Chip Card Products. Testing and Approval Requirements. Version 1.0. Effective: September 2007 Security Classification: Visa Public

Transcription

1 Chip Card Products Testing and Approval Requirements Version 1.0 Effective: September 2007 Security Classification: Visa Public September 2007 Visa Public i

2 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. ii Visa Public September 2007

3 Contents Contents About This Guide...1 Purpose and Audience... 1 Specifications and Requirements... 1 Support and Contact Information... 2 Disclaimer Testing Overview Products Currently Accepted for Testing Alternative Form Factors Vendor Eligibility Chip Hardware Architecture Review Objectives Process Chip Expiration Policy Re-evaluation Impact on Chip Card Product Testing For More Information Migration of Chip Hardware Security Evaluations Process Transition timeline and impacts Testing Agreement Test Documentation and Tools Test Plans Commercial Test Tools and Test Scripts Enhancements and Modifications Forms and Scheduling Visa Approval Services Questionnaire Parallel Testing Scheduling Product Supporting T=0 and T= Product Supporting Type A and Type B Start of Risk Testing Delays Forms Required Before Testing Begins Required Forms for Testing Submit Testing Materials Required Technical Documentation Number of Cards Required for Testing Production Batch September 2007 Visa Public iii

4 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Information Printed on Cards Chip Card Requirements Personalization Requirements Static Native Cards Visa GlobalPlatform Cards, version 2.1.1/2.0.1' Visa Contactless Cards Quality Assurance Testing Functional Testing Sharing of Test Results EMV Level 1 Testing Contactless Type A and Type B Interface Testing Visa Smart Debit/Credit Application Testing qvsdc/msd Testing Magnetic Stripe Data (MSD) Testing for Contactless Specification Cross Testing Visa GlobalPlatform Testing Platform Testing Visa Applet Testing Visa GlobalPlatform Static (VGP-S) Option Testing Java Card S Testing Test Results Requesting Risk Test Dates Disposing Chip Card Products after Testing Risk Testing Timing of Risk Testing Risk Testing Process Risk Testing of Product Supporting T=0 and T= Approval Process Legal Conditions and Restrictions Requesting an Approval Renewal of Approval Renewal Criteria Renewal Process General Conditions and Exceptions Changes Allowed to Approved Products Requirements for Changes to an Approved Product Selected Application or Applet Changes Reconfigured Mask Approval for Visa GlobalPlatform Cards Application Mask Porting iv Visa Public September 2007

5 Contents Contactless Card Physical Changes Process for Changes to an Approved Product Step Step Step Step Step Step Step Step Changes That Require Full Testing A. Specifications and Requirements... A 1 A.1 EMV... A 1 A.2 Contactless... A 1 A.3 VSDC... A 1 A.4 Visa GlobalPlatform... A 2 A.5 Visa GlobalPlatform Static... A 2 B. Testing Available by Laboratory... B 1 B.1 Laboratory Contact Information... B 2 C. Summary of Forms... C 1 Glossary... GL 1 September 2007 Visa Public v

6 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. vi Visa Public September 2007

7 Figures Figures Figure 1-1: Testing Overview Contact Cards Figure 1-2: Testing Overview Contactless Cards Figure 1-3: Testing Overview Dual Interface Cards Figure 11-1: Chip Card Product Renewal Policies September 2007 Visa Public vii

8 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. viii Visa Public September 2007

9 Tables Tables Table 1: Visa Approval Services Contact Information...2 Table 1-1: Card Products Accepted for Testing Table 2-1: Potential Eligible Vendors Table 3-1: Chip Hardware Architecture Review Process Table 4-1: Testing Agreement Table 4-2: Submit Testing Agreement Table 6-1: Check Chip Card Product Eligibility Table 6-2: Overview of Scheduling Table 6-3: Required Forms Table 7-1: Submission Requirements: Number of Cards Table 7-2: Chip Card Requirements Table 8-1: Overview of Functional Testing Table 8-2: Sharing of Test Results Questionnaire Table 8-3: Request Sharing of Test Results Table 9-1: Risk Testing Process Table 11-1: Renewal Criteria Specification/Requirement Versions11 1 Table 12-1: Application/Applet Requirements for Approval Process12 2 Table 12-2: RMA Requirements for Approval Process Table 12-3: Porting Requirements for Approval Process Table 12-4: Testing for Contactless Card Physical Changes Table 12-5: Results of Successful Approval Process Table 13-1: Changes That Require Full Testing Table A-1: Visa GlobalPlatform Specification Compliance Requirements... A 2 Table B-1: Testing Available by Laboratory... B 1 Table C-1: Summary of Forms...C 1 September 2007 Visa Public ix

10 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. x Visa Public September 2007

11 About This Guide Purpose and Audience About This Guide Purpose and Audience This document provides information needed by Card Manufacturers, chip suppliers, and Visa staff to support the testing process that is required for all chip card products that will carry the Visa brand. Specifications and Requirements Chip suppliers and Card Manufacturers are responsible for developing their chip card products to comply with the appropriate Visa specifications and requirements. Visa specifications and requirements require a license agreement. Appendix A provides information about selected specifications and requirements. September 2007 Visa Public 1

