Related Manuals for IDTECH SREDKey 2
Summary of Contents for IDTECH SREDKey 2
- Page 1 SREDKey 2 Integration Manual 80172501- 001 Rev. H 26 July 2021 ID TECH 10721 Walker Street, Cypress, CA 90630 Voice: (714) 761-6368 Fax: (714) 761-8880 idtechproducts.com...
- Page 2 ID TECH SREDKey 2 Integration Manual Copyright © 2021 ID TECH. All rights reserved. This document, as well as the software and hardware described in it, is furnished under license and may be used or copied online in accordance with the terms of such license. The content of this document is furnished for information use only, is subject to change without notice, and should not be construed as a commitment by ID TECH.
-
Page 3: Table Of Contents
8.2. Updating SREDKey 2 Firmware........................17 8.3. Enabling and Disabling the SREDKey 2 Admin Key ..................19 8.4. Switching a SREDKey 2 Between USB-KB and USB-HID Modes ..............19 8.5. Testing a SREDKey 2 Device ..........................20 9. DATA OUTPUT FORMAT .............................. 23 9.1. - Page 4 ID TECH SREDKey 2 Integration Manual 11. NOTE 2: TRACK 1-3 STATUS BYTE .......................... 31 11.1.1. Field 4..........................................31 11.1.2. Field 10: Optional byte length ................................31 11.1.3. Field 11: Optional status byte 1 ..............................31 11.2. Note 3: Clear/mask data sent status ......................31 11.2.1.
-
Page 5: Introduction
ID TECH SREDKey 2 Integration Manual 1. Introduction ID TECH’s SREDKey 2 is an encrypting keypad with an LCD and is available either with an encrypted MagStripe reader and without. The SREDKey 2 is a reliable security solution that meets PCI PTS 5.X perfect for a P2PE environment. -
Page 6: Specifications
ID TECH SREDKey 2 Integration Manual 4. Specifications Physical Length 160.4mm Width 96.7mm Height 37.4mm Weight 310g Environmental Operating Temp -10℃ to 55℃ non-condensing Storage Temp -20℃ to 65℃ non-condensing Humidity Maximum 90% non-condensing Electrical Input 5V USB connection Working 100 mA... -
Page 7: Base Functionality And Operations
When the SREDKey 2 is powered on it enters Data Capture Mode, prompting a user to key-in data. If the SREDKey 2 has not been injected with a key and encryption is not enabled, it displays “Missing Transaction Keys” after the user presses any key. Evaluation units come injected with the ID TECH demo key by default, and data can be decrypted using ID TECH’s Universal SDK... -
Page 8: Sredkey 2 Led Behavior
Unit Missing Transaction Key 5.5. Tamper and Failed Self-Check Indicators The SREDKEY 2 displays the following indicators when it has been tampered or has any of the other following internal issues, such as an expired certificate, missing key, or similar fault discovered during a self-check. -
Page 9: Firmware Command Structure
ID TECH SREDKey 2 Integration Manual 6. Firmware Command Structure The following are commands sent to keypad/reader: Setting Command: <STX><S>[<FuncID><Len><FuncData>…] <ETX><LRC> • Read Status Command: <STX><R><FuncID><ETX><LRC> • Function Command: <STX>[<FuncID><Len><FuncData>…] <ETX><LRC> • 6.1. Response from SREDKey 2 Setting Command Host... - Page 10 ID TECH SREDKey 2 Integration Manual Where: <FuncID> is one-byte identifying the setting(s) for the function. • <Len> is a one-byte length count for the following <FuncData> function-setting block. • <FuncData> is the current setting for this function. It has the same format as the function’s •...
