just go.

just go.

What is VSAM?

SAM (Secure Access Module) is a plug-in format smart card that enhances the security and cryptography performance in payment terminals, such as validators, for EMV contactless cards.

The VSAM is the Virtualization SAM and, as it’s sibling for closed loop applications CL_SAM, extends the features above providing open-loop and closed-loop payments by embedding the secure transaction processing which gives more security for the system. The VSAM carries also the EMV kernel L2 optimized for Visa “On Line Deferred” transaction and also provides an interface with an EMV Level 1 certified contactless reader to perform all EMV transaction quickly and securely with easy implementation.

So it can add EMV contactless card technology on top of legacy, without changing the validator application software and the automatic fare collection system back office.

The VSAM EMV Kernel L2 can handle:

FDDA validation
Expiration date
EMV L2 validations
VCPS (Visa Contactless Payment System) specification version 2.1.3
Visa Ready MTT mobility and mass transit transaction specification, pre-authorized and deny lists.
Can perform DDA validation for other brands.
Provides an interface with the EMV Level 1 certified contactless reader based on APDUs (Application Protocol Data Unit: the communication unit between a reader and a card) supporting all commands required for EMV contactless payment application.
Uses the Mirror, Virtualization and Interception concepts.
APIs to handle virtualization of MIFARE Classic over CIPURSE, MIFARE Plus and DESFire (secure card technologies)

The VSAM is remotely updatable, not only on its internal tables but also on its software using a secure method for both.

Besides the EMV Kernel L2, the VSAM has the flexibility to support other EMV scheme kernels becoming a very powerful, secure and customizable product.

Why VSAM?

Trends

The use of banking cards and mobile payment such Apple Pay, Google Pay and Samsung Pay in addition to existing legacy cards is a reality for public transportation payment. That’s because it is more convenient for the user, more secure for the operator and reduce the usage of cash money.

This trend represents a migration of current proprietary solutions to more secure card technologies (for instance, from MIFARE Classic to CIPURSE or EMV), reducing the risks of fraud by the use of older technologies.

Challenges

To accomplish the addition of EMV contactless banking cards acceptance on existing automatic fare collection (AFC) systems and improve the security of the existing proprietary systems (legacy), the solution must:

Be simple
Be cost effective
Co-exist with current existing proprietary solution

Current validators

Current validators are, in most cases, based on proprietary hardware and software which has been developed to accomplish the only goal to enable closed loop card as only way of ticketing. So the flexibility is limited becoming a barrier for the transportation stakeholders to develop new or upgrade existing transport applications.

How VSAM works?

To overcome those challenges the VSAM uses the Interception concept that minimizes the change on current software. This alone represents more confidence on changes and less implementation effort.

The interception method works by delegating to the supplied library the card communication when it is not recognized by the standard validator application. I.e. The validator keeps searching for a card, when a closed loop one is found it treats as usual, but, when the card is not recognized, the validator uses the Virtualization Library (VLIB) that generates the APDUs to be sent to the card and get the returns performing all steps to execute the EMV transaction. Due to the security requirements, this operation must be done through an EMV level 1 certified reader which can be shared by the closed loop card or not.

The VLIB is a small library that bridges the card or media presented to the VSAM allowing the secure software inside of it to generate and process the APDUs performing the transaction.

The VLIB can also incorporate the ULIB that is the update library: This library is used to update the VSAM software and tables in a secure and transparent way for the host validator since it requires only a network connection to perform all operations in a secure way.

Methods

There are some approaches to implement the VSAM on legacy systems and they are described below

At a glance

Visa Ready MTT model

The MTT model enables complete, multi-modal ticketing in environments where transaction speed is critical.

Features

Contactless-only
Deferred authorizations
No financial transaction at point of tap
Shared merchant/issuer liability
Deny list/back office management
 

Benefits

High passenger throughput
Versatile, adaptable solution
Suited to complex multi-modal transit systems
No purchase required
Drives down Public Transport Operator (PTO) costs

Where VSAM is being used?

timeline-01
All trademarks referenced herein are the properties of their respective owners.
MODALPTO/
CONCESSIONARY
LOCATIONPHASEDATE
Metro
Bus
Bus
Ferry Boat
Toll
Toll
Toll
Toll
METRÔ RIO
SPTRANS
OMSA
CCR BARCAS
LINHA AMARELA
ECORODOVIAS
CCR RIOSP
ROTA DAS BANDEIRAS
RIO DE JANEIRO
SÃO PAULO
DOMINICAN REPUBLIC
RIO DE JANEIRO
RIO DE JANEIRO
SÃO PAULO
S PAULO - R JANEIRO
SÃO PAULO
PRODUCTION
POC
PRODUCTION
POC
PRODUCTION
PRODUCTION
PRODUCTION
PRODUCTION
APRIL/2019
SETEMBER/2019
JULY/2020
AUGUST/2020
JUNE/2021
JULY/2021
JANUARY/2022
AUGUST/2022
MODALPTO/
CONCESSIONARY
LOCATIONPHASEDATE
Metro
Bus
Bus
Ferry Boat
Toll
Toll
Toll
Toll
METRÔ RIO
SPTRANS
OMSA
CCR BARCAS
LINHA AMARELA
ECORODOVIAS
CCR RIOSP
ROTA DAS BANDEIRAS
RIO DE JANEIRO
SÃO PAULO
STO DOMINGO - D. REPUBLIC
RIO DE JANEIRO
RIO DE JANEIRO
SÃO PAULO
SÃO PAULO - RIO DE JANEIRO
SÃO PAULO
PRODUCTION
POC
PRODUCTION
POC
PRODUCTION
PRODUCTION
PRODUCTION
PRODUCTION
APRIL/2019
SETEMBER/2019
JULY/2020
AUGUST/2020
JUNE/2021
JULY/2021
JANUARY/2022
AUGUST/2022

