HOME Cart(0) Quotation About-Us Policy PDFs Standard-List
www.ChineseStandard.net Database: 189759 (19 Oct 2025)

GB/T 29271.4-2019 English PDF

Standard ID	Contents [version]	USD	STEP2	[PDF] delivered in	Standard Title (Description)	Status	PDF
GB/T 29271.4-2019	English	RFQ	ASK	3 days [Need to translate]	Identification cards -- Integrated circuit card programming interfaces -- Part 4: Application programming interface (API) administration	Valid	GB/T 29271.4-2019

PDF similar to GB/T 29271.4-2019

Standard similar to GB/T 29271.4-2019

GB/T 38668 GB/T 38670 GB/T 37720 GB/T 29271.6 GB/T 29271.3 GB/T 29271.2

Basic data

Standard ID	GB/T 29271.4-2019 (GB/T29271.4-2019)
Description (Translated English)	Identification cards -- Integrated circuit card programming interfaces -- Part 4: Application programming interface (API) administration
Sector / Industry	National Standard (Recommended)
Classification of Chinese Standard	L64
Classification of International Standard	35.240.15
Word Count Estimation	206,280
Date of Issue	2019-08-30
Date of Implementation	2020-03-01
Issuing agency(ies)	State Administration for Market Regulation, China National Standardization Administration

GB/T 29271.4-2019: Identification cards -- Integrated circuit card programming interfaces -- Part 4: Application programming interface (API) administration

---This is a DRAFT version for illustration, not a final translation. Full copy of true-PDF in English version (including equations, symbols, images, flow-chart, tables, and figures etc.) will be manually/carefully translated upon your order.
Identification cards - Integrated circuit card programming interfaces - Part 4. Application programming interface (API) administration ICS 35.240.15 L64 National Standards of People's Republic of China Identification card IC card programming interface Part 4. Application Programming Interface (API) Management Part 4. Applicationprogramminginterface(API)administration (ISO /IEC 24727-4.2008, MOD) Published on.2019-08-30 2020-03-01 implementation State market supervision and administration China National Standardization Administration issued

