8.2. Updating SREDKey 2 Firmware........................17 8.3. Enabling and Disabling the SREDKey 2 Admin Key ..................19 8.4. Switching a SREDKey 2 Between USB-KB and USB-HID Modes ..............19 8.5. Testing a SREDKey 2 Device ..........................20 9. DATA OUTPUT FORMAT .............................. 23 9.1.
Page 4
ID TECH SREDKey 2 Integration Manual 11. NOTE 2: TRACK 1-3 STATUS BYTE .......................... 31 11.1.1. Field 4..........................................31 11.1.2. Field 10: Optional byte length ................................31 11.1.3. Field 11: Optional status byte 1 ..............................31 11.2. Note 3: Clear/mask data sent status ......................31 11.2.1.
ID TECH SREDKey 2 Integration Manual 1. Introduction ID TECH’s SREDKey 2 is an encrypting keypad with an LCD and is available either with an encrypted MagStripe reader and without. The SREDKey 2 is a reliable security solution that meets PCI PTS 5.X perfect for a P2PE environment.
When the SREDKey 2 is powered on it enters Data Capture Mode, prompting a user to key-in data. If the SREDKey 2 has not been injected with a key and encryption is not enabled, it displays “Missing Transaction Keys” after the user presses any key. Evaluation units come injected with the ID TECH demo key by default, and data can be decrypted using ID TECH’s Universal SDK...
Unit Missing Transaction Key 5.5. Tamper and Failed Self-Check Indicators The SREDKEY 2 displays the following indicators when it has been tampered or has any of the other following internal issues, such as an expired certificate, missing key, or similar fault discovered during a self-check.
ID TECH SREDKey 2 Integration Manual 6. Firmware Command Structure The following are commands sent to keypad/reader: Setting Command: <STX><S>[<FuncID><Len><FuncData>…] <ETX><LRC> • Read Status Command: <STX><R><FuncID><ETX><LRC> • Function Command: <STX>[<FuncID><Len><FuncData>…] <ETX><LRC> • 6.1. Response from SREDKey 2 Setting Command Host...
Page 10
ID TECH SREDKey 2 Integration Manual Where: <FuncID> is one-byte identifying the setting(s) for the function. • <Len> is a one-byte length count for the following <FuncData> function-setting block. • <FuncData> is the current setting for this function. It has the same format as the function’s •...
ID TECH SREDKey 2 Integration Manual 7. General Commands SREDKey 2 devices use commands from both the NEO 2 and NGA protocols. SREDKey 2 devices come equipped with the default settings already programmed. See Appendix A for a table of default settings.
ID TECH SREDKey 2 Integration Manual For example, 0x02 0x00 0x00 0x02 0x00 0x01 represents [KeyIndex=0x02,KeySlot=0x0000] and [KeyIndex=0x02,KeySlot=0x0001] 7.1.3. Reboot Device (77-05) The Reboot Device command immediately reboots the reader. Command: <ViVOtech2\0><77h><05h><00h><00h><CRC-L><CRC-H> Response: <ViVOtech2\0><77h><00h><00h><00h><CRC-L><CRC-H> 7.1.4. Set TransArmor Cert Data (C7-50) The Set TransArmor Cert Data command sets the TransArmor Cert data for TransArmor RSA encryption functionality.
The Model Number must be set before it can be read; see the Set Model Number command. • 7.2.2. Get Detailed Firmware Version (78 46 31) The Get Detailed Firmware Version command retrieves the SREDKey 2’s detailed firmware version. Command Body: 78 46 31 Response: 06 <TM4 Firmware version information>...
7.3. ITP Protocol Commands 7.3.1. Reset Device (53 18): KB Mode The Reset Device command resets the SREDKey 2 to factory default settings. Use this command in Keyboard Mode. Note that this command is irreversible and that device administrators must reconfigure the reader after sending this command.
The Universal SDK Demo application is available to demonstrate SREDKey 2 MSR and Keypad Data Decryption. SREDKey 2 devices can connect to the USDK Demo app via either USB-HID or USB KB Interface. For USB KB Interface, make sure to place the cursor in the Manual Command window before swiping a card.
To use a command, open the Command tree and double-click the desired command or select a command and click Execute. Data displays in the Log panel and device results in the Results panel. For example, to get a SREDKey 2’s serial number: 1. Click Config 2.
ID TECH SREDKey 2 Integration Manual 8.2. Updating SREDKey 2 Firmware The steps below describe the process for updating SREDKey 2 firmware via the Universal SDK Demo app. Note: Before you begin, contact your ID TECH representative to receive the most recent SREDKey 2 firmware.
Page 18
4. Under Device, select Update Device Firmware, then click Execute Command. 5. Navigate to and select the SREDKey 2 firmware file you downloaded earlier and click Open. 6. The SREDKey 2 reboots and enters the bootloader, at which point the SDK demo begins updating the device.
To switch the SREDKey 2 between USB-KB and USB-HID modes: 1. Under Device, select the desired mode, then click Execute Command. The USDK Demo app reboots the SREDKey 2; when the device reboots, the Results panel displays the selected USB mode:...
