JCESecurityModule (jpos 2.0.10 API)

java.lang.Object
- org.jpos.security.BaseSMAdapter
- - org.jpos.security.jceadapter.JCESecurityModule

All Implemented Interfaces:

Configurable, SMAdapter, LogSource
```
public class JCESecurityModule
extends BaseSMAdapter
```
JCESecurityModule is an implementation of a security module in software.
It doesn't require any hardware device to work.
JCESecurityModule also implements the SMAdapter, so you can view it: either as a self contained security module adapter that doesn't need a security module or a security module that plugs directly to jpos, so doesn't need a separate adapter.
It relies on Java(tm) Cryptography Extension (JCE), hence its name.
JCESecurityModule relies on the JCEHandler class to do the low level JCE work.
WARNING: This version of JCESecurityModule is meant for testing purposes and NOT for life operation, since the Local Master Keys are stored in CLEAR on the system's disk. Comming versions of JCESecurity Module will rely on java.security.KeyStore for a better protection of the Local Master Keys.

Field Summary
- Fields inherited from class org.jpos.security.BaseSMAdapter
  cfg, logger, realm
- Fields inherited from interface org.jpos.security.SMAdapter
  FORMAT00, FORMAT01, FORMAT02, FORMAT03, FORMAT04, FORMAT05, FORMAT34, FORMAT35, FORMAT41, FORMAT42, LENGTH_DES, LENGTH_DES3_2KEY, LENGTH_DES3_3KEY, TYPE_BDK, TYPE_CVK, TYPE_DEK, TYPE_HMAC, TYPE_MK_AC, TYPE_MK_CVC3, TYPE_MK_DAC, TYPE_MK_DN, TYPE_MK_SMC, TYPE_MK_SMI, TYPE_PVK, TYPE_RSA_PK, TYPE_RSA_SK, TYPE_TAK, TYPE_TMK, TYPE_TPK, TYPE_ZAK, TYPE_ZEK, TYPE_ZMK, TYPE_ZPK

Constructor Summary

Constructors
Constructor and Description
`JCESecurityModule()` Creates an uninitialized JCE Security Module, you need to setConfiguration to initialize it
`JCESecurityModule(Configuration cfg, Logger logger, java.lang.String realm)`
`JCESecurityModule(java.lang.String lmkFile)`
`JCESecurityModule(java.lang.String lmkFile, java.lang.String jceProviderClassName)`

