How do I verify that my Spectrum Pro is injected with a key and is encrypting MSR and EMV data?
The Spectrum Pro is an SRED device and as such will only output financial card data when it has been injected with a data encryption key (DEK). It can be injected with a demo key or with a production key. A demo key is knowable and is almost always the standard ANSI test key of 0123456789ABCDEFFEDCBA9876543210. When developing/integrating for the Spectrum Pro you will want to use a unit injected with a demo key so that you can decrypt the data to see what is actually being encrypted and passed to the acquirer (or gateway or decrypting party). Once in a production environment, you will need a unit injected with the acquirer's key. Only the acquirer will be able to decrypt the data.
Look for the sticker:
When ID Tech injects a data encryption key into a device, a small sticker is applied. The sticker shows the key's part number (e.g. IDT-KEYINJ-D01 is the part number for ID Tech's demo key). Most injection facilities will do something similar.
Use uDemo to Poll Card Reader:
You can use the uDemo tool to execute a command to Poll Card Reader. Look for "DATA_DUKPT Key Valid". This means your reader is injected with a data encryption key.
Use uDemo to run an MSR transaction and then look for Encrypted data or a KSN:
In uDemo, execute a Start MSR command (1), then swipe a card. Look for "Track 1 Encrypted" (2) or "Track 2 Encrypted" (3) or "KSN:" (4) or "Encryption Type:" and "Key Type:" (5).
Use uDemo to run an EMV transaction and then retrieve an encrypted tag like 5A and see that the data is encrypted:
In uDemo, execute a Star EMV Trans (2), dip a card.
Then retrieve an encrypted tag(1) like 5A(2). Look for encrypted data(4).
See also: