IDTECH SecureHead User Manual page 25

SecureHead SPI Interface with FPC User Manual
When the reader is at Security Level 4, a correctly executed Authentication Sequence is
required before the reader sends out data for each card swipe.
4.1.16. Encryption Management
The Encrypted swipe read supports TDES and AES encryption standards for data encryption.
Encryption can be turned on via a command. TDES is the default.
If the reader is in security level 3, for the encrypted fields, the original data is encrypted using
the TDES/AES CBC mode with an Initialization Vector starting at all binary zeroes and the
Encryption Key associated with the current DUKPT KSN.
4.1.17. Check Card Format
• ISO/ABA (American Banking Association) Card
Encoding method
Track1 is 7 bits encoding.
Track1 is 7 bits encoding. Track2 is 5 bits encoding. Track3 is 5 bits encoding.
Track1 is 7 bits encoding. Track2 is 5 bits encoding.
Track2 is 5 bits encoding.
Additional check
Track1 2
There is only one '=' in track 2 and the position of '=' is between 13
character.
Total length of track 2 should above 21 characters.
• AAMVA (American Association of Motor Vehicle Administration) Card
Encoding method
Track1 is 7 bits encoding. Track2 is 5 bits encoding. Track3 is 7 bits encoding.
• Others (Customer card)
4.1.18. MSR Data Masking
For cards need to be encrypted, both encrypted data and clear text data are sent.
Masked Area
The data format of each masked track is ASCII.
The clear data include start and end sentinels, separators, first N, last M digits of the
PAN, card holder name (for Track1).
The rest of the characters should be masked using mask character.
Set PrePANClrData (N), PostPANClrData (M), MaskChar (Mask Character)
Copyright © 2010-2013, International Technologies & Systems Corporation. All rights reserved.
nd byte is 'B'.
Page 25 of 67
th ~ 20 th