Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Related Manuals for Kobil KAAN Standard Plus
Summary of Contents for Kobil KAAN Standard Plus
- Page 2 Copyright © 2000-2002 KOBIL Systems GmbH. All rights reserved. This manual may not be copied, or reproduced in any other way, without prior permission by KOBIL System GmbH. This applies equally to any part of the manual. Every effort has been made to guarantee the correctness of this manual.
-
Page 3: Table Of Contents
System Requirements .................. 8 Connecting to PC with Windows Operating System........9 4.3.1 Product: KAAN Standard Plus USB / SecOVID Reader Plus USB ... 9 Step 1: Installing the Driver..................9 Step 2: Shutting down the Computer................9 Step 3: Connecting the Smart Card Terminal ............10 Step 4: Rebooting your Computer ................ - Page 4 Selecting Synchronous ICCs - (only KAAN Standard Plus)....72 10.25 Commands for Selecting Synchronous ICCs - (only KAAN Standard Plus) 10.26 File Types - (only KAAN Standard Plus)..........73 10.27 Handling the Public Health Insurance Card (only KAAN Standard Plus) 73 Page...
- Page 5 KOBIL Smart Card Terminal Manual Change Management Version Changes V 1.2.1 MAY 5, 03 In section10.14 Get Status in the table response DOs: the designations of the functional units in the functional unit data object have been corrected in the following manner: '01' = ICC1, '02' = ICC2, '40' = display, '50' = keyboard V 1.2 DEC 3, 02...
-
Page 6: Abbreviations
KOBIL Smart Card Terminal Manual 2 Abbreviations Application Programming Interface Answer to Reset Class-Byte Smart Card Terminal Card Terminal Number Character Waiting Time Device Address; here: Destination Address Data Object (also confer TLV) GKAPI GeldKarte Application Programming Interface (for German cash card type) -
Page 7: General Information
4 Installation and Startup Items Included in the Package Included in your KOBIL smart card terminal package are: • KOBIL smart card terminal KAAN Standard Plus or SecOVID Reader Plus, respectively • Data medium including manual, drivers and test applications •... -
Page 8: System Requirements
Solaris, HP-UX and OS/2 are enclosed. Drivers for MS-DOS versions 5.0 and higher, as well as for MS Windows 3.1, can be obtained from KOBIL Systems upon request. You will find other drivers as well as updated versions in the internet under www.kobil.com. -
Page 9: Connecting To Pc With Windows Operating System
4.3.1 Product: KAAN Standard Plus USB / SecOVID Reader Plus USB Note: Before connecting the KAAN Standard Plus / SecOVID Reader Plus you will have to install a driver! Note for Windows NT users: Windows NT will not support the USB variation of the smart card terminal at present. -
Page 10: Step 3: Connecting The Smart Card Terminal
KOBIL Smart Card Terminal Manual Step 3: Connecting the Smart Card Terminal There are two options for connecting the KAAN Standard Plus / SecOVID Reader Plus to your PC: Use the USB cable enclosed to connect the base station of the smart card terminal to a free USB port of your PC (cf. -
Page 11: Step 4: Rebooting Your Computer
“Continue Installation.” How to Insert the Smart card: Thanks to its card tray, the KAAN Standard Plus / SecOVID Reader Plus allows you to insert both smart cards of credit card size (ID-1 format) and smaller SIM cards (ID-000 format). -
Page 12: Function Of The 'C' Button
Function of the ‘C’ Button During the secure PIN input, or during PIN change via the keyboard of the KAAN Standard Plus / SecOVID Reader Plus, the ‘C’ button serves the purpose of deleting the digit last entered. Pressing the ‘C’ button before any digit has been entered, or after all entered digits have been deleted, will cause the entire process to abort. -
Page 13: Product: Kaan Standard Plus Serial / Secovid Reader Plus Serial
KOBIL Smart Card Terminal Manual 4.3.2 Product: KAAN Standard Plus serial / SecOVID Reader Plus serial Note: Before connecting the KAAN Standard Plus / SecOVID Reader Plus you will have to install the drivers! Step 1: Installing the Drivers Start your PC. The smart card terminal has not yet been connected. Insert the driver CD enclosed. - Page 14 KOBIL Smart Card Terminal Manual You have two options for connecting the smart card terminal to your PC: a) Connect the base station of the smart card terminal to the serial interface (COM1 or COM2) of the PC (nine pin socket). The power is...