12 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Support and Contact Information Visa s goals are to provide a formal, standardized process for testing chip card products and to enhance communication between all participants in the product testing and approval process. Visa Approval Services provides a single point of contact, both for vendors and for Visa Regional and Worldwide Services staff, on the testing and approval process. Table 1: Visa Approval Services Contact Information Contact Type address: Web site: Contact Information ApprovalServices@visa.com Facsimile: Postal Address: Visa Approval Services Visa International Mail stop: M1-8A 900 Metro Center Blvd., Foster City, CA United States Disclaimer Visa s testing services and policies are subject to change by Visa at any time without notice to any party. This document does not create any binding obligations for Visa or any third party regarding testing services or Visa approval, or which obligations exist (if at all), pursuant to separate written agreements executed by Visa and such third parties. In the absence of a written binding agreement by which Visa has agreed to perform testing services for a Card Manufacturer or chip supplier, no Card Manufacturer or chip supplier should detrimentally rely on this document, nor shall Visa be liable for any such reliance. 2 Visa Public September 2007

13 Testing Overview Products Currently Accepted for Testing 1. Testing Overview This section provides an overview of the Visa testing and approval process for chip card products. Visa International ( Visa ) oversees testing of chip card products that will carry the Visa brand, to ensure that they are developed to Visa specifications and requirements. Chip card products tested and approved by Visa include, but are not limited to, Visa Smart Debit/Credit, qvsdc/msd and Visa GlobalPlatform. The testing process includes (where applicable): Testing of basic electrical and protocol characteristics for contact cards Testing of radio frequency and protocol for contactless cards Testing of Visa GlobalPlatform Testing of Visa payment applications Risk testing of the chip card product and operating system If the product is successfully tested, Visa issues a letter of approval to the vendor that developed the chip card product. The approval applies internationally, unless restrictions are specified in the letter of approval. Note: The process described in this document does not approve vendors; it approves only specific chip card products. Note: Approval is not transferable from one vendor s product to another. September 2007 Visa Public 1 1

14 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Products Currently Accepted for Testing Table 1-1: Card Products Accepted for Testing Contact cards Contactless cards Dual interface cards Visa Smart Debit/Credit Visa GlobalPlatform Visa Smart Debit/Credit Visa GlobalPlatform Magnetic Stripe Data (MSD) qvsdc/msd Visa Smart Debit/Credit Visa GlobalPlatform Magnetic Stripe Data (MSD) qvsdc/msd Alternative Form Factors Alternative form factors may or may not be accepted for testing and approval. Vendors should contact ApprovalServices@visa.com to determine if the alternative form factor is acceptable. A complete description of the form factor must be provided as there may be weight and size restrictions. FOBS submitted to Visa Approval Services for type approval testing will be subject to the same test requirements as standard ID1 card products. 1 2 Visa Public September 2007

15 Testing Overview Products Currently Accepted for Testing The Figure 1-1 shows a high level view for contact cards. Figure 1-1: Testing Overview Contact Cards Assessment of Vendor Eligibility Chip Hardware Architecture Review Testing Agreement Forms and Scheduling N Parallel Testing? Y Submit Testing Materials Submit Testing Materials Submit Testing Materials Functional Testing a) EMV Level 1 Testing b) Application and/or Visa GlobalPlatform testing Functional Testing a) EMV Level 1 Testing b) Application and/or Visa GlobalPlatform testing Risk Testing Risk Testing Product Approval September 2007 Visa Public 1 3

16 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Figure 1-2 shows a high level view for contactless cards. The steps shown in these figures are described in the sections that follow. Figure 1-2: Testing Overview Contactless Cards 6 2 Assessment of Vendor Eligibility Chip Hardware Architecture Review ¹ Testing Agreement Forms and Scheduling N Parallel Testing? Y Submit Testing Materials Submit Testing Materials Submit Testing Materials Functional Testing a) Analog and Digital Testing b) Application and/or Visa GlobalPlatform testing Functional Testing a) Analog and Digital Testing b) Application and/or Visa GlobalPlatform testing Risk Testing ² Risk Testing ² Product Approval 6 MSD cards built to Visa Contactless Payment Specification that do not support DDA do not require Chip Hardware Architecture Review, as described in section Chip Hardware Architecture Review. 2 MSD cards built to Visa Contactless Payment Specification that do not support DDA do not require Risk Testing, as described in section Risk Testing. 1 4 Visa Public September 2007

17 Testing Overview Products Currently Accepted for Testing Figure 1-3: Testing Overview Dual Interface Cards 3 4 Assessment of Vendor Eligibility Chip Hardware Architecture Review ³ Testing Agreement Forms and Scheduling N Parallel Testing? Y Submit Testing Materials Submit Testing Materials Submit Testing Materials Functional Testing Functional Testing Risk Testing 4 Risk Testing 4 Contact Card Tests a) EMV Level 1 Testing b) Application and/or Visa GlobalPlatform testing Contactless Card Tests a) Analog and Digital Testing b) Application and/or Visa GlobalPlatform testing Product Approval 3 MSD cards built to Visa Contactless Payment Specification that do not support DDA do not require Chip Hardware Architecture Review, as described in section Chip Hardware Architecture Review 4 MSD cards built to Visa Contactless Payment Specification that do not support DDA do not require Risk Testing, as described in section Risk Testing. September 2007 Visa Public 1 5

