#
# PKCS15 r/w profile for Oberthur cards
#
cardinfo {
label = "IAS";
manufacturer = "IAS Gemalto";
max-pin-length = 4;
min-pin-length = 4;
pin-encoding = ascii-numeric;
pin-pad-char = 0xFF;
}
pkcs15 {
# Put certificates into the CDF itself?
direct-certificates = no;
# Put the DF length into the ODF file?
encode-df-length = no;
# Have a lastUpdate field in the EF(TokenInfo)?
do-last-update = yes;
}
option ecc {
macros {
odf-size = 96;
aodf-size = 300;
cdf-size = 3000;
prkdf-size = 6700;
pukdf-size = 2300;
dodf-size = 3000;
skdf-size = 3000;
}
}
# Define reasonable limits for PINs and PUK
# Note that we do not set a file path or reference
# here; that is done dynamically.
PIN user-pin {
attempts = 5;
max-length = 4;
min-length = 4;
flags = 0x10; # initialized
reference = 1;
}
PIN so-pin {
auth-id = FF;
attempts = 5;
max-length = 4;
min-length = 4;
flags = 0xB2;
reference = 2
}
# Additional filesystem info.
# This is added to the file system info specified in the
# main profile.
filesystem {
DF MF {
ACL = *=CHV4;
path = 3F00;
type = DF;
# This is the DIR file
EF DIR {
type = EF;
file-id = 2F00;
size = 128;
acl = *=NONE;
}
# Here comes the application DF
DF PKCS15-AppDF {
type = DF;
aid = E8:28:BD:08:0F:D2:50:00:00:04:01:01;
acl = *=NONE;
size = 5000;
EF PKCS15-ODF {
file-id = 5031;
size = 96;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
EF PKCS15-TokenInfo {
file-id = 5032;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
}
DF Adele-AppDF {
type = DF;
aid = D2:50:00:00:04:41:64:E8:6C:65:01:01;
acl = *=NONE;
size = 5000;
EF PKCS15-AODF {
file-id = 7001;
size = 300;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
EF PKCS15-PrKDF {
file-id = 7002;
size = 6700;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
EF PKCS15-PuKDF {
file-id = 7004;
size = 2300;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
EF PKCS15-SKDF {
file-id = 7003;
size = 3000;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
EF PKCS15-CDF {
file-id = 7005;
size = 3000;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
EF PKCS15-DODF {
file-id = 7006;
size = 3000;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
template key-domain {
# Private RSA keys
BSO private-key {
ACL = *=NEVER;
ACL = SIGN=SCBx17, AUTHENTICATE=SCBx17, DECIPHER=SCBx17, GENERATE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
# Private DES keys
BSO private-des {
size = 24; # 192 bits
# READ acl used instead of DECIPHER/ENCIPHER/CHECKSUM
}
# Private data
EF private-data {
file-id = F000;
size = 36;
ACL = *=NONE;
ACL = WRITE=SCBx17, UPDATE=SCBx17, READ=SCBx17;
}
# Certificate
EF certificate {
# for the profiles 'ADELE Admin. 1 & 2'
# file-id: auth: A001; sign: A002; encr: A003;
#
file-id = B000;
ACL = *=NEVER;
ACL = UPDATE=SCBx17, READ=NONE, DELETE=NONE;
}
#Public Key
BSO public-key {
ACL = *=NEVER;
ACL = AUTHENTICATE=SCBx17, GENERATE=SCBx17, UPDATE=SCBx17, READ=NONE;
}
# Public DES keys
BSO public-des {
size = 24; # 192 bits
ACL = *=NONE;
}
# Public data
EF public-data {
file-id = D000;
ACL = *=NONE;
ACL = WRITE=SCBx17, UPDATE=SCBx17, DELETE=NONE;
}
}
}
}
}
| Name | Type | Size | Permission | Actions |
|---|---|---|---|---|
| asepcos.profile | File | 2.54 KB | 0644 |
|
| authentic.profile | File | 2.86 KB | 0644 |
|
| cardos.profile | File | 2.77 KB | 0644 |
|
| cyberflex.profile | File | 2.85 KB | 0644 |
|
| entersafe.profile | File | 3.8 KB | 0644 |
|
| epass2003.profile | File | 4.18 KB | 0644 |
|
| flex.profile | File | 3.09 KB | 0644 |
|
| gids.profile | File | 230 B | 0644 |
|
| gpk.profile | File | 2.85 KB | 0644 |
|
| ias_adele_admin1.profile | File | 4.92 KB | 0644 |
|
| ias_adele_admin2.profile | File | 4.9 KB | 0644 |
|
| ias_adele_common.profile | File | 4.84 KB | 0644 |
|
| iasecc.profile | File | 2.84 KB | 0644 |
|
| iasecc_admin_eid.profile | File | 4.91 KB | 0644 |
|
| iasecc_generic_oberthur.profile | File | 4.56 KB | 0644 |
|
| iasecc_generic_pki.profile | File | 4.9 KB | 0644 |
|
| incrypto34.profile | File | 2.65 KB | 0644 |
|
| isoApplet.profile | File | 2.95 KB | 0644 |
|
| jcop.profile | File | 2.16 KB | 0644 |
|
| miocos.profile | File | 1.16 KB | 0644 |
|
| muscle.profile | File | 3.38 KB | 0644 |
|
| myeid.profile | File | 6.59 KB | 0644 |
|
| oberthur.profile | File | 4.36 KB | 0644 |
|
| openpgp.profile | File | 1.85 KB | 0644 |
|
| pkcs15.profile | File | 3.88 KB | 0644 |
|
| rutoken.profile | File | 5.38 KB | 0644 |
|
| rutoken_ecp.profile | File | 5.9 KB | 0644 |
|
| rutoken_lite.profile | File | 5.41 KB | 0644 |
|
| sc-hsm.profile | File | 400 B | 0644 |
|
| setcos.profile | File | 3.7 KB | 0644 |
|
| starcos.profile | File | 2.69 KB | 0644 |
|
| westcos.profile | File | 3.56 KB | 0644 |
|