Method Summary

All Methods Instance Methods Concrete Methods
Modifier and Type	Method and Description
`protected java.lang.String`	`calculateCAVVImpl(java.lang.String accountNo, SecureDESKey cvk, java.lang.String upn, java.lang.String authrc, java.lang.String sfarc)` Your SMAdapter should override this method if it has this functionality
`protected java.lang.String`	`calculateCVC3(SecureDESKey imkcvc3, java.lang.String accountNo, java.lang.String acctSeqNo, byte[] atc, byte[] upn, byte[] data, MKDMethod mkdm)`
`protected java.lang.String`	`calculateCVVImpl(java.lang.String accountNo, SecureDESKey cvkA, SecureDESKey cvkB, java.util.Date expDate, java.lang.String serviceCode)` Your SMAdapter should override this method if it has this functionality
`protected java.lang.String`	`calculatedCVV(java.lang.String accountNo, SecureDESKey imkac, java.util.Date expDate, java.lang.String serviceCode, byte[] atc, MKDMethod mkdm)`
`protected java.lang.String`	`calculatePVVImpl(EncryptedPIN pinUnderLmk, SecureDESKey pvkA, SecureDESKey pvkB, int pvkIdx, java.util.List<java.lang.String> excludes)` Your SMAdapter should override this method if it has this functionality
`protected java.lang.String`	`calculatePVVImpl(EncryptedPIN pinUnderKd1, SecureDESKey kd1, SecureDESKey pvkA, SecureDESKey pvkB, int pvkIdx, java.util.List<java.lang.String> excludes)` Your SMAdapter should override this method if it has this functionality
`protected void`	`checkCAVVArgs(java.lang.String upn, java.lang.String authrc, java.lang.String sfarc)`
`byte[]`	`decryptDataImpl(CipherMode cipherMode, SecureDESKey kd, byte[] data, byte[] iv)` Your SMAdapter should override this method if it has this functionality
`java.lang.String`	`decryptPINImpl(EncryptedPIN pinUnderLmk)` Your SMAdapter should override this method if it has this functionality
`byte[]`	`encryptDataImpl(CipherMode cipherMode, SecureDESKey kd, byte[] data, byte[] iv)` Your SMAdapter should override this method if it has this functionality
`EncryptedPIN`	`encryptPINImpl(java.lang.String pin, java.lang.String accountNumber)` Your SMAdapter should override this method if it has this functionality
`byte[]`	`exportKeyImpl(SecureDESKey key, SecureDESKey kek)` Your SMAdapter should override this method if it has this functionality
`EncryptedPIN`	`exportPIN(EncryptedPIN pinUnderLmk, KeySerialNumber ksn, SecureDESKey bdk, boolean tdes, byte destinationPINBlockFormat)` Exports PIN to DUKPT Encryption.
`EncryptedPIN`	`exportPINImpl(EncryptedPIN pinUnderLmk, SecureDESKey kd2, byte destinationPINBlockFormat)` Your SMAdapter should override this method if it has this functionality
`byte[]`	`generateARPCImpl(MKDMethod mkdm, SKDMethod skdm, SecureDESKey imkac, java.lang.String accountNo, java.lang.String accntSeqNo, byte[] arqc, byte[] atc, byte[] upn, ARPCMethod arpcMethod, byte[] arc, byte[] propAuthData)` Your SMAdapter should override this method if it has this functionality
`protected byte[]`	`generateCBC_MACImpl(byte[] data, SecureDESKey kd)` Generates CBC-MAC (Cipher Block Chaining Message Authentication Code) for some data.
`protected byte[]`	`generateEDE_MACImpl(byte[] data, SecureDESKey kd)` Generates EDE-MAC (Encrypt Decrypt Encrypt Message Authentication Code) for some data.
`protected byte[]`	`generateKeyCheckValueImpl(SecureDESKey secureDESKey)` Generates key check value.
`SecureDESKey`	`generateKeyImpl(short keyLength, java.lang.String keyType)` Your SMAdapter should override this method if it has this functionality
`EncryptedPIN`	`generatePINImpl(java.lang.String accountNumber, int pinLen, java.util.List<java.lang.String> excludes)` Your SMAdapter should override this method if it has this functionality
`protected byte[]`	`generateSM_MACImpl(MKDMethod mkdm, SKDMethod skdm, SecureDESKey imksmi, java.lang.String accountNo, java.lang.String accntSeqNo, byte[] atc, byte[] arqc, byte[] data)` Your SMAdapter should override this method if it has this functionality
`SecureDESKey`	`importBDK(java.lang.String clearComponent1HexString, java.lang.String clearComponent2HexString, java.lang.String clearComponent3HexString)`
`SecureDESKey`	`importKeyImpl(short keyLength, java.lang.String keyType, byte[] encryptedKey, SecureDESKey kek, boolean checkParity)` Your SMAdapter should override this method if it has this functionality
`protected EncryptedPIN`	`importPINImpl(EncryptedPIN pinUnderDuk, KeySerialNumber ksn, SecureDESKey bdk, boolean tdes)` Your SMAdapter should override this method if it has this functionality
`EncryptedPIN`	`importPINImpl(EncryptedPIN pinUnderKd1, SecureDESKey kd1)` Your SMAdapter should override this method if it has this functionality
`void`	`setConfiguration(Configuration cfg)` Configures a JCESecurityModule
`SecureDESKey`	`translateKeySchemeImpl(SecureDESKey key, KeyScheme keyScheme)` Your SMAdapter should override this method if it has this functionality
`protected org.javatuples.Pair<EncryptedPIN,byte[]>`	`translatePINGenerateSM_MACImpl(MKDMethod mkdm, SKDMethod skdm, PaddingMethod padm, SecureDESKey imksmi, java.lang.String accountNo, java.lang.String accntSeqNo, byte[] atc, byte[] arqc, byte[] data, EncryptedPIN currentPIN, EncryptedPIN newPIN, SecureDESKey kd1, SecureDESKey imksmc, SecureDESKey imkac, byte destinationPINBlockFormat)` Your SMAdapter should override this method if it has this functionality
`protected EncryptedPIN`	`translatePINImpl(EncryptedPIN pinUnderDuk, KeySerialNumber ksn, SecureDESKey bdk, SecureDESKey kd2, byte destinationPINBlockFormat, boolean tdes)` Your SMAdapter should override this method if it has this functionality
`EncryptedPIN`	`translatePINImpl(EncryptedPIN pinUnderKd1, SecureDESKey kd1, SecureDESKey kd2, byte destinationPINBlockFormat)` Your SMAdapter should override this method if it has this functionality
`byte[]`	`verifyARQCGenerateARPCImpl(MKDMethod mkdm, SKDMethod skdm, SecureDESKey imkac, java.lang.String accountNo, java.lang.String accntSeqNo, byte[] arqc, byte[] atc, byte[] upn, byte[] transData, ARPCMethod arpcMethod, byte[] arc, byte[] propAuthData)` Your SMAdapter should override this method if it has this functionality
`protected boolean`	`verifyARQCImpl(MKDMethod mkdm, SKDMethod skdm, SecureDESKey imkac, java.lang.String accountNo, java.lang.String accntSeqNo, byte[] arqc, byte[] atc, byte[] upn, byte[] transData)` Your SMAdapter should override this method if it has this functionality
`protected boolean`	`verifyCAVVImpl(java.lang.String accountNo, SecureDESKey cvk, java.lang.String cavv, java.lang.String upn, java.lang.String authrc, java.lang.String sfarc)` Your SMAdapter should override this method if it has this functionality
`protected boolean`	`verifyCVC3Impl(SecureDESKey imkcvc3, java.lang.String accountNo, java.lang.String acctSeqNo, byte[] atc, byte[] upn, byte[] data, MKDMethod mkdm, java.lang.String cvc3)` Your SMAdapter should override this method if it has this functionality
`protected boolean`	`verifyCVVImpl(java.lang.String accountNo, SecureDESKey cvkA, SecureDESKey cvkB, java.lang.String cvv, java.util.Date expDate, java.lang.String serviceCode)` Your SMAdapter should override this method if it has this functionality
`protected boolean`	`verifydCVVImpl(java.lang.String accountNo, SecureDESKey imkac, java.lang.String dcvv, java.util.Date expDate, java.lang.String serviceCode, byte[] atc, MKDMethod mkdm)` Your SMAdapter should override this method if it has this functionality
`boolean`	`verifyPVVImpl(EncryptedPIN pinUnderKd1, SecureDESKey kd1, SecureDESKey pvkA, SecureDESKey pvkB, int pvki, java.lang.String pvv)` Your SMAdapter should override this method if it has this functionality