-
Page 15: Step 4: Rebooting The Computer
“Continue Installation.” How to Insert the Smart card: Thanks to its card tray, the KAAN Standard Plus / SecOVID Reader Plus allows you to insert both smart cards of credit card size (ID-1 format) and smaller SIM cards (ID-000 format). -
Page 16: Function Of The 'C' Button
Function of the ‘C’ button During the secure PIN input, or during PIN change via the keyboard of the KAAN Standard Plus / SecOVID Reader Plus, the ‘C’ button serves the purpose of deleting the digit last entered. Pressing the ‘C’ button before any digit has been entered, or after all entered digits have been deleted, will cause the entire process to abort. -
Page 17: Installing The Software
Note: Please quit all running program before starting the driver set-up, because your PC will automatically reboot after executing the driver set- Download updated version of the driver software under. www.kobil.com. Optionally, you may install the files for software development in your workstation. -
Page 18: Security-Relevant Functions
KOBIL Smart Card Terminal Manual 5 Security-relevant Functions The KOBIL smart card terminals KAAN Standard Plus and SecOVID Reader Plus are intended for deployment in the customer’s domestic sphere and at non-public work places. They are explicitly not intended for unsupervised public usage. - Page 19 Replacing the batteries: In case the batteries of your SecOVID Reader Plus need to be replaced, you can request KOBIL Systems GmbH to take care of it against a charge. In the process, the batteries and the label on the battery compartment will be replaced.
-
Page 20: Secure Pin Input
KOBIL Smart Card Terminal Manual Secure PIN Input The smart card terminal KAAN Standard Plus / SecOVID Reader Plus (in the online mode) supports the secure input of your smart card PINs. This application allows you, for instance, to enter the PIN (personal identification number) of your smart card –... -
Page 21: Secure Pin Change
Image 1. Secure PIN Change The smart card terminal KAAN Standard Plus SecOVID / Reader Plus (in the online mode) supports the secure input of your smart card PINs. This application allows you, for instance, to enter the PIN of your smart card – such as for smart cards compliant with the German Signature Act –... - Page 22 KOBIL Smart Card Terminal Manual Break Image 12: Sequence of Secure PIN Change Page...
-
Page 23: Secovid
SecOVID The SecOVID Reader Plus supports the authentication system SecOVID made by KOBIL Systems. The following section describes the deployment of the smart card terminal in combination with this authentication system. If you are not using the SecOVID authentication system, you may skip this part. The SecOVID functionality of the smart card terminal is provided only in combination with a SecOVID authentication system. -
Page 24: Secovid Online Mode
KOBIL Smart Card Terminal Manual 5.3.1 SecOVID Online Mode This mode presupposes that a special application software is installed on your computer that will initiate the application SecOVID on your smart card terminal. As soon as a one-time password needs to be generated for a given authentication process, the display will show the character ‘P,’... -
Page 25: Secovid Offline Mode
KOBIL Smart Card Terminal Manual 5.3.2 SecOVID Offline Mode In this mode, the smart card terminal can autonomously generate a SecOVID one- time password without having to be initiated by a special application software from your computer. If the smart card terminal is connected to your PC, SecOVID cannot be... - Page 26 KOBIL Smart Card Terminal Manual Image 14: SecOVID Offline Page...
-
Page 27: System Overview
PC input needs to be defined (KSS – confer Chapter 2 Abbreviations). A description of this protocol is available from KOBIL Systems upon request. Values deviating from the default settings of the transmission parameters can be set with the help of an application command (‘Select Parameter’) from the... - Page 28 KOBIL Smart Card Terminal Manual Protocol Reference ISO 7816-3 ISO 7816-3 Amd. 1 2 wire protocol Siemens data sheet SLE 4432 and SLE 4442 3 wire protocol Siemens data sheet SLE 4418 and SLE 4428 I 2 C Bus Phillips data sheet PCF8582E-2...
