Brother
Professional
- Messages
- 2,590
- Reaction score
- 532
- Points
- 113
1. EMV Insight 2 EMV Card Testing System Brief Description EMV Insight 2 is a quality control tool for personalizing EMV applications on smart cards. EMV Insight 2 allows you to minimize the efforts associated with the certification of EMV cards in international payment systems, to simplify the selection of the optimal set of parameters for EMV applications in preparation for the release of new card products, as well as to identify the causes of failures in the work of already issued cards. EMV Insight 2 helps to solve problems and save time during the stages of personalization preparation, issuance and operation of EMV cards. When configuring the parameters of new card products, EMV Insight 2 helps to make sure that the test card is working, check its behavior at various values of the parameters of the EMV application. For mass personalization, EMV Insight 2 allows you to check the correctness of data, personalized on the card, without disturbing the original state of the card. In case of problems with the use of cards issued into circulation, EMV Insight 2 helps to find out the reasons for the inoperability of cards returned by customers, as well as to manage the parameters of cards.
2. Functions EMV Insight 2 is a payment system emulator that includes a POS terminal simulator and an authorization center simulator. EMV Insight 2 implements the following main functions: control and visualization of the EMV smart card authorization process in various modes; analysis of the results of initialization and electronic personalization of EMV smart cards, including control of: o card operability when servicing transactions; o completeness of data on the map; o data authenticity by checking certificates and keys; o consistency and lack of data redundancy; o lack of data duplication; o compliance with data presentation formats (including control of the length of tags); o consistency of interdependent parameters in accordance with the requirements of payment systems. control over the implementation of the cryptographic functions of the EMV application; checking the consistency of the personalization of the EMV application, the magnetic stripe and the embossed data. These functions are implemented through a series of procedures described later in this document. Innovations The EMV Insight 2 testing complex for EMV cards is a logical continuation of the well-proven EMV Insight complex, which has been in operation for over 7 years. Over the past time, despite the constant modification of the EMV Insight software and bringing it into line with the current versions of the specifications of payment systems and EMVCo, the developers have accumulated a lot of experience in operating the complex, which led to the need to release a new software product called EMV Insight 2 ". 1. "EMV Insight 2" has a new structure for presenting the parameters of terminal devices and the authorization center, which led to a change in the storage format for configuration parameters. At the same time, the user interface of the complex is as close as possible to the interface of the previous version of "EMV Insight" in order to minimize the time of user adaptation to the new software. 2. The structure of the parameters of the terminal simulator database has been significantly simplified. Removed parameters not requested by users of "EMV Insight" v.1. The remaining parameters were rearranged for the purpose of operational testing of EMV cards in various types of service points. 3. "EMV Insight 2" supports the operation of EMV cards with applications of payment systems American Express, JCB, UnionPay and PRO "EMV Insight 2" supports the operation of contactless cards of payment systems Visa and MasterCard in all possible modes, specified in the VCPS (PayWave) and PayPass documentation The nomenclature of supported devices used to control the execution of cryptographic functions of an EMV application (except for SAM cards and software implementation of crypto functions) has been expanded: HSM by Thales e-security; HSM from SafeNet (formerly Eracom) (available soon). 1 Supplied as a separate option Testing personalization of EMV cards 2
3. "EMV Insight 2" supports both financial and specialized applications operating in all CAP / DPA 2 modes (Mode 1, Mode 2, Mode 2 TDS, Mode 3, Mode 3 TDS). 7. "EMV Insight 2" supports checking PVV, CVV / CVC / CSC, icvv / chipcvc, CVV2 / CVC2 values calculated for various input data formats. Downloading and using the necessary cryptographic keys (CVK, PVK) is possible both in software implementation of cryptomechanisms and in hardware cryptographic devices (SAM-card or HSM). 8. "EMV Insight 2" supports checking Data Authentication Code (DAC) and ICC Dynamic Number (ICC) values. 9. "EMV Insight 2" allows you to define up to 30 RSA keys simultaneously for each payment system. 