Financial transaction cards--Messages between the integrated circuit card and the card accepting device--Part 1:Concepts and structures
Some standard content:
GB/T 16791.11997
This standard is equivalent to the international standard IS09992-1:1990 "Financial transaction cards-Messages between integrated circuit cards and card acceptance devices-Part 1: Concepts and structure". GB/T16791, under the general title Financial transaction cards-Messages between integrated circuit cards and card acceptance devices, consists of the following parts: Part 1: Concepts and structure
Part 2: Functions, messages (commands and responses), data elements and structure Appendix A of this standard is an informative appendix. This standard is slightly different from ISO9992-1 in the referenced standards because the 1S07812:1987 "Identification Cards - Issuer Identifier Numbering System and Registration Procedure" available in ISO9992-1 has been divided into two parts after revision in 1993, namely 1ISO/IEC7812-1:1993 Identification Cards - Issuer Identification - Part 1: Numbering System and ISO/IEC7812-2:19938 Identification Card Issuer Identification - Part 2, Application and Registration Procedures, and both have been used as national standards in the same way. The corresponding national standard numbers are GB/T15694.1-1995 and GB/T15694.2-1996. Therefore, when citing this standard, it is marked as the new standard. This standard is proposed by the People's Bank of China.
This standard is managed by the National Financial Standardization Technical Committee. The drafting units of this standard are: People's Bank of China, Industrial and Commercial Bank of China, China Institute of Standardization and Information Classification and Coding. The main drafters of this standard are: Liu Zhong, Meng Guiqing, Wang Jia, Zhu Yunsheng, Lu Xiaobing, Fang Qing, Lu Shuchun, Nie Shu. CB/T 16791.1—1997
ISOForeword
ISO (International Organization for Standardization) is a world-wide alliance of national groups (ISO member groups) for standardization. It promotes international standardization through the activities of ISO technical committees. Each member group interested in the work of an established technical committee has the right to participate in the work of the committee. Official or non-official international organizations in contact with ISO also participate in the work of the committee. ISD and IEC (International Electrotechnical Commission) work closely in all areas of electrotechnical standards. Draft international standards prepared by technical committees will be circulated to member groups for voting. Publication as an international standard requires at least 75% of the voting member groups participating in the voting. The international standard ISO9992-1 was developed by the Technical Committee for Banking and Related Financial Services\TSO/TC68. ISO9992 is under the general title "Financial transaction cards - Messages between an integrated circuit card and a receiving device" and consists of the following parts: Part 1: Concepts and structure, Part 2: Functions, messages (commands and responses), data elements and structure. Appendix A of this standard is for reference only. Introduction
National Standard of the People's Republic of China
Financial transaction cards Messages between theintegrated circuit card and the card accepting device-Part 1: Concepts and structures
The concepts defined in this part of GB/T 16791 are based on the following considerations: GB/T 16791.1--1997
idt IS0 9992-1: 199D
This part of GB/T 16791 is compatible with existing standards referenced in Chapter 2. Its purpose is to provide flexibility for the use of future integrated circuit card (ICC) technology.
This part of GB/T 16791 supports single or multiple applications of ICC. When an ICC has multiple applications, multiple applications of the same service type (e.g., electronic checkbook) may appear. At any time during the life cycle of an ICC, the security principles specified in GB/T16790 shall be followed. Application items may be added to the card with the consent of the card issuer. At any time during the life cycle of the card, an application may be logically deleted from the ICC in accordance with the processing method agreed upon by the business participants. 1 Scope || tt || This part of GB/T16791 is applicable to the exchange of integrated circuit cards issued by financial institutions in an exchange environment. It specifies:
- Functions required for financial exchanges:
Message structures and types to implement these functions between integrated circuit cards (ICCs) and card acceptance devices (CADs):
Data element identifiers and definitions that may be used or will be used when exchanging between ICCs and CADs. This standard establishes the concept of ICC and CAD exchange messages. Therefore, the logical structure of data in ICCs must be described. This part of GB/T16791 defines a variety of messages to support authentication. Security requirements (e.g. card identification CAD authentication, cardholder identity verification). It does not specify or recommend any method or process. Security technology is implemented in accordance with the provisions of GB/T16790. This part of GB/T16791 is independent of the performance (connectable or not, manned or unattended) and status (online or offline) of CAD.
This part of GB/T16791 does not define the method of implementing the application. This part of GB/T16791 provides CAD with logical reference to data in ICC based on the logical structure of data. Guidelines for the methods used. It does not define the physical structure of the data in the ICC. 2 Referenced standards
The provisions contained in the following standards constitute the provisions of this standard through reference in this standard. When this standard was published, the versions shown were valid. All standards will be revised, and parties using this standard should explore the possibility of using the latest versions of the following standards. GB/T14504-93 Bank Card (envISO4909:1987) Approved by the State Technical Supervision Bureau on May 26, 1997 and implemented on March 1, 1998
CB/T 16791.1—1997
GB/T14916-94 Physical characteristics of identification cards (idtISO7810:1985)GB/T15694.1—1995 Identification-Identification of card issuers Part 1: Numbering system (cltIS0/IEC7812-1:1993)GB/T15694.2—1996 Identification card issuer identification Part 2; Application and registration procedures (idt IS0/IEC 7812-2:1993)
GH/T16649.3-1996 Identification cards with contacts integrated circuit cards Part 3: Electronic signals and transmission protocols (idtISO 7816-3:1989)
Financial transaction cards Security structure of financial transaction systems using integrated circuit cardsGB/I 16790.1—1997
(id1ISO10202-1,1991)
IS7813:1987 Identification cards—Financial transaction cards ISO 7816-413 Identification cards
3 Definitions
This standard adopts the following definitions.