Content

Foreword V Introduction VII 1 Scope 1 2 Normative references 1 3 Terms and Definitions 2 4 Abbreviations 3 5 Architecture Specification 3 5.1 Overview 3 5.2 Full network stack 6 5.3 Loyalty Stack 8 5.4 opaque ICC stack 8 5.5 Remote Loyalty Stack 9 5.6 ICC Local Stack 10 5.7 Remote ICC Stack 11 5.8 Service Access Layer Extension 12 6 Security Architecture 16 6.1 Path Protection Policy 16 6.2 Access Control List - Access Control Rule (ACL-ACR) Mapping 17 6.3 Security message transmission 17 6.4 Trusted Channel Key Management 18 7 connection assembly 18 7.1 Overview 18 7.2 Operational Request and Response Semantics 18 7.3 Proxy-Agent Architecture 18 7.4 Trusted Channel Interface (TC_API) 19 7.5 Interface Device API (IFDAPI) 23 8 GB/T 16649.15 registration implementation 38 8.1 Overview 38 8.2 GB/T 29271.3 Data Structure Mapping 39 8.3 SALAPI operations are mapped to GB/T 16649.15 attributes 46 8.4 Specific card APDU mapping to GB/T 16649.15 attribute 51 8.5 GB/T 29271.3 data structure stored on the card 52 Appendix A (Normative Appendix) Path Protection Mechanism 54 Appendix B (informative) IFD-API. Web Service Binding 62 Appendix C (informative) IFD-Calback-API-Web Service Binding 93 Appendix D (informative) GB/T 29271.4-IFDAPI module 96 Appendix E (informative) GB/T 29271.4-TCAPI module 113 Appendix F (informative) Enhanced use of program elements 118 Appendix G (informative) API 130 for GB/T 16649.15 data structure processing Appendix H (informative) Lightweight Service Access Layer (SALAPILITE) 174 Appendix I (informative) Password information application example 175 Appendix J (informative) Conversion of ASN.1 module 186 Appendix K (informative) Interoperable Access Repository 187 Appendix L (informative) CryptoAPI (CAPI) accesses 191 through program elements Figure 1 GB/T 29271 architecture 4 Figure 2 Common elements of the GB/T 29271 stack 5 Figure 3 Legend 6 of subsequent data Figure 4 Network connection between the card-end application and the client application 7 Figure 5 Proprietary implementation of GB/T 29271.2 and GB/T 29271.3 layers 8 Figure 6 opaque ICC stack 9 Figure 7 remote loyalty stack 10 Figure 8 ICC local stack 11 Figure 9 Remote ICC Stack Configuration 12 Figure 10 Network Stack 14 Figure 11 delegation-agent mechanism 18 Figure 12 Discovery Protocol Value 43 Figure 13 Relationship between GB/T 16649.15 information objects and GB/T 29271.3 data structure 53 Figure A.1 Communication with secure message transmission and without secure message transmission 54 Figure A.2 Command Header Conversion 55 Figure A.3 Creating a DO 55 with encrypted data when the INS is an odd value Figure A.4 Creating a DO 56 with a password checksum Figure A.5 Creating a DO 56 with a Le field Figure A.6 MAC operation 57 Figure A.7 Creating a DO 58 with status bytes Figure A.8 Protecting CASE4 Command APDUs 59 Figure A.9 Response APDU for the Data Field APDU 60 Figure F.1 Program Element Function 119 Figure F.2 Complete Interoperability Network Stack 120 Figure F.3 Current Full Network Stack 122 Figure F.4 Recommended configuration 123 Figure F.5 Current loyalty stack 124 Figure F.6 Suggested loyalty stack 124 Figure F.7 Current opaque ICC stack 125 Figure F.8 recommends opaque ICC stack 125 Figure F.9 Current remote loyalty stack 126 Figure F.10 Suggested Remote Loyalty Stack 127 Figure F.11 Current Remote ICC Stack 128 Figure F.12 recommends remote ICC stack 128 Figure I.1 UML-based eService calculation model (based on GB/T 29271 object) 176 Figure L.1 CAPI-enabled program elements 193 Figure L.2 PKCS11 encryption service 194 Table 1 Command Process 15 Table 2 Path Protection Policy Classes for Each Category of Each Stack Configuration Table 3 Trusted Channel API 19 Table 4 DataSet Mapping to ACL 39 Table 5 CardApplication maps to DataContainerObjectChoice 40 Table 6 Service Mapping to ACL 42 Table 7 authObject maps to DID 44 Table 8 SecretKey mapping to DID 45 Table 9 privateKey mapping to DID 46 Table 10 SALAPI operations mapped to GB/T 16649.15 attributes 47 Table 11 Properties of DataContainerObject (GB/T 16649.15DO) 51 Table 12 EF or DO Identification 51 Table 13 EF file content example 52 Table A.1 Values used for each field in the secure message transmission 60 Table I.1 Object-based "myservice" data set 177 Table I.2 GB/T 16649.15 data object package 178 for card-side applications and DataSet objects

