Menu
▾
▴
Re: [Globalplatform-users] 2048 bits RSA keys
|
From: Michael S. <mst...@co...> - 2013-05-08 19:27:19
|
At 04:09 AM 5/8/2013, ni...@Te... wrote: >Thank you both for your suggestions and help. >I have tried to move initialization of the RSA keys to a separate applet function, >but it fails with the same error: Please show me your "install", and "new instance" methods. You not only need to move the initialization to a separate function, but to defer calling that function until after the applet is installed. You can't call it as part of the install() method - otherwise you get the timeout. Mike > >The link <http://sourceforge.net/p/globalplatform/wiki/GPShell/>http://sourceforge.net/p/globalplatform/wiki/GPShell/ contains several java cards which have been tested. Do you know if any of them has been tested with an initialization of a 2048 bits RSA key? > >Regards >Hans Erik > >From: Michael StJohns [mailto:mst...@co...] >Sent: 8. mai 2013 03:12 >To: Karsten Ohme; glo...@li... >Subject: Re: [Globalplatform-users] 2048 bits RSA keys > >I think I've seen this one before. Try moving the creation of the RSA objects out of the install() method and the instantiation method. Instead, try this in a method that gets called after the applet is installed and as part of an initialization call. > >I don't know exactly what you're doing here, but if you're trying to generate a key pair as part of the install and make selectable, you're probably timing out and that's being read as a comms failure. > >Mike > > > >At 04:54 PM 5/7/2013, Karsten Ohme wrote: > >Hi, > >in the phase install_for_install_and_make_selectable() it should happen that an instance of the applet is created. If some constraints like the required memory or instances of used algorithms are not satisfied, this error can result. > >Regards, >Karsten >Am 07.05.2013 18:06, schrieb <mailto:ni...@Te...>ni...@Te...: > >Hi, > >I have been asked to create a java card applet which will handle some encryption and decryption. >The java card is the Gemalto TOP DL v2 card, which should support 2048 bits RSA. >The compilation and the cap converting is ok. > >keyPair = new KeyPair(KeyPair.ALG_RSA, KeyBuilder.LENGTH_RSA_1024); // Ok > >But 1984 and 2048 or any other size greater than 1024 fails. This is the load and install script: > >mode_201 >gemXpressoPro >enable_timer >enable_trace >establish_context >card_connect -readerNumber 2 >select -AID A000000018434D00 >open_sc -security 1 -keyind 0 -keyver 0 -key 47454d5850524553534f53414d504c45 -keyDerivation visa2 >delete -AID d1d2d3d4d5d6d7d8d90102 >delete -AID d1d2d3d4d5d6d7d8d901 > >install -file abc.cap -sdAID A000000018434D00 -nvCodeLimit 4096 -instParam 31323334 >card_disconnect >release_context > >512 or 1024 works fine, but it fails with: >install_for_install_and_make_selectable() returns 0x8010002F (A communications error with the smart card has been detected. Retry the operation. >On any higher bit size. > >I have also tried to load it first and the use the ?install_for_install? command for the installation. It fails with the same error. > >The gpshell version is from 1.4.4. Any help or suggestions would be greatly appreciated. > >Regards, >Hans Erik > > > > >------------------------------------------------------------------------------ >Learn Graph Databases - Download FREE O'Reilly Book >"Graph Databases" is the definitive new guide to graph >databases and >their applications. This 200-page book is written by three acclaimed >leaders in the field. The early access version is available now. >Download your free book today! ><http://p.sf.net/sfu/neotech_d2d_may>http://p.sf.net/sfu/neotech_d2d_may > > >_______________________________________________ >Globalplatform-users mailing list ><mailto:Glo...@li...>Glo...@li... >https://lists.sourceforge.net/lists/listinfo/globalplatform-users > >------------------------------------------------------------------------------ >Learn Graph Databases - Download FREE O'Reilly Book >"Graph Databases" is the definitive new guide to graph databases and >their applications. This 200-page book is written by three acclaimed >leaders in the field. The early access version is available now. >Download your free book today! <http://p.sf.net/sfu/neotech_d2d_may>http://p.sf.net/sfu/neotech_d2d_may >_______________________________________________ >Globalplatform-users mailing list ><mailto:Glo...@li...>Glo...@li... >https://lists.sourceforge.net/lists/listinfo/globalplatform-users > > |
