There are two types of certificates considered by the EMV ¢ specifications, which we generically call the EMV ¢ certificates:
EMV ¢ public key certificates: The certificates in this category prove the temporal link, until a certain expiration date, between the public key of an entity and its identity. The entity public key is the object to be certified. It consists of the entity public key modulus and the entity public key exponent.
Signed Static Application Data: This is a certificate provided by an issuer concerning the authenticity of the application data personalized in an ICC. It is intended to prove that the content of financial data in the card did not change since the card was issued.
The presentation in this chapter concentrates on the specific issues related to EMV ¢ certificates and does not cover the general framework of certification. The reader interested in a more comprehensive discussion about certificates can consult Appendix D, Section D.4, in this book.