TR-34 defines a method for distributing symmetric keys using asymmetric (RSA) cryptography. Used for remote key loading in ATMs and POS terminals, allowing secure key injection without physical key ceremonies.
Inputs
Tab: Parse an existing TR-34 block or create a new one.
KDH Private Key: Key Distribution Host private RSA key (PEM) — used to sign the key block.
KRD Public Key: Key Receiving Device public RSA key (PEM) — used to encrypt the key for the target device.
Clear Key: The symmetric key to wrap in hexadecimal.
Key Usage / Algorithm: Same TR-31 key attributes applied to the wrapped key.
Tips
TR-34 enables remote key loading without physical presence at the device.
The KDH signs and the KRD's public key encrypts — ensuring confidentiality and authenticity.