Methods inherited from class org.jpos.security.BaseSMAdapter
calculateCAVV, calculateCVV, calculateIBMPINOffset, calculateIBMPINOffset, calculateIBMPINOffset, calculateIBMPINOffset, calculateIBMPINOffsetImpl, calculateIBMPINOffsetImpl, calculatePVV, calculatePVV, calculatePVV, calculatePVV, calculateSignature, calculateSignatureImpl, decryptData, decryptPIN, deriveIBMPIN, deriveIBMPINImpl, encryptData, encryptPIN, encryptPIN, eraseOldLMK, eraseOldLMKImpl, exportKey, exportPIN, generateARPC, generateCBC_MAC, generateEDE_MAC, generateKey, generateKeyCheckValue, generateKeyPair, generateKeyPairImpl, generatePIN, generatePIN, generateSM_MAC, getLogger, getName, getRealm, getSMAdapter, importKey, importPIN, importPIN, importPIN, importPINImpl, printPIN, printPINImpl, setLogger, setName, translateKeyFromOldLMK, translateKeyFromOldLMKImpl, translateKeyScheme, translatePIN, translatePIN, translatePIN, translatePINGenerateSM_MAC, translatePINImpl, verifyARQC, verifyARQCGenerateARPC, verifyCAVV, verifyCVC3, verifyCVV, verifydCVV, verifyIBMPINOffset, verifyIBMPINOffsetImpl, verifyPVV

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

JCESecurityModule
```
public JCESecurityModule()
```
Creates an uninitialized JCE Security Module, you need to setConfiguration to initialize it

JCESecurityModule
```
public JCESecurityModule(java.lang.String lmkFile)
                  throws SMException
```
Parameters:

lmkFile - Local Master Keys filename of the JCE Security Module

Throws:

