Can I use ISD for secure Channel?

Hi all,
Forgive me if this is a silly question but I am still :o( baffled by what I can and what I cannot do between a host app and JC/OP applet, with SD and without SD
Can I do the following if this applet is associated with no SD except by default the ISD? Will this.mySD = OPSystem.getSecurityDomain(); return the ISD and will this unwrap commands sent to this applet if I send init-update255 and ext-auth mac as below?
public boolean select()
  this.mySD = OPSystem.getSecurityDomain();
  //The applet declines to be selected if the pin is blocked
  if (pin.getTriesRemaining() == 0)
     return false;
  else
     return true;
}// end of select method
public void deselect()
  // reset the pin value
  pin.reset();
}//end of deselect method
public void process(APDU apdu)
  byte [] buffer = apdu.getBuffer();
  if(selectingApplet())
       return;
  // code to execute if applet is not yet PERSONALIZED
  if (OPSystem.getCardContentState() != OPSystem.APPLET_PERSONALIZED)
      apdu.setIncomingAndReceive();
      switch (buffer[ISO7816.OFFSET_INS] & 0xff)
        case (byte) 0x50 : // VOP INITIALIZE UPDATE
           secureChannel[0] = mySD.openSecureChannel(apdu);
           apdu.setOutgoingAndSend(ISO7816.OFFSET_CDATA, buffer[ISO7816.OFFSET_LC]);
        break;
        case 0x82 : // VOP EXTERNAL AUTHENTICATE
     mySD.verifyExternalAuthenticate(secureChannel[0], apdu);
     break:
        case (byte) 0x02 :
                    OPSystem.getSecurityDomain().unwrap(secureChannel[0],apdu);
     // set key data: des-key will take 8 bytes even if we get more from
     // terminal
     desKey.setKey(buffer, ISO7816.OFFSET_CDATA);
     // finally set applet life cycle state to PERSONALIZED
     OPSystem.setCardContentState(OPSystem.APPLET_PERSONALIZED);
        break;
} // end switch
// else applet in PERSONALIZED state And the JCOP shell commands are
Card Manager AID   :  A000000003000000
Card Manager state :  OP_READY
    Application:  SELECTABLE (--------) "WalletTransact"
    Application:  SELECTABLE (--------) "WalletApplet" 
    Load File  :      LOADED (--------) A0000000620001   (java.lang)
    Load File  :      LOADED (--------) A0000000620101   (javacard.framework)
    Load File  :      LOADED (--------) A0000000620102   (javacard.security)
    Load File  :      LOADED (--------) A0000000620201   (javacardx.crypto)
    Load File  :      LOADED (--------) A0000000030000   (visa.openplatform)
    Load File  :      LOADED (--------) A000000167413001 (FIPS 140-2)
    Load File  :      LOADED (--------) A0000001320001   (org.javacardforum.javacard.biometry)
    Load File  :      LOADED (--------) A0000000035350   (Security Domain)
    Load File  :      LOADED (--------) A000000063       (PKCS15)
    Load File  :      LOADED (--------) "walletTransPack"
    Load File  :      LOADED (--------) "walletPackage"
select |WalletApplet => 00 A4 04 00 08 A0 00 00 00 03 00 00 00 00          ..............
(120 msec)
<= 6F 19 84 08 A0 00 00 00 03 00 00 00 A5 0D 9F 6E    o..............n
    06 40 51 40 35 21 14 9F 65 01 FF 90 00             .@Q@5!..e....
Status: No Error
init-update 255 => 80 50 00 00 08 F4 AE 67 6B 70 B8 FC D1 00          .P.....gkp....
(71 msec)
<= 00 00 40 35 12 34 56 78 98 76 FF 01 B0 59 32 FB    [email protected].
    DE 9A C4 E9 87 04 AD 32 03 41 36 54 90 00          .......2.A6T..
Status: No Error
ext-auth mac => 84 82 01 00 10 79 C6 EA 2E 0F 5F D9 BD FA C7 81    .....y...._.....
    36 47 71 8B 38                                     6Gq.8
(50 msec)
<= 90 00                                              ..
Status: No Error
send 00020000081122334455667788 => 04 02 00 00 10 11 22 33 44 55 66 77 88 15 BD B4    ......"3DUfw....
    FB 79 6A C0 71                                     .yj.q
(8322 msec)
<= 6E 00                                              n.
Status: CLA value not supported

well...you cannot use the firmware for befw11s4 v4 to be upgraded on befw11s4 v2 ..

Similar Messages

  • Does anyone know whether iTunesU can be used in a secure environment for corporate training? Looking at previous posts it does not seem like it?

    Does anyone know whether iTunesU can be used in a secure environment for corporate training? Looking at previous posts it does not seem like it?

    Sorry, but iTunes U is only available to K-12 public school districts, private schools and two- and four-year accredited, degree-granting, public or private colleges and universities. It's not available for corporations.
    Regards.

  • DBCA can not use ASM for database storage due to following reason: Could no

    Hi
    I've a recently installed RAC11gR2(11.2.0.3) on HP-UX
    I installed Grid Infrastructure with grid user:
    Node1: # id grid
    uid=1100(grid) gid=1000(oinstall) groups=1031(dba),1021(asmdba)
    Node2: # id grid
    uid=1100(grid) gid=1000(oinstall) groups=1031(dba),1021(asmdba)
    I installed the Oracle Server with oracle user:
    Node1: # id oracle
    uid=1101(oracle) gid=1000(oinstall) groups=1031(dba),1021(asmdba),1033(oper)
    Node2: # id oracle
    uid=1101(oracle) gid=1000(oinstall) groups=1031(dba),1021(asmdba),1033(oper)
    All related Grid Infrastructure is functioning well in both nodes:
    $ crs_stat -t
    Name Type Target State Host
    ora.DATA.dg ora....up.type ONLINE ONLINE node03
    ora.FRA.dg ora....up.type ONLINE ONLINE node03
    ora....ER.lsnr ora....er.type ONLINE ONLINE node03
    ora....N1.lsnr ora....er.type ONLINE ONLINE node04
    ora.asm ora.asm.type ONLINE ONLINE node03
    ora.cvu ora.cvu.type ONLINE ONLINE node04
    ora.gsd ora.gsd.type OFFLINE OFFLINE
    ora....network ora....rk.type ONLINE ONLINE node03
    ora.oc4j ora.oc4j.type OFFLINE OFFLINE
    ora.ons ora.ons.type ONLINE ONLINE node03
    ora.scan1.vip ora....ip.type ONLINE ONLINE node04
    ora....SM1.asm application ONLINE ONLINE node03
    ora....03.lsnr application ONLINE ONLINE node03
    ora....d03.gsd application OFFLINE OFFLINE
    ora....d03.ons application ONLINE ONLINE node03
    ora....d03.vip ora....t1.type ONLINE ONLINE node03
    ora....SM2.asm application ONLINE ONLINE node04
    ora....04.lsnr application ONLINE ONLINE node04
    ora....d04.gsd application OFFLINE OFFLINE
    ora....d04.ons application ONLINE ONLINE node04
    ora....d04.vip ora....t1.type ONLINE ONLINE node04
    $
    The ASM instance are running well in both nodes
    Connected with oracle user, the listener has registered perfectly the ASM instance in each node:
    $
    $ lsnrctl status
    LSNRCTL for HPUX: Version 11.2.0.3.0 - Production on 16-MAY-2012 15:41:06
    Copyright (c) 1991, 2011, Oracle. All rights reserved.
    Connecting to (ADDRESS=(PROTOCOL=tcp)(HOST=)(PORT=1521))
    STATUS of the LISTENER
    Alias LISTENER
    Version TNSLSNR for HPUX: Version 11.2.0.3.0 - Production
    Start Date 16-MAY-2012 15:24:19
    Uptime 0 days 0 hr. 16 min. 47 sec
    Trace Level off
    Security ON: Local OS Authentication
    SNMP OFF
    Listener Parameter File /u01/app/11.2.0/grid/network/admin/listener.ora
    Listener Log File /u01/app/grid/diag/tnslsnr/node03/listener/alert/log .xml
    Listening Endpoints Summary...
    (DESCRIPTION=(ADDRESS=(PROTOCOL=ipc)(KEY=LISTENER)))
    (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=16.0.0.133)(PORT=1521)))
    (DESCRIPTION=(ADDRESS=(PROTOCOL=tcp)(HOST=16.0.0.136)(PORT=1521)))
    Services Summary...
    Service "+ASM" has 1 instance(s).
    Instance "+ASM1", status READY, has 1 handler(s) for this service...
    The command completed successfully
    $
    $
    DATA & FRA disk group are created:
    $
    $ echo $ORACLE_SID
    +ASM1
    $
    $ asmcmd
    ASMCMD>
    ASMCMD> ls -lt
    State Type Rebal Name
    MOUNTED EXTERN N DATA/
    MOUNTED EXTERN N FRA/
    ASMCMD>
    ASMCMD>
    The big issue is... that the DBCA can not see the diskgroups. When I choose ASM Storage it can not see them. It shows the chart in blank and if i try to write the disk group, so the following message appears: can not use ASM for database storage due to following reason: Could not connect to ASM due to following error: ORA-01034 ORACLE not available
    What can be passing in this case... ?
    Thanks in advance

