smartcardsmartcard-readeremv

Cryptogram Information Data 9F27 returns AAC in second generated AC but approved from host


I am new to EMV and working on a certification of domestic network. Some of the test cards returns AAC while other returns TC when logging 9F27 despite the transaction was approved from host. We suspect that the issue might be root to the tag 91 (Issuer Authentication Data) which is missing in the host response but as we checked the response of those test card where 9F27 returns TC we realized that they also have no tag 91 in it. My question is, is it safe to ignore the card decision and just follow the host response? What could be the other possible reason for such case?


Solution

  • Never ignore decision of a card. Some additional info you need to understand:

    1. Type of cryptogram is highly depend on Terminal Action Code (source - Terminal) and Issuer Action code (source - Card). This two values xored and the result is used in kernel to choose cryptogram type.
    2. Type of cryptograms:
    1. I assume under certification you mean L3 (M-TIP). If yes - read testcase objectives. Some testcase assume that successful condition to pass testcase is failed transaction.
    2. It is important to check transaction limits as it's values highly depend on kernel and card decisions to approve transaction.
    3. For some transaction type - particularly refund - AAC cryptogram is normal and it's not checked by authorization host.