Technical stuff

Based on solid flash 32bit security controller
ISO7816-3: T=0 or T=1
Communication:  up to 1.25Mb/s (very fast)
Formats: ISO7810, 2FF or 3FF
Operating voltage: 3V or 5V
CMAC diversification
Certified Crypto libraries
SHA-1 / SHA-224 / SHA-256
RSA up to 4096 bits (by hardware)
3DES, DES (by hardware)
AES128/256 (by hardware)
Elliptic curve cryptography (ECC): 521bits
31 symmetric keys per directory
1 asymmetric key pair per directory
EMV Level 2 certified (approval #: CDPLNI01376B)

To add an EMV L1 reader:

Serial interface (at least 115.200 bauds) or USB CDC interface available;
Power supply to the EMV Level 1 contactless reader: 500 mA minimum @ 5Vdc;

Adaptations to accommodate EMV Level 1 contactless reader;

Alongside with the hardware components, the following libraries are needed for the proper operation:

VLIB – VSAM payment library

It is the library that exchanges the information between the VSAM and its host.

VLIB has 25 thousand lines of code and uses about 200kB of RAM memory.

RLIB – Reader library

It is the library that controls the reader itself managing its peripherals like LEDs, buzzer and etc.

RLIB has 5 thousand lines of code and uses about 20kB of RAM memory.

ULIB – Update library

It is library that manages the VSAM and reader software update.

ULIB has 250 lines of code and uses about 1kB of RAM memory.

VLIB lite

This is the light version of the VLIB, it is used on the “plus” solution where the other 3 libraries above are embedded into de reader. This library has four main functions:

  1. Provides a uniform interface between the reader and the host.
  2. Convert (if needed) the original reader protocol to the standardized one.
  3. Adapts the external TCP/IP communication interface to the VSAM, allowing the communication and name resolution. This can be done by using a pre-established TCP socket where the data in and out is managed by the VSAM.
  4. Gets date and time.

VLIB lite has from 200 to 500 lines of code depending on the need of protocol conversion and uses around 4kB of RAM.

In some cases, if necessary, it is possible to migrate part of the validator program to the VSAM in order to release memory and reach these software requirements.

The system also needs memory for storing data as described next. This memory can be allocated on the host or on the reader according to the availability.

DLM – Deny list memory.

Deny list stores the card identifiers that are no allowed to perform transactions. It is recommended at least 64MB that can store up to 1 million of entries and the system can handle few Gigabytes of memory if needed.

LLM – Log list memory.

This list store the transactions before the go on-line, in other words, the transactions performed off-line are stored in this memory and when the connectivity is present, they are uploaded. It is recommended at least 4MB for 1 thousand transactions and 64MB at maximum.

ELM – Event list memory.

This memory stores all the system events, like reboot, time adjustment. It is recommended 4MB for 32 thousand operations.

How to start

The VSAM SDK is the best way to start the development because it gives access to the source code, application examples on the reference hardware.

The hardware also is already working with EMV and can be demoed in 10 minutes. It is composed by an EMV adaptor with an embedded EMV L1 reader with a VSAM installed and it is supplied with 4 other full sized plug-in VSAM.

The goal of the SDK, besides instant demo, is provide comparison hardware to facilitate the implementation and performance comparison with other devices that can be tested with the VSAM supplied.

The VSAM SDK is a complete quick start method for the VSAM development and can be acquired here.

Technical characteristics

The SDK comes with access credentials to the valuable resources as:

Besides the documentation, it includes:

Find out more

About

Planeta Informática has been an industry-leading SAM provider since 2003 and a leading provider of security elements and solutions to automated fare collection since 2002 with more than 200,000 SAM devices currently deployed, supporting 30 million users per day across South America.

Planeta was created in 1991 by a group of researchers from the telecommunication area and focuses on developing products based on open standards. We believe the use of open standards is the only way to have an interoperable product and, at same time, a competitive behavior.

Among their services, Planeta provides consultancy on AFC payment, recharge network and products as SAM devices, reference designs for secure devices and payment modules for companies all over Brazil, Latin America and Europe. Back in 2018, Planeta started collaborating with Visa to accelerate the open loop acceptance on mobility applications.

YEARS

1991 - 2021

All rights reserved for Planeta Informática. Website developed by Matsoliver Design.