Unsupported card from Buypass - Norwegian eID provider - altinn

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Unsupported card from Buypass - Norwegian eID provider - altinn

Christian Skarby
Dear opensc developers,

I have a smartcard from Buypass AS, a Norwegian commercial company (owned
50% by the government) that provides electronical identites.

I run Ubuntu 14.04 Trusty amd64, and use it successfully with
https://altinn.no , which seem to access the card via java. However I am
not able to use the card with opensc. My goal is to use the card to access
a VPN with openconnect.

I send you the ATR for the card as suggested on
https://www.opensc-project.org/opensc/wiki/FrequentlyAskedQuestions

$ opensc-tool --atr
Using reader with a card: Gemalto GemPC Express 00 00
3b:9f:96:40:0a:80:31:e0:6b:04:21:05:02:61:55:55:55:55:55:55

What is the best way to proceed further? I am a software developer myself
and can hopefully help out testing and debugging (and perhaps some coding,
however I have no prior experience with opensc.)


$ opensc-tool -n
Using reader with a card: Gemalto GemPC Express 00 00
Unsupported card

$ opensc-tool -i -a -v
opensc 0.13.0 [gcc  4.8.2]
Enabled features: zlib readline openssl pcsc(libpcsclite.so.1)
Using reader with a card: Gemalto GemPC Express 00 00
Connecting to card in reader Gemalto GemPC Express 00 00...
Using card driver Default driver for unknown cards.
Card ATR:
3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 ;..@..1.k.!..aUU
55 55 55 55                                     UUUU

The card is listed in
http://ludovic.rousseau.free.fr/softwares/pcsc-tools/smartcard_list.txt


$ pcsc_scan
PC/SC device scanner
V 1.4.22 (c) 2001-2011, Ludovic Rousseau <[hidden email]>
Compiled with PC/SC lite version: 1.8.10
Using reader plug'n play mechanism
Scanning present readers...
0: Gemalto GemPC Express 00 00

Sun Jul  6 12:07:05 2014
Reader 0: Gemalto GemPC Express 00 00
  Card state: Card inserted, Shared Mode,
  ATR: 3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55

ATR: 3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
+ TS = 3B --> Direct Convention
+ T0 = 9F, Y(1): 1001, K: 15 (historical bytes)
  TA(1) = 96 --> Fi=512, Di=32, 16 cycles/ETU
    250000 bits/s at 4 MHz, fMax for Fi = 5 MHz => 312500 bits/s
  TD(1) = 40 --> Y(i+1) = 0100, Protocol T = 0
-----
  TC(2) = 0A --> Work waiting time: 960 x 10 x (Fi/F)
+ Historical bytes: 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
  Category indicator byte: 80 (compact TLV data object)
    Tag: 3, len: 1 (card service data byte)
      Card service data byte: E0
        - Application selection: by full DF name
        - Application selection: by partial DF name
        - BER-TLV data objects available in EF.DIR
        - EF.DIR and EF.ATR access services: by GET RECORD(s) command
        - Card with MF
    Tag: 6, len: B (pre-issuing data)
      Data: 04 21 05 02 61 55 55 55 55 55 55

Possibly identified card (using /usr/share/pcsc/smartcard_list.txt):
3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
        altinn - Buypass
        Electronic ID card for login to the altinn.no service

Is there any other information of value I can provide?

Looking forward to hearing from you,

--
Best regards,
Christian Skarby



------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel
Reply | Threaded
Open this post in threaded view
|

Re: Unsupported card from Buypass - Norwegian eID provider - altinn

Martin Paljak-4
First and foremost, try to ask the vendor for card specification or
snoop traffic to see what it does. It could well be that you can
re-use most of the code from some other driver.

If the vendor does not give specifications, ask your government,
several times if needed. Meanwhile you can snoop the traffic (pcscd -a
is already enough, if the card is usable through Java on Linux) and
figure out the missing parts to make the card tick and publish that
publicly, of course.

Some conceptual information about the card would also help.