10. "EMV Insight 2" allows copying BIN descriptions together with 3DES key values. eleven. EMV Insight 2 can ignore the presence of PSE on the smart card, which allows testing specialized applications, including CAP / DPA, which are not available in PSE. 12. The user can select the transaction currency and country code of the terminal device from a complete list of currencies and countries described in the relevant ISO standards. For the convenience of modifying the lists, descriptions of currencies and countries are stored in text files CurrencyCode.txt and CountryCode.txt. 13. Due to the fact that SAM cards do not support RSA cryptography for keys of the entire range of lengths and only public RSA keys are used in authorization operations, EMV Insight 2 does not support RSA cryptography functions in SAM cards. 14. Lists of tags, available through the Get Data and Put Data commands for contact and contactless cards are available for editing for each payment system specification (if the Issuer has placed additional tags on the card that are not described in the payment system specifications). 15. The test report is output to a file in HTML format and has become more informative compared to the version of "EMV Insight". 16. The user can create a file of exception messages about warnings and errors to filter messages that are irrelevant for a particular type of application. 17. "EMV Insight 2" has an OLE interface that allows you to call it from other applications. 18. "EMV Insight 2" analyzes the data received from MasterCard M / Chip applications for compliance with the standard data templates specified in the document "M / Chip Card Personalization Standard Profiles", and the data, received from Visa applications for compliance with the standardized PRONIT data templates. Due to the external storage of the description of standard templates, the publication of new standard templates of payment systems does not require updating the versions of "EMV Insight 2". Benefits of EMV Insight 2 Verification of cards for compliance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications; Clear presentation of chip and magnetic stripe data analysis results; Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 the publication of new standard templates of payment systems does not require updating the versions of "EMV Insight 2". Benefits of EMV Insight 2 Verification of cards for compliance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications; Clear presentation of chip and magnetic stripe data analysis results; Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 the publication of new standard templates of payment systems does not require updating the versions of "EMV Insight 2". Benefits of EMV Insight 2 Verification of cards for compliance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications; Clear presentation of chip and magnetic stripe data analysis results; Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3
4. Execution of crypto procedures either in the program (for complete control of the encryption process) or in a crypto device (Java card crypto applet or HSM) for the safe use of "working" keys; Obtaining statistics about the method (Online / Offline) and the result (Approve / Decline) of authorization of the workflow, indicating the source of the decision; Detailed logging of performed operations. Obtaining an integral assessment of card testing; Combination of wide configuration possibilities and simplicity of card testing. Setting the parameters is optional due to the supplied parameter configuration templates for the most common types of applications (including VIS 1.3.2, VIS 1.4.x, VIS 1.5.x, M / Chip 2.1 and M / Chip 4.0); Execution of a financial transaction with an EMV card application by pressing one button. Data validation and analysis Key checks of message length and format parameters of duplicate tags of a sequence of tags in the received data; presence of required tags of unknown and unused tags and templates; in the BER-TLV format, the lengths of both elementary tags and container tags are controlled. Depending on the value of the tag code, the length is checked either for strict compliance with the specified length, or for falling into the allowable range. EMV Insight 2 controls compliance of the data received in tags with the valid character set and data format (alphanumeric, numeric data, date, time, etc.). EMV Insight 2 records the presence of duplicate tags on the map. EMV Insight 2 controls the sequence of tags in the data received from the card. EMV Insight 2 records the absence of mandatory tags in the data on the map. EMV Insight 2 informs the operator of all tags not included in the EMV, VIS, M / Chip specifications or not used in smart card applications. EMV Insight 2 monitors the availability of all the data required to conduct inspections specified in the AIP (Application Interchange Profile). The program informs the user about the impossibility of obtaining data from the card (ATC and Online ATC) necessary for assessing the risks of Offline authorization. EMV Insight 2 controls the verification of the cardholder's credentials and the correctness of the PIN verification by the card. The program performs static and dynamic authentication of the EMV application data, thereby verifying the certificates and keys recorded on the card. EMV Insight 2 monitors the expiration date and activation date for cards and certificates. Testing personalization of EMV cards 4
