/
Offline data authentication (ODA)

Offline data authentication (ODA)

Owned by IT-ADMIN G (Deactivated)
Dec 13, 2017

Offline data authentication is a cryptographic check to validate the card using public-key cryptography. There are three different processes that can be undertaken depending on the card:
Static data authentication (SDA) ensures data read from the card has been signed by the card issuer. This prevents modification of data, but does not prevent cloning.
Dynamic data authentication (DDA) provides protection against modification of data and cloning.
Combined DDA/generate application cryptogram (CDA) combines DDA with the generation of a card's application cryptogram to assure card validity. Support of CDA in devices may be needed, as this process has been implemented in specific markets. This process is not mandatory in terminals and can only be carried out where both card and terminal support it.

Related content

How do I know if ODA is performed or not?
How do I know if ODA is performed or not?
Knowledge Base
More like this
Do I need to load CAPKs for a device deployed in the US (online only market)?
Do I need to load CAPKs for a device deployed in the US (online only market)?
Knowledge Base
More like this
Second card action analysis
Second card action analysis
Knowledge Base
More like this
First card action analysis
First card action analysis
Knowledge Base
More like this
Online transaction authorization
Online transaction authorization
Knowledge Base
More like this
Terminal action analysis
Terminal action analysis
Knowledge Base
More like this