    Thanks both
    Really the problem initially was because of this:
    [INS-06006] Passwordless SSH connectivity not set up between the following node(s): [node1, node2]. CVU may reports "PRVF-4007 : User equivalence check failed for user "user"" for same error
    and I had to install node1 first and after node2 manually and perhaps for this the product was not well linked.
    I resolved the problem establishing the keys with the wizard and after copying the following files from node1 to node2
    /home/grid/.ssh -------> /home/grid/.ssh
    authorized_keys
    known_hosts
    This is the procedure if you run the wizard at the node1.
    The problem is that the wizard creates the keys incompletely...
    Thanks

  • Can I use iMessage for free with someone in a different country?

    Can I use iMessage for free with someone in a different country?

    Suzanne515 wrote:
    dj,
    That is good to know. Have you  ever turned off wi-fi and used your cellular data instead? I'd like to know if your carrier charges you for the iMessage? I will be travelling with a +44 number on my sim card (Teletial based in the Channel Islands I believe) and some places like South Korea & Japan charge about  $30USD/MB. ( or 19 GBP/MB). The devil is in the detail. 
    My carrier, 3, does not charge extra for cellular data.   I pay £34 per month for a cellular plan with unlimited data.  So, no, I do not get charged for sending iMessages whether I am on cellular data or wifi.  If I were to try to send an iMessage to an international number that did not belong to an Apple device, it would send as SMS and I am sure that standard international rates would apply.  Apple iMessage is a different protocol for users with an AppleID.  There is no way for the carrier to distinguish it from any other data traffic.

  • How can I use TopLink for querys that have two and more tables?

    I use TopLink today, and I can use one table to query, but how can I use TopLink for querys that have two and more tables?
    Thank you for see and answer this question.

    You can write a custom SQL query and map it to an object as needed. You can also use the Toplink query language "anyOf" or "get" commands to map two tables as long as you map them as one to one (get command) or one to many (anyOf command) in the toplink mapping workbench.
    Zev.
    check out oracle.toplink.expressions.Expression in the 10.1.3 API

  • How can I use OCCI for oracle8.1.6?

    my database is oralce8.1.6 for solaris8.
    I want to develop database application by OCCI .
    But only oracle9i has OCCI.
    How can I do?
    Where can I get OCCI ,and how can I use it for oralce8.1.6?
    thank you very much!!

    OCI is available for all versions of Oracle including Oracle
    7/8/8i etc. However it is not installed by default with these
    versions. I am assuming that the default 9i installation
    includes OCI. You should be able to install OCI for other
    versions through one of the development platforms e.g. ProC/C++
    etc.

  • How can i use AME for the new OAF page.

    Dear all,
    I have developed a new OAF page and registered under Employee Self Service.
    How can i use AME for the approval process.
    Appreciate your ideas?
    zamora

    I will try to answer based on my experience of working with iProcurement and AME. It depends on how you want to make a call to AME , directly from OAF Page or from Workflow and your requirement. You didn't specify what you want to show the users on OAF Page and your business requirement.
    Before calling AME Engine from the OAF page or workflow, I guess you did already setup AME Transaction Type and it's Approval Groups, Conditions, Action Types and Rules. Do some testing from AME Business Analyst Test Workbench. Please note that, AME provides lot of PL/SQL API's that you have to call from your programs (java or workflow pl/sql)
    Let's look at the workflow and putting an OAF Page as notification.
    As Sameer said, you have kick-off workflow process from PR of CO and with in the workflow function, you make a call to AME Engine API's with the AME Transaction ID. This transactionId belongs to the AME Transsaction Type that you setup. Based on the rules setup, AME Engine generates list of approvers/approver and stores them AME Tables for that transactionId. Then, it sends a notification to the approver.
    In the workflow, where that notification is defined, in the message body you have to put an attribute(&XX_WF_FWK_RN) of type document/send. And this attribute will have the constant JSP:/OA_HTML/OA.jsp?OAFunc=XX_FUNC&paramId=-&DOCUMENT_ID-. This function is SSWA Jsp function that makes a web html call to your OAF Region.
    If your requirement is to just show the list of approvers on the OAF Page, you may have to call AME API diectly passing your AME TrasnactionId with other parameters. Then AME generates list of approvers and stores them in AME tables with each approver status. You can pickup those approvers using VO and show them on OAF Page.
    Hope this gives some idea.