18 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank 1 6 Visa Public September 2007

19 Vendor Eligibility 2. Vendor Eligibility Visa Approved Card Manufacturers and chip suppliers must complete a Vendor Business Review with Visa prior to submitting any chip card product for testing. In addition, vendors submitting chip card products must meet Visa s eligibility criteria. Vendors that have not completed the risk review or want information about Visa's eligibility criteria should contact Visa's Contract Administration at cpplicense@visa.com. Some of the Visa Requirements for an Eligible Vendor are described in Table 2-1. To obtain more information send an request to cpplicense@visa.com. Table 2-1: Potential Eligible Vendors Vendor Chip/OS Component Supplier Visa Approved Global Card Supplier Sponsored Card Supplier Definition The entity that supply Chip/OS packages; must have a signed Chip/OS Component Suppliers Confirmation Form with Visa to allow them to submit chip card products directly to Visa for testing and approval. The entity that manufactures the final card product and takes responsibility for the entire package: operating system, application, embedding of module, and printing of the card. A Visa Approved Chip Card Manufacturer that is sponsored by either a Visa Business Unit (i.e. Visa Region) or a Visa Member A Visa-recognized laboratory (hereafter referred to in this document as Laboratory) may accept chip card products for testing and subsequent approval only from an Eligible Vendor. September 2007 Visa Public 2 1

20 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This Page is intentionally left blank 2 2 Visa Public September 2007

21 Chip Hardware Architecture Review Objectives 3. Chip Hardware Architecture Review The Chip Hardware Architecture Review is an evaluation of the basic chip, without a card operating system or an application. This evaluation aims both to understand the chip as a basic platform and to identify features that the card operating system and applications must enable properly in order to achieve the security desired. These features become part of the test plan for the card that uses the chip. The Chip Hardware Architecture Review is required for chips used for the following product types: Contact cards Dual interface cards Cards developed to Visa Contactless Payment Specification 1.4.2, with the following exception: - Chips to be used on contactless-only cards that carry an MSD only application and that do not support Dynamic Data Authentication (Fast DDA) are exempt from a Chip Hardware Architecture Review. Cards developed to Visa Contactless Payment Specification or or higher. Note: The process for security evaluations of chip hardware is being migrated to the independent neutral standards body EMVCo. Refer to Section Migration of Chip Hardware Security Evaluations Process for more details. September 2007 Visa Public 3 1

22 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Objectives The Chip Hardware Architecture Review has the following objectives: To demonstrate that the chip is capable of carrying a Visa-approved application. To provide information that assists Card Manufacturers in the selection of a chip. To lower the cost of chip card product testing: Those portions of the testing that are dependent solely on the chip do not have to be retested on every chip card product that uses the same chip. To provide a preliminary guide for chip card product testing by focusing on areas of particular concern in testing, thus limiting the amount of testing on the chip card product. 3.2 Process Table 3-1 provides a high level overview of the Chip Hardware Architecture Review process. For detailed information on this process, please see Visa Process for Hardware Architecture Review by External Laboratories V2.0, available from rra@visa.com. Table 3-1: Chip Hardware Architecture Review Process Chip Manufacturer Laboratory Chip Manufacturer Laboratory Chip Manufacturer Visa Risk Review Administration Visa Approval Services Contact one of the Laboratories listed in Appendix B as supporting chip evaluation. Schedule the evaluation. Contact Visa Risk Review Administration at rra@visa.com to schedule the Chip Hardware Architecture Review. Submit necessary forms, documentation, and samples to the Laboratory as outlined in Visa Process for Hardware Architecture Review by External Laboratories V2.0. Evaluate the chip. Provide results of chip evaluation to Chip Manufacturer. Provide the results of the evaluation to Visa Risk Review Administration or direct the Laboratory to do so. Interpret the results of the Chip Hardware Architecture Review evaluation. Note: The Laboratory does not determine whether the chip is acceptable; Visa does. Advise Chip Manufacturer whether the chip is acceptable. 3 2 Visa Public September 2007

23 Chip Hardware Architecture Review Migration of Chip Hardware Security Evaluations Process 3.3 Chip Expiration Policy Re-evaluation When the Chip Hardware Architecture Review finds a chip acceptable, Visa lists it in the list of acceptable chips and assigns an expiration date, which is communicated to the vendor in a letter. The expiration date is set at three years from the evaluation date of the chip. All configured/derived chips are assigned expiration dates that are equivalent to that of the parent chip. After the expiration date, the chip is removed from Visa s acceptable integrated circuits list. Note: Expiration dates were assigned retroactively for all chips on the acceptable integrated circuits list that were evaluated before the policy described in this section was implemented. Any chip that was evaluated more than three years ago has been removed from the acceptable integrated circuits list. If problems are identified with a product on the acceptable integrated circuits list, Visa reserves the right to remove the product from the list at any time. Chip vendors should be aware of the expiration date assigned to their acceptable chip. Chip vendors can choose to submit a chip for re-evaluation. If the evaluation results show that the chip meets Visa s current security requirements, then the chip will be placed on the acceptable integrated circuits list with an expiration date three years from the new evaluation date. Impact on Chip Card Product Testing Visa will accept new chip card products for testing only if the chip is listed on the current acceptable integrated circuits list. The chip expiration date appears on the acceptable integrated circuits list, so that card vendors can be aware of any impact on their new chip card product development. It is the responsibility of the chip vendor to communicate and manage the impact of their chip expiration dates with their card vendor customers. 3.4 For More Information For further information on Chip Hardware Architecture Review, please contact Visa Risk Review Administration at rra@visa.com. September 2007 Visa Public 3 3