-
Page 29: The Ct-Api
KOBIL Smart Card Terminal Manual 7 The CT–API The CT-API – being an application-independent Card Terminal Application Programming Interface for smart card applications – is subject to the copyrights held by the following authors, from whom further documentation and amendments can be... -
Page 30: Ct_Init
KOBIL Smart Card Terminal Manual CT_init Use this function to select the serial (or USB) interface, needed for communication purposes, to which the card reader is connected. The default settings for communication are automatically set. The CT_init function should be called during the start of each program. -
Page 31: Ct_Data
KOBIL Smart Card Terminal Manual CT_data This function serves the sending of card control- or card reading application commands, and it will return the response to the command back to the called program. Function: char CT_data(unsigned short ctn, unsigned char *dad, unsigned char *sad,... -
Page 32: Ct_Close
KOBIL Smart Card Terminal Manual CT_close This function will terminate the communication with the card reader and release the interface. It must be called up when quitting the program. Function: char CT_close(unsigned short ctn) Parameters: Parameter name Parameter type Significance... -
Page 33: Using The Ct-Api: The Example Of The Public Health Insurance Card
The following example demonstrates the use of the functions CT_init, CT_data as well as CT_close (without discussing the return codes). One C++ exemplary project is found on the enclosed CD, or can be obtained from KOBIL Systems upon request. /* Example of Reading a Public Health Insurance Card */ #include <windows.h>... - Page 34 KOBIL Smart Card Terminal Manual /* issue response */ for(i=0;i<lenr;i++) printf("%02x ",response[i]); printf("\nPlease insert card and press button!\n"); getch(); /* RESET ICC */ sad = 2; /* source = Host (PC) */ dad = 1; /* destination = CardTerminal */ lenr = sizeof(response);...
-
Page 35: Tag Length Value (Tlv) Representation
KOBIL Smart Card Terminal Manual 8 Tag Length Value (TLV) Representation Set-up of a TLV Field A TLV representation is frequently used for coding the files of smart cards as well as of card readers. This form of representation is set up homogeneously according to the following structure. -
Page 36: Coding The Tags
The contents of the TLV files is precisely defined by the tag definition and corresponding values. At present, only the tags and values highlighted in color are used by the KAAN Standard Plus and the SecOVID Reader Plus. Value Value Significance... - Page 37 KOBIL Smart Card Terminal Manual ‚05’ 115200 Baud ‚06’ 64000 Baud 07’ 12800 Baud ‘12’ Options for Enumeration ‘00’ Default value (9600 baud, 8 data bit, 1 stop bit, even parity) character components ‘01’ 1 stop bit ‘02’ 2 stop bits ‘03’...
- Page 38 KOBIL Smart Card Terminal Manual ‘02’ T=1 protocol ‘03’ T=14 protocol ‘80’ I 2 C bus protocol ‘81’ 3-wire bus ‘82’ 2-wire bus ‘90’ Smart card type 4401 ‘91’ Smart card type 4402 ‘92’ Smart card type 4403 ‘93’ Smart card type 4433 ‘23’...
-
Page 39: The Smart Card Terminal File System
The smart card terminal (CT) file system serves the representation and configuration of special properties of smart card terminals. In the cases of the KAAN Standard Plus and the SecOVID Reader Plus, it is entirely simulated in the CT-API DLL (CT32.DLL). -
Page 40: Directories
KOBIL Smart Card Terminal Manual Directories Directories are special files the system needs in order to be able to manage and structure the data. They contain directory entries describing the files and sub directories they contain. A directory entry consists of five bytes, and has the following... -
Page 41: Hierarchical Set-Up
KOBIL Smart Card Terminal Manual Hierarchical Set-up The card reader file system consists of the files listed in Table 13. Master File, ID = 3F 00 CT configuration file, ID = 00 20 CT directory, ID = 7F 60 HOST / CT configuration file, ID = 60 20... -
Page 42: Host Status File
KOBIL Smart Card Terminal Manual HOST Status File The HOST status file describes the HOST driver status, and is therefore located at the PC end while being directly addressed by the DAD = 01. The tag ‘0F’ may occur more than once if the driver supports more than one card reader. It describes the interface type (serial port) with the corresponding port that has been assigned to the card terminal number (CTN). -
