Making Javacard ready for release
Making Javacard ready for release
I’m working on a custom applet for GP spec card (JCOP4 based card from NXP). I want to know what things should be taken care of before sending the cards to end-users. Things that I’m already aware of – 0. Load, install & initialise custom applet (duh!), 1. Remove not-required/pre-installed applet, 2. Change the default GP Keys, 3. Set life-cycle state of Javacard to “SECURED”
what other actions go into making a card as final for use?
What kind of applet is that? Is that co-exist with a payment applet – in this case you need to check the certification aspects. Have you done the code review in terms of functional and security?
Which JCOP config you are using? payment or ID?
Don’t forget to diversify the keys when you change the default keys
JCOP can be configured for T=0 or T=1 by you – so consider this as per your terminals
The applet basically supports storing of private data and provide mechanism to store/access/delete over secure channel.
Ok. Then I think its fine
No, it does not involve payment.
The JCOP config is for ID (no payment support)
Yes, keys & its components are unique for every card.
yes, that is already decided (i’m using T=1 only)