
T:
L:10
V:A0000000041010C55551010203040506
Privileges
T:
L:01
V:00

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:79/128

Install Parameters Field

T:
L:0B
V:C909530318FF0554022020
Install Token
T:
L:00
V:
[PC-->SC] : 80E60C0030 07A000000004100107A0000000041010
10A0000000041010C555510102030405
0601000BC909530318FF055402202000
[PC<--SC] : 6101
[PC-->SC] : 00C0000001
[PC<--SC] : 00
9000

Executable Load File AID

T:
L:07
V:A0000000041001
Executable Module AID
T:
L:07
V:A0000000041010
Application AID
T:
L:10
V:A0000000041010C88881010203040506
Privileges
T:
L:01
V:00
Install Parameters Field
T:
L:0B
V:C909530318FF0554022020
Install Token
T:
L:00
V:
[PC-->SC] : 80E60C0030 07A000000004100107A0000000041010
10A0000000041010C888810102030405
0601000BC909530318FF055402202000
[PC<--SC] : 6101

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:80/128

[PC-->SC] : 00C0000001
[PC<--SC] : 00
9000
Install PPSE instanc
Group2 Personalization
[PC-->SC] : 00A4040007 A0000000044343
[PC<--SC] : 9000

Application Version:
[PC-->SC] : 80CA9F7D00
[PC<--SC] : 9F7D0E4D434144502D435F76312E302E
30
9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF020005F8B8
8CA56670EAB4E9E3B4CE4A38
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0005
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:114E70DD9FDAB543CE3BFCFD4C8531B8

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:81/128

SKUmac:
T:
L:10
V:9BC7F172011D9C5D5758BBA497E7B9E6
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0005
Rcard
T:
L:06
V:F8B88CA56670
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:114E70DD9FDAB543CE3BFCFD4C8531B8
Cryptogram computed by CPS profiler:
T:
L:08
V:EAB4E9E3B4CE4A38
Cryptogram computed by the card:
T:
L:08
V:EAB4E9E3B4CE4A38

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:82/128

L:02
V:0005
Rcard
T:
L:06
V:F8B88CA56670
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:114E70DD9FDAB543CE3BFCFD4C8531B8
Host:
T:
L:08
V:3550D8BD950DB66C

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:84820000103550D8BD950DB66C
Data to be MACed:
T:
L:0D
V:84820000103550D8BD950DB66C
SKUmac:
T:
L:10
V:9BC7F172011D9C5D5758BBA497E7B9E6
MAC:
T:
L:08
V:5CFB4052563D9A8D

Compute Mac - End

[PC-->SC] : 8482000010 3550D8BD950DB66C5CFB4052563D9A8D

[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:83/128

[PC-->SC] : 80E2000018 00621562138002000082050600002C0A

88010B8603000408
[PC<--SC] : 9000

SFI 1 - RECORD 1 (CT and CL)

Mag. Stripe Application Version Number / Track 1 Bit Map for CVC3 / Track 1 Bit Map for UN and ATC
/ Track 1 Data
Track 1 Nr of ATC Digits / Track 2 Bit Map for CVC3 / Track 2 Bit Map for UN and ATC / Track 2 Data
Track 2 Nr of ATC Digits
[PC-->SC] : 80E200007A 01017770759F6C0200019F6206000000
3800009F630600000000E0E056344235
3431333333393030303030313531335E
202F5E32303132323031333330303033
33333030303232323232303030313131
31309F6401039F6502000E9F66020E70
9F6B135413339000001513D201220190
00990000000F9F670103
[PC<--SC] : 9000

SFI 2 - RECORD 1 (CT and CL)

Data to be authenticated
Application Expiration Date / Application Effective Date / Application Usage Control / PAN
IAC Default / IAC Denial / IAC Online / Issuer Country Code
[PC-->SC] : 80E200003D 02013A70385F24032012315F25030601
019F0702FF005A085413339000001513
9F0D05F8406420009F0E050010880000
9F0F05F86064F8005F28020056
[PC<--SC] : 9000

SFI 2 - RECORD 2 (CT and CL)

CDOL1 / CDOL2 / CVM List
[PC-->SC] : 80E2000058 02025570538C279F02069F03069F1A02
95055F2A029A039C019F37049F35019F
45029F4C089F34039F21039F7C148D12
910A8A0295059F37049F4C089F02069F
03068E14000000000000000042014403
41035E0342031F03
[PC<--SC] : 9000

SFI 2 - RECORD 3 (CT and CL)

Application Currency Code / Application Version Number / Track 2 equivalent data / DSDOL / DRDOL
[PC-->SC] : 80E2000029 02032670249F420209789F0802000257
125413339000001513D2012201000000
0000009F51039F3704

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:84/128

[PC<--SC] : 9000

SFI 2 - RECORD 4 (CT and CL)

Issuer PK Exponent
[PC-->SC] : 80E2000009 02040670049F320103
[PC<--SC] : 9000

SFI 3 - RECORD 1 (CT and CL)

CA Public key Index / Issuer Public key Remainder
[PC-->SC] : 80E200002E 03012B70298F01F492246E8042D075DD
C54E51300D03E44EBFF7140C0556B39C
A0D78B28553644A12365F40FA547
[PC<--SC] : 9000

SFI 3 - RECORD 2 (CT and CL)

Issuer Public key Certificate
[PC-->SC] : 80E20000B9 0302B67081B39081B0914315BDA0CCFC
820718C0225A278C2964B9668C697A4C
00451C75A10180B0BD3E2601BDD30D33
19DC4006E911E271B7C6AAEE28FA6531
2BB1F680489CDC9CD311980E156F5841
B7C6B0EFE3BD3DAA1C4D9DE235644F46
1C79DF0336A8C570CA69BAC1EA1570C5
90178AAC7532934839660F4C8F3B7402
3DBCD75E655240952AA1E4CB4ECF3227
49B51B72865B1B28C1000E542E562FF2
0E0F9FCA28C930831F8FDC06FC7B05E1
62CB37570E41C65D14
[PC<--SC] : 9000

SFI 3 - RECORD 3 (CT and CL)

ICC PK Exponent / ICC Public key Remainder / DDOL
[PC-->SC] : 80E200003E 03033B70399F47030100019F482AAE83
BF5BB436738AC650AC991DB606E56644
E9CCFC6A7035434D7D425C5FBF474799
E09F79E31472FBF39F49039F3704
[PC<--SC] : 9000

SFI 3 - RECORD 4 (CT and CL)

ICC PIN encipherment public key exponent / ICC PIN encipherment public key remainder
[PC-->SC] : 80E2000038 03043570339F2E030100019F2F2AC5C9
852EDB8C522912F3D49EADDDEF225729
7F73C9955499297DD3386999A8BD86FE
AB16F3191E15287B

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:85/128

[PC<--SC] : 9000

SFI 3 - RECORD 5 (CT and CL)

ICC PIN encipherment public key certificate
[PC-->SC] : 80E20000BA 0305B77081B49F2D81B00302F0561066
BC392C611A317ADFA285DF7859CE7F58
C84C98B9E5571606A5A7DC8D5FC578F6
F5858BCC0A212C821A4CE05FED68BB9E
B6B4368CEACDF913F5ADAD738EFA58B3
C4849B811DD53FE59DCC7353FACC2F3F
407EE3F789F4D5AB7F6527B075EE00C8
AA1C6BCC6AF1AF9E789D2E3898265325
8940BC7D5A32F38B2229183A8E585505
B795F827BF5F8C4207A3890B90E68C98
723302586581895921B8E22941E87730
515AA9F1E6C0C04E2F48
[PC<--SC] : 9000
SFI 4 - RECORD 1 (CL
Data to be authenticate
PAN Sequence Numbe
SFI 4 - RECORD 2 (CL
Signed Static Applicatio
SFI 4 - RECORD 3 (CL
ICC Public key Certificat
SFI 5 - RECORD 1 (CT)
Data to be authenticated
PAN Sequence Number
[PC-->SC] : 80E2000009 05010670045F340101
[PC<--SC] : 9000

