Title: Phoenix : Triple DES (Double Length Keys) Roll out Plan
Version: 1.0
This document and the information herein are the property of TPS Pakistan Pvt Ltd. and all
unauthorized use and reproduction is prohibited.
COPYRIGHT
Revision History
Date
Revised by
Revision
Section
5th March
Nabeel
Ahsan
1, 2, 3, 4
Description
Page 3 of 16
2008 TPS Pakistan Pvt Ltd
Table of Contents
1. General Description...............................................................................3
1.1 Introduction...........................................................................................3
2. Pre- Requisite Security Procedures / Processes.................................3
2.1 HSM Migration.....................................................................................3
2.2 Key Management...........................................................................3
2.3 Keys Generation and Loading of Initial Keys at ATM.....4
3. Configuring PHOENIX for Triple DES.................................................. 6
4. Test Cases................................................................................................11
Page 4 of 16
2008 TPS Pakistan Pvt Ltd
1. General Description
With the increase in computer processing power an
attack on single length DES keys is becoming
feasible, causing a migration to double or triple
length DES keys.
1.1
Introduction
Page 5 of 16
2008 TPS Pakistan Pvt Ltd
2.1 HSM
Migration
2.2 Key
Management
Page 6 of 16
2008 TPS Pakistan Pvt Ltd
2.3 Keys
Generation
and Loading
of Initial
Keys at ATM
Page 7 of 16
2008 TPS Pakistan Pvt Ltd
Page 8 of 16
2008 TPS Pakistan Pvt Ltd
3.1 Adding
Double
Length
Encrypted
Key (TMK)
for Any ATM
Page 9 of 16
2008 TPS Pakistan Pvt Ltd
Page 10 of 16
2008 TPS Pakistan Pvt Ltd
Page 11 of 16
2008 TPS Pakistan Pvt Ltd
3.2
Modifying
ATM
Controller
parameters
for Double
length key
Operations:
Page 12 of 16
2008 TPS Pakistan Pvt Ltd
Page 13 of 16
2008 TPS Pakistan Pvt Ltd
3.3 Sending
KEY
DOWNLOAD
(Key
Loading) to
the Migrated
ATM
Page 14 of 16
2008 TPS Pakistan Pvt Ltd
Page 15 of 16
2008 TPS Pakistan Pvt Ltd
4. Test Cases
The following generic test cases will be specifically
carried out, after a successful migration of any of the
concerned ATMs. Kindly note that the below given
test cases / transactions, are MANDATORY to be
tested out by the concerned personnel, and are
generic for any of the implemented banks. Perform:
PIN change.
Page 16 of 16
2008 TPS Pakistan Pvt Ltd