ICS35.240.40A11备案号:JR中华人民共和国金融行业标准JR/T0025.7—2010代替JR/T0025.7—2005中国金融集成电路(IC)卡规范第7部分:借记/贷记应用安全规范Chinafinancialintegratedcircuitcardspecifications—Part7:Debit/creditapplicationsecurityspecification2010-04-30发布中国人民银行发布2010-04-30实施目次JR/T0025.7—2010前言................................................................................III引言.................................................................................IV1范围................................................................................12规范性引用文件......................................................................13术语和定义..........................................................................14符号和缩略语........................................................................55脱机数据认证........................................................................65.1密钥和证书........................................................................75.2静态数据认证(SDA)..............................................................85.3动态数据认证(DDA).............................................................136应用密文和发卡行认证...............................................................276.1应用密文产生.....................................................................276.2发卡行认证.......................................................................286.3密钥管理.........................................................................287安全报文...........................................................................297.1报文格式.........................................................................297.2报文完整性及其验证...............................................................297.3报文私密性.......................................................................297.4密钥管理.........................................................................298卡片安全...........................................................................308.1共存应用.........................................................................308.2密钥的独立性.....................................................................308.3卡片内部安全体系.................................................................308.4卡片中密钥的种类.................................................................339终端安全...........................................................................339.1终端数据安全性要求...............................................................339.2终端设备安全性要求...............................................................349.3终端密钥管理要求.................................................................3610密钥管理体系......................................................................3710.1认证中心公钥管理................................................................3710.2发卡行公钥管理..................................................................4110.3发卡行对称密钥管理..............................................................4211安全机制..........................................................................4311.1对称加密机制....................................................................4311.2非对称加密机制..................................................................4612认可的...
