This discussion is archived
2 Replies Latest reply: Nov 28, 2012 3:11 AM by 964439 RSS

Put private RSA key

964439 Newbie
Currently Being Moderated
hi all,
I'm able to put key public RSA key and I want to put key private RSA key on card,I mean from host to card,
is it possible that I put key private RSA or private RSA CRT key on card by security domains?

Edited by: 961436 on Nov 20, 2012 12:47 AM
  • 1. Re: Put private RSA key
    safarmer Expert
    Currently Being Moderated
    Can you clarify which security domain key you want to send to the card?

    - Shane
  • 2. Re: Put private RSA key
    964439 Newbie
    Currently Being Moderated
    Dear Shane,
    It is mentioned in Global Platform card spec 2.1.1 (section 9.8.2.3.3) that it's possible to use PUT KEY command to send RSA private key:
    When using this command to load or replace secret or private keys, the key values shall be encrypted and the
    reference of the encrypting key and algorithm to be used is known implicitly according to the current context.
    Public key values may be presented in clear text.
    and the Tag values for Private key components are mention in section 9.1.6:
    'A2' RSA Private Key - modulus N component
    'A3' RSA Private Key - private exponent d component
    'A4' RSA Private Key - Chinese Remainder P component
    'A5' RSA Private Key - Chinese Remainder Q component
    'A6' RSA Private Key - Chinese Remainder PQ component
    'A7' RSA Private Key - Chinese Remainder DP1 component
    'A8' RSA Private Key - Chinese Remainder DQ1 component
    I have used DEK key for encrypting private key in order to send it as an encrypted value to card:
    The data encryption key (DEK) for decrypting sensitive data, e.g. secret or private keys. This key is a
    double length DES key and is used as a static key.
    but unfortunately the card returns 6A80. I dont know what I'm doing wrong.
    It would be really appreciated if you help me in this issue...

Legend

  • Correct Answers - 10 points
  • Helpful Answers - 5 points