-
Page 11: General Commands
ID TECH SREDKey 2 Integration Manual 7. General Commands SREDKey 2 devices use commands from both the NEO 2 and NGA protocols. SREDKey 2 devices come equipped with the default settings already programmed. See Appendix A for a table of default settings. -
Page 12: Reboot Device (77-05)
ID TECH SREDKey 2 Integration Manual For example, 0x02 0x00 0x00 0x02 0x00 0x01 represents [KeyIndex=0x02,KeySlot=0x0000] and [KeyIndex=0x02,KeySlot=0x0001] 7.1.3. Reboot Device (77-05) The Reboot Device command immediately reboots the reader. Command: <ViVOtech2\0><77h><05h><00h><00h><CRC-L><CRC-H> Response: <ViVOtech2\0><77h><00h><00h><00h><CRC-L><CRC-H> 7.1.4. Set TransArmor Cert Data (C7-50) The Set TransArmor Cert Data command sets the TransArmor Cert data for TransArmor RSA encryption functionality. -
Page 13: Nga Protocol Commands
The Model Number must be set before it can be read; see the Set Model Number command. • 7.2.2. Get Detailed Firmware Version (78 46 31) The Get Detailed Firmware Version command retrieves the SREDKey 2’s detailed firmware version. Command Body: 78 46 31 Response: 06 <TM4 Firmware version information>... -
Page 14: Reset Device (C7 80): Hid Mode
7.3. ITP Protocol Commands 7.3.1. Reset Device (53 18): KB Mode The Reset Device command resets the SREDKey 2 to factory default settings. Use this command in Keyboard Mode. Note that this command is irreversible and that device administrators must reconfigure the reader after sending this command. -
Page 15: Using The Sredkey 2 And Usdk Demo Application
The Universal SDK Demo application is available to demonstrate SREDKey 2 MSR and Keypad Data Decryption. SREDKey 2 devices can connect to the USDK Demo app via either USB-HID or USB KB Interface. For USB KB Interface, make sure to place the cursor in the Manual Command window before swiping a card. -
Page 16: Using The Universal Sdk Demo Application
To use a command, open the Command tree and double-click the desired command or select a command and click Execute. Data displays in the Log panel and device results in the Results panel. For example, to get a SREDKey 2’s serial number: 1. Click Config 2. -
Page 17: Updating Sredkey 2 Firmware
ID TECH SREDKey 2 Integration Manual 8.2. Updating SREDKey 2 Firmware The steps below describe the process for updating SREDKey 2 firmware via the Universal SDK Demo app. Note: Before you begin, contact your ID TECH representative to receive the most recent SREDKey 2 firmware. - Page 18 4. Under Device, select Update Device Firmware, then click Execute Command. 5. Navigate to and select the SREDKey 2 firmware file you downloaded earlier and click Open. 6. The SREDKey 2 reboots and enters the bootloader, at which point the SDK demo begins updating the device.
-
Page 19: Enabling And Disabling The Sredkey 2 Admin Key
To switch the SREDKey 2 between USB-KB and USB-HID modes: 1. Under Device, select the desired mode, then click Execute Command. The USDK Demo app reboots the SREDKey 2; when the device reboots, the Results panel displays the selected USB mode:... -
Page 20: Testing A Sredkey 2 Device
Parsomatic tool parses ID TECH card-reader data streams. 3. Click Clear at the bottom of the the Parsomatic screen. 4. Keep the Parsomatic window open and swipe the demo card through the SREDKey 2; the data from the reader will populate the reader data field. - Page 21 ID TECH SREDKey 2 Integration Manual Page | 21...
- Page 22 ID TECH SREDKey 2 Integration Manual 7. Copy the data in the KSN field. 8. Return to the USDK Demo app and click Decryption. The ID TECH Decrypt window will appear. 9. Paste the KSN data into the KSN panel.