SMException

JCESecurityModule

public JCESecurityModule(java.lang.String lmkFile,
                         java.lang.String jceProviderClassName)
                  throws SMException

Throws:: SMException

JCESecurityModule

public JCESecurityModule(Configuration cfg,
                         Logger logger,
                         java.lang.String realm)
                  throws ConfigurationException

Throws:: ConfigurationException

Method Detail

setConfiguration
```
public void setConfiguration(Configuration cfg)
                      throws ConfigurationException
```
Configures a JCESecurityModule

Specified by:

setConfiguration in interface Configurable

Overrides:

setConfiguration in class BaseSMAdapter

Parameters:

cfg - The following properties are read:
lmk: Local Master Keys file (The only required parameter)
jce: JCE Provider Class Name, if not provided, it defaults to: com.sun.crypto.provider.SunJCE
rebuildlmk: (true/false), rebuilds the Local Master Keys file with new keys (WARNING: old keys will be erased)
cbc-mac: Cipher Block Chaining MAC algorithm name for given JCE Provider.
Default is ISO9797ALG3MACWITHISO7816-4PADDING from BouncyCastle provider (known as Retail-MAC)
that is suitable for most of interfaces with double length MAC key
ANSI X9.19 aka ISO/IEC 9797-1 MAC algorithm 3 padding method 2 - ISO7816
ede-mac: Encrypt Decrypt Encrypt MAC algorithm name for given JCE Provider.
Default is DESEDEMAC from BouncyCastle provider
that is suitable for BASE24 with double length MAC key
ANSI X9.19

Throws:

ConfigurationException

generateKeyImpl
```
public SecureDESKey generateKeyImpl(short keyLength,
                                    java.lang.String keyType)
                             throws SMException
```
Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:

generateKeyImpl in class BaseSMAdapter

Returns:

generated key

Throws:

SMException

importKeyImpl

public SecureDESKey importKeyImpl(short keyLength,
                                  java.lang.String keyType,
                                  byte[] encryptedKey,
                                  SecureDESKey kek,
                                  boolean checkParity)
                           throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: importKeyImpl in class BaseSMAdapter
Returns:: imported key
Throws:: SMException

exportKeyImpl
```
public byte[] exportKeyImpl(SecureDESKey key,
                            SecureDESKey kek)
                     throws SMException
```
Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:

exportKeyImpl in class BaseSMAdapter

Returns:

exported key

Throws:

SMException

encryptPINImpl
```
public EncryptedPIN encryptPINImpl(java.lang.String pin,
                                   java.lang.String accountNumber)
                            throws SMException
```
Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:

encryptPINImpl in class BaseSMAdapter

Returns:

encrypted PIN under LMK

Throws:

SMException

decryptPINImpl
```
public java.lang.String decryptPINImpl(EncryptedPIN pinUnderLmk)
                                throws SMException
```
Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:

decryptPINImpl in class BaseSMAdapter

Returns:

clear pin as entered by card holder

Throws:

SMException

importPINImpl
```
public EncryptedPIN importPINImpl(EncryptedPIN pinUnderKd1,
                                  SecureDESKey kd1)
                           throws SMException
```
Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:

importPINImpl in class BaseSMAdapter

Returns:

imported pin

Throws:

SMException

exportPINImpl

public EncryptedPIN exportPINImpl(EncryptedPIN pinUnderLmk,
                                  SecureDESKey kd2,
                                  byte destinationPINBlockFormat)
                           throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: exportPINImpl in class BaseSMAdapter
Returns:: exported pin
Throws:: SMException

generatePINImpl

public EncryptedPIN generatePINImpl(java.lang.String accountNumber,
                                    int pinLen,
                                    java.util.List<java.lang.String> excludes)
                             throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: generatePINImpl in class BaseSMAdapter
Returns:: generated PIN under LMK
Throws:: SMException

calculateCVVImpl

protected java.lang.String calculateCVVImpl(java.lang.String accountNo,
                                            SecureDESKey cvkA,
                                            SecureDESKey cvkB,
                                            java.util.Date expDate,
                                            java.lang.String serviceCode)
                                     throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: calculateCVVImpl in class BaseSMAdapter
Returns:: Card Verification Code/Value
Throws:: SMException

checkCAVVArgs

protected void checkCAVVArgs(java.lang.String upn,
                             java.lang.String authrc,
                             java.lang.String sfarc)
                      throws SMException