24 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Migration of Chip Hardware Security Evaluations Process The EMVCo Security evaluation process was borne from a best practice approach amongst the three participating brands Visa, MasterCard and JCB. There benefits of a common industry process for security evaluations on chip hardware are: Reduces overall cost and time to market for chip vendors, as they now can have a security evaluation performed at one laboratory. This removes past redundancies, resulting in a single EMVCo certificate that is recognized by all EMVCo participating brands More robust security guidelines that reflect input from all participating brands Allows greater flexibility in re-use of evaluation reports (e.g. Common Criteria) Potential for a broader choice of recognized evaluation laboratories The ongoing requirement for issuers of Visa chip cards is that any chip used in a chip program be listed on the EMVCo Approved Chip list or on the Visa Acceptable Chip list. The EMVCo Approved Chip list is posted on the EMVCo website. Chips listed are acceptable for use on Visa, MasterCard and JCB chip card products. Now that the EMVCo security evaluation process is in place for chip hardware, Visa will leverage that process and phase out the Visa Hardware Architecture Review process. This allows Visa to benefit from the common, industry standard process. 3 4 Visa Public September 2007

25 Chip Hardware Architecture Review Migration of Chip Hardware Security Evaluations Process Transition timeline and impacts Effective September 1, 2007, Visa will be closing down its Hardware Architecture Review process. All new chip hardware evaluations (defined as evaluations that have not started evaluation at the lab prior to September ) should be submitted through EMVCo. Also, any maintenance evaluations (for extending expiration dates) will be conducted through EMVCo. Contact for details. Those Visa Hardware Architecture Review evaluations that are started prior to September 1, 2007 will be reviewed under the Visa process, and if found acceptable, will be included on the Visa acceptable chips list. NOTE: There is no guarantee that these products will be grandfathered onto the EMVCo list. In parallel, the Visa acceptable chips list will be maintained as a source for chip hardware acceptable for use on Visa chip card products. Over time, this list will phase out as chips expire and are removed from production. Note that for end users (chip card vendors) this will have no incremental impact from the existing process. Chip card vendors will need to use chips off the Visa acceptable chips list OR the EMVCo certified chips list for future Visa chip card products, and continue to monitor and adhere to the expiration date requirements of each respective list. September 2007 Visa Public 3 5

26 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. 3 6 Visa Public September 2007

27 Testing Agreement 4. Testing Agreement Before chip card product testing can begin, the Eligible Vendor must sign the current Visa Approval Services Testing Agreement with Visa. Table 4-1 describes the testing agreement. Table 4-2 outlines the process. Table 4-1: Testing Agreement Form Visa Approval Services Testing Agreement Description Agreement between Visa and the Card Manufacturer or chip supplier regarding testing and approval. Table 4-2: Submit Testing Agreement Eligible Vendor Visa Approval Services Receive Visa Approval Services Testing Agreement at conclusion of Vendor Business Review (as discussed in section Vendor Eligibility). Complete agreement and return two signed originals to Visa Approval Services. Countersign both agreements and return one to the Eligible Vendor. September 2007 Visa Public 4 1

28 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. 4 2 Visa Public September 2007

29 Test Documentation and Tools Test Plans 5. Test Documentation and Tools Test plans and commercial test tools with associated test scripts are available to assist Eligible Vendors in Quality Assurance (QA) testing prior to submitting chip card products for official testing. Successful completion of all the test scripts by the Eligible Vendor does not imply approval, nor does it depict Visa s full testing process for the Visa applications. Rather, it provides the Eligible Vendor with insight into the chip card product testing process. Visa reserves the right to develop and run additional tests that are not part of the current test plan. Testing at the Laboratory may include subjecting the chip card product to additional physical and situation specific tests as needed. 5.1 Test Plans Before requesting test plans, the Eligible Vendor must sign the Visa Approval Services Testing Agreement, discussed in section Testing Agreement. The following test plans are available from ApprovalServices@visa.com: Visa EMV Level 1 Card Visa Smart Debit/Credit Visa GlobalPlatform Visa MSD Contactless Visa qvsdc/msd Contactless Card Visa grants an Eligible Vendor permission to use the test plans solely for purposes of developing and testing products for a Visa application. Visa may revoke its permission at any time. Possession and use of these materials is subject in all respects to the terms and the continued effectiveness of the Visa Approval Services Testing Agreement between the Eligible Vendor and Visa. Test plans and all intellectual property subsisting therein are the property of Visa. These materials are provided on an as is basis with all faults. Visa disclaims all warranties pertaining to these materials, expressed or implied, including the implied warranties of merchantability, fitness for purposes, or non infringement. September 2007 Visa Public 5 1