5. Card cryptograms. The program verifies the cryptogram received from the EMV application. Cryptographic operations can be performed by a software module, a smart card with a specialized cryptoapplet, or a hardware cryptographic device (HSM). EMV Insight 2 monitors application data for the validity of values: control of falling into the ranges of acceptable values; admissibility of data values of the CVM List format (list of cardholder authorization checks) of geographical restrictions of applications of priorities of applications of data from the tracks of the magnetic stripe of embossed data cards; identification of prohibited values; compliance of the given codes with the standards ISO 4217 (currency codes), ISO 3166 (country codes), ISO 639 (language codes), ISO 7813 (magnetic stripe track format); control of the zero value of the reserved bits; search for forbidden bit combinations. The program analyzes the CVM List of the VSDC application for all types of checks designated as mandatory in this payment system for all types of devices. If there are several financial applications on the card, EMV Insight 2 controls the ability to service both local and international transactions. If there are several financial applications on the card, EMV Insight 2 monitors the correct prioritization of different types of applications. The program controls the format of the data on the tracks of the magnetic stripe and the correspondence of this data to the values obtained from the microcircuit of the card. The program allows the operator to control the correspondence of the embossed data to the data stored in the card's microchip and on the magnetic stripe. Advanced Data Analysis EMV Insight 2 provides a complete analysis of all available data items of the served application. In addition, the analysis of the interaction of financial applications on a multi-application map is carried out (analysis of geographic restrictions, application service priorities on the map). CVM List is analyzed for all mandatory types of checks for all types of terminal devices. Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 analysis of the interaction of financial applications on a multi-application map is performed (analysis of geographic restrictions, application service priorities on the map). CVM List is analyzed for all mandatory types of checks for all types of terminal devices. Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 analysis of the interaction of financial applications on a multi-application map is performed (analysis of geographic restrictions, application service priorities on the map). CVM List is analyzed for all mandatory types of checks for all types of terminal devices. Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5
6. Testing the ability of cards to execute scripts of the issuer. The operator can generate and initiate the execution of scripts of the issuer in the card. To control the execution of the issuer's script, there is a convenient opportunity to view tags and records before and after the script is executed. Terms of service for the operation EMV Insight 2 allows you to flexibly configure the parameters of the transactions and their execution environment. Selecting the type, amount and number of transactions Online at the initiative of the operator Card in the stop list Maintenance of applications not included in PSE Authorization can be performed for various types of transactions, such as Sale, Cash withdrawal, Funds transfer, etc. The type of operation and the amount can be selected randomly. The operator can forcefully execute a transaction in the Online PAN of the tested application; it can be placed in the terminal's stop list. It is used to control the behavior of the card if its PAN is included in the stop list. The operator can authorize the service of applications that were not included in the PSE on the card. It is used for testing local specialized applications. Payment system emulator parameters The payment system emulator parameters settings allow checking the card's operability in various modes. EMV Insight 2 provides the user with the ability to configure the parameters of the operation being performed, the POS terminal simulator, the Emission Center simulator, as well as the level of logging the results of EMV applications testing. However, to quickly start working with EMV Insight 2, the user just needs to select the type of smart card reader he will work with and determine the values of the Issuer's symmetric keys used. Terminal parameters EMV Insight 2 allows you to modify a large number of parameters in the POS terminal configuration, including: values of the Certification Authority public keys; supported methods of cardholder identification (open or encrypted PIN, signature); supported data authentication methods (SDA, DDA, CDA); VLP parameters of card authorization mode; financial limits of the operation; TAC bitmasks defining the authorization method chosen by the POS terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 supported methods of cardholder identification (open or encrypted PIN, signature); supported data authentication methods (SDA, DDA, CDA); VLP parameters of card authorization mode; financial limits of the operation; TAC bitmasks defining the authorization method chosen by the POS terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 supported methods of cardholder identification (open or encrypted PIN, signature); supported data authentication methods (SDA, DDA, CDA); VLP parameters of card authorization mode; financial limits of the operation; TAC bitmasks defining the authorization method chosen by the POS terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 determining the authorization method selected by the POS-terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 determining the authorization method selected by the POS-terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6