Throws:: SMException

calculateCAVVImpl

protected java.lang.String calculateCAVVImpl(java.lang.String accountNo,
                                             SecureDESKey cvk,
                                             java.lang.String upn,
                                             java.lang.String authrc,
                                             java.lang.String sfarc)
                                      throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: calculateCAVVImpl in class BaseSMAdapter
Returns:: Cardholder Authentication Verification Value
Throws:: SMException

verifyCVVImpl

protected boolean verifyCVVImpl(java.lang.String accountNo,
                                SecureDESKey cvkA,
                                SecureDESKey cvkB,
                                java.lang.String cvv,
                                java.util.Date expDate,
                                java.lang.String serviceCode)
                         throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifyCVVImpl in class BaseSMAdapter
Returns:: true if CVV/CVC is falid or false if not
Throws:: SMException

verifyCAVVImpl

protected boolean verifyCAVVImpl(java.lang.String accountNo,
                                 SecureDESKey cvk,
                                 java.lang.String cavv,
                                 java.lang.String upn,
                                 java.lang.String authrc,
                                 java.lang.String sfarc)
                          throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifyCAVVImpl in class BaseSMAdapter
Returns:: Cardholder Authentication Verification Value
Throws:: SMException

calculatedCVV

protected java.lang.String calculatedCVV(java.lang.String accountNo,
                                         SecureDESKey imkac,
                                         java.util.Date expDate,
                                         java.lang.String serviceCode,
                                         byte[] atc,
                                         MKDMethod mkdm)
                                  throws SMException

Throws:: SMException

verifydCVVImpl

protected boolean verifydCVVImpl(java.lang.String accountNo,
                                 SecureDESKey imkac,
                                 java.lang.String dcvv,
                                 java.util.Date expDate,
                                 java.lang.String serviceCode,
                                 byte[] atc,
                                 MKDMethod mkdm)
                          throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifydCVVImpl in class BaseSMAdapter
Returns:: true if dcvv is valid false if not
Throws:: SMException

calculateCVC3

protected java.lang.String calculateCVC3(SecureDESKey imkcvc3,
                                         java.lang.String accountNo,
                                         java.lang.String acctSeqNo,
                                         byte[] atc,
                                         byte[] upn,
                                         byte[] data,
                                         MKDMethod mkdm)
                                  throws SMException

Throws:: SMException

verifyCVC3Impl

protected boolean verifyCVC3Impl(SecureDESKey imkcvc3,
                                 java.lang.String accountNo,
                                 java.lang.String acctSeqNo,
                                 byte[] atc,
                                 byte[] upn,
                                 byte[] data,
                                 MKDMethod mkdm,
                                 java.lang.String cvc3)
                          throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifyCVC3Impl in class BaseSMAdapter
Returns:: true if cvc3 is valid false if not
Throws:: SMException

calculatePVVImpl

protected java.lang.String calculatePVVImpl(EncryptedPIN pinUnderLmk,
                                            SecureDESKey pvkA,
                                            SecureDESKey pvkB,
                                            int pvkIdx,
                                            java.util.List<java.lang.String> excludes)
                                     throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: calculatePVVImpl in class BaseSMAdapter
Returns:: PVV (VISA PIN Verification Value)
Throws:: SMException

calculatePVVImpl

protected java.lang.String calculatePVVImpl(EncryptedPIN pinUnderKd1,
                                            SecureDESKey kd1,
                                            SecureDESKey pvkA,
                                            SecureDESKey pvkB,
                                            int pvkIdx,
                                            java.util.List<java.lang.String> excludes)
                                     throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: calculatePVVImpl in class BaseSMAdapter
Returns:: PVV (VISA PIN Verification Value)
Throws:: SMException

verifyPVVImpl

public boolean verifyPVVImpl(EncryptedPIN pinUnderKd1,
                             SecureDESKey kd1,
                             SecureDESKey pvkA,
                             SecureDESKey pvkB,
                             int pvki,
                             java.lang.String pvv)
                      throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifyPVVImpl in class BaseSMAdapter
Returns:: true if pin is valid false if not
Throws:: SMException