30 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Commercial Test Tools and Test Scripts Commercial test tools and test scripts are available from test tool vendors. Contact details are available at Enhancements and Modifications Test plans and test scripts are subject to enhancements and modifications at any time. Test plan revisions will be accumulated and made available to Eligible Vendors with new releases as determined by Visa. It is the Eligible Vendor s responsibility to ensure that they have the most current test plan available. Eligible Vendors should contact their tool supplier to obtain any test script updates. 5 2 Visa Public September 2007

31 Forms and Scheduling Visa Approval Services Questionnaire 6. Forms and Scheduling The Laboratory (whether performing functional testing or risk testing) will provide the Eligible Vendor with all necessary forms to be completed, including those required by Visa. Eligible Vendors obtain testing information, test requirements, and contractual agreements directly from one of the laboratories listed in Appendix A, and submit their chip card products and forms directly to the Laboratory. This section discusses the forms that are required for each chip card product to be tested, as well as requirements for scheduling. The following topics are included: Visa Approval Services Questionnaire Scheduling Forms Required Before Testing Begins Required Forms for Testing 6.1 Visa Approval Services Questionnaire An Eligible Vendor must submit a Visa Approval Services Questionnaire for each chip card product to be tested. Visa will use the questionnaire to determine whether the chip card product is eligible for testing. Table 6-1 on page 6 2 outlines the process. Note: Chip Card Questionnaire is available at September 2007 Visa Public 6 1

32 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Table 6-1: Check Chip Card Product Eligibility Eligible Vendor Visa Approval Services Eligible Vendor Request Visa Approval Services Questionnaire from Visa Approval Services. Provide questionnaire. Complete questionnaire including name of Laboratory(s) that will perform testing. If desired, request parallel testing, as discussed in Parallel Testing. Submit an original signed questionnaire to Visa Approval Services. Visa Approval Services Eligible Vendor Review questionnaire. Advise Eligible Vendor and Laboratory of whether product is eligible for testing. Note: The Laboratory will not begin testing until this authorization is received. If product is eligible for testing, schedule testing and complete all required forms as described in section Scheduling through section Required Forms for Testing. Parallel Testing When completing the Visa Approval Services Questionnaire, an Eligible Vendor may request parallel testing, so that one or more Laboratories may perform functional and risk testing concurrently. If any problems occur during functional or risk testing that would not allow the chip card product to successfully complete testing: Official testing will stop. The vendor is responsible for all costs incurred with the Laboratory. The problem found in testing must be corrected and the product resubmitted for both functional and risk testing. After the vendor accepts the above conditions, Visa Approval Services may authorize parallel testing. 6 2 Visa Public September 2007

33 Forms and Scheduling Scheduling 6.2 Scheduling After Visa Approval Services advises the Eligible Vendor that a chip card product is eligible for testing, the Eligible Vendor schedules testing. Table 6-2 provides an overview of scheduling tasks. The remainder of this section provides additional detail. Table 6-2: Overview of Scheduling Eligible Vendor Contacts a Laboratory to schedule functional testing. 6 If parallel testing was requested (and authorized by Visa Approval Services), then contact a Laboratory to schedule risk testing. Functional Testing Laboratory Eligible Vendor Risk Testing Laboratory Provides: forms that must be completed in full and submitted to the Laboratory prior to the start of functional testing a testing date estimated time to complete testing As soon as functional testing dates are confirmed, when parallel testing is not performed, contact a Laboratory to schedule risk testing. Allow enough time (approximately two weeks) for the functional testing laboratory to generate the functional test report and send it to Visa for review. The report must be reviewed by Visa before the requested risk testing date. Provides: forms that must be completed in full and submitted to the Laboratory prior to the start of risk testing a testing date estimated time to complete testing Product Supporting T=0 and T=1 If a contact chip card product supports both T=0 and T=1 protocols, the product must be submitted for testing separately for each protocol, and each protocol will be tested independently. Note: Under certain circumstances, risk testing may be required for only one protocol. See section Risk Testing of Product Supporting T=0 and T=1 for details. 6 It may be necessary to contact more than one Laboratory, depending on the characteristics of the chip card product and the testing available at various Laboratories. For instance, a contactless card might require one Laboratory to perform Analog and Digital testing and another Laboratory to test its implementation of Visa GlobalPlatform. September 2007 Visa Public 6 3

34 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Product Supporting Type A and Type B Start of Risk Testing Delays If a contactless chip card product supports both Type A and Type B, the product must be submitted for testing separately for each contactless type, and each contactless type will be testing independently. Risk testing cannot begin until the functional test results have been received and reviewed by Visa Approval Services (unless parallel testing, as described in section Parallel Testing, has been authorized). Visa will advise the risk testing Laboratory when risk testing may begin. The Eligible Vendor should notify the Laboratory directly of any delay in submitting a product for testing. 6.3 Forms Required Before Testing Begins Testing will not begin until the Laboratory has received all of the following forms (described in Table 6-3) from the Eligible Vendor: Exhibit A: Request for Testing Services Form (original signed form must be provided) Implementation Conformance Statement for each applicable Visa test Logical Static Data Sheet (for conventional/static cards only) Chip Card Submission Form (original signed form must be provided) All of these forms must be submitted with each test-cycle submission; that is, if the chip card product fails testing, a new version of each form must be completed and submitted when the product is submitted for retesting. 6 4 Visa Public September 2007

