1WESTCOS-TOOL(1) OpenSC Tools WESTCOS-TOOL(1)
2
3
4
6 westcos-tool - utility for manipulating data structures on westcos
7 smart cards
8
10 westcos-tool [OPTIONS]
11
13 The westcos-tool utility is used to manipulate the westcos data
14 structures on 2 Ko smart cards / tokens. Users can create PINs, keys
15 and certificates stored on the card / token. User PIN authentication is
16 performed for those operations that require it.
17
19 --change-pin, -n
20 Changes a PIN stored on the card. User authentication is required
21 for this operation.
22
23 --certificate file, -t file
24 Write certificate file file in PEM format to the card. User
25 authentication is required for this operation.
26
27 --finalize, -f
28 Finalize the card. Once finalized the default key is invalidated,
29 so PIN and PUK cannot be changed anymore without user
30 authentication.
31
32 Warning, un-finalized cards are insecure because the PIN can be
33 changed without user authentication (knowledge of default key is
34 enough).
35
36 --generate-key, -g
37 Generate a private key on the card. The card must not have been
38 finalized and a PIN must be installed (i.e. the file for the PIN
39 must have been created, see option -i). By default the key length
40 is 1536 bits. User authentication is required for this operation.
41
42 --help, -h
43 Print help message on screen.
44
45 --install-pin, -i
46 Install PIN file in on the card. You must provide a PIN value with
47 -x.
48
49 --key-length length, -l length
50 Change the length of private key. Use with -g.
51
52 --overwrite-key, -o
53 Overwrite the key if there is already a key on the card.
54
55 --pin-value value, -x value
56 Set value of PIN. If set to env:VARIABLE, the value of the
57 environment variable VARIABLE is used.
58
59 --puk-value value, -y value
60 set value of PUK (or value of new PIN for change PIN command see
61 -n). If set to env:VARIABLE, the value of the environment variable
62 VARIABLE is used.
63
64 --read-file filename, -j filename
65 Read the file filename from the card. The file is written on disk
66 with name filename. User authentication is required for this
67 operation.
68
69 --reader num, -r num
70 Specify the reader to use. By default, the first reader with a
71 present card is used. If num is an ATR, the reader with a matching
72 card will be chosen.
73
74 --unblock-pin, -u
75 Unblocks a PIN stored on the card. Knowledge of the PIN Unblock Key
76 (PUK) is required for this operation.
77
78 --verbose -v
79 Causes westcos-tool to be more verbose. Specify this flag several
80 times to enable debug output in the OpenSC library.
81
82 --wait, -w
83 Wait for a card to be inserted.
84
85 --write-file filename, -k filename
86 Put the file with name filename from disk to card. On the card the
87 file is written in filename. User authentication is required for
88 this operation.
89
91 westcos-tool was written by Francois Leblanc
92 <francois.leblanc@cev-sa.com>.
93
94
95
96opensc 09/30/2019 WESTCOS-TOOL(1)