translatePINImpl

public EncryptedPIN translatePINImpl(EncryptedPIN pinUnderKd1,
                                     SecureDESKey kd1,
                                     SecureDESKey kd2,
                                     byte destinationPINBlockFormat)
                              throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: translatePINImpl in class BaseSMAdapter
Returns:: translated pin
Throws:: SMException

verifyARQCImpl

protected boolean verifyARQCImpl(MKDMethod mkdm,
                                 SKDMethod skdm,
                                 SecureDESKey imkac,
                                 java.lang.String accountNo,
                                 java.lang.String accntSeqNo,
                                 byte[] arqc,
                                 byte[] atc,
                                 byte[] upn,
                                 byte[] transData)
                          throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifyARQCImpl in class BaseSMAdapter
Returns:: true if ARQC/TC/AAC is falid or false if not
Throws:: SMException

generateARPCImpl

public byte[] generateARPCImpl(MKDMethod mkdm,
                               SKDMethod skdm,
                               SecureDESKey imkac,
                               java.lang.String accountNo,
                               java.lang.String accntSeqNo,
                               byte[] arqc,
                               byte[] atc,
                               byte[] upn,
                               ARPCMethod arpcMethod,
                               byte[] arc,
                               byte[] propAuthData)
                        throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: generateARPCImpl in class BaseSMAdapter
Returns:: calculated ARPC
Throws:: SMException

verifyARQCGenerateARPCImpl

public byte[] verifyARQCGenerateARPCImpl(MKDMethod mkdm,
                                         SKDMethod skdm,
                                         SecureDESKey imkac,
                                         java.lang.String accountNo,
                                         java.lang.String accntSeqNo,
                                         byte[] arqc,
                                         byte[] atc,
                                         byte[] upn,
                                         byte[] transData,
                                         ARPCMethod arpcMethod,
                                         byte[] arc,
                                         byte[] propAuthData)
                                  throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: verifyARQCGenerateARPCImpl in class BaseSMAdapter
Returns:: calculated ARPC
Throws:: SMException

generateSM_MACImpl

protected byte[] generateSM_MACImpl(MKDMethod mkdm,
                                    SKDMethod skdm,
                                    SecureDESKey imksmi,
                                    java.lang.String accountNo,
                                    java.lang.String accntSeqNo,
                                    byte[] atc,
                                    byte[] arqc,
                                    byte[] data)
                             throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: generateSM_MACImpl in class BaseSMAdapter
Returns:: generated 8 bytes MAC
Throws:: SMException

translatePINGenerateSM_MACImpl

protected org.javatuples.Pair<EncryptedPIN,byte[]> translatePINGenerateSM_MACImpl(MKDMethod mkdm,
                                                                                  SKDMethod skdm,
                                                                                  PaddingMethod padm,
                                                                                  SecureDESKey imksmi,
                                                                                  java.lang.String accountNo,
                                                                                  java.lang.String accntSeqNo,
                                                                                  byte[] atc,
                                                                                  byte[] arqc,
                                                                                  byte[] data,
                                                                                  EncryptedPIN currentPIN,
                                                                                  EncryptedPIN newPIN,
                                                                                  SecureDESKey kd1,
                                                                                  SecureDESKey imksmc,
                                                                                  SecureDESKey imkac,
                                                                                  byte destinationPINBlockFormat)
                                                                           throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: translatePINGenerateSM_MACImpl in class BaseSMAdapter
Returns:: Pair of values, encrypted PIN and 8 bytes MAC
Throws:: SMException

encryptDataImpl

public byte[] encryptDataImpl(CipherMode cipherMode,
                              SecureDESKey kd,
                              byte[] data,
                              byte[] iv)
                       throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: encryptDataImpl in class BaseSMAdapter
Returns:: encrypted data
Throws:: SMException

decryptDataImpl

public byte[] decryptDataImpl(CipherMode cipherMode,
                              SecureDESKey kd,
                              byte[] data,
                              byte[] iv)
                       throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: decryptDataImpl in class BaseSMAdapter
Returns:: decrypted data
Throws:: SMException

generateCBC_MACImpl
```
protected byte[] generateCBC_MACImpl(byte[] data,
                                     SecureDESKey kd)
                              throws SMException
```
Generates CBC-MAC (Cipher Block Chaining Message Authentication Code) for some data.

