2002-04-02 13:26:42 +00:00
|
|
|
#
|
|
|
|
# PKCS15 r/w profile for Cryptoflex cards
|
|
|
|
#
|
2002-04-04 22:10:36 +00:00
|
|
|
cardinfo {
|
|
|
|
max-pin-length = 8;
|
|
|
|
pin-encoding = ascii-numeric;
|
|
|
|
pin-pad-char = 0x00;
|
|
|
|
}
|
|
|
|
|
|
|
|
# Define reasonable limits for PINs and PUK
|
|
|
|
# Note that we do not set a file path or reference
|
|
|
|
# here; that is done dynamically.
|
|
|
|
PIN user-pin {
|
|
|
|
attempts = 3;
|
2002-04-06 14:21:40 +00:00
|
|
|
flags = 0x32; # local, initialized, needs-padding
|
2002-04-04 22:10:36 +00:00
|
|
|
}
|
|
|
|
PIN user-puk {
|
|
|
|
attempts = 10;
|
|
|
|
}
|
|
|
|
|
|
|
|
# Additional filesystem info.
|
|
|
|
# This is added to the file system info specified in the
|
|
|
|
# main profile.
|
|
|
|
filesystem {
|
|
|
|
DF MF {
|
|
|
|
ACL = *=AUT1;
|
|
|
|
|
|
|
|
DF PKCS15-AppDF {
|
2003-05-16 14:16:15 +00:00
|
|
|
ACL = *=AUT1, FILES=NONE;
|
2002-04-04 22:10:36 +00:00
|
|
|
DF keydir-1 {
|
2003-05-16 14:16:15 +00:00
|
|
|
ACL = *=AUT1, FILES=NONE;
|
2002-04-04 22:10:36 +00:00
|
|
|
file-id = 4B01;
|
2003-04-11 10:31:33 +00:00
|
|
|
size = 1370; # Sufficient for a 2048-bit key
|
2002-04-04 22:10:36 +00:00
|
|
|
EF pinfile-1 {
|
|
|
|
file-id = 0000;
|
|
|
|
size = 23;
|
|
|
|
ACL = *=NEVER, UPDATE=AUT1;
|
|
|
|
}
|
|
|
|
EF template-private-key-1 {
|
|
|
|
file-id = 0012;
|
2003-05-16 14:16:15 +00:00
|
|
|
ACL = *=NEVER, CRYPTO=$PIN, UPDATE=AUT1;
|
2002-04-04 22:10:36 +00:00
|
|
|
}
|
2002-04-19 17:02:15 +00:00
|
|
|
EF template-extractable-key-1 {
|
|
|
|
file-id = 7000;
|
2003-05-16 14:16:15 +00:00
|
|
|
ACL = *=NEVER, READ=CHV1, UPDATE=AUT1;
|
2002-04-19 17:02:15 +00:00
|
|
|
}
|
2002-04-04 22:10:36 +00:00
|
|
|
}
|
|
|
|
DF keydir-2 {
|
2003-05-16 14:16:15 +00:00
|
|
|
ACL = *=AUT1, FILES=NONE;
|
2002-04-04 22:10:36 +00:00
|
|
|
file-id = 4B02;
|
2003-04-11 10:31:33 +00:00
|
|
|
size = 1370; # Sufficient for a 2048-bit key
|
2002-04-04 22:10:36 +00:00
|
|
|
EF pinfile-2 {
|
|
|
|
file-id = 0000;
|
|
|
|
size = 23;
|
|
|
|
ACL = *=NEVER, UPDATE=AUT1;
|
|
|
|
}
|
|
|
|
EF template-private-key-2 {
|
|
|
|
file-id = 0012;
|
|
|
|
ACL = *=NEVER, CRYPTO=CHV1, UPDATE=AUT1;
|
|
|
|
}
|
2002-04-19 17:02:15 +00:00
|
|
|
EF template-extractable-key-2 {
|
|
|
|
file-id = 7000;
|
|
|
|
ACL = *=NEVER, READ=$PIN, UPDATE=AUT1;
|
|
|
|
}
|
2002-04-04 22:10:36 +00:00
|
|
|
}
|
|
|
|
EF template-public-key-1 {
|
|
|
|
file-id = 5201;
|
|
|
|
ACL = *=AUT1, READ=NONE;
|
|
|
|
}
|
|
|
|
EF template-public-key-2 {
|
|
|
|
file-id = 5202;
|
|
|
|
ACL = *=AUT1, READ=NONE;
|
|
|
|
}
|
2002-04-06 14:21:40 +00:00
|
|
|
EF template-certificate-1 {
|
|
|
|
file-id = 5501;
|
|
|
|
ACL = *=AUT1, READ=NONE;
|
|
|
|
}
|
|
|
|
EF template-certificate-2 {
|
|
|
|
file-id = 5502;
|
|
|
|
ACL = *=AUT1, READ=NONE;
|
|
|
|
}
|
2002-04-04 22:10:36 +00:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# Define an SO pin
|
|
|
|
# This PIN is not used yet.
|
|
|
|
#PIN sopin {
|
|
|
|
# file = sopinfile;
|
|
|
|
# reference = 0;
|
|
|
|
#}
|