Page tree
Skip to end of metadata
Go to start of metadata

Answer:

KSI is the first few bytes of the KSN that can be used to identify the key. You can send the "81-0A" NEO command with data "05" to retrieve the data encryption KSN first following the steps shown in the screenshot below. The KSN (in hex) can be found in the Results window as highlighted.

And then convert the KSN hex string to ASCII that is "FFFFFF02000000000004" for the sample string in the screenshot. And then check the first few bytes of the KSN with the desired KSI to identify the key.



Use dData 02 for RKI-KEK, data 03 is MAC DUKPT key (for SRED device)