Overrides:

generateCBC_MACImpl in class BaseSMAdapter

Parameters:

data - the data to be MACed

kd - the key used for MACing

Returns:

generated CBC-MAC bytes

Throws:

SMException

generateEDE_MACImpl
```
protected byte[] generateEDE_MACImpl(byte[] data,
                                     SecureDESKey kd)
                              throws SMException
```
Generates EDE-MAC (Encrypt Decrypt Encrypt Message Authentication Code) for some data.

Overrides:

generateEDE_MACImpl in class BaseSMAdapter

Parameters:

data - the data to be MACed

kd - the key used for MACing

Returns:

generated EDE-MAC bytes

Throws:

SMException

generateKeyCheckValueImpl
```
protected byte[] generateKeyCheckValueImpl(SecureDESKey secureDESKey)
                                    throws SMException
```
Generates key check value.

Overrides:

generateKeyCheckValueImpl in class BaseSMAdapter

Parameters:

secureDESKey - SecureDESKey with untrusted or fake Key Check Value

Returns:

generated Key Check Value

Throws:

SMException

translateKeySchemeImpl
```
public SecureDESKey translateKeySchemeImpl(SecureDESKey key,
                                           KeyScheme keyScheme)
                                    throws SMException
```
Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:

translateKeySchemeImpl in class BaseSMAdapter

Returns:

translated key with destKeyScheme scheme

Throws:

SMException

importBDK

public SecureDESKey importBDK(java.lang.String clearComponent1HexString,
                              java.lang.String clearComponent2HexString,
                              java.lang.String clearComponent3HexString)
                       throws SMException

Throws:: SMException

translatePINImpl

protected EncryptedPIN translatePINImpl(EncryptedPIN pinUnderDuk,
                                        KeySerialNumber ksn,
                                        SecureDESKey bdk,
                                        SecureDESKey kd2,
                                        byte destinationPINBlockFormat,
                                        boolean tdes)
                                 throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: translatePINImpl in class BaseSMAdapter
Returns:: translated pin
Throws:: SMException

importPINImpl

protected EncryptedPIN importPINImpl(EncryptedPIN pinUnderDuk,
                                     KeySerialNumber ksn,
                                     SecureDESKey bdk,
                                     boolean tdes)
                              throws SMException

Description copied from class: BaseSMAdapter

Your SMAdapter should override this method if it has this functionality

Overrides:: importPINImpl in class BaseSMAdapter
Returns:: imported pin
Throws:: SMException

exportPIN

public EncryptedPIN exportPIN(EncryptedPIN pinUnderLmk,
                              KeySerialNumber ksn,
                              SecureDESKey bdk,
                              boolean tdes,
                              byte destinationPINBlockFormat)
                       throws SMException

Exports PIN to DUKPT Encryption.

Parameters:: pinUnderLmk -; ksn -; bdk -; tdes -; destinationPINBlockFormat -
Returns:: The encrypted pin
Throws:: SMException

Class JCESecurityModule

Field Summary

Fields inherited from class org.jpos.security.BaseSMAdapter

Fields inherited from interface org.jpos.security.SMAdapter

Constructor Summary

Method Summary

Methods inherited from class org.jpos.security.BaseSMAdapter

Methods inherited from class java.lang.Object

Constructor Detail

JCESecurityModule

JCESecurityModule

JCESecurityModule

JCESecurityModule

Method Detail

setConfiguration

generateKeyImpl

importKeyImpl

exportKeyImpl

encryptPINImpl

decryptPINImpl

importPINImpl

exportPINImpl

generatePINImpl

calculateCVVImpl

checkCAVVArgs

calculateCAVVImpl

verifyCVVImpl

verifyCAVVImpl

calculatedCVV

verifydCVVImpl

calculateCVC3

verifyCVC3Impl

calculatePVVImpl

calculatePVVImpl

verifyPVVImpl

translatePINImpl

verifyARQCImpl

generateARPCImpl

verifyARQCGenerateARPCImpl

generateSM_MACImpl

translatePINGenerateSM_MACImpl

encryptDataImpl

decryptDataImpl

generateCBC_MACImpl

generateEDE_MACImpl

generateKeyCheckValueImpl

translateKeySchemeImpl

importBDK

translatePINImpl

importPINImpl

exportPIN