Parsomatic tool parses ID TECH card-reader data streams. 3. Click Clear at the bottom of the the Parsomatic screen. 4. Keep the Parsomatic window open and swipe the demo card through the SREDKey 2; the data from the reader will populate the reader data field.
Page 22
ID TECH SREDKey 2 Integration Manual 7. Copy the data in the KSN field. 8. Return to the USDK Demo app and click Decryption. The ID TECH Decrypt window will appear. 9. Paste the KSN data into the KSN panel.
ID TECH SREDKey 2 Integration Manual 9. Data Output Format The SREDKey 2’s default output mode is the enhanced MagStripe reader and key-in format. <STX><DataLenL><DataLenH><Card Data><CheckLRC><CheckSum><ETX> <STX> = 02h, <ETX> = 03h <LenL><LenH> is a two-byte length of <Card Data>.
ID TECH SREDKey 2 Integration Manual 9.1.2. Non-Financial Card Field Description STX (02) Data Length low byte Data Length high byte Card Encode Type (Section 7.5 note 1) Track 1-3 Status (Section 7.5 note 2) T1 clear data length T2 clear data length...
ID TECH SREDKey 2 Integration Manual 9.2. ID TECH Swipe Data Enhanced Encryption Output Format Note: For new development, please use enhanced encryption format. 9.2.1. ISO/ABA Card Data Output Format Field Description Data Length Card Encode Type Track Status Track1 data length...
ID TECH SREDKey 2 Integration Manual 9.2.2. NON-ISO/ABA Data Output Format Field Description Data Length Card Encode Type Track Status Track1 data length Track2 data length Track3 data length Clear/mask data sent status Encrypted/Hash data sent status Optional bytes length...
ID TECH SREDKey 2 Integration Manual 9.3. ID TECH Manual Entry Original Data Output Format Field Description STX (0x02) Data Length low byte Data Length high byte Card type always 85—keyed in (Section 7.5 note 1) Always 0 Always 0...
ID TECH SREDKey 2 Integration Manual 9.4. ID TECH Manual Entry Enhanced Data Output Format Note: For new development, please use enhanced encryption format. Field Description STX (0x02) Data Length Card Encode Type(0xC0) Track Status (0x17 or 0x37) Track1 data length(0x00) Length of unencrypted ;PAN= EXP [:CVV]?LRC...
Page 29
ID TECH SREDKey 2 Integration Manual The format of the fields ADR and ZIP is: 1-byte field identifier ASCII Data field terminator ‘=’ ‘1’—ADR; ‘0’—ZIP Field 13 LRC is a calculated track 2 longitudinal redundancy check from ';' to '?' The LRC is calculated on the data before conversion to ASCII to be encoded on a card, so the keyed-in data can be linked to the card data.
(default) manual entry mode (new) JIS I JIS II 10.1.1. Encoding Methods The SREDKey 2 reader uses the following criteria to check the card encode type: ISO/ABA (American Banking Association) Card: Encoding Method Track1 is 7-bit encoding. •...
1: KSN present 11.4. Data Sample The data sample below is encrypted with an ID TECH demo key and TDES encryption method. The SREDKey 2 device is tested with USBKB interface. Card Number: 5150 7102 0010 7903 Credit Card Swipe Original Format: 028801001F372300%*5150********7903^PAYPASS/MASTERCARD^***************? *;5150********7903=***************?*F43947D860D5BCA3732EB67A2ECB7CEF52...
15. Troubleshooting The SREDKey 2 is designed to require minimal troubleshooting. In general, the device itself is plug- and-play and, as long as the green LED is lit, should be ready for use. If the LED is red or amber,...
ID TECH SREDKey 2 Integration Manual 17. Appendix A: Setting Configuration Parameters and Values (ITP Protocol) The table below describes SREDKey 2 default settings and available settings (value within parentheses) for each function ID. Function ID Length Name Default Setting...
Page 39
ID TECH SREDKey 2 Integration Manual Function ID Length Name Default Setting Description mask or display ‘0’ mask expiration date. DispExpDateID '1''0'-'1' expiration ‘1’ display expiration date. date include ‘0’ don’t include mod10. Mod10ID mod10 check '0' ('0'-'2') ‘1’ display mod10.
Page 40
ID TECH SREDKey 2 Integration Manual Function ID Length Name Default Setting Description check for track sync check leading & trailing sync bits. bits-can ‘0’ 13 bits. SyncCheckID allow poorly ‘2’ (‘0’-2’) ‘1’ 13 bits but allow if valid through track LRC.
Page 41
ID TECH SREDKey 2 Integration Manual Function ID Length Name Default Setting Description bit 0: if 0: output in original keyed output; 1: output in enhanced keyed-in output. bit 1: if 0: allow empty CVV entry; 1: require 3 or more CVV digits.
ID TECH SREDKey 2 Integration Manual 18. Revision History Date Changes Author 02/28/2020 Renamed from SREDKey 2 User Manual Added public commands. 03/25/2020 Final adjustments for release. 08/18/2020 Added 24 hour reset text. 02/26/2021 Setting Configuration Parameters and Values (ITP Protocol) Updated desctiption for EncryptOptID Function ID Bits 0, 1, and 2.