Java implementation of 3DES and DUKPT for decryption of credit card reader data through keyboard emulation? -

-

we have online key-in interface, , support credit card swipe capability. in industry today, card reader should encrypt information before encoding ascii, , server-side decrypt. (so local machine never sees card info)

i using magtek card reader in keyboard emulation mode, , have ansi standard key injected testing purposes. once decode & decryption successful, we'll our own key registered magtek , order production-use readers.

i know decryption has been implemented before in c# , other languages, need in java, or perhaps other cli-accessible program can included java webapp. proceed porting c# code java, first need set c# environment. (i've never done before.)

once i've ensured c# version works well, know can eliminate errors during porting usual debugging techniques.

before go through of this, if there easier way please let me know. think has been done in java, perhaps not...

partial answer, cw add to.

first, it's not clear (to me) if want run on pcs or similar swipe devices are, possibly downloaded (like applet or webstart), or encrypted swipe data (in webform?) , send server decrypt. suggest latter makes pci dss compliance easier.

java crypto 3des, under name desede (case-insensitive, jca cipher names). 1 unobvious point: implementation in sunjce handles full 24-byte keys. dukpt uses "2-key 3des", need copy "left" bytes 0-7, "right" 8-15, , "left" again 16-23. if use bouncycastle (as shop does) can take 16-byte key , copy internally, more convenient. (a symmetric key in java byte array in thin wrapper class, javax.crypto.spec.secretkeyspec.)

if you're not familiar java crypto in general, pattern obtain "instance" of particular algorithm or mode "provider" (you can specify 1 or let java choose automatically; several builtin , more can added, "bcprov" www.bouncycastle.org) using generic api class cipher, signature, messagedigest, etc, initialize instance needed parameters (such key or iv, , direction), call methods take input data , return output either in separate (possibly multiple) steps or in simple combined dofinal (which fine case). jca manual http://docs.oracle.com/javase/8/docs/technotes/guides/security/crypto/cryptospec.html#cipher , javadoc applicable api class javax.crypto.cipher (at http://docs.oracle.com/javase/8/docs/api/index.html , automatically displayed in leading ides) has quite full details on this.

i haven't seen open/free implementation of dukpt doesn't prove there isn't one. straightforward, though bit tedious, code steps x9.24, if no 1 offers better.


Comments

Post a Comment

Popular posts from this blog

java - Could not locate OpenAL library -

-
i writing game using slick2d library, uses lwjgl. lwjgl version 2.9.3. using netbeans 8. i tried adding sounds game, example music track on main menu. problem is, exception when run game, despite game still compiling , running except sound of course: sat mar 21 01:23:57 edt 2015 error:could not locate openal library. org.lwjgl.lwjglexception: not locate openal library. @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:156) @ org.lwjgl.openal.al.create(al.java:102) @ org.lwjgl.openal.al.create(al.java:206) @ org.newdawn.slick.openal.soundstore$1.run(soundstore.java:295) @ java.security.accesscontroller.doprivileged(native method) @ org.newdawn.slick.openal.soundstore.init(soundstore.java:292) @ org.newdawn.slick.music.<init>(music.java:156) @ org.newdawn.slick.music.<init>(music.java:75) @ view.mainmenu.init(mainmenu.java:58) i didn't include rest of error states error happens in game code. the...
Read more

c++ - Delete matches in OpenCV (Keypoints and descriptors) -

-
i want check scene image against 2 train images. that, detect features , compute descriptors of both training images. before detecting, computing , matching scene image, delete matches of train1 , train2. because these matches won't facilitate matching of scene image train1 , train2. so, match train1 train2 , vector of matches trainidx , queryidx. how can delete these matches in keypoints-vector , descriptor matrix of train1 , train2? best regards, dwi i have done below: std::vector<cv::keypoint> keypoints[2]; cv::mat descriptor[2]; std::vector< cv::dmatch > matches; /* write code generate keypoints, descriptors , matches here... keypoint[0] -> train image 1 keypoints keypoint[1] -> train image 2 keypoints descriptor[0] -> train image 1 descriptors descriptor[1] -> train image 2 descriptors matches -> matched between train image 1 , 2 */ // logic keep unmatched keypoints , corresponding descriptor...
Read more

sorting - opencl Bitonic sort with 64 bits keys -

-
i used nvidia sdk bitonic sort , works great me. 32 bits (uint) need ulong keys. have typically 2^14 keys @ time , power of 2. searched on not find kernel designed ulong. i tried modified nvidia sdk bitonic sort using ulong keys not work. kernel not crash after de call clenqueuendrangekernel got error : cl_invalid_command_queue can tell me how modify bitonic sort or radixsort, or can sort ulong keys? i running nvidia quadro 4000 opencl 1.1 cuda 6.5.20 full_profile used original nvidia sdk bitonicsort.cl i used"ulong" keys , value input , ouput instead of "uint" thanks helping i made work-around suit need. used 30 bits of key , 18 high bits of value sorting. changed comparators (2 lines): '#define mask 0xffffc000 // suit need from this: if( (*keya > *keyb) == dir ) this: if(((*keya > *keyb)||((*keya == *keyb)&&((*vala & mask)> (*valb & mask)))) == dir ) it works fine. but, still, it's work-a...
Read more