Good luck,
Martin
--
Martin
+372 515 6495


On Sun, Jul 6, 2014 at 2:12 PM, Christian Skarby <[hidden email]> wrote:

> Dear opensc developers,
>
> I have a smartcard from Buypass AS, a Norwegian commercial company (owned
> 50% by the government) that provides electronical identites.
>
> I run Ubuntu 14.04 Trusty amd64, and use it successfully with
> https://altinn.no , which seem to access the card via java. However I am
> not able to use the card with opensc. My goal is to use the card to access
> a VPN with openconnect.
>
> I send you the ATR for the card as suggested on
> https://www.opensc-project.org/opensc/wiki/FrequentlyAskedQuestions
>
> $ opensc-tool --atr
> Using reader with a card: Gemalto GemPC Express 00 00
> 3b:9f:96:40:0a:80:31:e0:6b:04:21:05:02:61:55:55:55:55:55:55
>
> What is the best way to proceed further? I am a software developer myself
> and can hopefully help out testing and debugging (and perhaps some coding,
> however I have no prior experience with opensc.)
>
>
> $ opensc-tool -n
> Using reader with a card: Gemalto GemPC Express 00 00
> Unsupported card
>
> $ opensc-tool -i -a -v
> opensc 0.13.0 [gcc  4.8.2]
> Enabled features: zlib readline openssl pcsc(libpcsclite.so.1)
> Using reader with a card: Gemalto GemPC Express 00 00
> Connecting to card in reader Gemalto GemPC Express 00 00...
> Using card driver Default driver for unknown cards.
> Card ATR:
> 3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 ;..@..1.k.!..aUU
> 55 55 55 55                                     UUUU
>
> The card is listed in
> http://ludovic.rousseau.free.fr/softwares/pcsc-tools/smartcard_list.txt
>
>
> $ pcsc_scan
> PC/SC device scanner
> V 1.4.22 (c) 2001-2011, Ludovic Rousseau <[hidden email]>
> Compiled with PC/SC lite version: 1.8.10
> Using reader plug'n play mechanism
> Scanning present readers...
> 0: Gemalto GemPC Express 00 00
>
> Sun Jul  6 12:07:05 2014
> Reader 0: Gemalto GemPC Express 00 00
>   Card state: Card inserted, Shared Mode,
>   ATR: 3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
>
> ATR: 3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
> + TS = 3B --> Direct Convention
> + T0 = 9F, Y(1): 1001, K: 15 (historical bytes)
>   TA(1) = 96 --> Fi=512, Di=32, 16 cycles/ETU
>     250000 bits/s at 4 MHz, fMax for Fi = 5 MHz => 312500 bits/s
>   TD(1) = 40 --> Y(i+1) = 0100, Protocol T = 0
> -----
>   TC(2) = 0A --> Work waiting time: 960 x 10 x (Fi/F)
> + Historical bytes: 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
>   Category indicator byte: 80 (compact TLV data object)
>     Tag: 3, len: 1 (card service data byte)
>       Card service data byte: E0
>         - Application selection: by full DF name
>         - Application selection: by partial DF name
>         - BER-TLV data objects available in EF.DIR
>         - EF.DIR and EF.ATR access services: by GET RECORD(s) command
>         - Card with MF
>     Tag: 6, len: B (pre-issuing data)
>       Data: 04 21 05 02 61 55 55 55 55 55 55
>
> Possibly identified card (using /usr/share/pcsc/smartcard_list.txt):
> 3B 9F 96 40 0A 80 31 E0 6B 04 21 05 02 61 55 55 55 55 55 55
>         altinn - Buypass
>         Electronic ID card for login to the altinn.no service
>
> Is there any other information of value I can provide?
>
> Looking forward to hearing from you,
>
> --
> Best regards,
> Christian Skarby
>
>
>
> ------------------------------------------------------------------------------
> Open source business process management suite built on Java and Eclipse
> Turn processes into business applications with Bonita BPM Community Edition
> Quickly connect people, data, and systems into organized workflows
> Winner of BOSSIE, CODIE, OW2 and Gartner awards
> http://p.sf.net/sfu/Bonitasoft
> _______________________________________________
> Opensc-devel mailing list
> [hidden email]
> https://lists.sourceforge.net/lists/listinfo/opensc-devel

------------------------------------------------------------------------------
Open source business process management suite built on Java and Eclipse
Turn processes into business applications with Bonita BPM Community Edition
Quickly connect people, data, and systems into organized workflows
Winner of BOSSIE, CODIE, OW2 and Gartner awards
http://p.sf.net/sfu/Bonitasoft
_______________________________________________
Opensc-devel mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/opensc-devel