7. Support. Card performance testing is a complex complex process that requires an understanding of the essence and numerous interrelationships of processes occurring in a real payment system. In addition, the standards governing various aspects of the organization and operation of the payment system are in constant flux (one example is the evolution of the EMV specification from EMV 96 to EMV 4.3). Therefore, an important place is occupied by the support and maintenance of the system for checking the quality of personalization of EMV applications. PRONIT specialists help the client in building and using a system for checking the quality of personalization of EMV applications: explaining the architecture of the payment system, the essence and interrelationships of the processes taking place in it; explain the methodology for working with EMV Insight 2; provide a set of documentation; and of course, install the software and maintain it in accordance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications updates. EMV Insight 2 documentation is supplied with detailed documentation in Russian and English. The documentation includes the following volumes: EMV Insight2. EMV Insight User Guide 2. EMV Insight Installation Guide 2. Quick start EMV Insight2. Recommendations for testing EMV Insight2. Analysis of the EMV Insight2 protocol. OLE interface Table of versions and changes EMV Insight 2 (including CA_DKL2, TLV_Decoder2) CA DKL2. TLV Decoder2 User Guide. User Guide Specification Compliance EMV Insight 2 is designed in accordance with standards and specifications: ISO / IEC, -4, ISO / IEC 7813, ISO / IEC 4217, ISO / IEC 3166, ISO / IEC 639-1; EMV v (EMV 96), EMV v.4.0 (EMV 2000), EMV v.4.1, EMV v.4.2, EMV v.4.3; VIS v.1.3.2, VIS v.1.4.0, VIS v.1.4.1, VIS v.1.5.0, Visa VCPS 2.1; M / Chip 2.1, M / Chip 4, MCW PayPass. CAP 2007, PLA 2010; AEIPS v.4.1; JCB 2.0 Companion software CA_DKL TLV Decoder Module for loading cryptographic keys into a cryptographic applet; BER-TLV decoding tool. Testing personalization of EMV-cards 7.
2. Functions EMV Insight 2 is a payment system emulator that includes a POS terminal simulator and an authorization center simulator. EMV Insight 2 implements the following main functions: control and visualization of the EMV smart card authorization process in various modes; analysis of the results of initialization and electronic personalization of EMV smart cards, including control of: o card operability when servicing transactions; o completeness of data on the map; o data authenticity by checking certificates and keys; o consistency and lack of data redundancy; o lack of data duplication; o compliance with data presentation formats (including control of the length of tags); o consistency of interdependent parameters in accordance with the requirements of payment systems. control over the implementation of the cryptographic functions of the EMV application; checking the consistency of the personalization of the EMV application, the magnetic stripe and the embossed data. These functions are implemented through a series of procedures described later in this document. Innovations The EMV Insight 2 testing complex for EMV cards is a logical continuation of the well-proven EMV Insight complex, which has been in operation for over 7 years. Over the past time, despite the constant modification of the EMV Insight software and bringing it into line with the current versions of the specifications of payment systems and EMVCo, the developers have accumulated a lot of experience in operating the complex, which led to the need to release a new software product called EMV Insight 2 ". 1. "EMV Insight 2" has a new structure for presenting the parameters of terminal devices and the authorization center, which led to a change in the storage format for configuration parameters. At the same time, the user interface of the complex is as close as possible to the interface of the previous version of "EMV Insight" in order to minimize the time of user adaptation to the new software. 2. The structure of the parameters of the terminal simulator database has been significantly simplified. Removed parameters not requested by users of "EMV Insight" v.1. The remaining parameters were rearranged for the purpose of operational testing of EMV cards in various types of service points. 3. "EMV Insight 2" supports the operation of EMV cards with applications of payment systems American Express, JCB, UnionPay and PRO "EMV Insight 2" supports the operation of contactless cards of payment systems Visa and MasterCard in all possible modes, specified in the VCPS (PayWave) and PayPass documentation The nomenclature of supported devices used to control the execution of cryptographic functions of an EMV application (except for SAM cards and software implementation of crypto functions) has been expanded: HSM by Thales e-security; HSM from SafeNet (formerly Eracom) (available soon). 1 Supplied as a separate option Testing personalization of EMV cards 2
