Move/3500 PCI PTS Security Policy
Ingenico document - Please check document validity before using
Key Name Purpose / Usage Algorithm
Size
(Bits)
Storage
factor
loaded to
of
available
DUKPT2009 – MAC Key
MAC calculation /
verification
TDES 112
Secure
unit
originally
42
DUKPT2017 – IPEK Initial DUKPT Keys
AES
192
Secure
unit
d under
1
DUKPT2017 – Pin Key Pin encryption
TDES
AES
AES
168
128
192
Secure
unit
Derived
originally
from IPEK
32
DUKPT2017 – Data Key Data encryption
TDES
AES
AES
168
128
192
Secure
unit
Derived
originally
from IPEK
32
DUKPT2017 – MAC Key
MAC calculation /
verification
TDES
AES
AES
168
128
192
Secure
unit
Derived
originally
from IPEK
32
DUKPT2017 – HMAC
Key
HMAC calculation /
verification
HMAC
192
Secure
unit
originally
32
EMV_PK_MAC Key
MAC Generation and
verification of EMV PK
TDES 128
Secure
unit
y
generate
31
EMV_PK_CA Key
certificate verification
RSA 2048
Secure
unit
from
1
EMV_Issuer_PK Key
certificate verification
(EMV_ICC_PK and
PIN_Cipher_PK ) and
EMV Data
authentication (SDA
RSA 2048
Secure
unit
Received
from
CARD
1
EMV_ICC_PK Key
authentication (DDA
and CDA cases) and
RSA 2048
Secure
unit
Received
from
CARD
1
PIN_Cipher_PK Key Offline PIN Encryption RSA 2048
Secure
unit
from
1
To Next Page
Loading...
Need help?
General
