交易期间，EMV ODA，CA和发行者证书之间是什么关系? [英] What is the relationship between the EMV ODA, CA and issuer certificate during the transaction?

问题描述

EMV ODA ， CA 与交易过程中的颁发者证书之间是什么关系?

What is the relationship between the EMV ODA, CA and issuer certificate during the transaction?

推荐答案

脱机数据身份验证是验证卡真实性的过程. 终端装有CA公钥.

Offline data authentication is the process to verify the cards authenticity. Terminals are loaded with CA Public key.

• SDA(静态数据身份验证)可以确保您的卡数据没有 发行后已被更改. SDA卡包含签名静态 应用程序数据和颁发者公钥证书. CA公钥输入 终端用于验证颁发者公共密钥证书，而发行者公共密钥用于验证签名的静态应用程序数据 卡片.
• DDA(动态数据身份验证)可以确保卡数据没有 已被更改，并且该卡整体未克隆. DDA卡 包含ICC私钥，ICC公钥证书和颁发者公钥证书.终端中的CA公钥用于验证
  发行者公钥证书.颁发者公共密钥，用于验证 ICC公钥证书. ICC公钥用于验证动态 卡使用其ICC私钥生成的签名.
• CDA/AC(具有密码生成功能的组合数据身份验证)- 与DDA卡相同，唯一的区别在于密码生成 和动态签名一起发生，以确保 密码来自有效的卡.

• SDA(Static Data Authentication) can assure you the card data has not been altered after the issuance. SDA card contains Signed Static Application Data and Issuer Public Key certificate. CA Public key in the terminal is used to verify the Issuer Public key certificate and issuer Public key is used to verify the signed static application data in the card.
• DDA(Dynamic Data Authentication) can assure the card data has not been altered and that the card as a whole is not cloned. DDA Card Contains ICC Private Key, ICC Public key certificate and Issuer Public Key Certificate. CA Public Key in terminal is used to verify the
  Issuer Public Key certificate. Issuer Public key used to validate the ICC Public Key certificate. ICC Public key used to verify the dynamic signature generated by the card using its ICC Private key.
• CDA/AC(Combined Data Authentication with Cryptogram generation) - Same as DDA card, only difference being Cryptogram Generation and Dynamic signature happens together assuring that Cryptogram came from a valid card.

这篇关于交易期间，EMV ODA，CA和发行者证书之间是什么关系?的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！