SFI 5 - RECORD 2 (CT)

Signed Static Application
[PC-->SC] : 80E20000B9 0502B67081B39381B08DF93EE206F8F9
98F1919B44DDBE3F39337FCACCBFE9F4
8B7C29EDBF4F766CA0B53A67235D70CC
C580B4C166C9B3E3CDC3DCE06D36206A
A42EC0BB71366EEA9F2AC31387D138DF
4553F7ADE93C4E6C8DAD181435111904
A6A7F39A203291F632CF655A7C86FF78
72F518F72F946012D3EA7E22F733E4F8
5CC1D8DB710A80E9E5423B6F83B56F09
73121D5217D10E8668D2145283444685
0B26BA31506B1BF994065B2E3CB5D956
F5A8B0646BB232F60B

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:86/128

[PC<--SC] : 9000

SFI 5 - RECORD 3 (CT)

ICC Public key Certificate
[PC-->SC] : 80E20000BA 0503B77081B49F4681B07896EEC5FCF7
F1BF73BD60455E20667B6A72EE9F625E
6D97144A1BD0C4F589D271004EEC7DED
670A5614F9F9D58D9B1827C3299F8775
AC81B63C2DD76BC0AE94C236523F5330
9267F8F12DA0795F78CFC5F346DF0B16
A110C55F4419FAAC363334E7AEB3C5A2
A0AA008D49AA139ED8AFB8AA5447E52F
878F981126D866808E8EB6B36D2B8244
0C47C0ED8D9DE0BB58B7C1D6E9D7C308
EEF0BDB733E75367231396F338BFFFD1
D97B0759F32E719F9F02
[PC<--SC] : 9000

SFI 6 - RECORD 1 (CT)

Cardholder name
[PC-->SC] : 80E2000011 06010E700C5F20097465737420636172
64
[PC<--SC] : 9000

A002 (CT and CL)

Accumulator 1 Currency Code 2 / Accumulator 1 Currency Conversion Table 25 / Accumulator 1 Lower Limit
6 / Accumulator 1 Upper Limit 6 /
Accumulator 2 Currency Code 2 / Accumulator 2 Currency Conversion Table 25 / Accumulator 2 Lower Limit
6 / Accumulator 2 Upper Limit 6 /
Additional Check Table 18 / CDOL1 Related Data Length 1 /
Counter 1 Lower Limit 1 / Counter 1 Upper Limit 1 / Counter 2 Lower Limit 1 / Counter 2 Upper Limit
1 /
CRM Country Code 2 / Cryptogram Version Number V2.x 1 / Default ARPC Response Code 2 /
Interface Enabling Switch 1 / MTA Currency Code 2 / Number Of Days Off Line Limit 2
Alias for Interface Enabling Switch
[PC-->SC] : 80E2000072 A0026F09780978000000097800000009
78000000097800000009780000009999
99999999999999999999084008400000
00084000000008400000000840000000
08400000009999999999999999999999
991A0402FFFFFFFF00000000FFFFFFFF
FFFFFF42FFFFFFFF0056020010010978
FFFF
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:87/128

B002 (CT and CL)

Log Data Table 9 / Log Format Var.
[PC-->SC] : 80E2000026 B0022300FFFFFFFFFFFFFFFF9F27019F
02065F2A029A039F36029F5206DF3E01
9F21039F7C14
[PC<--SC] : 9000

A007 (CT and CL)

Application Transaction Counter Limit 2 / Previous Transaction History 1
[PC-->SC] : 80E2000006 A00703FFFF00
[PC<--SC] : 9000

A008 (CT and CL)

PIN Decipherments Error Counter Limit 2
[PC-->SC] : 80E2000005 A00802FF00
[PC<--SC] : 9000

A012 (CT)
Accumulator 1 Control 1 / Accumulator 1 CVR Dependency Data 3 / Accumulator 2 Control 1 /
Accumulator 2 CVR Dependency Data 3 / Counter 1 Control 1 /
Counter 1 CVR Dependency Data 3 / Counter 2 Control 1 / Counter 2 CVR Dependency Data 3 /
CVR Issuer Discretionary Data 1 / Interface Identifier 1 / MTA CVM 6 / MTA NoCVM 6
[PC-->SC] : 80E2000021 A0121EC5000000C5000000D500000055
00000001C19999999999999999999999
99
[PC<--SC] : 9000

A013 (CT)
Application Control 6
[PC-->SC] : 80E2000009 A013069C064098E10C
[PC<--SC] : 9000

A015 (CT)
Card Issuer Action Code Decline 3 / Card Issuer Action Code Default 3 / Card Issuer Action Code Online
3
[PC-->SC] : 80E200000C A01509000000000000000000
[PC<--SC] : 9000
A022 (CL
Accumulator 1 Control 1 / Accumulator 1 CVR Dependency Data 3 / Accumulator 2 Control 1
Accumulator 2 CVR Dependency Data 3 / Counter 1 Control
Counter 1 CVR Dependency Data 3 / Counter 2 Control 1 / Counter 2 CVR Dependency Data 3
CVR Issuer Discretionary Data 1 / Interface Identifier 1 / MTA CVM 6 / MTA NoCVM
A023 (CL

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:88/128

Application Control
A025 (CL
Card Issuer Action Code Decline 3 / Card Issuer Action Code Default 3 / Card Issuer Action Code Online

A017 (CT)
AC Session Key Counter Limit 2 / Key Derivation Index 1 / SMI Session Key Counter Limit 2
[PC-->SC] : 80E2000008 A01705FFF011FF00
[PC<--SC] : 9000
A027 (CL
AC Session Key Counter Limit 2 / Key Derivation Index 1 / SMI Session Key Counter Limit
B010 (CT)
IVCVC3(Track1) 2 / IVCVC3(Track2) 2
[PC-->SC] : 80E2000007 B010047FEE7298
[PC<--SC] : 9000
B023 (CL
IVCVC3(Track1) 2 / IVCVC3(Track2)
B100 (CT)
Min Time For Processing Relay Resistance APDU 2 / Max Time For Processing Relay Resistance APDU 2 /
Transmission Time For Relay Resistance R-APDU 2
[PC-->SC] : 80E2000009 B10006020204040246
[PC<--SC] : 9000
B101 (CL
Min Time For Processing Relay Resistance APDU 2 / Max Time For Processing Relay Resistance APDU 2 /
Transmission Time For Relay Resistance R-APDU
A028 (CT/CL)
AC Session Key Counter Limit (MAS4C) 2 / Key Derivation Index (MAS4C) 1
[PC-->SC] : 80E2000006 A02803FFF011
[PC<--SC] : 9000

8004 (CT/CL)
AC Master Key (MAS4C) 16
Encrypt data - Begin:

Input data:
T:
L:10
V:FA49038A1EDCBE8576FF05263C8C8C51
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:10

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:89/128

V:98DC8AA83F29CAC649E993E8DFC4430D

Encrypt data - End:

[PC-->SC] : 80E2000013 80041098DC8AA83F29CAC649E993E8DF

C4430D
[PC<--SC] : 9000

A00A Last Online Transaction Date (CT/CL)

[PC-->SC] : 80E2000005 A00A020000
[PC<--SC] : 9000

8000 AC, SMI and SMC Master Key (CT)

Encrypt data - Begin:

Input data:
T:
L:30
V:FE5960267173B426A62024AF18E7D978
3AA7393DE680CEA2194CFCB478201095
EA054A594FD07C02843E11113B7A3AB0
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:30
V:5AC93A31987CAB473BFADD7CE66AD290
05E102406D28DD49378D339B644E0044
86866FFE6D059B779572D9795E34CC53

Encrypt data - End:

[PC-->SC] : 80E2000033 8000305AC93A31987CAB473BFADD7CE6

6AD29005E102406D28DD49378D339B64
4E004486866FFE6D059B779572D9795E
34CC53
[PC<--SC] : 9000

A006 Diversified key for ICC Dynamic number (CT)

