Starting from f44256c7dff6d24f1f940d4ca71219abbb0c7e34, pySim-shell
now supports the non-standard files of the sysmoISIM-SJA2 SIM cards containing authentication key material for AKA and TS 03.48 OTA.
This way you can now interactively inspect and/or modify aspects such as
UMTS AKA key material and configuration¶
pySIM-shell (MF/ADF.USIM/EF.USIM_AUTH_KEY)> read_binary_decoded
{
"cfg": {
"only_4bytes_res_in_3g": 0,
"use_sres_deriv_func_2_in_3g": 0,
"use_opc_instead_of_op": 1,
"algorithm": "milenage"
},
"key": "07583fd7518b42752fea8b7063faa756",
"op": null,
"opc": "440aac831e58941abe17a5db76470776"
}
pySIM-shell (MF/ADF.USIM/EF.USIM_SQN)> read_binary_decoded
{
"flag1": {
"skip_next_sqn_check": 0,
"delta_max_check": 1,
"age_limit_check": 0,
"sqn_check": 0,
"ind_len": 5
},
"flag2": {
"rfu": 0,
"dont_clear_amf_for_macs": 0,
"aus_concealed": 1,
"autn_concealed": 1
},
"delta_max": 8589934592,
"age_limit": 8589934592,
"freshness": [ 32, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0 ]
}
Milenage configuration (constants)¶
pySIM-shell (MF/DF.SYSTEM/EF.MILENAGE_CFG)> read_binary_decoded
{
"r1": 64,
"r2": 0,
"r3": 32,
"r4": 64,
"r5": 96,
"c1": "00000000000000000000000000000000",
"c2": "00000000000000000000000000000001",
"c3": "00000000000000000000000000000002",
"c4": "00000000000000000000000000000004",
"c5": "00000000000000000000000000000008"
}
OTA key material¶
pySIM-shell (MF/DF.SYSTEM/EF.0348_KEY)> read_record_decoded 1
{
"sec_domain": 0,
"key_set_version": 112,
"key_type": "kic",
"key_length": 16,
"algorithm": "des",
"mac_length": 8,
"key": "c039ed58f7b81446105e79ebfd"
}