EMV Public Cap Keys, Parameters, and Reports

Below are two configuration files the payment application (or support systems for the payment applications) needs to load into the EMV PIN pad terminal:

EMV Cap Keys: the public EMV keys for each AID supported by the TPP and the terminal.

EMV Parameters: the TPP settings the EMV kernel uses to determine the EMV processing rules.

EMV Key Load Process

Every EMV chip is issued with public and private keys that enable it to support the EMV Protocol. There are multiple keys for each of the schemes / brands for all of the applications they support (their AIDs). In order to support this, EMVCo distributes the keys in a single EMV Cap Key file.

The Elavon Gateway provides EMV Public Key files at the beginning of an integration project and updates as needed (the public keys change about once a year). The file contains the RID associated with the key, the key index, length,modulus, exponent, expiration date and check sum.

The keys should be loaded prior to testing and must be updated within a TPP-specified time period. Refer to your terminal manufacturers guide on instructions for loading EMV Keys.

Reports

There are several reports that may be required for certification. If they are not available through PIN pad commands, the payment application should be able to produce similar reports as the POS system. Below are the report requirements.

EMV Key Load Report

The POS must be able to produce an EMV key load report if requested by the EMV card associations or the Elavon Gateway operations team. Below is the format of the Key Load report.

  • EMV Key Load Report Header

    • Date of last successful key Load
    • Time of last successful Key load TID
    • Terminal Identification unique terminal identifier at the TPP
    • MID - Merchant Identification
      unique merchant identifier at the TPP
    • Title - EMV PUBLIC KEY LOAD REPORT

  • EMV Key Load Report
    Repeated Fields Per Key (this will be repeated 6 times for 6 different EMV public keys as per card associations).

    • RID - First 10 characters of the AID, Application Identifier (EMV Tag 9F06) Format is either ASCII or Hex, confirm with your TPP interface guide.
    • Key Index - Identifies the Certificate Authority’s Public Key in conjunction with the RID (EMV Tag 9F22). Format is either ASCII or Hex, confirm with your TPP interface guide.
    • Key Modulus - Value of the modulus part of the Certificate Authority Public Key. Format is either ASCII or Hex, confirm with your TPP interface guide.
    • Key Exponent - Value of the exponent part of the Certificate Authority Public Key. Format is either ASCII or Hex, confirm with your TPP interface guide.

  • EMV Key Load Report Footer
    Footer - END OF REPORT

EMV Parameter Load Process

EMV parameters tell the EMV Kernel what rules the TPP wants to support in the EMV processing. Every TPP has the ability to customize the values in the file. The Elavon Gateway has a single format for the EMV parameter file.

The Elavon Gateway provides EMV parameter files at the beginning of an integration project and as they change going forward. The file contains the TPP parameters that define the EMV Kernel choices for items like supported cardholder verification methods, floor limits, terminal action codes, etc. Some of these values control whether the ICC chip will be allowed to perform offline validation or what the action rules are to require a transaction be declined or go online.

note

The payment application may wish to support multiple versions / configurations of the EMV Parameters. If they do, each version may either require an additional EMV certification or additional scripts to the EMV certification. Refer to your TPP to identify what configurations they will allow the payment application to support and the impacts of supporting multiple.

EMV Parameter Report

  • EMV Parameter Report Header

    • Title - EMV PARAMETERS REPORT
    • TID - Terminal Identification – unique terminal identifier at the TPP
      Format ex. Term ID: 001
    • MID - Merchant Identification – unique merchant identifier at the TPP
      Format ex. Merchant ID: 999999999999
    • Time - Time of last successful Parameter load.
      Format ex. MM/DD/YYYY : HH:MM:SS

  • EMV Parameter Report
    Repeated Fields Per Brand

    • Sub-Title
      Payment Brand Parameters: Visa
    • Application ID 1-6
      Application ID 1: A0000000031010
      Application ID 2:
      Application ID 3:
      Application ID 4:
      Application ID 5:
      Application ID 6:
    • Floor Limit
      Chip Offline Floor Limit: 0.00
    • Fallback Ind.
      Fallback Indicator: Y/N
    • Terminal Action Codes
      Terminal Action Code Denial: 0010000000
      Terminal Action Code Online: D84004F800
      Terminal Action Code Default: D84000A800

note

This example is missing several parameters (ex.: random selection, terminal type, terminal capabilities, additional terminal capabilities, TDOL, PDOL). Refer to the PIN pad terminal specification to identify what command(s) will generate the necessary report.

EMV Statistic Report

Some TPPs may require an EMV Statistic Report. Check with your TPP integration guide to identify if this report is required for certification.

The basic premise for this report is having the ability to view, search and print EMV statistics since the last batch close. The results should refresh with a successful settlement at the host. This aids in troubleshooting the POS acceptance device.

EMV Statistic Report includes

  • Number of chip cards read failures
  • Number of PIN entry errors
  • Number of offline funds declined
  • Number of technical Fallbacks

EMV Offline Declined Transaction Report

Check your TPP integration guide to identify if this report is required for certification.

The terminal application parameters and the data from the last offline declined transaction must be available on request. This may include DE 55 (a block containing multiple EMV tags in TLV format), the Terminal and Issuer Action Codes, the truncated PAN as printed on the receipt, and Application PAN Sequence Number, if present.

The elements printed include:

  • Element - Example or Description
    • Masked Pan
      PAN: XXXXXXXX4564
    • Pan Sequence #
      PAN SEQ: 01
    • Issuer Action Codes >br>
    • IAC Default: F040008800
      IAC Denial: - - - 0010000000
      IAC Online: F040009800
    • Terminal Action Codes
      TAC Default: D84000A800 - TAC Denial: 0010000000
      TAC Online: D84004F800
    • DE055
      DE055:PS01EM1749F020600000000 10009F26085FD51646457D5 20482025C009F360204179C 01009F100706010A03A00000 9F3303E0B8C89F1A0201249 A030709109F3501229505000 00080005F2A0201249F21031 342589F3704BE721EC0

*An alternative option to printing the DE055 block is to list each tag on separate lines. Refer to your TPP specification for details.