caam.003.001.01
The ATMKeyDownloadRequest message is sent by an ATM to an ATM manager to initiate the download of one or several cryptographic keys.
Message Construction
Every ISO20022 message has at the highest level what we call ‘building blocks’. Because the message is constructed as immutable records, the association is by composition. Below you can see the relationship between the message and its constituent building blocks: For comparison, see the ISO20022 official specification
classDiagram
direction LR
%% ATMKeyDownloadRequestV01 recursion level 0 with max 0
ATMKeyDownloadRequestV01 *-- "1..1" Header20 : Header
ATMKeyDownloadRequestV01 *-- "0..1" ContentInformationType10 : ProtectedATMKeyDownloadRequest
ATMKeyDownloadRequestV01 *-- "0..1" ATMKeyDownloadRequest1 : ATMKeyDownloadRequest
ATMKeyDownloadRequestV01 *-- "0..1" ContentInformationType13 : SecurityTrailer
Now, we will zero-in one-by-one on each of these building blocks.
Header building block
Information related to the protocol management on a segment of the path from the ATM to the acquirer. Information related to the protocol management on a segment of the path from the ATM to the acquirer. For comparison, see the ISO20022 official specification
classDiagram
direction tb
%% Header20 recursion level 0 with max 1
class Header20{
ProtocolVersion IsoMax6Text
ExchangeIdentification IsoMax3NumericText
CreationDateTime IsoISODateTime
InitiatingParty IsoMax35Text
RecipientParty IsoMax35Text
ProcessState IsoMax35Text
}
Header20 *-- "1..1" ATMMessageFunction1 : MessageFunction
Header20 *-- "0..0" Traceability4 : Traceability
%% ATMMessageFunction1 recursion level 1 with max 1
class ATMMessageFunction1{
Function MessageFunction7Code
ATMServiceCode IsoMax35Text
HostServiceCode IsoMax35Text
}
%% Traceability4 recursion level 1 with max 1
class Traceability4{
SequenceNumber IsoMax35Text
TraceDateTimeIn IsoISODateTime
TraceDateTimeOut IsoISODateTime
}
Traceability4 *-- "1..1" GenericIdentification77 : RelayIdentification
Header20 members
| Member name | Description | Data Type / Multiplicity |
|---|---|---|
| MessageFunction | Identifies the type of process related to the message. | ATMMessageFunction1 - Required 1..1 |
| ProtocolVersion | Version of the ATM protocol specifications. | IsoMax6Text - Required 1..1 |
| ExchangeIdentification | Unique identification of an exchange occurrence. | IsoMax3NumericText - Required 1..1 |
| CreationDateTime | Date and time at which the message was created. | IsoISODateTime - Required 1..1 |
| InitiatingParty | Unique identification of the partner that has initiated the exchange. | IsoMax35Text - Required 1..1 |
| RecipientParty | Unique identification of the partner that is the recipient of the message exchange. | IsoMax35Text - Optional 0..1 |
| ProcessState | State of the sender of the message inside the process flow. | IsoMax35Text - Optional 0..1 |
| Traceability | Identification of partners involved in exchange from the merchant to the issuer, with the relative timestamp of their exchanges. | Traceability4 - Unknown 0..0 |
ProtectedATMKeyDownloadRequest building block
Encrypted body of the message. General cryptographic message syntax (CMS) containing encrypted data. For comparison, see the ISO20022 official specification
classDiagram
direction tb
%% ContentInformationType10 recursion level 0 with max 1
class ContentInformationType10{
ContentType ContentType2Code
}
ContentInformationType10 *-- "1..1" EnvelopedData4 : EnvelopedData
%% EnvelopedData4 recursion level 1 with max 1
class EnvelopedData4{
Version IsoNumber
}
EnvelopedData4 *-- "1..0" IRecipient4Choice : Recipient
EnvelopedData4 *-- "0..1" EncryptedContent3 : EncryptedContent
ContentInformationType10 members
| Member name | Description | Data Type / Multiplicity |
|---|---|---|
| ContentType | Type of data protection. | ContentType2Code - Required 1..1 |
| EnvelopedData | Data protection by encryption or by a digital envelope, with an encryption key. | EnvelopedData4 - Required 1..1 |
ATMKeyDownloadRequest building block
Information related to the request of a key download from an ATM. Information related to the request of a key download from an ATM. For comparison, see the ISO20022 official specification
classDiagram
direction tb
%% ATMKeyDownloadRequest1 recursion level 0 with max 1
class ATMKeyDownloadRequest1{
HostChallenge IsoMax140Binary
}
ATMKeyDownloadRequest1 *-- "1..1" ATMEnvironment8 : Environment