Integrated circuit card with contacts—Study)
3.1 Application Data File (ADF) Application Data File A file that supports one or more services.
3.2 Card Accepting Device (CAD) Card Accepting Device A device used to interface with an integrated circuit card. 3.3 Command command
- Part 4: Inter-industry commands (ISO/IEC1/17/4) is a request or notification message that initiates an action and triggers a response. 3.4 Common Data File (CDF) CommonDataFile A mandatory file that contains common data elements stored in the ICC to identify the card, issuer and cardholder. 3.5 File file
An organized collection of data elements and (or) sample codes in the ICC. 3.6 Function function
A process completed by one or more commands and their related actions, used to implement: all or part of a transaction. 3.7 Integrated Circuit Card (ICC) Intergrated Circuit Card An ID-1 type card embedded with one or more integrated circuits (see GB/T14916). 3.8 Message message
An ordered sequence of characters transmitted from CAD to ICC or from ICC to CAD. 3.9 Account Number (PAN) Primary Account Number A number that is used to identify the card issuer and the card holder. It consists of the card issuer identifier, the personal account identifier and an additional verification code.
Note: This number is equivalent to the identification number specified in GB/T15694-1 and GB/T15694.2. See also GB/T14504. 3.10 Personal Identification Number (PIN) Personal Identification Number A code or password that a user has to verify his or her identity. 3.11 Response response A message sent back to the initiator after processing the received command. 4 Concepts and Structures
4.11 Logical Structure of Data in ICC
1) To be published,
GB/T 16791.1--1997
The logical data structure enables ICC to support independent services with minimal data duplication. These services can be provided by different application providers.
The Common Data File (CDF) contains data that may be used by all services supported by the ICC (e.g., PAN, card expiration date). There can only be one CDF in a TCC. The card issuer is responsible for the existence, content, and use of the CDF. Data stored in the ICC to serve commercial transactions is contained in the CDF and/or the Application Data File (ADF). In an ICC, there can be one or more ADFs to accommodate different financial or non-financial services. An ICC can contain a CDF without an ADF.
4.2 Interaction between ICC and CAD
The ICC and CAD interact through messages. These messages (i.e., commands and their responses) are used to complete some or all of the functions of a transaction. Appendix A uses diagrams to illustrate the various relationships described below.4. 2. 1 Relationship between transactions and functions A transaction (e.g., withdrawing cash, shopping, changing PIN) consists of one or more functions (e.g., cardholder identity verification, CAD identification, transaction record). bZxz.net
Part 2 of G1/T16791 specifies the functions used for international financial exchanges, which can be mandatory or recommended for use in international financial exchanges. Additional functions can be added to support activities defined by the agreement between the two parties. 4.2.2 Relationship between functions and messages
The functions described in 4, 3.1 can be used It is completed by one or more pairs of messages: these messages are commands (e.g. read, write) and their responses (e.g. confirmation, data). After processing a command and making a decision or action, the receiver should return a response to the sender. Part 2 of GB/T16791 specifies the commands and responses used to complete each function. ISO7816-4. describes the general commands. Part 2 of GB/T16791 describes the special commands for financial ICC. 4.3 Data access attributes
4.3.1 Read access attributes
Three categories Read access is defined as follows:
Public read access (PR), data can be read by CAD without any restrictions. Conditional read access (CR): Data can be read only after certain judgment conditions are met. Forbidden read access (NR): Data can never be read by CAD. 4.3.2 Write access attributes
A type of write access can be defined as follows;
Free write access (FW): Data can be added, modified or deleted without any restrictions. Conditional write access (CW): Data can be read only after certain judgment conditions are met. Can be added, modified or deleted. Once the data is written, it cannot be changed or modified. 4.4 Compatibility with current technology
The primary account number (PAN) should always be stored in the CDF (see GB/T15694, ISO7813 and GB/T14504). If the ICC also contains an embossed PAN and (or> a magnetic strip encoded according to ISO7813, the international exchange PAV in the CDF should be consistent with the embossed and (or) PAN encoded on the magnetic strip. If
GB/T 16791.1-1997
Appendix A
(Suggestive Appendix)
Easy, relationship between functions and messages
Effective bit or power off
and/or
and/or
and/or
A1 Representation method of ICC relationship
GB/T 16791.1--1997
Figure AI shows the relationship between the components of a session, which is started by inserting the ICC into the CAD and terminated by removing the ICC from the CAD.