  • How can i use RTFEditorKit for JTextField.

    hi all,
    how can i use RTFEditorKit for JTextField.
    thanks in advance
    daya

    Don't cross post. This is a Swing related question and you have already posted in the Swing forum:
    http://forum.java.sun.com/thread.jspa?threadID=619619&tstart=0

  • How can I use Siri for IPhone?

    How can I use Siri for IPhone?

    Siri only works on the iPhone 4S or iPhone 5. If you have one of those devices, turn it on in Settings > General > Siri.
    If you need more info than that, ask in the Apple forums.

  • How can I use music for ringtones on my iphone 4?

    How can I use music for ringtones on my iphone 4?

    You can take any MP3 file that it 40 seconds or less and change the file extension to M4R. Then drag it into iTunes. It will appear under Ringtones and transfer over next time you sync,

  • I have an apple id but ı can not use it for sign in to itunes connect account while publishing my ibook document. Why ı can not login? What can ı do to figure out this problem?

    I have an apple id but ı can not use it for sign in to itunes connect account while publishing my ibook document. Why ı can not login? What can ı do to figure out this problem?

    As note already on the iBA forum [ AppleID for ibooks publishing ], you need two IDs. You can't use your developer ID.
    If you already signed up for books with that ID, you need to talk to Apple to straighten things out.

  • Can I use iCloud for backup?

    Can I use iCloud for backup?

    To back up all your data you are better off getting an external hard drive.  For details on iCould, read: http://www.apple.com/icloud/.

  • I am using MS Office 2010 and Windows XP Professional, can I use iCloud for backup of my files and documents?

    I am using MS Office 2010 and Windows XP Professional, can I use iCloud for backup of my files and documents? I am planning to transition to a Mac so using the iCloud seems to make the most sence.

    No, it is not a backup method at all.  If you delete a sync'd file on any device, you delete it permanently from iCloud.  That by its very essence is not a backup solution therefore.  A backup solution does not automatically and simultaneiously delete the file everywhere when it is deleted from the original source.
    iCloud is strictly a syncronization tool for using files on multiple internet connected devices.

  • Can i use iCloud for pages documents iMac?

    can i use iCloud for pages documents iMac?

    Hi lmdavis72,
    It looks like you can.
    From "iCloud: Documents in the Cloud overview"
    You can download a document from icloud.com/iwork to your Mac or Windows computer, edit it, and then drag the revised version to icloud.com/iwork. It’s then automatically updated on all of your iOS devices. You can also drag an iWork ’09 (Keynote, Pages, and Numbers) or Microsoft Office (PowerPoint, Word, and Excel) document created on your computer to icloud.com/iwork.
    So it looks like it can go between iOS devices and your iMac.
    ivan

  • Can i use cdma for internet and gsm for phone at a time in Iphone4s?

    Can i use cdma for internet and gsm for phone at a time in Iphone4s?

    No. Phones sold by GSM carriers can't access CDMA at all and phones sold by CDMA carriers can only access GSM if they are a) unlocked and b) in an area where there is not CDMA.
    Best of luck.

Maybe you are looking for

  • How can I install windows XP on my Satellite A300-129

    Hello, Since a few days I have bought a Toshiba Satellite A300-129. I'm very satisfied with the laptop, though I don't like to work with Vista so i would prefer to reformate the laptop and install Windows XP Professional(32 or 64 bits, dunno yet). Ho

  • Saving adobe forms in DMS through web dynpro application

    Hi all,         I have a requirement in web dynpro where the user enters few data and clicks a generate button. On click of this button i have to generate pdf forms and save it in DMS. I have already designed the adobe form, but i do not know how to

  • Query writing

    please help with a query that joins at least four tables together Thanks Tokunbo

  • Validations done by Receiving transaction processor

    I'm writing a custom program to receive an EDI 856(ASN) file and populating the data in the rcv interface tables for the Receiving transaction processor to run and create receipts for PO receiving. Before populating the data from the file into rcv in

  • Some IF/OR packaging questions...

    Hi all I have been googling this and searched through the Wiki without finding any obvious instructions about these things. I am planning to package two different AURs where I have two distinct issues. * In the first one (AMD's Open64 compiler), I ne