Page 43: Host / Ct Configuration File
KOBIL Smart Card Terminal Manual HOST / CT Configuration File The tags '11', '12' und '13' may occur more than once, in which case they apply to the previously identified type of protocol. If the tags are listed ahead of a given protocol, they apply to all protocols. -
Page 44: Freeze Status File
KOBIL Smart Card Terminal Manual 9.10 Freeze Status File The free status is erased by a freeze command. After the termination of the freeze command, the freeze status will identify the event that terminated the freeze command. Freeze Status File... -
Page 45: Application Commands
KOBIL Smart Card Terminal Manual 10 Application Commands All commands issued to the card terminal require the structure of the CT-API that was specified for the public German healthcare system. The application commands subdivide into commands for card terminals (CT) and commands for smart cards (ICC). -
Page 46: Command Overview
KOBIL Smart Card Terminal Manual 10.2 Command Overview The following table provides an overview of the commands and their coding. Command Coding Parameters Erase Binary '00' '0E' offset var. var. Verify '00' '20' '00' '00' var. Select File '00' 'A4'... -
Page 47: Status Bytes Sw1 And Sw2
KOBIL Smart Card Terminal Manual 10.3 Status Bytes SW1 and SW2 The response syntax complies with ISO 7816-4. The coding of SW1 and SW2 also complies with ISO 7816-4 as far as possible. However, expansions have been realized in order to be able to signalize error causes in a more differentiated manner. -
Page 48: Erase Binary
KOBIL Smart Card Terminal Manual 10.4 Erase Binary This command will erase the data in the file selected. Note: At present, the ‘Erase Binary’-command is permissible only if the protocol 4402 has been selected for the smart card SLE 4402. It is only possible to erase bits 80 through 111 (bytes 10 through 13) with ‘Erase Binary.’... -
Page 49: Verify
KOBIL Smart Card Terminal Manual 10.5 Verify The ‘Verify’-command will execute a password verification for the active file. If the active file is changed, the status of the password verification will be lost. The parameter P2 of the ‘Verify’-command specifies the reference data. If P2 equals 0, no particular reference data will be specified. -
Page 50: Select File
KOBIL Smart Card Terminal Manual Special Status Displays: SW1 SW2 Significance Possible Causes '62 00' No password The active file or the active directory are not password-protected. '63 00' Incorrect password '69 83' Operating error counter expired '69 85' Command not There exists no active file or directory. -
Page 51: Read Binary
KOBIL Smart Card Terminal Manual 10.7 Read Binary ‘Read binary’ will read data out of the active file of the file system. Coding: '00' 'B0' P1, P2 Offset of the first byte to be read Empty Data field Empty Number of bytes to be read. If Le = 00 or 000000 applies, the file is read through to its end, with Le = 00 having a maximum of 256 bytes. -
Page 52: Write Binary
KOBIL Smart Card Terminal Manual 10.8 Write Binary ‘Write Binary’ will write data into the active file of the file system. Coding: '00' 'D0' P1, P2 Offset of the first byte to be written Number of bytes to be written... -
Page 53: Reset
KOBIL Smart Card Terminal Manual 10.9 Reset A reset will be executed on the specified device, and will provide the ATR. In the case of card terminals having more than one interface, the blocked ports will be released again. Coding:... -
Page 54: Reset Ct
KOBIL Smart Card Terminal Manual 10.10 Reset CT This command has the same effect as ‘reset.’ It is only implemented for reasons of compatibility within the public German healthcare systems, subject to arrangement. Coding: '20' '11' '00' = terminal, '01' = ICC1, '02' = ICC2 (only SecOVID Reader Plus ) -
Page 55: Request Icc
KOBIL Smart Card Terminal Manual 10.11 Request ICC Request ICC prompts the insertion of a smart card—with the option of specifying a waiting period—and will execute a reset once a card has been inserted. Card terminals equipped with display provide the option of displaying an input challenge. - Page 56 KOBIL Smart Card Terminal Manual Special Status Displays: SW1 SW2 Significance Possible Causes '90 00' ATR received from synchronous ICC '90 01' ATR received from asynchronous ICC '62 00' Warning No smart card was inserted during the waiting period. '62 01' Warning The smart card is already activated.
