We received 1,000 javacards (JCOP20) which were supposed to be blank programmer cards but they came locked with a transport key. I've read the GP 2.1.1 manual and it doesn't reference a "transport key" anywhere. How do I use the transport key to personalize these cards so that I can use them using the normal programmers keys?
Any help would be appreciated otherwise I'll have to return these cards...
What do you need to personalize? You do not need this key to e.g. set the CardManager keys or the CVM Pin.
The "transport key" is a NXP proprietary pre-issuance key to configure features e.g. ATR, baud rate, CPLC ... .
The standard programmer keys do not work on the card manager and therefore I am unable to load applets onto the card. The vendor has told me that you can set the CM keys during personalization. Is that right? If so how do I do it?
Correct, the second option, if the default CM keys don't work, you can set them via the transport key by writing directly into EEPROM. This requires that the cards are not 'fused' (otherwise you lost already, because the transport key is disabled then). If you cannot get hold of the transport key they are useless to you and I would send them back.
I have the transport key.
> Correct, the second option, if the default CM keys
> don't work, you can set them via the transport key by
> writing directly into EEPROM.
How do I do this?
You need following items;-
1. JCOP 2.0 manual
2. Sample JCOP 20 pre-perso script
3. Auto-loader encoder
4. Transportation key
Procedure is;-
select(Root Applet, AID is transportation key)->Read->Write->Verify->Fuse(Root Applet)
Time;-
< 1 hour for 1k
I have not do V2.0 card pre-perso for age, only 2.2 or 2.2.1 card lately. So do not count on me
> 1. JCOP 2.0 manual
Where can I get this?
> 2. Sample JCOP 20 pre-perso script
Where can I get this also?
> 3. Auto-loader encoder
Do I have to encode my applets? Is this something the vendor must supply?
> 4. Transportation key
I have this.
> 1. JCOP 2.0 manual
Where can I get this?
NXP, if you are their customer.
> 2. Sample JCOP 20 pre-perso script
Where can I get this also?
NXP, if you are card manufacture.
> 3. Auto-loader encoder
Do I have to encode my applets? Is this something the vendor must supply?
You could use it for both pre-perso and upload your applets, It is hardware and a little high price. for small qty card you could use standard desktop card reader.
BTW, it is very tricking to pre-perso the smart card, one small error ( 1 bit) your 1 k cards will become useless paperwight. You best bet is send those card back to vendor to pre-perso. :)
> > 1. JCOP 2.0 manual
>
> Where can I get this?
>
> NXP, if you are their customer.
Is there any other place where I could get this manual? Do I have to purchase it? Can I purchase it?
>
> > 2. Sample JCOP 20 pre-perso script
>
> Where can I get this also?
>
> NXP, if you are card manufacture.
So only a card manufacturer can do this? Why did the vendor send me these types of cards then?
>
> > 3. Auto-loader encoder
>
We have an applet loader that works fine so long as we have access to the card manager and its keys.
>
> BTW, it is very tricking to pre-perso the smart card,
> one small error ( 1 bit) your 1 k cards will become
> useless paperwight. You best bet is send those card
> back to vendor to pre-perso. :)
I'm not worried about that. We can afford to burn a card or two until the application is perfected.
- Bill
Is there any other place where I could get this manual? Do I have to purchase it? Can I purchase it?
It is free for NXP customer, but NDA is needed.
So only a card manufacturer can do this? Why did the vendor send me these types of cards then?
It is true for most card vendor NXP/Infineon. I heared Atmel has different policy, but I could be wrong.
You could PM me for more question.
