Functionality tests aim at verifying the TravelContract functionality, essential for interoperability in the sense that it shall be checked that mandatory data are transmitted over relevant interfaces between IC Card, MAD and Clearing modules at the Product Owner, in accordance with the NORTIC specification.
Test Object IC Card - MAD Interface
Part 2 R16 The ProductTC Owner is responsible managing the customer data and the status of the TravelContract occurrences. Mandatory data are:
Card ID
Security system key generation/version TravelContract status, as described above
Part 2 R17 The format of the NORTIC Application Identifier shall be in accordance with ISO7816-5.
T-4.
Requirement
Part 2 R23 The NORTIC ticket medium shall generate a MAC (Message Authentication Code), which enables the ProductTC Owner to verify the authenticity and integrity of the claim (transaction).
Prerequisite Approved IC Card, according to test T-1 and approved MAD, according test T-2. If applicable approved SAM according to T-3.
The IC Card shall have a TravelContract application (files and data elements) according to Part 1. The manufacturer shall declare which of the Ticket media option that are implemented.
The MAD shall have a TravelContract application.
The manufacturer shall declare:
• Which ticket media options are implemented.
• Whether the MAD has got a SAM, intended to verify MAC according to T-3.
• Which optional data from the IC Card that are read
The manufacturer of the MAD shall propose and seek approval from the TravelContract owner for a test log interface, enabling inspection of the test results.
Verification
Method Functionality Test:
1) Depending on the MAD type, the ICC shall be inserted once into (ISO7816) or moved once in front of (in case of ISO14443 A or B), the MAD. All available combinations of IC cards and MADS shall be subject to test.
2) The MAD shall read data from the IC Card and generate a TravelContract transaction.
Verdict criteria Pass:
The MAD retrieves from the IC Card all the requested data
If TravelContract SAM declared, the MAD verifies the MAC from the IC Card.
Fail:
The event of any of the requirements above that is not fulfilled.
Test Object Interface between ProductLP Retailer (MAD) – ProductTC Owner modules Part 2 R22 The ProductLP Retailer is responsible for collecting
TravelContract usage data. Product usage data is the transaction information generated when the product is used, and includes payment information. The transaction data is forwarded to the ProductTC Owner in order to receive payment for the actual customer travel.
Part 2 R28 The ProductTC Owner manages and distributes security lists to the ProductLP Retailer accepting the TravelContract as payment mean.
Part 2 R29 The ProductLP Retailer shall acknowledge the reception of security lists from the ProductTC Owner and shall distribute the security list to all user equipment/MAD.
T-5.
Requirement
Part 2 R31 The ProductLP Owner and ProductLP Retailer MAD SAM shall exchange authenticated public keys.
Prerequisite All pre-requisites of T-4 also apply for this test. In addition: Approved MAD according to T-4 with a valid security list but without any generated transactions/events. Two IC Card qualified according to T-4. (One IC Card on the security list and one, which is not).
Verification Method
Functionality tests:
1) Move/Insert the two IC Cards into/in front of the MAD The MAD shall generate one transaction with IC Card not on the security list and refuse the IC Card on the security list. In both cases the MAD shall generate a transaction record (payment, event report) 2) Download into the MAD a new security list containing both IC
Cards
3) Repeat step 1)
4) The MAD shall refuse both IC Cards and generate an event report 5) Download into the MAD a new security list containing none of the
IC Cards 6) Report step 1)
The MAD shall make transactions with both IC Cards and generate a transaction record.
7) The MAD shall have made three transaction records and three event reports (refusal of the IC Cards). A transaction file shall be sent to the ProductTC Owner.
Verdict criteria Pass:
Step 1) through 7) are performed without error and in accordance with format of Chapter 3. Security list correctly received by the MAD.
Fail
Any of the conditions in step 1) through 7) not fulfilled.
Test Object Interface MAD - Product Owner Module (SAM). This test shall be carried out when MAD is equipped with a SAM.
Part 2 R30 The ProductTC Owner is responsible for selecting the appropriate authentication mechanism of the
TravelContract (symmetrical versus asymmetrical) and provides a secure download of authentication keys to the IC card.
Part 2 R31 The ProductTC Owner and Retailer MAD SAM shall exchange authenticated public keys.
T-6.
Requirement
Part 2 R32 The ProductTC Owner shall distribute the TravelContract authentication master keys according to ISO11770 Part 3 – Key Transport Mechanism 3 or higher.
Prerequisite All pre-requisites of T-4 also apply for this test. The MAD SAM contains a valid set of authentication master keys. There shall be one IC Card with valid keys and one IC Card without. None of the IC Cards are on the security list.
Verification Method
Functionality Test
1) Move the two IC Cards into/in front of the MAD
The MAD shall make transactions with each IC Card and validate the signatures. One IC Card shall be refused whereas one shall be accepted. The transaction file shall log both event (payment and event)
2) ProductTC Owner shall download a new set of TravelContract authentication master keys to the MAD SAM. The valid IC Card becomes invalid whereas the invalid IC Card becomes valid.
3) Repeat step 1
One IC Card shall be refused whereas one shall be accepted. The transaction file shall log both events (payment and event).
In total the MAD (SAM) has generated two valid transactions (authentication is OK) and two events (authentication failures) and transmitted them to the Product Owner.
Verdict criteria Pass:
All steps 1) through 3) are completed successfully and in accordance with requirements.
Fail
Any step 1) through 3) failed or not in accordance with requirements.