-
Page 57: Deactivate
KOBIL Smart Card Terminal Manual 10.12 Deactivate This command will deactivate the contacts to the smart card. Coding: '20' '14' Device: 01 = ICC1, 02 = ICC2 '00' Empty Data field Empty '00' Table 43: Coding of the Deactivate Command... -
Page 58: Eject Icc
KOBIL Smart Card Terminal Manual 10.13 Eject ICC The card was deactivated. A message prompting removal of the card will be displayed whose display time can be defined by the timeout parameter. Composition of the text to be displayed will have to take into account that only a limited set of characters can be represented (confer Table 52). -
Page 59: Get Status
KOBIL Smart Card Terminal Manual 10.14 Get Status The ‘Get Status’-command permits queries for status information, which are returned as TLV-coded data objects (DO; confer Table 49). Coding: '20' '13' '00' = smart card terminal '01' = ICC 1 '02' = ICC 2 (only SecOVID Reader Plus) -
Page 60: Input
KOBIL Smart Card Terminal Manual 10.15 Input Use the ‘Input’-command to request input through the card terminal keyboard. Optionally, the requested input text or any other input text can be displayed on the display screen. You have the choice of having the entered text displayed either as plain text, as hyphens (‘-’), or not at all. -
Page 61: Output
KOBIL Smart Card Terminal Manual 10.16 Output The ‘output’-command is used to display the output on the display screen of the card terminal, though only as display using the limited set of characters (confer Table 52). Coding: '20' '17' '40' = display... -
Page 62: Perform Verification
KOBIL Smart Card Terminal Manual 10.17 Perform Verification This command causes the character ‘P’ to be displayed, requesting the PIN input, the acceptance of the PIN input through the smart card terminal keyboard, and the corresponding interaction with the smart card (for a more accurate description of the present smart card terminal, confer Section 5.1). - Page 63 KOBIL Smart Card Terminal Manual The insert position is counted upward, starting at 1. The raw command in ‘Command- to-Perform’ may appear, depending on the application, in one of the two following formats: - Command Header (CLA, INS, P1 P2 = 4 bytes), if the PIN is entered into the data field of the ICC command without padding.
- Page 64 KOBIL Smart Card Terminal Manual If the PIN transmitted to the smart card was incorrect, the return code from the smart card SW1-SW2 will differ from ‘9000.’ In this case, the standard display text ‘PIN Error’ will be issued, and the return code will be sent back to the application system.
-
Page 65: Modify Verification Data
KOBIL Smart Card Terminal Manual 10.18 Modify Verification Data This command will prompt the request for the old PIN (or for the resetting code, confer ISO/IEC 7816-8; or for the unblocking key, confer EN 726-3) and the new PIN and the corresponding interaction with the smart card. No biometric support is implemented at present. - Page 66 KOBIL Smart Card Terminal Manual Insert position for the old reference data: '06', that is the sixth byte after the beginning of the ‘Change Reference Data’-command, insert position for new reference data: byte '00', i.e. immediately following upon the old reference data.
-
Page 67: Reset 1
KOBIL Smart Card Terminal Manual Special Status Displays: SW1-SW2 Significance Possible Cause PIN change successfully performed 9000 Timeout No input within the timeout period 6400 Break The cancel button was pressed. 6401 PIN mismatch The new PIN was incorrectly retyped the second time. -
Page 68: Set Interface Parameter
KOBIL Smart Card Terminal Manual Special Status Displays: SW1 SW2 Significance Possible Causes '90 01' Received ATR from asynchronous ICC '64 A1' No ICC No smart card in the contact unit. '64 A2' ICC not activated ICC was removed from the contact unit after activation, and then reinserted. -
Page 69: Freeze
KOBIL Smart Card Terminal Manual Special Status Displays: SW1 SW2 Significance Possible Causes '69 85' Command not possible in Protocol settings at the ICC interface are possible only directly after the the present status reset and before the data transmission is begun. -
Page 70: Wait Freeze
KOBIL Smart Card Terminal Manual 10.22 Wait Freeze 'Wait Freeze' is sent after the successful issuance of a ‘freeze’ and will not return until after the event identified has occurred, or if an error has manifested itself. Unlike with other commands, CT_data(...'Wait Freeze'...) will block the calling thread of the program. -
Page 71: Icc Application Commands
KOBIL Smart Card Terminal Manual During the reception of SW1-SW2 = '90 00' the change of the DSR_Line from LO to HI was received. In this case the application should read out the freeze status file or the ICC status file. The signal line may have been set by the activity of another application. -
Page 72: Selecting Synchronous Iccs - (Only Kaan Standard Plus)
Table 68: Error Messages of the Smart card Terminal when Accessing an ICC 10.24 Selecting Synchronous ICCs - (only KAAN Standard Plus) If the card reader recognizes a synchronous ICC during reset, or if the user resets the protocol to process synchronous ICCs, using the command ‘Set Interface Parameter,’... -
Page 73: Commands For Selecting Synchronous Iccs - (Only Kaan Standard Plus)
KOBIL Smart Card Terminal Manual 10.25 Commands for Selecting Synchronous ICCs - (only KAAN Standard Plus) The following table provides an overview of the commands of the server module. For the coding the descriptions for the CT application commands applies.
Need help?
Do you have a question about the KAAN Standard Plus and is the answer not in the manual?
Questions and answers