ATMKeyDownloadRequest1 *-- "0..0" ATMCommand2 : CommandResult
ATMKeyDownloadRequest1 *-- "0..1" ATMCommand3 : CommandContext
ATMKeyDownloadRequest1 *-- "1..1" ATMSecurityContext2 : ATMSecurityContext
ATMKeyDownloadRequest1 *-- "1..1" SecurityParameters4 : ATMSecurityParameters
%% ATMEnvironment8 recursion level 1 with max 1
class ATMEnvironment8{
ATMManagerIdentification IsoMax35Text
}
ATMEnvironment8 *-- "0..1" Acquirer7 : Acquirer
ATMEnvironment8 *-- "0..1" TerminalHosting1 : HostingEntity
ATMEnvironment8 *-- "1..1" AutomatedTellerMachine6 : ATM
%% ATMCommand2 recursion level 1 with max 1
class ATMCommand2{
Type ATMCommand2Code
RequiredDateTime IsoISODateTime
ProcessedDateTime IsoISODateTime
Result TerminalManagementActionResult2Code
AdditionalErrorInformation IsoMax140Text
}
ATMCommand2 *-- "0..1" ATMCommandIdentification1 : CommandIdentification
%% ATMCommand3 recursion level 1 with max 1
class ATMCommand3{
Type ATMCommand2Code
}
ATMCommand3 *-- "0..1" ATMCommandIdentification1 : CommandIdentification
%% ATMSecurityContext2 recursion level 1 with max 1
class ATMSecurityContext2{
CurrentSecurityScheme ATMSecurityScheme1Code
}
ATMSecurityContext2 *-- "0..1" ATMEquipment3 : DeviceProperty
ATMSecurityContext2 *-- "0..1" ATMSecurityConfiguration1 : CurrentConfiguration
%% SecurityParameters4 recursion level 1 with max 1
class SecurityParameters4{
Certificate IsoMax5000Binary
ATMChallenge IsoMax140Binary
RequestedKey IsoMax35Text
}
SecurityParameters4 *-- "0..1" CryptographicKey8 : Key
SecurityParameters4 *-- "0..1" ContentInformationType14 : DigitalSignature
ATMKeyDownloadRequest1 members
| Member name | Description | Data Type / Multiplicity |
|---|---|---|
| Environment | Environment of the key download. | ATMEnvironment8 - Required 1..1 |
| CommandResult | Result of a maintenance command performed by the ATM. | ATMCommand2 - Unknown 0..0 |
| CommandContext | Security command in progress inside which the key download is requested. | ATMCommand3 - Optional 0..1 |
| ATMSecurityContext | Context of the ATM for the key download. | ATMSecurityContext2 - Required 1..1 |
| ATMSecurityParameters | Security parameters of the ATM for the initiated key download. | SecurityParameters4 - Required 1..1 |
| HostChallenge | Random value from the host provided during a previous exchange. | IsoMax140Binary - Optional 0..1 |
SecurityTrailer building block
Trailer of the message containing a MAC or a digital signature. General cryptographic message syntax (CMS) containing data. protected by a MAC or a digital signature. For comparison, see the ISO20022 official specification
classDiagram
direction tb
%% ContentInformationType13 recursion level 0 with max 1
class ContentInformationType13{
ContentType ContentType2Code
}
ContentInformationType13 *-- "0..1" AuthenticatedData4 : AuthenticatedData
ContentInformationType13 *-- "0..1" SignedData4 : SignedData
%% AuthenticatedData4 recursion level 1 with max 1
class AuthenticatedData4{
Version IsoNumber
MAC IsoMax140Binary
}
AuthenticatedData4 *-- "1..0" IRecipient4Choice : Recipient
AuthenticatedData4 *-- "1..1" AlgorithmIdentification15 : MACAlgorithm
AuthenticatedData4 *-- "1..1" EncapsulatedContent3 : EncapsulatedContent
%% SignedData4 recursion level 1 with max 1
class SignedData4{
Version IsoNumber
Certificate IsoMax5000Binary
}
SignedData4 *-- "1..0" AlgorithmIdentification16 : DigestAlgorithm
SignedData4 *-- "1..1" EncapsulatedContent3 : EncapsulatedContent
SignedData4 *-- "1..0" Signer3 : Signer
ContentInformationType13 members
| Member name | Description | Data Type / Multiplicity |
|---|---|---|
| ContentType | Type of data protection. | ContentType2Code - Required 1..1 |
| AuthenticatedData | Data protection by a message authentication code (MAC). | AuthenticatedData4 - Optional 0..1 |
| SignedData | Data protected by a digital signatures. | SignedData4 - Optional 0..1 |
Extensibility and generalization considerations
To facilitate generalized design patterns in the system, the ATMKeyDownloadRequestV01 implementation follows a specific implementaiton pattern. First of all, ATMKeyDownloadRequestV01 impleemnts IOuterRecord indicating it is the outermost logical part of the message definition. Like all message wrappers, ATMKeyDownloadRequestV01Document implements IOuterDocument. Because ATMKeyDownloadRequestV01 implements IOuterDocument, it is a suitable template parameter for IOuterDocument, and causes the internal ‘Message’ to be of type ATMKeyDownloadRequestV01.