Encrypt data - Begin:

Input data:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:90/128

T:
L:10
V:4D2C44F0145EDE32BD1EA18EA5172490
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:10
V:A01A12B32891D50AF5719C511C25B899

Encrypt data - End:

[PC-->SC] : 80E2000013 A00610A01A12B32891D50AF5719C511C

25B899
[PC<--SC] : 9000

8400 Diversified key for Compute Cryptogram Checksum (CT)

Encrypt data - Begin:

Input data:
T:
L:10
V:CCDCCD6C53178CBABC034702B591A035
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:10
V:BC87DAB45718EA15424D46798C0CF729

Encrypt data - End:

[PC-->SC] : 80E2000013 840010BC87DAB45718EA15424D46798C

0CF729
[PC<--SC] : 9000
8001 Diversified key for the AC, SMI and SMC generation (CL
A016 Diversified key for ICC Dynamic number (CL
8401 Diversified key for Compute Cryptogram Checksum (CL
Store PIN value
Encrypt data - Begin:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:91/128

Input data:
T:
L:08
V:241234FFFFFFFFFF
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:08
V:F269CA198C64F35F

Encrypt data - End:

[PC-->SC] : 80E200000B 801008F269CA198C64F35F

[PC<--SC] : 9000

Store PIN info

[PC-->SC] : 80E2000005 9010020303
[PC<--SC] : 9000

Store DDA keys

Factor q
Encrypt data - Begin:

Input data:
T:
L:58
V:CC4F5ADF0C77BDC4CFBF0B5A5C399BB8
DEAB6E6C54C77972E75E53BC10D8136F
FC07356BBAD2CFB90E22FD3A1C2E7695
E3950410D590D7304E4C4A76916296BE
BC1765185EF432841DB097BE6025E74F
86D49D00A8110A19
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:CBCC0E2481A2290F31609E4620491D3E

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:92/128

FBCDACCEFD48C57EDBF1A5655B754F86
897934D6CDD8A852BF1498C776C5F1D0
12D569F5CE3EC111563F76D132BAC666
D0D88E79F31E61A51C90EB087200A33D
ED2DF610B09DDE93D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 820460CBCC0E2481A2290F31609E4620

491D3EFBCDACCEFD48C57EDBF1A5655B
754F86897934D6CDD8A852BF1498C776
C5F1D012D569F5CE3EC111563F76D132
BAC666D0D88E79F31E61A51C90EB0872
00A33DED2DF610B09DDE93D4955CCDB8
492ED6
[PC<--SC] : 9000

Factor p
Encrypt data - Begin:

Input data:
T:
L:58
V:CDA034417CDFB5ED4ED1A75DF8955A81
E3FF9A73154B30C19E5D23776A478796
89688FE6C879218A3CDA012963012CFA
6085009C2242EC407DE21CA69531424A
319BE4D7979C100BD37B585C8C58921F
DDE4DFE848594FEB
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:835A10309B052C4504246C77FDCA50EE
313BDB1C9C547AAF3341BDE652CE6075
F425C85BB16CC9092269B37EB65CBC27
CBE36C6E24C57AB52EDFEC234A554DC5
F88B601FEF0E0689A20EFE602ECC2827
49C4D1EE3CE151CDD4955CCDB8492ED6

Encrypt data - End:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:93/128

[PC-->SC] : 80E2000063 820560835A10309B052C4504246C77FD

CA50EE313BDB1C9C547AAF3341BDE652
CE6075F425C85BB16CC9092269B37EB6
5CBC27CBE36C6E24C57AB52EDFEC234A
554DC5F88B601FEF0E0689A20EFE602E
CC282749C4D1EE3CE151CDD4955CCDB8
492ED6
[PC<--SC] : 9000

q-1 mod p
Encrypt data - Begin:

Input data:
T:
L:58
V:2F640ADC18D70966AC57EFB7CEDCE5E4
EFC284AE2457E22F2E3FB4ECBEE96C56
56EB09EF7A032393208C03F9B31B42BE
11E2319FAA6A3A99148388B9B46A2713
9274C4EB70D6A338B1C262F74B4502C3
9A7A5F4F5A48EB36
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:DDA8640C9EFF72B21207BC3456473C99
56F71C9537B187988E4E3B59F2CDB6F9
93770FF1441468A9BA0EBD7E083C8B51
A62C8CB520D4154483C2A58C4BBA0CD9
E2BFBF4826311209FF2CF2C80DCBFF06
3C2FF3C2E6D56235D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 820160DDA8640C9EFF72B21207BC3456

473C9956F71C9537B187988E4E3B59F2
CDB6F993770FF1441468A9BA0EBD7E08
3C8B51A62C8CB520D4154483C2A58C4B
BA0CD9E2BFBF4826311209FF2CF2C80D
CBFF063C2FF3C2E6D56235D4955CCDB8

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:94/128

492ED6
[PC<--SC] : 9000

Exp mod (q-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:08A376512602CE184B3C65AB7D68C627
CBEA6DB1D0E7DA3FBC7EA585B7249BB5
C96F3898047F335F3CB4C80633F8D6F4
C179A4815DB65112EECC94FD6C6A41BB
70D28068C66306DBC5319948E861D1E4
EFEB7F73EEA741C9
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:B8C41FE48B0BC971EE308F7168D19C0F
E5CC19AFA76E3B069712BC83332B0B1A
C2CCB8AF1F75739CD7F754F45F8FA828
8BB4E7FB0CD51C052EB2BBD6D82CC199
FEDF2E45B198F6A2853E526C2DF3A612
5B646C7A49A03403D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 820260B8C41FE48B0BC971EE308F7168

D19C0FE5CC19AFA76E3B069712BC8333
2B0B1AC2CCB8AF1F75739CD7F754F45F
8FA8288BB4E7FB0CD51C052EB2BBD6D8
2CC199FEDF2E45B198F6A2853E526C2D
F3A6125B646C7A49A03403D4955CCDB8
492ED6
[PC<--SC] : 9000

Exp mod (p-1)

Encrypt data - Begin:

Input data:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:95/128

T:
L:58
V:640F483E71D89EBBCAB604BE9A9F7AFA
680B528A1BDB89EF3DF3CEB566574668
7F970D275D786C54CB85BE38F87F72F6
A78F311BC9244DB89849366DED7D99E7
66BA98A23C9969C98770A72FE9EF93B3
C41382CD929F3B5F
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:0307C2864DBAD3CF8466DDCE493E083D
703BE038F9C988768F4F9F312C661C9D
3AEC7E3AEC49CC857540953CB9C91E1D
D548371A44B00F3511C1446820D47DE4
E1AE732DD890C19E42495826A57B7655
32F2A3C9E1D4CCDFD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8203600307C2864DBAD3CF8466DDCE49

3E083D703BE038F9C988768F4F9F312C
661C9D3AEC7E3AEC49CC857540953CB9
C91E1DD548371A44B00F3511C1446820
D47DE4E1AE732DD890C19E42495826A5
7B765532F2A3C9E1D4CCDFD4955CCDB8
492ED6
[PC<--SC] : 9000

Store PIN RSA keys

Factor q
Encrypt data - Begin:

Input data:
T:
L:58
V:C3C4C0C1E7633DD116DA5ED5E0029AFC
212338B0618037EB0E748EF27FBABC5B
DFE9FCC0C05231E7438271B40E935F20
A36E7CFAA8DA8FBED150D009D0199F5D

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:96/128

2B4CE74C88FA4B991C5E11D67476F86A
D7CA6DE15F08F5F1
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:9B86802EECE33001273501213A3866E8
5040390B0F9D468AEF6FECFB4C348F3D
263A406BA2732F0F168C98DE94F3111F
F60552721B01458099B2E25519CD5D1F
149A9A9C33CEBCB2760EB8731F5B8EAB
64B7454A62C5A6EBD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8304609B86802EECE33001273501213A