Foreword

GB/T 29271 "Identification Card IC Card Programming Interface" is divided into the following six parts. --- Part 1. Architecture; --- Part 2. Universal card interface; --- Part 3. Application interface; --- Part 4. Application Programming Interface (API) management; --- Part 5. Test procedures; --- Part 6. Registration management procedures for an interoperable authentication protocol. This part is the fourth part of GB/T 29271. This part is drafted in accordance with the rules given in GB/T 1.1-2009. This section uses the redrafting method to modify the use of ISO /IEC 24727-4.2008 "identification card IC card programming interface Part 4 Points. Application Programming Interface (API) Management. The technical differences between this part and ISO /IEC 24727-4.2008 and their reasons are as follows. ---About the normative reference documents, this part has made technical adjustments to adapt to China's technical conditions, adjustments The situation is reflected in Chapter 2, “Regulatory Citations”, and the specific adjustments are as follows. ● Added reference to GB/T 16649.15 (GB/T 16649.15-2010, ISO /IEC 7816-15.2004, IDT) (see 5.8, 7.5 and Chapter 8); ● Replace ISO /IEC 24727-1 with GB/T 29271.1 equivalent to the international standard (see 5.1, Chapter 7 and 8.1); ● Replace ISO /IEC 24727-2 with GB/T 29271.2 equivalent to international standards (see Chapter 5, Chapter 6, 8) Chapters, Appendix A and Appendix F); ● Replace ISO /IEC 24727-3 with GB/T 29271.3 modified to international standards (see Chapter 5, Chapter 6, 7) Chapter, Chapter 8, Appendix A, Appendix F, Appendix H, Appendix I and Appendix L); ● Move the reference ISO /IEC 19784-1.2006 to a normative reference and use equivalent international standards Replaced by GB/T 30267.1-2013 (see 7.5); ● Added reference to ISO /IEC 24727-2.2008/Amd1.2014 (see 5.8); ● Added reference to ISO /IEC 7816-15.2004/Amd2.2008 (see 8.1, G.2.16 and G.4.1); ● Move ISO /IEC 24727-5 appearing in international standards to normative references (see 5.1 and Figure 1). --- Increase abbreviations ACD, ACR, AR, DID, GCI, ICC, IFD, Kenc, Kmac, PCD and SAL. This section also made the following editorial changes. ---Incorporate into the International Standard Technical Corrigendum ISO /IEC 24727-4COR1.2011 (see Appendix B, B.1, B.2, B.3, Appendix Record C. C.1, C.2, Appendix D and Appendix E); --- Incorporate the contents of the International Standard Amendment ISO /IEC 24727-4/Amd1.2014 (see 5.8, Chapter 8, Appendix F~Appendix L); --- Figure unified from the beginning of Figure 1, no longer use the original icon serial number; --- The table is uniformly numbered starting from Table 1, and the original table serial number is no longer used; ---Adjusted the order of abbreviations; --- Add the title of the suspension segment number appearing in the international standard, and adjust the title number of the following article in order; --- The first sentence of Appendix D "ISO 24727-4-IFDAPI{iso(1)standard(0)iso24727(24727)part4(4)ifdapi (74)}", changed to "GB/T 29271.4-IFDAPI{1.2.156.5006.29271.4.74}"; --- Appendix 8 of the 8th line "ISO 24727-COMMON {iso (1) standard (0) iso24727 (24727)", changed to "GB/T 29271-COMMON {1.2.156.5006.29271}"; --- "revMajISO 24727-4-IFDAPI" in the 11th and 12th lines of Appendix D, "revMinISO 24727-4-IFDAPI", "revMajGB T29271-4-IFDAPI" "revMinGB T29271-4-IFDAPI"; --- The first sentence of Appendix E "ISO 24727-4-TCAPI{iso(1)standard(0)iso24727(24727)part4(4)tcapi (73)}", changed to "GB/T 29271.4-TCAPI{1.2.156.5006.29271.4.73}"; --- Appendix 8 of the eighth line "ISO 24727-COMMON {iso (1) standard (0) iso24727 (24727)}", changed to "GB/T 29271-COMMON {1.2.156.5006.29271}"; --- "G.2" in the first sentence of I.2.2.3.1 of Appendix I, changed to "I.2.2.3"; --- Appendix I, I.2.2.3.3, the last 7th line "iso(1)standard(0)iso24727(24727)part3(3)annex-a(0)", Changed to "1.2.156.5006.29271.3.0"; --- "CARD-APPLICATION myservice" in Table I.1 of Appendix I, changed to "CARD-APPLICATIONmyser- Vice"; --- The fourth line of Appendix J "ISO /IEC 24727-4-PE{iso(1)standard(0)iso24727(24727)part4(4)clause (8.1.3)}", changed to "GB/T 29271.4-PE{1.2.156.5006.29271.4clause(8.4)}"; --- Appendix J, line 9 "ISO 24727-COMMON {iso (1) standard (0) iso 24727 (24727)}", changed to "GB/T 29271.4-COMMON{1.2.156.5006.29271}"; --- The title of K.1 of Appendix K was changed to "example" and deleted "extracted from EU standard CEN/T S15480-3"; --- Removed references. Please note that some of the contents of this document may involve patents. The issuing organization of this document is not responsible for identifying these patents. This part is proposed and managed by the National Information Technology Standardization Technical Committee (SAC/TC28). This section drafted by. China Electronics Technology Standardization Institute, Beijing Zhixin Microelectronics Technology Co., Ltd., Chu Tianlong Co., Ltd. Division, Shanghai Yixin Intelligent Technology Co., Ltd., Shenzhen Saixi Information Technology Co., Ltd., Ziguang Tongxin Microelectronics Co., Ltd., Beijing Weiqi Data System Co., Ltd., Feitian Integrity Technology Co., Ltd., Datang Microelectronics Technology Co., Ltd., China Light and Power Smart Card Co., Ltd., Beijing CLP Huada Electronic Design Co., Ltd., Hongtian Intelligent Technology (Tianjin) Co., Ltd., Jinbangda Co., Ltd., Eastcom Peace Technology Co., Ltd. Co., Ltd., Institute of Automation, Chinese Academy of Sciences, Beijing Eye Intelligent Technology Co., Ltd., Shanghai Fudan Microelectronics Group Co., Ltd. Shanghai Mi Te Printing Co., Ltd. The main drafters of this section. Cao Guoshun, Fu Qingqin, Jiang Quming, Gao Wei, Su Aimin, Sheng Jinggang, Qin Rizhen, Bai Yu, Zhu Pengfei, Zhang Shurui, Yuan Aiyang, Li Bin, Xia Lijia, Li Dan, Qi Zhigang, Zhang Wei, Xu Pingjiang, Xu Muping, Zhong Chen, Zhang Han, Wang Houjin, Yu Hui, Shi Chunteng, Shao Xing, Wu Xingyu, Zhang Xiaoliang, Pang Zhenjiang.