3. "EMV Insight 2" supports both financial and specialized applications operating in all CAP / DPA 2 modes (Mode 1, Mode 2, Mode 2 TDS, Mode 3, Mode 3 TDS). 7. "EMV Insight 2" supports checking PVV, CVV / CVC / CSC, icvv / chipcvc, CVV2 / CVC2 values calculated for various input data formats. Downloading and using the necessary cryptographic keys (CVK, PVK) is possible both in software implementation of cryptomechanisms and in hardware cryptographic devices (SAM-card or HSM). 8. "EMV Insight 2" supports checking Data Authentication Code (DAC) and ICC Dynamic Number (ICC) values. 9. "EMV Insight 2" allows you to define up to 30 RSA keys simultaneously for each payment system. 10. "EMV Insight 2" allows copying BIN descriptions together with 3DES key values. eleven. EMV Insight 2 can ignore the presence of PSE on the smart card, which allows testing specialized applications, including CAP / DPA, which are not available in PSE. 12. The user can select the transaction currency and country code of the terminal device from a complete list of currencies and countries described in the relevant ISO standards. For the convenience of modifying the lists, descriptions of currencies and countries are stored in text files CurrencyCode.txt and CountryCode.txt. 13. Due to the fact that SAM cards do not support RSA cryptography for keys of the entire range of lengths and only public RSA keys are used in authorization operations, EMV Insight 2 does not support RSA cryptography functions in SAM cards. 14. Lists of tags, available through the Get Data and Put Data commands for contact and contactless cards are available for editing for each payment system specification (if the Issuer has placed additional tags on the card that are not described in the payment system specifications). 15. The test report is output to a file in HTML format and has become more informative compared to the version of "EMV Insight". 16. The user can create a file of exception messages about warnings and errors to filter messages that are irrelevant for a particular type of application. 17. "EMV Insight 2" has an OLE interface that allows you to call it from other applications. 18. "EMV Insight 2" analyzes the data received from MasterCard M / Chip applications for compliance with the standard data templates specified in the document "M / Chip Card Personalization Standard Profiles", and the data, received from Visa applications for compliance with the standardized PRONIT data templates. Due to the external storage of the description of standard templates, the publication of new standard templates of payment systems does not require updating the versions of "EMV Insight 2". Benefits of EMV Insight 2 Verification of cards for compliance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications; Clear presentation of chip and magnetic stripe data analysis results; Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 the publication of new standard templates of payment systems does not require updating the versions of "EMV Insight 2". Benefits of EMV Insight 2 Verification of cards for compliance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications; Clear presentation of chip and magnetic stripe data analysis results; Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 the publication of new standard templates of payment systems does not require updating the versions of "EMV Insight 2". Benefits of EMV Insight 2 Verification of cards for compliance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications; Clear presentation of chip and magnetic stripe data analysis results; Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3 Identification of personalization errors and the reasons for the inoperability of the card; Checking the consistency of the personalization of the microcircuit, magnetic stripe and embossed data; 2 Supplied as a separate option Testing personalization of EMV cards 3