3866E85040390B0F9D468AEF6FECFB4C
348F3D263A406BA2732F0F168C98DE94
F3111FF60552721B01458099B2E25519
CD5D1F149A9A9C33CEBCB2760EB8731F
5B8EAB64B7454A62C5A6EBD4955CCDB8
492ED6
[PC<--SC] : 9000

Factor p
Encrypt data - Begin:

Input data:
T:
L:58
V:C942CF77E89DB6395E0D506969BA5A24
D6CAB3204A6EEC036B1F244655B16E68
0216D60CD80F46B493C8E0909369C7D4
877F9AB049064071E4B9E39E32194BAD
5BDB2A2DCA5242C29EA8490D85662F15
B1DA395521F4692B
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:97/128

T:
L:60
V:7B29D8841CBD2CD3281141B3B056DF8A
BDD22FA42055BB524E2A46E91E729287
8D8AA2851F4F65AE3BB225ECFDABE211
DB2A9055D5D69DA5D767F121449D9F13
631F54E11B9E4F52C4F729A5B1FD518E
CC34A53B99264ABCD4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8305607B29D8841CBD2CD3281141B3B0

56DF8ABDD22FA42055BB524E2A46E91E
7292878D8AA2851F4F65AE3BB225ECFD
ABE211DB2A9055D5D69DA5D767F12144
9D9F13631F54E11B9E4F52C4F729A5B1
FD518ECC34A53B99264ABCD4955CCDB8
492ED6
[PC<--SC] : 9000

q-1 mod p
Encrypt data - Begin:

Input data:
T:
L:58
V:1EE1D36F26D5BFD45659764E1703D850
503E7FBE3BCCE32664EEB96E7ECACAB1
03AD5501B9A19AC5BC8D8958307D7CD1
ED772AC73FF6922FF77B731004B748CF
09D2A39281D50ACC07D78809E17870AB
57C0285FD8CE7419
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:149C608267C40F3EC5DBB735583CBEFB
AD71CBCB9B9A4562B0D617B7FBB875E9
BF26686DDF2EFF604CC3DB7EE57513C4
B8371F1787D5F1E6359F66480419B8DC
42BF3EC2D546B5F5280F16D0C37DBEBB

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:98/128

9160764AEF091E76D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 830160149C608267C40F3EC5DBB73558

3CBEFBAD71CBCB9B9A4562B0D617B7FB
B875E9BF26686DDF2EFF604CC3DB7EE5
7513C4B8371F1787D5F1E6359F664804
19B8DC42BF3EC2D546B5F5280F16D0C3
7DBEBB9160764AEF091E76D4955CCDB8
492ED6
[PC<--SC] : 9000

Exp mod (q-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:BA5E367AE202D238991EEE25818A396D
4946B493055F00DCDEF80B95C40F4B7D
D35E77E62FB0901D6F6161495E8EE182
BAD3565B72200FB442A44248F5394F43
6D135B26BB483C6BD85B9D73A19018D1
EDF8A23E6930A8A1
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:C83257A819CA1DE5622A44D3C46E0270
1159092EFF8D1C43F8266C11209EBF0D
257AD7CD97D66C489147C2505C181C62
3A9CF1063B7F26DBD1CF80858E28A997
31862D01FBF86619CB36412ABF6297F6
0515F90366CBC4E9D4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 830260C83257A819CA1DE5622A44D3C4

6E02701159092EFF8D1C43F8266C1120
9EBF0D257AD7CD97D66C489147C2505C

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:99/128

181C623A9CF1063B7F26DBD1CF80858E
28A99731862D01FBF86619CB36412ABF
6297F60515F90366CBC4E9D4955CCDB8
492ED6
[PC<--SC] : 9000

Exp mod (p-1)

Encrypt data - Begin:

Input data:
T:
L:58
V:11CA3F0E89584F8038A9129F8EC1F32F
E870986ED54582C53695D51E067B1D98
41FF04C2B3E27DCC7E77B629F16DDB45
1509198255A220D63072A2051CC691A2
EC48AE2CC80287762E920F8B0B6CA1E2
D80AC3209C54BF6B
SKUdek:
T:
L:10
V:6A69ED15FB7C010631B1FF9B02868E3B
Ouput data:
T:
L:60
V:0C8C4AF5D3DCE2DCA2E8626003C2A3FA
7FAEB8CD072383B7EB9BE886E5B842FE
41838035B479A974DF3D5566F7DAFE2B
6A2918A40509FF27F3779E5A5996978D
B10F2312F4BF831404ABF6B6D3033335
B74E3FC1EC5BDCCED4955CCDB8492ED6

Encrypt data - End:

[PC-->SC] : 80E2000063 8303600C8C4AF5D3DCE2DCA2E8626003

C2A3FA7FAEB8CD072383B7EB9BE886E5
B842FE41838035B479A974DF3D5566F7
DAFE2B6A2918A40509FF27F3779E5A59
96978DB10F2312F4BF831404ABF6B6D3
033335B74E3FC1EC5BDCCED4955CCDB8
492ED6
[PC<--SC] : 9000

A009 (CT and CL)

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:100/128

Application Life Cycle Data Var. up to 48 bytes

[PC-->SC] : 80E2800033 A009300310041600070000A1A2A3A4A5
A6A7A8A9AAABACADAEAFB0B1B2B3B4C1
C2C3C4C5C6C7C8C9CACBCCCDCECFD0D1
D2D3D4
[PC<--SC] : 9000

Indep1 Creation
Indep1 Personalization
[PC-->SC] : 00A4040010 A0000000041010C88881010203040506
[PC<--SC] : 9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF0200060AFA
5CA4989126936A61DFAF7EA6
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0006
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:BA6AEECF0D6FFC90CD460EB9A16983DC
SKUmac:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:101/128

L:10
V:204AF90E980E997C5AF20A1D0C0E54AD
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0006
Rcard
T:
L:06
V:0AFA5CA49891
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:BA6AEECF0D6FFC90CD460EB9A16983DC
Cryptogram computed by CPS profiler:
T:
L:08
V:26936A61DFAF7EA6
Cryptogram computed by the card:
T:
L:08
V:26936A61DFAF7EA6

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0006

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:102/128

Rcard
T:
L:06
V:0AFA5CA49891
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:BA6AEECF0D6FFC90CD460EB9A16983DC
Host:
T:
L:08
V:2F4DDBD91DEEFCAD

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:84820000102F4DDBD91DEEFCAD
Data to be MACed:
T:
L:0D
V:84820000102F4DDBD91DEEFCAD
SKUmac:
T:
L:10
V:204AF90E980E997C5AF20A1D0C0E54AD
MAC:
T:
L:08
V:C984D58E39CBF62C

Compute Mac - End

[PC-->SC] : 8482000010 2F4DDBD91DEEFCADC984D58E39CBF62C

[PC<--SC] : 9000
[PC-->SC] : 80E2000018 00621562138002000082050600002C0A
88010B8603000408

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:103/128

[PC<--SC] : 9000

SFI 1 - RECORD 1 (CT and CL)

Mag. Stripe Application Version Number / Track 1 Bit Map for CVC3 / Track 1 Bit Map for UN and ATC
/ Track 1 Data
Track 1 Nr of ATC Digits / Track 2 Bit Map for CVC3 / Track 2 Bit Map for UN and ATC / Track 2 Data
Track 2 Nr of ATC Digits
[PC-->SC] : 80E200007A 01017770759F6C0200019F6206000000
3800009F630600000000E0E056344235
3431333333393030303030313531335E
202F5E32303132323031333330303033
33333030303232323232303030313131
31309F6401039F6502000E9F66020E70
9F6B135413339000001513D201220190
00990000000F9F670103
[PC<--SC] : 9000

SFI 2 - RECORD 1 (CT and CL)