Introduction

GB/T 29271 defines a programming interface for the interaction between a set of integrated circuit cards (ICCs) and external applications, including the use of multiple departments. Use the service. The organization and operation of ICC is in accordance with GB/T 16649.4-2010. GB/T 29271 is related to ICC applications with interoperability requirements between different application areas. GB/T 9387.1.1998 is used as a layered structure for client applications to card-side application connections. That is, the application interface assumes this exists A protocol stack. through which commands can be used to exchange information and transactions between cards. The message structure for transmitting these commands is Definition in GB/T 16649. The semantic reference of the application interface access command application protocol data unit (APDU, in GB/T 29271.2 There are descriptions) and the following criteria. --- GB/T 16649.4-2010 Identification card IC card - Part 4. Structures, safety and commands for exchange --- GB/T 16649.8-2002 Integrated circuit cards with identification contacts - Part 8. Inter-industry --- GB/T 16649.9-2010 Identification card IC card - Part 9. Commands for card management The goal of GB/T 29271 is to maximize the applicability and solution space of software tools for client applications that support cards. Provide application interface support. This work includes. support cards when cards become more powerful, peers exist, and future applications The evolution of the slice system minimizes the impact on existing solutions that meet the requirements of the GB/T 29271 standard. In line with this part, the interoperability implementation of GB/T 29271.3 and GB/T 29271.2 can be realized. This section does not define the implementation details Section; can be assumed to be in compliance with an acceptable security policy. The specific security policy is not within the scope of GB/T 29271. Identification card IC card programming interface Part 4. Application Programming Interface (API) Management

1 Scope

GB/T 29271 defines a programming interface for the interaction between a set of integrated circuit cards (ICCs) and external applications, including the use of multiple departments. Use the service. This part of GB/T 29271 specifies the connection and security mechanisms between the client application and the card-side application. This section specifies the API tube Service-independent and implementation-independent modules that comply with the GB/T 29271 standard, including security, can be applied to specific card-side applications of ICC An operation request is issued so that the card-end application can be used by various client applications when coupled with the data model and content discovery operations. This section applies to the connection between ICC and external applications, so that various client applications can call the card-side application with a unified interface.

2 Normative references

The following documents are indispensable for the application of this document. For dated references, only dated versions apply to this article. Pieces. For undated references, the latest edition (including all amendments) applies to this document. GB/T 15852.1-2008 Information technology security technology message authentication code - Part 1. (ISO /IEC 9797-1.1999, IDT) GB/T 16649.4-2010 Identification card integrated circuit cards - Part 4. Structures, safety and commands for exchange (ISO /IEC 7816-4.2005, IDT) GB/T 16649.15 Identification card integrated circuit card - Part 15. Application to cryptographic information (GB/T 16649.15-2010, ISO / IEC 7816-15.2004, IDT) GB/T 29271.1 Identification card IC card programming interface Part 1. Architecture (GB/T 29271.1-2012, ISO / IEC 24727-1.2007, IDT) GB/T 29271.2 Identification card IC card programming interface Part 2. Universal card interface (GB/T 29271.2-2012, ISO /IEC 24727-2.2008, IDT) GB/T 29271.3 Identification card IC card programming interface Part 3. Application interface (GB/T 29271.3-2014, ISO / IEC 24727-3.2008, MOD) GB/T 30267.1-2013 Information technology biometric identification application interface Part 1. BioAPI specification (ISO / IEC 19784-1.2006, IDT) ISO /IEC 7816-3.2006 Identification cards - Integrated circuit cards - Part 3. s cationcards-Integratedcircuitcards-Part 3. Cardswithcontacts-Electricalinterfaceandtransmis- Sionprotocols) ISO /IEC 7816-15.2004/Amd2.2008 Identification card integrated circuit cards - Part 15. 2.2008 (ISO /IEC 7816-15.2004 Identification cards-Integratedcircuits-Part 15. Cryptographic Informationapplication/Amd2.2008) ISO /IEC 24727-2.2008/Amd1.2014 Identification card IC card programming interface Part 2. Generic card interface repair Change order 1.2014 (ISO /IEC 24727-2.2008 Identificationcards-Integratedcircuitcardprogramminginter- faces-Part 2. Genericcardinterface/Amd1.2014)