4. Execution of crypto procedures either in the program (for complete control of the encryption process) or in a crypto device (Java card crypto applet or HSM) for the safe use of "working" keys; Obtaining statistics about the method (Online / Offline) and the result (Approve / Decline) of authorization of the workflow, indicating the source of the decision; Detailed logging of performed operations. Obtaining an integral assessment of card testing; Combination of wide configuration possibilities and simplicity of card testing. Setting the parameters is optional due to the supplied parameter configuration templates for the most common types of applications (including VIS 1.3.2, VIS 1.4.x, VIS 1.5.x, M / Chip 2.1 and M / Chip 4.0); Execution of a financial transaction with an EMV card application by pressing one button. Data validation and analysis Key checks of message length and format parameters of duplicate tags of a sequence of tags in the received data; presence of required tags of unknown and unused tags and templates; in the BER-TLV format, the lengths of both elementary tags and container tags are controlled. Depending on the value of the tag code, the length is checked either for strict compliance with the specified length, or for falling into the allowable range. EMV Insight 2 controls compliance of the data received in tags with the valid character set and data format (alphanumeric, numeric data, date, time, etc.). EMV Insight 2 records the presence of duplicate tags on the map. EMV Insight 2 controls the sequence of tags in the data received from the card. EMV Insight 2 records the absence of mandatory tags in the data on the map. EMV Insight 2 informs the operator of all tags not included in the EMV, VIS, M / Chip specifications or not used in smart card applications. EMV Insight 2 monitors the availability of all the data required to conduct inspections specified in the AIP (Application Interchange Profile). The program informs the user about the impossibility of obtaining data from the card (ATC and Online ATC) necessary for assessing the risks of Offline authorization. EMV Insight 2 controls the verification of the cardholder's credentials and the correctness of the PIN verification by the card. The program performs static and dynamic authentication of the EMV application data, thereby verifying the certificates and keys recorded on the card. EMV Insight 2 monitors the expiration date and activation date for cards and certificates. Testing personalization of EMV cards 4
5. Card cryptograms. The program verifies the cryptogram received from the EMV application. Cryptographic operations can be performed by a software module, a smart card with a specialized cryptoapplet, or a hardware cryptographic device (HSM). EMV Insight 2 monitors application data for the validity of values: control of falling into the ranges of acceptable values; admissibility of data values of the CVM List format (list of cardholder authorization checks) of geographical restrictions of applications of priorities of applications of data from the tracks of the magnetic stripe of embossed data cards; identification of prohibited values; compliance of the given codes with the standards ISO 4217 (currency codes), ISO 3166 (country codes), ISO 639 (language codes), ISO 7813 (magnetic stripe track format); control of the zero value of the reserved bits; search for forbidden bit combinations. The program analyzes the CVM List of the VSDC application for all types of checks designated as mandatory in this payment system for all types of devices. If there are several financial applications on the card, EMV Insight 2 controls the ability to service both local and international transactions. If there are several financial applications on the card, EMV Insight 2 monitors the correct prioritization of different types of applications. The program controls the format of the data on the tracks of the magnetic stripe and the correspondence of this data to the values obtained from the microcircuit of the card. The program allows the operator to control the correspondence of the embossed data to the data stored in the card's microchip and on the magnetic stripe. Advanced Data Analysis EMV Insight 2 provides a complete analysis of all available data items of the served application. In addition, the analysis of the interaction of financial applications on a multi-application map is carried out (analysis of geographic restrictions, application service priorities on the map). CVM List is analyzed for all mandatory types of checks for all types of terminal devices. Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 analysis of the interaction of financial applications on a multi-application map is performed (analysis of geographic restrictions, application service priorities on the map). CVM List is analyzed for all mandatory types of checks for all types of terminal devices. Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 analysis of the interaction of financial applications on a multi-application map is performed (analysis of geographic restrictions, application service priorities on the map). CVM List is analyzed for all mandatory types of checks for all types of terminal devices. Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5 Checking the correctness of the data of EMV applications of personalized cards The operator is given the opportunity to read the data of the EMV applications without modifying the value of the transaction counter (ATC) and internal flags of the card that record the current state of the card (for example, the New Card flag). Testing personalization of EMV-cards 5