35 Forms and Scheduling Required Forms for Testing 6.4 Required Forms for Testing Table 6-3 lists the forms required for chip card product testing. All information must be provided in English. Table 6-3: Required Forms Form 7 Visa Approval Services Questionnaire Exhibit A: Request for Testing Services Form (addendum to Visa Approval Services Testing Agreement) Implementation Conformance Statement Description Information regarding the submission of a chip card product for testing. Allows Visa to determine whether the chip card is eligible for submission. Signed by the Eligible Vendor and by Visa. Establishes Visa s right to review results submitted by the Eligible Vendor, following testing at a Laboratory. Detailed information regarding the Visa payment application, platform, or interface. A separate statement is required for each: EMV Level 1 Contactless Interface Analog/Digital Visa Smart Debit/Credit MSD qvsdc/msd Visa GlobalPlatform Logical Static Data Sheet (LSCR) Chip Card Submission Form Request for Approval Form Describes the chip card product s software, architecture, and commands. Required for conventional/static cards. Complete and detailed description of the product and of the applications installed on the chip. Official request for Visa to begin the approval process for a chip card product tested at a Laboratory. 7 One additional form the Visa Approval Services Testing Agreement was previously completed, as discussed in section Testing Agreement. September 2007 Visa Public 6 5

36 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements This page is intentionally left blank. 6 6 Visa Public September 2007

37 Submit Testing Materials Required Technical Documentation 7. Submit Testing Materials This section discusses the materials that the Eligible Vendor must submit to the Laboratory for chip card product functional testing (in addition to the forms discussed in section Testing Agreement and section Forms and Scheduling). The following topics are included: Required Technical Documentation Number of Cards Required for Testing Information Printed on Cards Chip Card Requirements Personalization Requirements Quality Assurance Testing Note: Official Type approval testing must not begin until the Laboratory has received all required items. If any required item is incorrect or not functioning properly, the test cycle may be delayed and/or rescheduled. 7.1 Required Technical Documentation Vendors must provide four copies of the following technical documentation in order for the Laboratory to conduct testing: The Eligible Vendor s documentation describing the operating system, chip technology information, antenna description, all commands, the security features, Visa payment application, GlobalPlatform operating system, and Visa applet. Note: The Lab keeps one copy and provides three copies of these documents to Visa Approval Services. September 2007 Visa Public 7 1

38 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Number of Cards Required for Testing The Eligible Vendor is required to provide cards for testing as described in Table 7-1. A portion of the chip cards submitted for testing will be retained by Visa Approval Services. Note: A card with more than one Visa payment application or platform requires a full set of cards for each Visa payment application or platform. Note: For dual interface cards a full set of cards must be provided for each interface. Table 7-1: Submission Requirements: Number of Cards Visa Payment Application or Platform Number of Cards Required EMV Level 1 3 Analog 15 Digital 15 Visa Smart Debit/Credit MSD qvsdc/2msd 2.0.1, and up Visa GlobalPlatform Visa GlobalPlatform See the VSDC personalization document listed in section Static Native Cards. See the MSD Test Plan (discussed in section Test Plans). See the qvsdc / MSD personalization document listed in section Visa Contactless Cards. 100 cards in Visa GlobalPlatform OP_Ready state 150 cards in Visa GlobalPlatform OP_Ready state 7 2 Visa Public September 2007

39 Submit Testing Materials Information Printed on Cards Production Batch All cards in a submission must be from the same production batch. If cards are being tested by more than one Laboratory, the Eligible Vendor must confirm this in writing. The Eligible Vendor must provide to each lab an original letter signed by a representative authorized to act on behalf of and legally bind the vendor company, stating that all cards being submitted for testing, regardless of the Laboratory to which they are being sent, are from the same production batch. The letters must be on Eligible Vendor company letterhead and must identify the product being submitted, including the Visa reference number. One original letter must be sent to each Laboratory that is testing the product. Lab will provide this letter to Approval Services in the Lab Package. 7.3 Information Printed on Cards The following must be printed on any card submitted for testing. Name of Card Manufacturer Name of chip supplier Name of Eligible Vendor (if other than Card Manufacturer or chip supplier) Visa Reference Number Chip identification or type Contactless Interface Type A or Type B (if applicable) Antenna ID (for contactless only) Outline of Antenna Position (for ease and use in testing) Transmission protocol (T=0 or T=1) Logic protocol (direct or inverse) Unique serial number on each card List of applications on the card (abbreviations are acceptable) Card Image Number Note: Paste-on labels are not acceptable. Note: Test cards are not required to have a magnetic stripe during the chip test process. September 2007 Visa Public 7 3

