visa-bank-appinitiated-provisioning-legacy

Stable version 1.0.1 (Compatible with OutSystems 11)

Uploaded

on 17 Dec (12 hours ago)

0.0

(0 ratings)

Details

This extension provides implementation support for the Visa Mobile Banking App–Initiated Provisioning process — a legacy approach used by issuers to enable card provisioning into Apple Wallet (and other digital wallets) using symmetric encryption (Triple-DES) and WSD zone keys.

2. Overview

The extension includes two main methods:

CreateAuthenticationData (MBPAD) – Generates the Provisioning Authentication Data required for initial Apple Wallet provisioning.
CreateActivationData (MBPAC) – Generates the Activation Data required to complete the token activation phase.

Both outputs are formatted according to the Visa legacy structure:

type-version-keyscheme-keysetidentifier-ephemeralkey-algorithm-encryptedinformation

The encryption logic follows Visa’s guidelines for WSD Zone Encryption Keys using Triple-DES (TDEA) in Cipher Block Chaining (CBC) mode.

Release notes (1.0.1)

Renamed legacy methods to align with Visa terminology:
- CreateAuthenticationData now generates MPAD
- CreateActivationData now generates MPAC
Added CreateWalletWrapperForVisa to generate the fully encrypted Apple Wallet provisioning payload.
Added DecryptKeyWithHSM to securely decrypt encrypted keys using three HSM key components.
Centralized encryption logic and improved alignment with modern Visa Mobile Provisioning and Apple Wallet standards.
Legacy MBPAD/MBPAC flow is superseded by the new MPAD/MPAC-based implementation.