ANNEX I CRequirements for construction, testing, installation, and inspection
TACHOGRAPH CARDS SPECIFICATION
3.HARDWARE AND COMMUNICATION
3.5.Command descriptions
3.5.10GENERAL AUTHENTICATE
This command is used for the generation 2 chip authentication protocol specified in Appendix 11 Part B and is compliant with ISO/IEC 7816-4.
TCS_100
The command can be performed in the MF, DF Tachograph and DF Tachograph_G2, see also TCS_34.
TCS_101Command Message
Byte | Length | Value | Description |
|---|---|---|---|
CLA | 1 | ‘00h’ | |
INS | 1 | ‘86h’ | |
P1 | 1 | ‘00h’ | Keys and protocol implicitly known |
P2 | 1 | ‘00h’ | |
Lc | 1 | ‘NNh’ | Lc: length of subsequent data field |
#6-#(5+L) | L | ‘7Ch’ + L7C + ‘80h’ + L80 + ‘XX..XXh’ | DER-TLV encoded ephemeral public key value (see Appendix 11) The VU shall send the data objects in this order. |
F15 + L + 1 | 1 | ‘00h’ | As specified in ISO/IEC 7816-4 |
TCS_102Response Message
Byte | Length | Value | Description |
|---|---|---|---|
#1-#L | L | ‘7Ch’ + L7C + ‘81h’ + ‘08h’ + ‘XX..XXh’ + ‘82h’ + L82 + ‘XX..XXh’ | DER-TLV encoded Dynamic Authentication Data: nonce and authentication token (see Appendix 11) |
SW | 2 | ‘XXXXh’ | Status Words (SW1,SW2) |
If the command is successful, the card returns ‘9000’.
The card returns ‘6A80’ to indicate incorrect parameters in data field.
The card returns ‘6982’ if the External Authenticate command has not been performed successfully
The response Dynamic Authentication Data object ‘7Ch’
must be present if the operation is successful, i.e. the Status Words are ‘9000’,
must be absent in case of an execution error or checking error, i.e. if the Status Words are in the range ‘6400’ — ‘6FFF’, and
may be absent in case of a warning, i.e. if the Status Words are in the range ‘6200’ — ‘63FF’.