Data to be authenticated
Application Expiration Date / Application Effective Date / Application Usage Control / PAN
IAC Default / IAC Denial / IAC Online / Issuer Country Code
[PC-->SC] : 80E200003D 02013A70385F24032012315F25030601
019F0702FF005A085413339000001513
9F0D05F8406420009F0E050010880000
9F0F05F86064F8005F28020056
[PC<--SC] : 9000

SFI 2 - RECORD 2 (CT and CL)

CDOL1 / CDOL2 / CVM List
[PC-->SC] : 80E2000058 02025570538C279F02069F03069F1A02
95055F2A029A039C019F37049F35019F
45029F4C089F34039F21039F7C148D12
910A8A0295059F37049F4C089F02069F
03068E14000000000000000042014403
41035E0342031F03
[PC<--SC] : 9000

SFI 2 - RECORD 3 (CT and CL)

Application Currency Code / Application Version Number / Track 2 equivalent data / DSDOL / DRDOL
[PC-->SC] : 80E2000029 02032670249F420209789F0802000257
125413339000001513D2012201000000
0000009F51039F3704
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:104/128

SFI 2 - RECORD 4 (CT and CL)

Issuer PK Exponent
[PC-->SC] : 80E2000009 02040670049F320103
[PC<--SC] : 9000

SFI 3 - RECORD 1 (CT and CL)

CA Public key Index / Issuer Public key Remainder
[PC-->SC] : 80E200002E 03012B70298F01F39224EFF4A554A084
A829B0D6D5ACCC34B84C262B32436ABD
AC9899308D51E57C83DF6908C389
[PC<--SC] : 9000

SFI 3 - RECORD 2 (CT and CL)

Issuer Public key Certificate
[PC-->SC] : 80E2000099 03029670819390819021EC0FC6E1810D
FEEA26545127494B40F5F12FA8670877
C4B47516BBCD67EDF5F0652B437B4D3E
4E83999E7B8245E2A18A7968E7C3E1C1
6B5609036E65E0F4AF2C4383AF19F167
9DD59726C5D315B21967F5A3E526E645
724B61F4C8ABCE98BEB8DF1FD64237DB
E356B1F96C73EBA3206AAA4C818518E5
8E17F0E4265A0A5D7E2196E983C6DA78
FC5C73F64E6F3AFF5A
[PC<--SC] : 9000

SFI 3 - RECORD 3 (CT and CL)

ICC PK Exponent / ICC Public key Remainder / DDOL
[PC-->SC] : 80E200000F 03030C700A9F4701039F49039F3704
[PC<--SC] : 9000

SFI 3 - RECORD 4 (CT and CL)

ICC PIN encipherment public key exponent / ICC PIN encipherment public key remainder
[PC-->SC] : 80E2000009 03040670049F2E0103
[PC<--SC] : 9000

SFI 3 - RECORD 5 (CT and CL)

ICC PIN encipherment public key certificate
[PC-->SC] : 80E200009A 0305977081949F2D8190332B080952DF
46245218969565A73C69D9692FA36746
4161D01238A5238D97385C9BBAC4BC33
E7766E8A30C11D879EF5B3C515270D87
BB810AFEACCDF092361AA5F21A00B76E
9E68E3C15537425666A0F21051AA9309

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:105/128

3B082CE043B886C071594C06F4D7D13A
73651700BABD8E8C51F6E7FAB2FB9705
6D2088A13459D910B84705DB77C448CE
56F87C25D9279E4E284D
[PC<--SC] : 9000
SFI 4 - RECORD 1 (CL
Data to be authenticate
PAN Sequence Numbe
SFI 4 - RECORD 2 (CL
Signed Static Applicatio
SFI 4 - RECORD 3 (CL
ICC Public key Certificat
SFI 5 - RECORD 1 (CT)
Data to be authenticated
PAN Sequence Number
[PC-->SC] : 80E2000009 05010670045F340102
[PC<--SC] : 9000

SFI 5 - RECORD 2 (CT)

Signed Static Application
[PC-->SC] : 80E2000099 0502967081939381905942B124A12375
9138D98D8579850AADDA3969BD2699EF
39CCE47AD220DA1095AE5BD6D32AAD71
30BC5D3C8D503AE7ECA160B64AB77B4F
98D8E023F9770FE6C5E5C02D7A82D540
07B8F1EA637069EAC75F26AD158F99A9
C96000D7D69AC7AA7604BFE0EDE62075
E517DBE16F87CFF81698FA06F616AA36
CCBC210D53E045E0585A99C3113E913A
1E85A8D5EFA0EB96C6
[PC<--SC] : 9000

SFI 5 - RECORD 3 (CT)

ICC Public key Certificate
[PC-->SC] : 80E200009A 0503977081949F46819063986DF3399C
2D8F65E425ACFE6CF24B98B084C04180
4BF024C9382D7EA0804B287BE579D0D1
5BD859F9A42FEDB761028B17E5ED673B
0E38E61304D1152281ABE111D79AA137
EDB84587E8BC14FA4CD391FBCF6185EC
94CCD6C0C405A92E1DAA7B1A179CC2C8
6BA0CF5D59EF92D0F345DFDBDBF80120
EB302B40FFB52F1DCA5C77A4F0D1A361
7D810F5442C7D288A46A

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:106/128

[PC<--SC] : 9000

SFI 6 - RECORD 1 (CT)

Cardholder name
[PC-->SC] : 80E2000011 06010E700C5F20097465737420636172
64
[PC<--SC] : 9000

A002 (CT and CL)

Accumulator 1 Currency Code 2 / Accumulator 1 Currency Conversion Table 25 / Accumulator 1 Lower Limit
6 / Accumulator 1 Upper Limit 6 /
Accumulator 2 Currency Code 2 / Accumulator 2 Currency Conversion Table 25 / Accumulator 2 Lower Limit
6 / Accumulator 2 Upper Limit 6 /
Additional Check Table 18 / CDOL1 Related Data Length 1 /
Counter 1 Lower Limit 1 / Counter 1 Upper Limit 1 / Counter 2 Lower Limit 1 / Counter 2 Upper Limit
1 /
CRM Country Code 2 / Cryptogram Version Number V2.x 1 / Default ARPC Response Code 2 /
Interface Enabling Switch 1 / MTA Currency Code 2 / Number Of Days Off Line Limit 2
Alias for Interface Enabling Switch
[PC-->SC] : 80E2000072 A0026F09780978000000097800000009
78000000097800000009780000009999
99999999999999999999084008400000
00084000000008400000000840000000
08400000009999999999999999999999
991A0402FFFFFFFF00000000FFFFFFFF
FFFFFF42FFFFFFFF0056020010010978
FFFF
[PC<--SC] : 9000

B002 (CT and CL)

Log Data Table 9 / Log Format Var.
[PC-->SC] : 80E2000026 B0022300FFFFFFFFFFFFFFFF9F27019F
02065F2A029A039F36029F5206DF3E01
9F21039F7C14
[PC<--SC] : 9000

A007 (CT and CL)

Application Transaction Counter Limit 2 / Previous Transaction History 1
[PC-->SC] : 80E2000006 A00703FFFF00
[PC<--SC] : 9000

A008 (CT and CL)

PIN Decipherments Error Counter Limit 2
[PC-->SC] : 80E2000005 A00802FF00

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:107/128

[PC<--SC] : 9000

A012 (CT)
Accumulator 1 Control 1 / Accumulator 1 CVR Dependency Data 3 / Accumulator 2 Control 1 /
Accumulator 2 CVR Dependency Data 3 / Counter 1 Control 1 /
Counter 1 CVR Dependency Data 3 / Counter 2 Control 1 / Counter 2 CVR Dependency Data 3 /
CVR Issuer Discretionary Data 1 / Interface Identifier 1 / MTA CVM 6 / MTA NoCVM 6
[PC-->SC] : 80E2000021 A0121EC5000000C5000000D500000055
00000001C19999999999999999999999
99
[PC<--SC] : 9000

A013 (CT)
Application Control 6
[PC-->SC] : 80E2000009 A013069C064098E10C
[PC<--SC] : 9000