40 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Chip Card Requirements Visa recognized Laboratories will accept chip card products for testing only in their final configuration, as they will be supplied to Visa Members. A chip card product submitted for testing shall be in the state described in Table 7-2. Table 7-2: Chip Card Requirements Chip Card State Chip Commands Documentation Debugging code Personalization ATR values (contact only) Visa GlobalPlatform ATS values (contactless only) Answer to REQB Command (contactless only) Description The chip must be embedded and bonded to a plastic card. Commands that can update the chip card product must be in compliance with the Visa specifications for the application(s) in the chip card product. All commands and status words must be identified in the technical documentation submitted with the chip card product for testing. Failure to identify commands and status words in the technical documentation may cause the chip card product to fail testing. All debugging code must be removed from the chip card product before it is submitted for testing. Failure to remove this code may cause the chip card product to fail testing. Conventional/static cards personalized for testing must be in their personalized/locked state. After the chip card product is put into an initialized state, the Answer to Reset (ATR) values (except for historical bites) cannot be changed. A chip card product may not contain both T=0 and T=1 protocols within the same Answer to Reset (ATR). Visa GlobalPlatform cards must be in an OP_Ready state. For Type A Contactless chip cards: The Answer to Select (ATS) values on the chip card product submitted for testing must be those identified in the Implementation Conformance Statement (ICS). For Type B Contactless chip cards: The values of bytes 10, 11, and 12 in the "Answer to REQB Command" on the chip card product submitted for testing must be those identified in the Implementation Conformance Statement (ICS). 7 4 Visa Public September 2007

41 Submit Testing Materials Personalization Requirements 7.5 Personalization Requirements Static Native Cards Streamline In this section personalization refers to the personalization of cards for Visa functional and risk testing purposes only. The Eligible Vendor must supply chip cards in a personalized state. Personalization of test data will differ for each Visa application that is tested. The functionality of the card application must not be affected by personalization. Test card personalization requirements are available for Visa Smart Debit/Credit. Each submission must conform to the latest version of Personalization Requirements for Testing and Approval of VSDC Applications Compliant with VIS 1.4.0, available from ApprovalServices@visa.com. Policies and Procedures are in process for testing of streamline and will be communicated in a future version of this document. Questions should be directed to ApprovalServices@visa.com. Visa GlobalPlatform Cards, version 2.1.1/2.0.1' Visa GlobalPlatform cards that support version or 2.0.1' must contain a Visa Smart Debit/Credit (VSDC) applet in ROM. This applet may be a Visa developed VSDC applet that the Eligible Vendor is licensed to use by Visa, or a VSDC applet developed by the Eligible Vendor. To obtain information regarding licensing for a Visa-developed applet, contact cpp@visa.com. Each submission must conform to the latest version of Visa GlobalPlatform Test Card Preparation Requirements, available from ApprovalServices@visa.com. Visa discourages extensions of the GlobalPlatform Application Programming Interface (API) and does not test extensions, if implemented. September 2007 Visa Public 7 5

42 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Visa Contactless Cards Contactless cards must be supplied in a personalized state for Analog, Digital, and/or application testing (MSD/qVSDC/VSDC). Personalization of test data will differ for each Visa application that is tested (qvsdc, MSD, or VSDC). The functionality of the card application must not be affected by personalization. Test card personalization requirements for MSD and qvsdc are available from ApprovalServices@visa.com. Each submission must conform to the latest version of personalization requirements for the application supported. 7.6 Quality Assurance Testing Laboratories performing functional testing may offer quality assurance testing that can be completed prior to submitting a chip card product for official testing. However, quality assurance testing is not part of Visa s official testing and approval process. 7 6 Visa Public September 2007

43 Functional Testing Quality Assurance Testing 8. Functional Testing Visa-recognized Laboratories test various functions and applications supported by Visa. Such testing includes the electrical aspects of the chip, protocol and communications of the card, and functionality of the applications. Testing is dependent on the technology supported. Table 8-1 provides an overview. Table 8-1: Overview of Functional Testing Static Native Chip Card Products Contact card tests EMV Level 1 Visa Payment Application (VSDC) Visa GlobalPlatform Chip Card Products EMV Level 1 Visa GlobalPlatform Visa Payment Applet (when applicable) Contactless card tests Dual interface card test Type A or Type B Interface (Analog and Digital) Visa Payment Application (VSDC, qvsdc, and/or MSD) EMV Level 1 Type A or Type B Interface (Analog and Digital) Visa Payment Application (VSDC, qvsdc, and/or MSD) Type A or Type B Interface (Analog and Digital) Visa GlobalPlatform Visa Payment Applet (when applicable) EMV Level 1 Type A or Type B Interface (Analog and Digital) Visa GlobalPlatform Visa Payment Applet (when applicable) September 2007 Visa Public 8 1

44 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Additional information is provided in the following sections: Sharing of Test Results EMV Level 1 Testing Contactless Type A and Type B Interface Testing Visa Smart Debit/Credit Application Testing qvsdc/msd Testing Magnetic Stripe Data (MSD) Testing for Contactless Specification Cross Testing Visa GlobalPlatform Testing Visa GlobalPlatform Static (VGP-S) Option Testing Java Card S Testing Test Results Disposition of Chip Card Products after Testing 8.1 Sharing of Test Results Eligible Vendors that have signed the Visa Approval Services Testing Agreement May 2006 (or later) will have the opportunity to leverage functional test reports from previously approved components. A product that uses shared test results will require only selected testing. Shared test results are permitted only if: The products are contactless only or dual interface products. All vendors involved in the sharing have signed the appropriate agreements allowing reports to be shared. The components being leveraged have been tested and approved with no issues. Table 8-2 describes the questionnaire used to request sharing of test results. Table 8-3 on Page 8 3 outlines the process. Table 8-2: Sharing of Test Results Questionnaire Form Sharing of Test Results Questionnaire Description Provides information necessary for Visa Approval Services to determine whether an Eligible Vendor may leverage functional test reports from previously approved components. 8 2 Visa Public September 2007