6. Testing the ability of cards to execute scripts of the issuer. The operator can generate and initiate the execution of scripts of the issuer in the card. To control the execution of the issuer's script, there is a convenient opportunity to view tags and records before and after the script is executed. Terms of service for the operation EMV Insight 2 allows you to flexibly configure the parameters of the transactions and their execution environment. Selecting the type, amount and number of transactions Online at the initiative of the operator Card in the stop list Maintenance of applications not included in PSE Authorization can be performed for various types of transactions, such as Sale, Cash withdrawal, Funds transfer, etc. The type of operation and the amount can be selected randomly. The operator can forcefully execute a transaction in the Online PAN of the tested application; it can be placed in the terminal's stop list. It is used to control the behavior of the card if its PAN is included in the stop list. The operator can authorize the service of applications that were not included in the PSE on the card. It is used for testing local specialized applications. Payment system emulator parameters The payment system emulator parameters settings allow checking the card's operability in various modes. EMV Insight 2 provides the user with the ability to configure the parameters of the operation being performed, the POS terminal simulator, the Emission Center simulator, as well as the level of logging the results of EMV applications testing. However, to quickly start working with EMV Insight 2, the user just needs to select the type of smart card reader he will work with and determine the values of the Issuer's symmetric keys used. Terminal parameters EMV Insight 2 allows you to modify a large number of parameters in the POS terminal configuration, including: values of the Certification Authority public keys; supported methods of cardholder identification (open or encrypted PIN, signature); supported data authentication methods (SDA, DDA, CDA); VLP parameters of card authorization mode; financial limits of the operation; TAC bitmasks defining the authorization method chosen by the POS terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 supported methods of cardholder identification (open or encrypted PIN, signature); supported data authentication methods (SDA, DDA, CDA); VLP parameters of card authorization mode; financial limits of the operation; TAC bitmasks defining the authorization method chosen by the POS terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 supported methods of cardholder identification (open or encrypted PIN, signature); supported data authentication methods (SDA, DDA, CDA); VLP parameters of card authorization mode; financial limits of the operation; TAC bitmasks defining the authorization method chosen by the POS terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 determining the authorization method selected by the POS-terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6 determining the authorization method selected by the POS-terminal. Parameters of the Emission Center EMV Insight 2 allows you to configure the parameters of the Emission Center, including: values of symmetric encryption keys; parameters for generating scripts of the issuer (Issuing Center) for subsequent execution in a smart card. Testing personalization of EMV cards 6
7. Support. Card performance testing is a complex complex process that requires an understanding of the essence and numerous interrelationships of processes occurring in a real payment system. In addition, the standards governing various aspects of the organization and operation of the payment system are in constant flux (one example is the evolution of the EMV specification from EMV 96 to EMV 4.3). Therefore, an important place is occupied by the support and maintenance of the system for checking the quality of personalization of EMV applications. PRONIT specialists help the client in building and using a system for checking the quality of personalization of EMV applications: explaining the architecture of the payment system, the essence and interrelationships of the processes taking place in it; explain the methodology for working with EMV Insight 2; provide a set of documentation; and of course, install the software and maintain it in accordance with EMV, Visa, MasterCard, American Express, JCB, UnionPay and PRO100 specifications updates. EMV Insight 2 documentation is supplied with detailed documentation in Russian and English. The documentation includes the following volumes: EMV Insight2. EMV Insight User Guide 2. EMV Insight Installation Guide 2. Quick start EMV Insight2. Recommendations for testing EMV Insight2. Analysis of the EMV Insight2 protocol. OLE interface Table of versions and changes EMV Insight 2 (including CA_DKL2, TLV_Decoder2) CA DKL2. TLV Decoder2 User Guide. User Guide Specification Compliance EMV Insight 2 is designed in accordance with standards and specifications: ISO / IEC, -4, ISO / IEC 7813, ISO / IEC 4217, ISO / IEC 3166, ISO / IEC 639-1; EMV v (EMV 96), EMV v.4.0 (EMV 2000), EMV v.4.1, EMV v.4.2, EMV v.4.3; VIS v.1.3.2, VIS v.1.4.0, VIS v.1.4.1, VIS v.1.5.0, Visa VCPS 2.1; M / Chip 2.1, M / Chip 4, MCW PayPass. CAP 2007, PLA 2010; AEIPS v.4.1; JCB 2.0 Companion software CA_DKL TLV Decoder Module for loading cryptographic keys into a cryptographic applet; BER-TLV decoding tool. Testing personalization of EMV-cards 7.
