| Server IP : 74.208.127.88 / Your IP : 18.219.203.214 Web Server : Apache/2.4.41 (Ubuntu) System : Linux ubuntu 5.4.0-163-generic #180-Ubuntu SMP Tue Sep 5 13:21:23 UTC 2023 x86_64 User : www-data ( 33) PHP Version : 7.4.3-4ubuntu2.29 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : OFF | Sudo : ON | Pkexec : ON Directory : /proc/self/root/snap/core20/current/usr/share/opensc/ |
Upload File : |
#
# PKCS15 r/w profile
#
cardinfo {
label = "IAS/ECC Generic PKI application";
manufacturer = "IAS/ECC OpenSC";
max-pin-length = 4;
min-pin-length = 4;
pin-encoding = ascii-numeric;
pin-pad-char = 0xFF;
}
pkcs15 {
# Put certificates into the CDF itself?
direct-certificates = no;
# Put the DF length into the ODF file?
encode-df-length = no;
# Have a lastUpdate field in the EF(TokenInfo)?
do-last-update = yes;
# Style of pkcs#15-init support of minidriver: 'none', 'gemalto';
minidriver-support-style = gemalto;
}
option ecc {
macros {
odf-size = 96;
aodf-size = 300;
cdf-size = 3000;
prkdf-size = 6700;
pukdf-size = 2300;
dodf-size = 3000;
skdf-size = 3000;
}
}
# Define reasonable limits for PINs and PUK
# Note that we do not set a file path or reference
# here; that is done dynamically.
PIN user-pin {
attempts = 5;
max-length = 4;
min-length = 4;
flags = 0x10; # initialized
reference = 0xC1;
}
PIN so-pin {
auth-id = FF;
attempts = 5;
max-length = 4;
min-length = 4;
flags = 0xB2;
reference = 2
}
# CHV5 used for Oberthur's specific access condition "PIN or SOPIN"
# Any value for this pin can given, when the OpenSC tools are asking for.
# Additional filesystem info.
# This is added to the file system info specified in the
# main profile.
filesystem {
DF MF {
ACL = *=CHV4;
path = 3F00;
type = DF;
# This is the DIR file
EF DIR {
type = EF;
file-id = 2F00;
size = 128;
acl = *=NONE;
}
# Here comes the application DF
DF PKCS15-AppDF {
type = DF;
exclusive-aid = E8:28:BD:08:0F:D2:50:47:65:6E:65:72:69:63;
acl = *=NONE;
size = 5000;
EF PKCS15-ODF {
file-id = 5031;
size = 96;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-TokenInfo {
file-id = 5032;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-AODF {
file-id = 7001;
size = 300;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-PrKDF {
file-id = 7002;
size = 6700;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-PuKDF {
file-id = 7004;
size = 2300;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-SKDF {
file-id = 7003;
size = 3000;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-CDF {
file-id = 7005;
size = 3000;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
EF PKCS15-DODF {
file-id = 7006;
size = 3000;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
template key-domain {
# Private RSA keys
BSO private-key {
ACL = *=NEVER;
ACL = UPDATE=SCBx13, READ=NONE;
ACL = PSO-DECRYPT=SCBx13, INTERNAL-AUTHENTICATE=SCBx13, GENERATE=SCBx13;
}
# Private DES keys
BSO private-des {
size = 24; # 192 bits
# READ acl used instead of DECIPHER/ENCIPHER/CHECKSUM
}
# Private data
EF private-data {
file-id = E000;
size = 36;
ACL = *=NONE;
ACL = WRITE=SCBx13, UPDATE=SCBx13, READ=SCBx13;
}
# Certificate
EF certificate {
file-id = B000;
ACL = *=NEVER;
ACL = UPDATE=SCBx13, READ=NONE, DELETE=NONE;
}
#Public Key
BSO public-key {
ACL = *=NEVER;
ACL = INTERNAL-AUTHENTICATE=SCBx13, GENERATE=SCBx13, UPDATE=SCBx13, READ=NONE;
}
# Public DES keys
BSO public-des {
size = 24; # 192 bits
ACL = *=NONE;
}
# Public data
EF public-data {
file-id = B101;
ACL = *=NONE;
ACL = WRITE=SCBx13, UPDATE=SCBx13, DELETE=NONE;
}
}
}
}
}