45 Functional Testing EMV Level 1 Testing Table 8-3: Request Sharing of Test Results Eligible Vendor Visa Approval Services Eligible Vendor Visa Approval Services When submitting the Visa Approval Services Questionnaire, indicate that you wish to use test results from a previously approved product. Provide the vendor with a Sharing of Test Results Questionnaire. Complete the questionnaire and return it to Visa Approval Services. Review the questionnaire and advise the vendor whether shared reports may be leveraged. If so, define selected testing and advise Laboratory. A product using shared results will be tied to the original approved product: The new product will receive the same expiration date as the product from which the results are shared. If for any reason the original product is not renewed, any product sharing testing results will not be renewed either. Also, if the original product is revoked, then all products sharing testing results will be revoked. Note: If a product is submitted for full testing, it receives an independent approval and its expiration date is not tied to any other product. Please contact Visa Approval Services (ApprovalServices@visa.com) with questions. 8.2 EMV Level 1 Testing EMV Level 1 is the first stage of contact chip card product testing. All Visa contact chip card products must support and be in compliance with EMV Level 1. Eligible Vendors are required to provide an Implementation Conformance Statement (ICS) that provides the hex values returned by the chip card in response to Answer to Reset (ATR), SELECT command, and GET PROCESSING OPTIONS. Data provided by the Eligible Vendor is used to check the data returned by the card during testing. EMV Level 1 ensures a level of interoperability for cards and acceptance devices. Testing is comprised of the following: Electrical characteristics Transmission protocol T=0 or T=1 Answer to Reset (ATR) 3 volt and 5 volt September 2007 Visa Public 8 3

46 Visa Test Laboratory Process - Chip Card Testing and Approval Requirements Contactless Type A and Type B Interface Testing Type A and Type B Interface testing is the first stage of contactless chip card product testing. This testing ensures a level of interoperability between contactless cards and acceptance devices. Testing includes: Analog testing: Ensures that the magnetic field characteristics are able to carry the communication. Digital testing: Ensures that the timing, anti collision, and protocol characteristics are able to carry the communication. 8.4 Visa Smart Debit/Credit Application Testing Application testing ensures that the application processes the transactions correctly, in accordance with the relevant specifications. 8.5 qvsdc/msd Testing Cards compliant with Visa Contactless Payment Specification 2.0.1, and all subsequent versions are required to support qvsdc/msd application. This application is for contactless use only and may not be used through a contact interface. Testing of the qvsdc/ MSD application ensures that each path whether qvsdc or MSD in the application processes transactions correctly. 8.6 Magnetic Stripe Data (MSD) Testing for Contactless Specification An MSD application is for contactless use only and may not be used through a contact interface. MSD application testing ensures that the application processes transactions correctly. MSD may exist by itself (without qvsdc) if the card is built to Visa Contactless Payment Specification Visa Public September 2007

47 Functional Testing Cross Testing 8.7 Cross Testing Visa Contactless Payment is a new growing technology. As such, Visa performs additional testing on each card and device product submitted to Visa for type approval testing. As a part of the normal functional testing, each card is tested for analog, digital and application compliance. In addition, each card product is tested against all approved devices on Visa's approved product list. The testing, referred to as Cross-testing, is performed to ensure any card submitted for type approval will function against all approved device. This way, Visa can ensure that approved cards should not introduce interoperability problems with already approved devices in the field. Cross-testing is a part of the official testing process and their performance during this testing will go into the final approval consideration. Cards that fail to communicate with various device(s), may not be eligible for approval. 8.8 Visa GlobalPlatform Testing Platform Testing Visa GlobalPlatform cards submitted for testing must conform to Visa requirements and must contain an approved Visa applet in ROM (as discussed in section Visa GlobalPlatform Cards, version 2.1.1/2.0.1'). Visa does not test non Visa applets. Visa GlobalPlatform testing is performed to ensure that chip card products comply with the Visa specifications and requirements listed in Appendix A. Visa GlobalPlatform testing consists of executing a set of test scripts designed to exercise the card manager, security domain, and application programming interface functionality. Testing includes loading the Visa applet to the platform to ensure correct functioning. The testing performed by Visa is described in the Visa GlobalPlatform Test Plan. Eligible Vendors intending to submit chip card products to Visa for testing may obtain the test plan from ApprovalServices@visa.com. (See section Test Plans) Each new or modified Visa GlobalPlatform implementation seeking Visa approval is required to undergo testing. Visa discourages extensions of the GlobalPlatform Application Programming Interface (API) and does not test extensions, if implemented. September 2007 Visa Public 8 5