classDiagram
class IOuterRecord
ATMKeyDownloadRequestV01 --|> IOuterRecord : Implements
ATMKeyDownloadRequestV01Document --|> IOuterDocument~ATMKeyDownloadRequestV01~ : Implements
class IOuterDocument~ATMKeyDownloadRequestV01~ {
ATMKeyDownloadRequestV01 Message
}
Document wrapper for serialization
The only real purpose ATMKeyDownloadRequestV01Document serves is to cause the document to be serialized into the ‘urn:iso:std:iso:20022:tech:xsd:caam.003.001.01’ namespace. Therefore, it will probably be the usual practice to build the message and construct this wrapper at the last minute using ATMKeyDownloadRequestV01.ToDocument() method. The returned ATMKeyDownloadRequestV01Document value will serialize correctly according to ISO 20022 standards.
classDiagram
ATMKeyDownloadRequestV01Document *-- ATMKeyDownloadRequestV01 : Document
Sample of message format
This is an abbreviated version of what the message should look like.
<Document xmlns="urn:iso:std:iso:20022:tech:xsd:caam.003.001.01">
<ATMKeyDwnldReq>
<Hdr>
<!-- Header inner content -->
</Hdr>
<PrtctdATMKeyDwnldReq>
<!-- ProtectedATMKeyDownloadRequest inner content -->
</PrtctdATMKeyDwnldReq>
<ATMKeyDwnldReq>
<!-- ATMKeyDownloadRequest inner content -->
</ATMKeyDwnldReq>
<SctyTrlr>
<!-- SecurityTrailer inner content -->
</SctyTrlr>
</ATMKeyDwnldReq>
</Document>
Data from ISO specification
This is the technical data from the specification document.
<messageDefinition
xmi:id="_ohA3UItKEeSxlKlAGYErFg"
nextVersions="_jHkLIa45EeWRfYPBaeOY8w"
name="ATMKeyDownloadRequestV01"
definition="The ATMKeyDownloadRequest message is sent by an ATM to an ATM manager to initiate the download of one or several cryptographic keys."
registrationStatus="Registered"
messageSet="_urpIICeJEeOCeO5e7islRQ"
xmlTag="ATMKeyDwnldReq"
rootElement="Document"
xmlns:xmi="http://www.omg.org/XMI">
<messageBuildingBlock
xmi:id="_vxyWQItKEeSxlKlAGYErFg"
name="Header"
definition="Information related to the protocol management on a segment of the path from the ATM to the acquirer."
registrationStatus="Provisionally Registered"
maxOccurs="1"
minOccurs="1"
xmlTag="Hdr"
complexType="_47_isYnvEeS9F4Qrq_eaVA" />
<messageBuildingBlock
xmi:id="_367noItKEeSxlKlAGYErFg"
name="ProtectedATMKeyDownloadRequest"
definition="Encrypted body of the message."
registrationStatus="Provisionally Registered"
maxOccurs="1"
minOccurs="0"
xmlTag="PrtctdATMKeyDwnldReq"
complexType="_UfeMUWizEeS87LmvcA55sg" />
<messageBuildingBlock
xmi:id="_A7d0AItLEeSxlKlAGYErFg"
name="ATMKeyDownloadRequest"
definition="Information related to the request of a key download from an ATM."
registrationStatus="Provisionally Registered"
maxOccurs="1"
minOccurs="0"
xmlTag="ATMKeyDwnldReq"
complexType="_5pWRQItKEeSxlKlAGYErFg" />
<messageBuildingBlock
xmi:id="_FP42kItLEeSxlKlAGYErFg"
name="SecurityTrailer"
definition="Trailer of the message containing a MAC or a digital signature."
registrationStatus="Provisionally Registered"
maxOccurs="1"
minOccurs="0"
xmlTag="SctyTrlr"
complexType="_R_tFoYreEeSvuOJS0mmL0g" />
<messageDefinitionIdentifier
businessArea="caam"
messageFunctionality="003"
flavour="001"
version="01" />
</messageDefinition>
ISO Building Blocks
The following items are used as building blocks to construct this message.