-
Page 23: Data Output Format
ID TECH SREDKey 2 Integration Manual 9. Data Output Format The SREDKey 2’s default output mode is the enhanced MagStripe reader and key-in format. <STX><DataLenL><DataLenH><Card Data><CheckLRC><CheckSum><ETX> <STX> = 02h, <ETX> = 03h <LenL><LenH> is a two-byte length of <Card Data>. -
Page 24: Non-Financial Card
ID TECH SREDKey 2 Integration Manual 9.1.2. Non-Financial Card Field Description STX (02) Data Length low byte Data Length high byte Card Encode Type (Section 7.5 note 1) Track 1-3 Status (Section 7.5 note 2) T1 clear data length T2 clear data length... -
Page 25: Id Tech Swipe Data Enhanced Encryption Output Format
ID TECH SREDKey 2 Integration Manual 9.2. ID TECH Swipe Data Enhanced Encryption Output Format Note: For new development, please use enhanced encryption format. 9.2.1. ISO/ABA Card Data Output Format Field Description Data Length Card Encode Type Track Status Track1 data length... -
Page 26: Non-Iso/Aba Data Output Format
ID TECH SREDKey 2 Integration Manual 9.2.2. NON-ISO/ABA Data Output Format Field Description Data Length Card Encode Type Track Status Track1 data length Track2 data length Track3 data length Clear/mask data sent status Encrypted/Hash data sent status Optional bytes length... -
Page 27: Id Tech Manual Entry Original Data Output Format
ID TECH SREDKey 2 Integration Manual 9.3. ID TECH Manual Entry Original Data Output Format Field Description STX (0x02) Data Length low byte Data Length high byte Card type always 85—keyed in (Section 7.5 note 1) Always 0 Always 0... -
Page 28: Id Tech Manual Entry Enhanced Data Output Format
ID TECH SREDKey 2 Integration Manual 9.4. ID TECH Manual Entry Enhanced Data Output Format Note: For new development, please use enhanced encryption format. Field Description STX (0x02) Data Length Card Encode Type(0xC0) Track Status (0x17 or 0x37) Track1 data length(0x00) Length of unencrypted ;PAN= EXP [:CVV]?LRC... - Page 29 ID TECH SREDKey 2 Integration Manual The format of the fields ADR and ZIP is: 1-byte field identifier ASCII Data field terminator ‘=’ ‘1’—ADR; ‘0’—ZIP Field 13 LRC is a calculated track 2 longitudinal redundancy check from ';' to '?' The LRC is calculated on the data before conversion to ASCII to be encoded on a card, so the keyed-in data can be linked to the card data.
-
Page 30: Notes
(default) manual entry mode (new) JIS I JIS II 10.1.1. Encoding Methods The SREDKey 2 reader uses the following criteria to check the card encode type: ISO/ABA (American Banking Association) Card: Encoding Method Track1 is 7-bit encoding. •... -
Page 31: Note 2: Track 1-3 Status Byte
ID TECH SREDKey 2 Integration Manual 11. Note 2: Track 1-3 status byte 11.1.1. Field 4 1: Track 1 decode success (0: Track 1 decode fail) 1: Track 2 decode success (0: Track 2 decode fail) 1: Track 3 decode success (0: Track 3 decode fail) -
Page 32: Note 4: Encrypted/Null Hash Data Sent Status
1: KSN present 11.4. Data Sample The data sample below is encrypted with an ID TECH demo key and TDES encryption method. The SREDKey 2 device is tested with USBKB interface. Card Number: 5150 7102 0010 7903 Credit Card Swipe Original Format: 028801001F372300%*5150********7903^PAYPASS/MASTERCARD^***************? *;5150********7903=***************?*F43947D860D5BCA3732EB67A2ECB7CEF52... - Page 33 ID TECH SREDKey 2 Integration Manual Track1&2 encrypted data(55+35 bytes=90 bytes => round up by 8=> 96 bytes): F43947D860D5BCA3732EB67A2ECB7CEF52644E3378CBBCB9509FF655F5E54B6C99519F 0B79B785B94426C17D9427E7DC9A10A8DFED4A45C3DC1A9CB6B339B3D8521BFC17F114 BC8A2E8AF4819F753729726F98B9D311B9F250A0FACDE4A041ED T1 Null hash: 0000000000000000000000000000000000000000 T2 Null hash: 0000000000000000000000000000000000000000 KSN: 62994900000000000011 LRC: 81 CheckSum: DD ETX: 03 Decrypted Data: %B5150710200107903^PAYPASS/MASTERCARD^090910140000631??;51507102001079...
