Table of Contents
Advertisement
11.0. Card Data Encryption
Every time a card is swiped, a response message will be automatically sent to the mobile device. The
track data encapsulated in the message will be encrypted using AES-128 CBC cipher mode (The
initialization vector will be equal to 16 bytes of zeros).
If DUKPT is enabled, the key used for the track data encryption will be generated by the DUKPT Key
Management algorithm for every successful swipe. As a result, a different key will be used for the
track data encryption for every successful transaction.
In case the DUKPT is disabled, the AES Key will be used for the track data encryption. You can
modify the AES Key by using the Sensitive Data Injection Method in Section 10.0.
When ACR3x is shipped out from factory, a default AES key is pre-loaded inside ACR3x. The default
AES Key is equal to:
4E 61 74 68 61 6E 2E 4C 69 20 54 65 64 79 20h
It should be noted that when there is data error during card swipe, the track data field will be filled with
zeros and only the error will be reported in the message.
ACR3x – Reference Manual
Version 1.03
Page 73 of 77
info@acs.com.hk
www.acs.com.hk
Advertisement
Table of Contents