A014 (CT)
Read Record Filter Var.
[PC-->SC] : 80E2000007 A014042001FF00
[PC<--SC] : 9000

A015 (CT)
Card Issuer Action Code Decline 3 / Card Issuer Action Code Default 3 / Card Issuer Action Code Online
3
[PC-->SC] : 80E200000C A01509000000000000000000
[PC<--SC] : 9000
A022 (CL
Accumulator 1 Control 1 / Accumulator 1 CVR Dependency Data 3 / Accumulator 2 Control 1
Accumulator 2 CVR Dependency Data 3 / Counter 1 Control
Counter 1 CVR Dependency Data 3 / Counter 2 Control 1 / Counter 2 CVR Dependency Data 3
CVR Issuer Discretionary Data 1 / Interface Identifier 1 / MTA CVM 6 / MTA NoCVM
A023 (CL
Application Control
A024 (CL
Read Record Filter Va
A025 (CL
Card Issuer Action Code Decline 3 / Card Issuer Action Code Default 3 / Card Issuer Action Code Online

A005 (CT)
Application Interchange Profile 4 / Application File Locator Var.
[PC-->SC] : 80E2000019 A0051679000801010010010401180105
002801030130010100
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:108/128

B005 (CL
Application Interchange Profile 4 / Application File Locator Var
A017 (CT)
AC Session Key Counter Limit 2 / Key Derivation Index 1 / SMI Session Key Counter Limit 2
[PC-->SC] : 80E2000008 A01705FFF011FF00
[PC<--SC] : 9000
A027 (CL
AC Session Key Counter Limit 2 / Key Derivation Index 1 / SMI Session Key Counter Limit
B010 (CT)
IVCVC3(Track1) 2 / IVCVC3(Track2) 2
[PC-->SC] : 80E2000007 B010047FEE7298
[PC<--SC] : 9000
B023 (CL
IVCVC3(Track1) 2 / IVCVC3(Track2)
B100 (CT)
Min Time For Processing Relay Resistance APDU 2 / Max Time For Processing Relay Resistance APDU 2 /
Transmission Time For Relay Resistance R-APDU 2
[PC-->SC] : 80E2000009 B10006020204040246
[PC<--SC] : 9000
B101 (CL
Min Time For Processing Relay Resistance APDU 2 / Max Time For Processing Relay Resistance APDU 2 /
Transmission Time For Relay Resistance R-APDU
A028 (CT/CL)
AC Session Key Counter Limit (MAS4C) 2 / Key Derivation Index (MAS4C) 1
[PC-->SC] : 80E2000006 A02803FFF011
[PC<--SC] : 9000

8004 (CT/CL)
AC Master Key (MAS4C) 16
Encrypt data - Begin:

Input data:
T:
L:10
V:FA49038A1EDCBE8576FF05263C8C8C51
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:10
V:DBDF74C524245564E597CB8EF5AFE8F1

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:109/128

Encrypt data - End:

[PC-->SC] : 80E2000013 800410DBDF74C524245564E597CB8EF5

AFE8F1
[PC<--SC] : 9000

A00A Last Online Transaction Date (CT/CL)

[PC-->SC] : 80E2000005 A00A020000
[PC<--SC] : 9000

Shared Recovery Data : Application Cryptogram / Issuer Application Data / CDA Transaction Flag
[PC-->SC] : 80E2000032 30012FDF83080000000000000000DF88
1D000000000000000000000000000000
0000000000000000000000000000DF92
0100
[PC<--SC] : 9000

8000 AC, SMI and SMC Master Key (CT)

Encrypt data - Begin:

Input data:
T:
L:30
V:6F672F6D4430E172F42A904F86E6BF03
AA7EDAEFABA108B5ED59F5265F2C1C9C
76A8C42E3F3AFA74B28588344F4BBE4B
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:30
V:6B383CB5E2DBF777D2CE1669195E049F
7EAC40B5396BDFC08F09D2488E1D94F6
03807492FAA92C854F222A9B443BD1D8

Encrypt data - End:

[PC-->SC] : 80E2000033 8000306B383CB5E2DBF777D2CE166919

5E049F7EAC40B5396BDFC08F09D2488E
1D94F603807492FAA92C854F222A9B44
3BD1D8
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:110/128

A006 Diversified key for ICC Dynamic number (CT)

Encrypt data - Begin:

Input data:
T:
L:10
V:07DCCCEA5C5D61F951F693CC173DE93D
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:10
V:0FFEA2A06C909E690659B982A236D909

Encrypt data - End:

[PC-->SC] : 80E2000013 A006100FFEA2A06C909E690659B982A2

36D909
[PC<--SC] : 9000

8400 Diversified key for Compute Cryptogram Checksum (CT)

Encrypt data - Begin:

Input data:
T:
L:10
V:1EBF777E7523CE8A4A59A8C9BD448931
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:10
V:AED86B120FE58DBFD8083AC9446BA10D

Encrypt data - End:

[PC-->SC] : 80E2000013 840010AED86B120FE58DBFD8083AC944

6BA10D
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:111/128

8001 Diversified key for the AC, SMI and SMC generation (CL
A016 Diversified key for ICC Dynamic number (CL
8401 Diversified key for Compute Cryptogram Checksum (CL
Personalization of the ICC RSA key
RSA CRT :
P : C89EB6CFA22566083268CE3F975850E0F3695FF199791A27394EB8E9137619C6DA65056F4D9BA4D733ACED9108F48443
Q : CDCF9FDA4FC8BDBE4F641A39CD858BF0C64C80CC2055C041FF32B53E6BD8DC51B3AFB13BF0D5E5DAB7537C63A84D3C19
E : 03
N : A149CDFFBFF4FC92957147ACD01E2777354FE9790BE130EF4C50780B66C88F836986672F51D15662DA2906C47D9D0D74BCC160
DP : 85BF248A6C18EEB0219B342A64E58B40A2463FF66650BC1A26347B460CF966849198AE4A33BD188F77C89E60B0A302D7
DQ : 8935153C35307E7EDF98117BDE5907F5D98855DD6AE3D58154CC78D447E5E83677CA7627F5E3EE91CF8CFD97C588D2BB
1PMODQ : BDFF1436301672F1B29C3EC7A4C6C4A5F54058A5925393BEAFB1EAA83050BBF27EC745ACBF2BA0B10FBE89E99B057725
1QMODP : 0F6A6E68DC022FAC7F829CF7F0A2CE1AC4148CB431C2E14164D3328735281110E8873841163F96CCA632C57AB4CF9665

Factor p
Encrypt data - Begin:

Input data:
T:
L:30
V:C89EB6CFA22566083268CE3F975850E0
F3695FF199791A27394EB8E9137619C6
DA65056F4D9BA4D733ACED9108F48443
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:DA22DCD5BA9795CB94FCA230E2B2A7C6
8C549892DE5817691F5A7AB0E6B76F82
20F920F42701896FF308CA5314235EE4
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 820438DA22DCD5BA9795CB94FCA230E2

B2A7C68C549892DE5817691F5A7AB0E6
B76F8220F920F42701896FF308CA5314
235EE44D52C42B6DEB6385
[PC<--SC] : 9000

Factor q

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:112/128

Encrypt data - Begin:

Input data:
T:
L:30
V:CDCF9FDA4FC8BDBE4F641A39CD858BF0
C64C80CC2055C041FF32B53E6BD8DC51
B3AFB13BF0D5E5DAB7537C63A84D3C19
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:59DE24388D985A0646FAEFFE432B2D14
440661AE5BB39C161D68BFECF57223DA
11BF13275EFFAD91537A466468946ABF
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 82053859DE24388D985A0646FAEFFE43

2B2D14440661AE5BB39C161D68BFECF5
7223DA11BF13275EFFAD91537A466468
946ABF4D52C42B6DEB6385
[PC<--SC] : 9000

p-1 mod q
Encrypt data - Begin:

Input data:
T:
L:30
V:BDFF1436301672F1B29C3EC7A4C6C4A5
F54058A5925393BEAFB1EAA83050BBF2
7EC745ACBF2BA0B10FBE89E99B057725
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:113/128

V:80A9DE7452463EDBC0E2BB6FDB20EB52
D4DAD4E6D7D3C4D41296929E88CB0069
94FD43D3DFE31CF9F9D3115104B28C58
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 82013880A9DE7452463EDBC0E2BB6FDB

20EB52D4DAD4E6D7D3C4D41296929E88
CB006994FD43D3DFE31CF9F9D3115104
B28C584D52C42B6DEB6385
[PC<--SC] : 9000

Exp mod p
Encrypt data - Begin:

Input data:
T:
L:30
V:85BF248A6C18EEB0219B342A64E58B40
A2463FF66650BC1A26347B460CF96684
9198AE4A33BD188F77C89E60B0A302D7
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:1AF28C65904EB2F2D506844EF88002EF
4ED29D7A4124073950DD022657611C73
09836FFCAADC48127264660884EB9105
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 8202381AF28C65904EB2F2D506844EF8

8002EF4ED29D7A4124073950DD022657
611C7309836FFCAADC48127264660884
EB91054D52C42B6DEB6385
[PC<--SC] : 9000

Exp mod q
Encrypt data - Begin:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:114/128

Input data:
T:
L:30
V:8935153C35307E7EDF98117BDE5907F5
D98855DD6AE3D58154CC78D447E5E836
77CA7627F5E3EE91CF8CFD97C588D2BB
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:CEEADCD05A83F258073DC9A034D2A75E
5D42FF5D0776932DB3A5FB836372CB3B
DCAB5BD388F323DB2EEA126CC51A842E
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 820338CEEADCD05A83F258073DC9A034

D2A75E5D42FF5D0776932DB3A5FB8363
72CB3BDCAB5BD388F323DB2EEA126CC5
1A842E4D52C42B6DEB6385
[PC<--SC] : 9000

Personalization of the ICC PIN Encipherment RSA key

RSA CRT :
P : C299B2C9F617C96D54FEF8D7CFB64E46BF95CA5FCACC173274B132DAB8335A5FD7B67D772DC95613EE938DD5D7E0ED55
Q : CE4B222F1D43EED3F9DB677BF4C4D9A154156DED7F86279213BC4CE4AB2FCD0B76FFF0A5C000529EE06D61DFE1D48AD1
E : 03
N : 9CD0CAE21F67EFD8071C13A48952A57EA6421B441C40811D07AB3BC88A580DC8685907CA1C0365F0783C847E9C9E83B3543CF4
DP : 81BBCC86A40FDB9E38A9FB3A8A7989847FB9319531DD64CC4DCB773C7ACCE6EA8FCEFE4F73DB8EB7F4625E8E8FEB48E3
DQ : 89876C1F68D7F48D513CEFA7F8833BC0E2B8F3F3AA596FB6B7D2DDEDC775335CF9FFF5C3D5558C69EAF3969541385C8B
1PMODQ : 967BBDE61B96420B90806E57592D6AD26213B4DE7A8A08463BAF1E8ACE7EBA4672D63B99CA866A6033C4FBF4EB57C5DB
1QMODP : 34A58E27F9EDA84D1D380BDCB95CFF9E608D8F184D9CA9F5263CF28369E6F42ED654715D8C11D0D25FF951B9F635667F

Factor p
Encrypt data - Begin:

Input data:
T:
L:30

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:115/128

V:C299B2C9F617C96D54FEF8D7CFB64E46
BF95CA5FCACC173274B132DAB8335A5F
D7B67D772DC95613EE938DD5D7E0ED55
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:66F1A64999CBFB02E329114562E8D155
1F8A873D3B1E8D3F7E3D6F92C3CA16D7
CFBAB38D82A1114216FCF28D63C47320
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 83043866F1A64999CBFB02E329114562

E8D1551F8A873D3B1E8D3F7E3D6F92C3
CA16D7CFBAB38D82A1114216FCF28D63
C473204D52C42B6DEB6385
[PC<--SC] : 9000

Factor q
Encrypt data - Begin:

Input data:
T:
L:30
V:CE4B222F1D43EED3F9DB677BF4C4D9A1
54156DED7F86279213BC4CE4AB2FCD0B
76FFF0A5C000529EE06D61DFE1D48AD1
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:9624BC425E292C6AC6F8A8C1AE161740
F1F6DB1A46D18B323816114ADDBBD551
53F0EED0E1C662D5F72552DFE1FC6EE0
4D52C42B6DEB6385

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:116/128

Encrypt data - End:

[PC-->SC] : 80E200003B 8305389624BC425E292C6AC6F8A8C1AE

161740F1F6DB1A46D18B323816114ADD
BBD55153F0EED0E1C662D5F72552DFE1
FC6EE04D52C42B6DEB6385
[PC<--SC] : 9000

p-1 mod q
Encrypt data - Begin:

Input data:
T:
L:30
V:967BBDE61B96420B90806E57592D6AD2
6213B4DE7A8A08463BAF1E8ACE7EBA46
72D63B99CA866A6033C4FBF4EB57C5DB
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:DBF682035C1983C2648E9C76D8FB83EE
C8B089AAAE3059748CAEAA970382C63D
5B53AA8F0456376B89DE2C87B2B84D90
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 830138DBF682035C1983C2648E9C76D8

FB83EEC8B089AAAE3059748CAEAA9703
82C63D5B53AA8F0456376B89DE2C87B2
B84D904D52C42B6DEB6385
[PC<--SC] : 9000

Exp mod p
Encrypt data - Begin:

Input data:
T:
L:30
V:81BBCC86A40FDB9E38A9FB3A8A798984

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:117/128

7FB9319531DD64CC4DCB773C7ACCE6EA
8FCEFE4F73DB8EB7F4625E8E8FEB48E3
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:00CE23259C927ABA8EC12383B5BF8FB6
7AA7F1872F3DE8977E63DE5171C01B66
19BFC3A9C61593F2CAD385780BC4BE6B
4D52C42B6DEB6385

Encrypt data - End:

[PC-->SC] : 80E200003B 83023800CE23259C927ABA8EC12383B5

BF8FB67AA7F1872F3DE8977E63DE5171
C01B6619BFC3A9C61593F2CAD385780B
C4BE6B4D52C42B6DEB6385
[PC<--SC] : 9000

Exp mod q
Encrypt data - Begin:

Input data:
T:
L:30
V:89876C1F68D7F48D513CEFA7F8833BC0
E2B8F3F3AA596FB6B7D2DDEDC775335C
F9FFF5C3D5558C69EAF3969541385C8B
SKUdek:
T:
L:10
V:B15757488D4D7D27908205ACABFEBD34
Ouput data:
T:
L:38
V:0B39255E0376E9032523481B39757DB4
778EC601BB9AFF0799267ACD907FAA8C
2EC7146753DA2540D9BF61CD603B4F6C
4D52C42B6DEB6385

Encrypt data - End:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:118/128

[PC-->SC] : 80E200003B 8303380B39255E0376E9032523481B39

757DB4778EC601BB9AFF0799267ACD90
7FAA8C2EC7146753DA2540D9BF61CD60
3B4F6C4D52C42B6DEB6385
[PC<--SC] : 9000

A009 (CT and CL)

Application Life Cycle Data Var. up to 48 bytes
[PC-->SC] : 80E2000033 A009300410041600030000A1A2A3A4A5
A6A7A8A9AAABACADAEAFB0B1B2B3B4C1
C2C3C4C5C6C7C8C9CACBCCCDCECFD0D1
D2D3D4
[PC<--SC] : 9000
[PC-->SC] : 80E2800031 91022E8410A0000000041010C8888101
0203040506A51A500A4D617374657243
3030319F38039F4005BF0C059F4D020B
0A
[PC<--SC] : 9000
[PC-->SC] : 00A4040010 A0000000041010C44441010203040506
[PC<--SC] : 9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF020007C58A
C72EA13C0D53DD12D14CFC41
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0007
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:119/128

Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:A2268F71917EFE0F33CC6166E1154E27
SKUmac:
T:
L:10
V:7A227D376A9DBE23AB50B7DCB45B2093
SKUdek:
T:
L:10
V:F39FCFB2383B09578723B8C2E03B2729

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0007
Rcard
T:
L:06
V:C58AC72EA13C
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:A2268F71917EFE0F33CC6166E1154E27
Cryptogram computed by CPS profiler:
T:
L:08
V:0D53DD12D14CFC41
Cryptogram computed by the card:
T:
L:08

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:120/128

V:0D53DD12D14CFC41

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0007
Rcard
T:
L:06
V:C58AC72EA13C
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:A2268F71917EFE0F33CC6166E1154E27
Host:
T:
L:08
V:9814A08258409029

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:84820000109814A08258409029
Data to be MACed:
T:
L:0D
V:84820000109814A08258409029
SKUmac:
T:
L:10
V:7A227D376A9DBE23AB50B7DCB45B2093
MAC:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:121/128

T:
L:08
V:574DFD439246C954

Compute Mac - End

[PC-->SC] : 8482000010 9814A08258409029574DFD439246C954

[PC<--SC] : 9000

9104 (CT)
Application Interchange Profile 4 / Application File Locator Var.
[PC-->SC] : 80E200001D 91041A82027900941408010100100104
01180105002801030130010100
[PC<--SC] : 9000

A014 (CT)
Read Record Filter Var.
[PC-->SC] : 80E2000007 A014042001FF00
[PC<--SC] : 9000
B104 (CL
Application Interchange Profile 4 / Application File Locator Var
A024 (CL
Read Record Filter Va
Shared Recovery Data : Application Cryptogram / Issuer Application Data / CDA Transaction Flag
[PC-->SC] : 80E2000032 30012FDF83080000000000000000DF88
1D000000000000000000000000000000
0000000000000000000000000000DF92
0100
[PC<--SC] : 9000
[PC-->SC] : 80E2800031 91022E8410A0000000041010C4444101
0203040506A51A500A4D617374657243
3030349F38039F4005BF0C059F4D020B
0A
[PC<--SC] : 9000
[PC-->SC] : 00A4040010 A0000000041010C55551010203040506
[PC<--SC] : 9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF020008B7F5
2E353318F14781B4E940DB86
9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:122/128

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0008
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:640D58CA61AD53BABBE548368D81DA20
SKUmac:
T:
L:10
V:015A6C2117AAAE9457614E5DAF0429B9
SKUdek:
T:
L:10
V:B4F75CE0A95EA3F86BBD051CB77C0FAE

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0008
Rcard
T:
L:06
V:B7F52E353318

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:123/128

Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:640D58CA61AD53BABBE548368D81DA20
Cryptogram computed by CPS profiler:
T:
L:08
V:F14781B4E940DB86
Cryptogram computed by the card:
T:
L:08
V:F14781B4E940DB86

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0008
Rcard
T:
L:06
V:B7F52E353318
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:640D58CA61AD53BABBE548368D81DA20
Host:
T:
L:08
V:C7439FE91488E2AD

Compute host - End

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:124/128

Compute Mac - Begin

Input data:
T:
L:0D
V:8482000010C7439FE91488E2AD
Data to be MACed:
T:
L:0D
V:8482000010C7439FE91488E2AD
SKUmac:
T:
L:10
V:015A6C2117AAAE9457614E5DAF0429B9
MAC:
T:
L:08
V:FA3D47AFF9031AF7

Compute Mac - End

[PC-->SC] : 8482000010 C7439FE91488E2ADFA3D47AFF9031AF7

[PC<--SC] : 9000

9104 (CT)
Application Interchange Profile 4 / Application File Locator Var.
[PC-->SC] : 80E200001D 91041A82027900941408010100100104
01180105002801030130010100
[PC<--SC] : 9000

A014 (CT)
Read Record Filter Var.
[PC-->SC] : 80E2000007 A014042001FF00
[PC<--SC] : 9000
B104 (CL
Application Interchange Profile 4 / Application File Locator Var
A024 (CL
Read Record Filter Va
Shared Recovery Data : Application Cryptogram / Issuer Application Data / CDA Transaction Flag
[PC-->SC] : 80E2000032 30012FDF83080000000000000000DF88
1D000000000000000000000000000000
0000000000000000000000000000DF92
0100
[PC<--SC] : 9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:125/128

[PC-->SC] : 80E2800031 91022E8410A0000000041010C5555101

0203040506A51A500A4D617374657243
3030359F38039F4005BF0C059F4D020B
0A
[PC<--SC] : 9000

Mutual Authenticatio
Mutual Authenticatio
Select ROOT
[PC-->SC] : 00A4040007 A0000001510000
[PC<--SC] : 615D
[PC-->SC] : 00C000005D
[PC<--SC] : 6F5B8407A0000001510000A550734A06
072A864886FC6B01600C060A2A864886
FC6B02020101630906072A864886FC6B
03640B06092A864886FC6B040215650B
06092B8510864864020103660C060A2B
060104012A026E01029F6501FF
9000

Mutual Authentication
[PC-->SC] : 8050000008 1111111111111111
[PC<--SC] : 611C
[PC-->SC] : 00C000001C
[PC<--SC] : 00000000000000014A48FF020009EA72
36BB67ACCA3B07FF514405B5
9000

Compute session keys - Begin

Sequence counter:
T:
L:02
V:0009
Kenc:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kmac:
T:
L:10
V:404142434445464748494A4B4C4D4E4F
Kdek:
T:

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:126/128

L:10
V:404142434445464748494A4B4C4D4E4F
SKUenc:
T:
L:10
V:4BEAEF3B620B3E8F864BBF365FB42885
SKUmac:
T:
L:10
V:D85E62A5C2C1CE12AB47794BA1E8D5C7
SKUdek:
T:
L:10
V:33C1D105492068CD86923711B29E6475

Compute session keys - End

Check card cryptogram - Begin

Sequence counter:
T:
L:02
V:0009
Rcard
T:
L:06
V:EA7236BB67AC
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:4BEAEF3B620B3E8F864BBF365FB42885
Cryptogram computed by CPS profiler:
T:
L:08
V:CA3B07FF514405B5
Cryptogram computed by the card:
T:
L:08
V:CA3B07FF514405B5

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:127/128

Check card cryptogram - End

Compute host - Begin

Sequence counter:
T:
L:02
V:0009
Rcard
T:
L:06
V:EA7236BB67AC
Rterm:
T:
L:08
V:1111111111111111
SKUenc:
T:
L:10
V:4BEAEF3B620B3E8F864BBF365FB42885
Host:
T:
L:08
V:9D94A53A418F229B

Compute host - End

Compute Mac - Begin

Input data:
T:
L:0D
V:84820000109D94A53A418F229B
Data to be MACed:
T:
L:0D
V:84820000109D94A53A418F229B
SKUmac:
T:
L:10
V:D85E62A5C2C1CE12AB47794BA1E8D5C7
MAC:
T:
L:08

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1
 Ref: 2016 2000022523
IDEMIA CONFIDENTIAL P18-017/SAAAAR 092291
Personalization Manual Date: 2019-03-14
Project: M/Chip Advance v1.2.2 Page:128/128

V:3AA835E1AFEACE9C

Compute Mac - End

[PC-->SC] : 8482000010 9D94A53A418F229B3AA835E1AFEACE9C

[PC<--SC] : 9000

DGI 9́F66:́ Update CPLC

[PC-->SC] : 80E200000B 9F6608DDDD6340DCBAABCD
[PC<--SC] : 9000
[PC-->SC] : 80E2000104 9F70010F
[PC<--SC] : 9000

[PC<--SC] : 3B68000081000350000F9000

This document and the information it contains is the property of Idemia. It may not be used, reproduced or
transmitted to a third party without prior written approval. Template’s reference: 000000213 - V1.1