2002-04-02 13:26:42 +00:00
|
|
|
#
|
|
|
|
# PKCS15 r/w profile for Cryptoflex cards
|
|
|
|
#
|
2002-04-04 22:10:36 +00:00
|
|
|
cardinfo {
|
|
|
|
max-pin-length = 8;
|
|
|
|
pin-encoding = ascii-numeric;
|
|
|
|
pin-pad-char = 0x00;
|
|
|
|
|
|
|
|
# This is the secure messaging key required for
|
|
|
|
# creating files in the MF
|
|
|
|
key AUT1 {
|
|
|
|
value = "=Muscle00";
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# Define reasonable limits for PINs and PUK
|
|
|
|
# Note that we do not set a file path or reference
|
|
|
|
# here; that is done dynamically.
|
|
|
|
PIN user-pin {
|
|
|
|
attempts = 3;
|
|
|
|
}
|
|
|
|
PIN user-puk {
|
|
|
|
attempts = 10;
|
|
|
|
}
|
|
|
|
|
|
|
|
# Additional filesystem info.
|
|
|
|
# This is added to the file system info specified in the
|
|
|
|
# main profile.
|
|
|
|
filesystem {
|
|
|
|
DF MF {
|
|
|
|
ACL = *=AUT1;
|
|
|
|
|
|
|
|
DF PKCS15-AppDF {
|
|
|
|
DF keydir-1 {
|
|
|
|
file-id = 4B01;
|
|
|
|
size = 750; # Sufficient for a 1024-bit key
|
|
|
|
EF pinfile-1 {
|
|
|
|
file-id = 0000;
|
|
|
|
size = 23;
|
|
|
|
ACL = *=NEVER, UPDATE=AUT1;
|
|
|
|
}
|
|
|
|
EF template-private-key-1 {
|
|
|
|
file-id = 0012;
|
|
|
|
ACL = *=NEVER, CRYPTO=CHV1, UPDATE=AUT1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
DF keydir-2 {
|
|
|
|
file-id = 4B02;
|
|
|
|
size = 750; # Sufficient for a 1024-bit key
|
|
|
|
EF pinfile-2 {
|
|
|
|
file-id = 0000;
|
|
|
|
size = 23;
|
|
|
|
ACL = *=NEVER, UPDATE=AUT1;
|
|
|
|
}
|
|
|
|
EF template-private-key-2 {
|
|
|
|
file-id = 0012;
|
|
|
|
ACL = *=NEVER, CRYPTO=CHV1, UPDATE=AUT1;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
EF template-public-key-1 {
|
|
|
|
file-id = 5201;
|
|
|
|
ACL = *=AUT1, READ=NONE;
|
|
|
|
}
|
|
|
|
EF template-public-key-2 {
|
|
|
|
file-id = 5202;
|
|
|
|
ACL = *=AUT1, READ=NONE;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# Define an SO pin
|
|
|
|
# This PIN is not used yet.
|
|
|
|
#PIN sopin {
|
|
|
|
# file = sopinfile;
|
|
|
|
# reference = 0;
|
|
|
|
#}
|