如何在java卡技术中验证钱包应用程序的PIN码？

Question

我无法获取我的经典java卡应用程序的PIN号码。我必须编写APDU命令来验证PIN码。

请帮助我如何获得PIN码

**Wallet.java** 

package wallet; 

import javacard.framework.*; 

public class Wallet extends Applet { 

    /** 
    * Installs this applet. 
    * 
    * @param bArray the array containing installation parameters 
    * @param bOffset 
    * the starting offset in bArray @param bLength 
    * the length in bytes of the parameter data in bArray 
    */ 


    // code of CLA byte in the command APDU header 
    final static byte Wallet_CLA =(byte)0xB0; 

    // codes of INS byte in the command APDU header 
    final static byte VERIFY = (byte)0x20; 
    final static byte CREDIT = (byte)0x30; 
    final static byte DEBIT = (byte)0x40; 
    final static byte GET_BALANCE = (byte)0x50; 

    // maximum balance $32,76 
    final static short MAX_BALANCE = 0x7FFF; 
    // maximum transaction amount 
    final static byte MAX_TRANSACTION_AMOUNT = 127; 

    // maximum number of incorrect tries before the PIN is blocked 
    final static byte PIN_TRY_LIMIT =(byte)0x03; 

    // maximum size PIN 
    final static byte MAX_PIN_SIZE =(byte)0x08; 

    // signal that the PIN verification failed 
    final static short SW_VERIFICATION_FAILED = 0x6300; 

    // signal the the PIN validation is required 
    // for a credit or a debit transaction 
    final static short SW_PIN_VERIFICATION_REQUIRED = 0x6301; 

    // signal invalid transaction amount 
    // amount > MAX_TRANSACTION_AMOUNT or amount < 0 
    final static short SW_INVALID_TRANSACTION_AMOUNT = 0x6a83; 

    // signal that the balance exceed the maximum 
    final static short SW_EXCEED_MAXIMUM_BALANCE = 0x6a84; 

    // signal the the balance becomes negative 
    final static short SW_NEGATIVE_BALANCE = 0x6a85; 

    /* instance variables declaration */ 
    OwnerPIN pin; 
    short balance; 

    protected Wallet (byte[] bArray,short bOffset,byte bLength){ 

     // It is good programming practice to allocate all the memory that an applet needs during 
     // its lifetime inside the constructor 
     pin = new OwnerPIN(PIN_TRY_LIMIT, MAX_PIN_SIZE); 

     // The installation parameters contain the PIN initialization value 
     //  pin.update(bArray, bOffset, bLength); 
     // Above command causes error. 
     register(); 

    } // end of the constructor 

    public static void install(byte[] bArray, short bOffset, byte bLength){ 
     // create a Wallet applet instance 
     new Wallet(bArray, bOffset, bLength); 
    } // end of install method 

    public boolean select() { 
     // The applet declines to be selected if the pin is blocked. 
     if(pin.getTriesRemaining() == 0) 
      return false; 

     return true; 
    }// end of select method 

    public void deselect() { 
     // reset the pin value 
     pin.reset(); 
    } 

    /** 
    * Processes an incoming APDU. 
    * 
    * @see APDU 
    * @param apdu 
    * the incoming APDU 
    */ 

    public void process(APDU apdu) { 
     byte buffer[] = apdu.getBuffer(); 
     // check SELECT APDU command 
     if ((buffer[ISO7816.OFFSET_CLA] == 0) && (buffer[ISO7816.OFFSET_INS] == (byte)(0xA4))) 
      return; 
     // verify the reset of commands have the correct CLA byte, which specifies the command structure 
     if (buffer[ISO7816.OFFSET_CLA] != Wallet_CLA) 
      ISOException.throwIt(ISO7816.SW_CLA_NOT_SUPPORTED); 

     switch (buffer[ISO7816.OFFSET_INS]) { 
      case GET_BALANCE: getBalance(apdu); 
           return; 
      case DEBIT:   debit(apdu); 
           return; 
      case CREDIT:  credit(apdu); 
           return; 
      case VERIFY:  verify(apdu); 
           return; 
      default:  ISOException.throwIt(ISO7816.SW_INS_NOT_SUPPORTED); 
     } 
    } // end of process method 


    private void verify(APDU apdu) { 
     byte[] buffer = apdu.getBuffer(); 
     // retrieve the PIN data for validation. 
     byte byteRead = (byte)(apdu.setIncomingAndReceive()); 

     // check pin the PIN data is read into the APDU buffer at the offset ISO7816.OFFSET_CDATA 
     // the PIN data length = byteRead 
     if (pin.check(buffer, ISO7816.OFFSET_CDATA, byteRead) == false) 
      ISOException.throwIt(SW_VERIFICATION_FAILED); 

    } 

} 


**wallet.scr** 

powerup; 
// Select Wallet //aid/B239C74B30/39 
0x00 0xA4 0x04 0x00 0x06 0xB2 0x39 0xC7 0x4B 0x30 0x3A 0x7F; // check 0x3A 0x7f 

//Send the APDU here 
// verify 
0xB0 0x20 0x00 0x00 0x06 0xB2 0x39 0xC7 0x4B 0x30 0x3A 0x7F; 

// credit 
0xB0 0x30 0x00 0x00 0x01 0x09 0x7F; 
//0x80 0xCA 0x00 0x00 <length> <data> 0x7F; 

// debit 
0xB0 0x40 0x00 0x00 0x01 0x05 0x7F; 

// getBalance 
0xB0 0x50 0x00 0x00 0x01 0x7F 0x02; 
powerdown; 

当我试图更新引脚，它给了响应为69 99 应该是什么APDU命令来安装的小程序。

Answer 1

看来你想要在上面的代码是有Applet的AID作为引脚值。在这种情况下，你可以检查AID是否小于MAX_PIN_SIZE。 此外，改变你的构造如下

protected Wallet (byte[] bArray,short bOffset,byte bLength){ 

    // It is good programming practice to allocate all the memory that an applet needs during 
    // its lifetime inside the constructor 
    pin = new OwnerPIN(PIN_TRY_LIMIT, MAX_PIN_SIZE); 

    // The installation parameters contain the PIN initialization value 
    pin.update(bArray, bOffset + 1, bArray[bOffset]); 
    // Above command causes error. 
    register(); 

} // end of the constructor 

这将确保只有AID值将被传递到pin.update（），但你仍然需要确保你的AID长度小于MAX_PIN_SIZE，否则PINException .ILLEGAL_VALUE将被抛出。