-
Page 34: Manual Entry Original Format
ID TECH SREDKey 2 Integration Manual T1 encrypted data (T1 length 55 rounded up by 8 => 56 bytes): 2B52196519901212715ABADDA6DA18FDA5B50219A0FC9341BFB0633C3F33874FFE7B5F 2B63897E0023710D5F6C6BF7BE8B937A515E3A7903 T2 encrypted data(T2 length 35 rounded up by 8 => 40 bytes): 182519B07422A5DFA329AF47F4B4728C5410105661B3DF35C0234582B983F710877131 4DF807077D T1 Null hash: 0000000000000000000000000000000000000000 T2 Null hash: 0000000000000000000000000000000000000000... -
Page 35: Manual Entry Enhanced Format
ID TECH SREDKey 2 Integration Manual Length+ EXPDate: 0431323132 KSN: 62994900000000000012 CheckLRC: B7 CheckSum: 33 ETX: 03 Decrypted Data: Data in ASCII Format: 5150710200107903=1212= 11.4.2. Manual Entry Enhanced Format 02A600C0170018008292;5150********7903=****?*293C595E789A8E5EE184D379E9 19F43A06A5911BDA9F9053000000000000000000000000000000000000000030303030 3030303030306299490000000000000F035B03 STX: 02 Data length low byte: A6 Data length high byte: 00... - Page 36 ID TECH SREDKey 2 Integration Manual LRC: 03 CheckSum: 5B EXT: 03 Encrypted Data: 293C595E789A8E5EE184D379E919F43A06A5911BDA9F9053 Decrypt data: ;5150710200107903=1212? Page | 36...
-
Page 37: Tamper Error Code Table
15. Troubleshooting The SREDKey 2 is designed to require minimal troubleshooting. In general, the device itself is plug- and-play and, as long as the green LED is lit, should be ready for use. If the LED is red or amber,... -
Page 38: Appendix A: Setting Configuration Parameters And Values (Itp Protocol)
ID TECH SREDKey 2 Integration Manual 17. Appendix A: Setting Configuration Parameters and Values (ITP Protocol) The table below describes SREDKey 2 default settings and available settings (value within parentheses) for each function ID. Function ID Length Name Default Setting... - Page 39 ID TECH SREDKey 2 Integration Manual Function ID Length Name Default Setting Description mask or display ‘0’ mask expiration date. DispExpDateID '1''0'-'1' expiration ‘1’ display expiration date. date include ‘0’ don’t include mod10. Mod10ID mod10 check '0' ('0'-'2') ‘1’ display mod10.
- Page 40 ID TECH SREDKey 2 Integration Manual Function ID Length Name Default Setting Description check for track sync check leading & trailing sync bits. bits-can ‘0’ 13 bits. SyncCheckID allow poorly ‘2’ (‘0’-2’) ‘1’ 13 bits but allow if valid through track LRC.
- Page 41 ID TECH SREDKey 2 Integration Manual Function ID Length Name Default Setting Description bit 0: if 0: output in original keyed output; 1: output in enhanced keyed-in output. bit 1: if 0: allow empty CVV entry; 1: require 3 or more CVV digits.
-
Page 42: Revision History
ID TECH SREDKey 2 Integration Manual 18. Revision History Date Changes Author 02/28/2020 Renamed from SREDKey 2 User Manual Added public commands. 03/25/2020 Final adjustments for release. 08/18/2020 Added 24 hour reset text. 02/26/2021 Setting Configuration Parameters and Values (ITP Protocol) Updated desctiption for EncryptOptID Function ID Bits 0, 1, and 2.