How to Remotely Inject Test Keys (Master Key or DUKPT Key) into a Terminal: Difference between revisions

From wizarPOS
No edit summary
No edit summary
Line 1: Line 1:
'''This is only for testing terminal.'''
== Purpose ==
<br/>
This procedure is intended for testing terminals only and outlines the steps for remotely injecting a test key.
Follows are the steps:
== Steps for Key Injection ==
 
# '''Provide Terminal Serial Number:'''
* Send us the '''serial number''' of the terminal.
#* Send the serial number of the terminal that requires key injection to our team.
* Send us the '''key file''', the key file will be configured to our demo server, the follows are the key file template:
# '''Send Key File or Key Information:'''
Or send us the key information, includes the key index, the key value, for DUKPT key, please send us the KSN and IPEK.  
#* '''Option 1: Key File Submission'''
* Please download the [http://ftp.wizarpos.com/advanceSDK/InitCertForRemotekeyInject_201903131833.apk initialize certificate APK]
#** Send us the key file to be configured on our demo server.
  Please notice this step will replace the owner of the terminal, when you ends the test phase, and want to apply your own owner certificate, all the test  
#* '''Option 2: Key Information Submission'''
  certificates should be clear, the clear process will need us to approve, so it will generate a token file in an inserted TF card, send us the token file,
#** Alternatively, provide key information including the key index and key value. For DUKPT keys, also include the Key Serial Number (KSN) and the Initial Pin Encryption Key (IPEK).
  after we signed, we will return you a .sig file, after you verify in the terminal, then the certificates will be removed. Then you can install your owner  
# '''Download and Install the Initialize Certificate APK:'''
  again.
#* Download the [http://ftp.wizarpos.com/advanceSDK/InitCertForRemotekeyInject_201903131833.apk initialize certificate APK] to the terminal.
* Get and install the [http://ftp.wizarpos.com/advanceSDK/injectkeydemo-release-New-releasekey.apk key loader client agent]. Run it to inject your keys.
#* '''Important Note:''' This step will change the terminal's ownership to a test owner. To revert to your original ownership after testing, additional steps are required (see below).
# '''Certificate Clearing Process (Post-Testing):'''
#* After concluding the testing phase, to reapply your owner certificate, all test certificates must be cleared.
#* The clearing process requires our approval. It involves generating a token file in an inserted TF (TransFlash) card.
#* Send us the generated token file. We will sign it and return a ''''.sig'''' file to you.
#* Once you verify this ''''.sig'''' file on the terminal, the test certificates will be removed, allowing you to reinstall your owner certificate.
# '''Key Loader Client Agent Installation:'''
#* Obtain and install the [http://ftp.wizarpos.com/advanceSDK/injectkeydemo-release-New-releasekey.apk key loader client agent] on your terminal.
#* Run the agent to inject the keys into the terminal.
'''Note:'''
* Ensure that all steps are followed meticulously, especially when handling key files and terminal ownership, to maintain security and functionality.
* The process of changing terminal ownership and clearing certificates is crucial for maintaining the integrity and security of the terminal post-testing.

Revision as of 18:37, 13 January 2024

Purpose

This procedure is intended for testing terminals only and outlines the steps for remotely injecting a test key.

Steps for Key Injection

  1. Provide Terminal Serial Number:
    • Send the serial number of the terminal that requires key injection to our team.
  2. Send Key File or Key Information:
    • Option 1: Key File Submission
      • Send us the key file to be configured on our demo server.
    • Option 2: Key Information Submission
      • Alternatively, provide key information including the key index and key value. For DUKPT keys, also include the Key Serial Number (KSN) and the Initial Pin Encryption Key (IPEK).
  3. Download and Install the Initialize Certificate APK:
    • Download the initialize certificate APK to the terminal.
    • Important Note: This step will change the terminal's ownership to a test owner. To revert to your original ownership after testing, additional steps are required (see below).
  4. Certificate Clearing Process (Post-Testing):
    • After concluding the testing phase, to reapply your owner certificate, all test certificates must be cleared.
    • The clearing process requires our approval. It involves generating a token file in an inserted TF (TransFlash) card.
    • Send us the generated token file. We will sign it and return a '.sig' file to you.
    • Once you verify this '.sig' file on the terminal, the test certificates will be removed, allowing you to reinstall your owner certificate.
  5. Key Loader Client Agent Installation:
    • Obtain and install the key loader client agent on your terminal.
    • Run the agent to inject the keys into the terminal.

Note:

  • Ensure that all steps are followed meticulously, especially when handling key files and terminal ownership, to maintain security and functionality.
  • The process of changing terminal ownership and clearing certificates is crucial for maintaining the integrity and security of the terminal post-testing.
Retrieved from "http://sdkwiki.wizarpos.com/index.php?title=How_to_Remotely_Inject_Test_Keys_(Master_Key_or_DUKPT_Key)_into_a_Terminal&oldid=4135"