Figure A1 does not mean that the message flow is unidirectional (from CAD to ICC), nor does it mean that future technologies will be limited by these boundaries (for example, the entire transaction may be completed with only one command and response). Figure A1 shows three levels of relationships:
a) A function consisting of a single command that causes a single action or decision and is followed by a response can be expressed as: F=[CI+A1/D1+R1]
b) A function consisting of multiple groups of commands, actions or decisions and responses can be expressed as: F[(C1+A1+R1)+(C2+D2+R2)-...*+(C5+D5+R5)]c) A function consisting of a single command and response with multiple actions and decisions can be expressed as: F=[C+A1+D2+A3)+R1]
Where F represents function;
C1,Cz, etc. represent commands;
A1,A2 etc. represent actions
D1,D2 etc. represent decisions
R1.R2 etc. represent responses.Data can be read by CAD without any restrictions. Conditional read access (CR): Data can be read only after specific judgment conditions are met. No read access (NR): Data can never be read by CAD. 4.3.2 Write access attributes
A type of write access can be defined as follows;
Free write access (FW): Data can be added, modified or deleted without any restrictions. Conditional write access (CW): Data can be added, modified or deleted only after specific judgment conditions are met. During a write access (()W), once the data is written, it cannot be changed or modified. 4.4 Compatibility with current technologies
The primary account number (PAN) should always be stored in the CDF (see GB/T15694, ISO7813 and GB/T14504). If the ICC also contains an embossed PAN and (or> a magnetic stripe encoded according to ISO7813, the international exchange PAV in the CDF shall be consistent with the embossed and (or) encoded PAN on the magnetic stripe.
GB/T 16791.1-1997
Appendix A
(Suggestive Appendix)
Easy, the relationship between functions and messages
Effective bit or power off
and/or
and/or
and/or
A1 Method of expressing the relationship between ICC
GB/T 16791.1--1997
Figure A1 shows the relationships among the components of a session that is initiated by inserting the ICC into the CAD and terminated by removing the ICC from the CAD.
Figure A1 does not imply that message flow is unidirectional (from the CAD to the ICC) or that future technologies will be limited to these boundaries (e.g., the entire transaction may be completed with only one command and response). Figure A1 identifies three levels of relationships:
a) caused by a single action or decision A function consisting of a single command followed by a response can be expressed as: F=[CI+A1/D1+R1]
b) A function consisting of multiple groups of commands, actions or decisions and responses can be expressed as, F[(C1+A1+R1)+(C2+D2+R2)-...*+(C5+D5+R5)]c) A function consisting of a single command with multiple actions and decisions and a response can be expressed as: F=[C+A1+D2+A3)+R1]
Where, F represents function;
C1, Cz, etc. represent commands;
A1, A2, etc. represent actions
D1, D2, etc. represent decisions
R1.R2, etc. represent responses.Data can be read by CAD without any restrictions. Conditional read access (CR): Data can be read only after specific judgment conditions are met. No read access (NR): Data can never be read by CAD. 4.3.2 Write access attributes
A type of write access can be defined as follows;
Free write access (FW): Data can be added, modified or deleted without any restrictions. Conditional write access (CW): Data can be added, modified or deleted only after specific judgment conditions are met. During a write access (()W), once the data is written, it cannot be changed or modified. 4.4 Compatibility with current technologies
The primary account number (PAN) should always be stored in the CDF (see GB/T15694, ISO7813 and GB/T14504). If the ICC also contains an embossed PAN and (or> a magnetic stripe encoded according to ISO7813, the international exchange PAV in the CDF shall be consistent with the embossed and (or) encoded PAN on the magnetic stripe.
GB/T 16791.1-1997
Appendix A
(Suggestive Appendix)
Easy, the relationship between functions and messages
Effective bit or power off
and/or
and/or
and/or
A1 Method of expressing the relationship between ICC
GB/T 16791.1--1997
Figure A1 shows the relationships among the components of a session that is initiated by inserting the ICC into the CAD and terminated by removing the ICC from the CAD.
Figure A1 does not imply that message flow is unidirectional (from the CAD to the ICC) or that future technologies will be limited to these boundaries (e.g., the entire transaction may be completed with only one command and response). Figure A1 identifies three levels of relationships:
a) caused by a single action or decision A function consisting of a single command followed by a response can be expressed as: F=[CI+A1/D1+R1]
b) A function consisting of multiple groups of commands, actions or decisions and responses can be expressed as, F[(C1+A1+R1)+(C2+D2+R2)-...*+(C5+D5+R5)]c) A function consisting of a single command with multiple actions and decisions and a response can be expressed as: F=[C+A1+D2+A3)+R1]
Where, F represents function;
C1, Cz, etc. represent commands;
A1, A2, etc. represent actions
D1, D2, etc. represent decisions
R1.R2, etc. represent responses.
Tip: This standard content only shows part of the intercepted content of the complete standard. If you need the complete standard, please go to the top to download the complete standard document for free.