# SAP PSE

The following subsections show a representation of the file format portions and how to generate them.

First we need to perform some setup to import the packet classes:

In [1]:
from pysap.SAPPSE import *
from IPython.display import display

## PSE file

We'll read the files used in the test case suite and use them as example:

In [2]:
with open("../../tests/data/pse_v2_lps_off_pbes1_3des_sha1.pse", "rb") as fd:
    pse_v2_string = fd.read()
    
pse_v2 = SAPPSEFile(pse_v2_string)          

with open("../../tests/data/pse_v4_lps_off_pbes1_3des_sha1.pse", "rb") as fd:
    pse_v4_string = fd.read()

pse_v4 = SAPPSEFile(pse_v4_string)

The PSE file is comprised of the following main structures:

### PSE version 2 Encrypted content

In [3]:
pse_v2.show()

###[ SAPPSEFile ]### 
  version   = 0x2 <ASN1_INTEGER[2]>
  \enc_cont  \
   |###[ SAPPSEv2_Enc_Cont ]### 
   |  encrypted_pin= <ASN1_STRING['$\xeebt\tv\xad\xa0\xe7\xa4\x1a\xde5R\xeeB']>
   |  \algorithm_identifier\
   |   |###[ PKCS5_Algorithm_Identifier ]### 
   |   |  alg_id    = <ASN1_OID['.1.2.840.113549.1.12.1.3']>
   |   |  \parameters\
   |   |   |###[ PKCS12_PBE1_Parameters ]### 
   |   |   |  salt      = <ASN1_STRING['w\xcbi\x08\xbe\x86\x08e']>
   |   |   |  iterations= 0x2710 <ASN1_INTEGER[10000]>
   |  cipher_text= <ASN1_STRING['\xb7h\xaf\x10\xc0\xb2\xe8"\xc2\xe4\xf5\xf7\xb8\t\x95\xc8\xbaq,\xeei\xc5\xe9\x13 \x85(\x0cH\xa7Y\xb6C\x06\x82\x8b\xdaU\x1d\x84"]\x9bdd\xc8*\xea\xbbn\xf2\xeb\xaf\x14^\xc0\x9b\x9fWk\xc9;\x1e\x81\xb0\x83\xbc\xe0\x1c\xc2\x8c\xda\xa0y1Rnf@\x82\xb9I\r\xa5\x84\x84\xc1\xaf\x0f\x80QH5\xea\x9d\x1c\x9c\xd0\x87Q\x19\'MmI\xd6\xddy\x98D/\xbfl\xf9\xc5\xbaR\xf9\xdb\xfa\xd4\xdf\x16\xf4\xb7\xf9\xa2$\xd0\xaa\xcc]\x0f\x1f=K7\x87\xb1\x0bd \x98\xb2\x8a\xe5\x81\xc9{\x0b\xd0

### PSE version 4 Encrypted content

In [4]:
pse_v4.show()

###[ SAPPSEFile ]### 
  version   = 0x4 <ASN1_INTEGER[4]>
  \enc_cont  \
   |###[ SAPPSEv4_Enc_Cont ]### 
   |  unknown   = 0x1 <ASN1_INTEGER[1]>
   |  \algorithm_identifier\
   |   |###[ PKCS5_Algorithm_Identifier ]### 
   |   |  alg_id    = <ASN1_OID['.1.2.840.113549.1.12.1.3']>
   |   |  \parameters\
   |   |   |###[ PKCS12_PBE1_Parameters ]### 
   |   |   |  salt      = <ASN1_STRING['\xa4\xe5\xd9L\x81\xae\xa2\xfa']>
   |   |   |  iterations= 0x2710 <ASN1_INTEGER[10000]>
   |  cipher_text= <ASN1_STRING['q\x19m\xfb\x8d\x8d\xca6.\xaa\xe4>E\n\xc9:\x9f?\xe6 \xbd\xee\xff\x10\xe7\x08~\xc4?!P\xd8\xac\xca7\xba\xd3\x8e\xb6\xadk\xc6YM-\xcd\x86|\x8bW\xa3H\x02K\xf9\x9c\xcb\x9c\xac\xa2%\x0c\x9f\xad\xbfJ\x85M\x0c\xe4\xd8K\xe6\xca\x1c\x80\xe2\x1fKq\xedJ\xf6\xedB\xa7a\x89:\xfa\xb8J\xf61\xb0DX\xd7}\xc9Zh\xaa\xbb^\xfb\xe0`\xd3O\x96\xe3\x08\xad\xb8\'"\x8e\xb5\x90S\xc0\xd6r\x8ag\xee\xce\xf5\xa2\xce\x99\xc2\xcc\xcf\xd4$\x12\xeb\xbc\x95\xca`,\xf8\x9e\x17^\xb2\x00\x94V\x1b\xa0d\xf3\x0c\xa8\xcd\xfd?m5F48O\

### PSE Encrypted content decryption

The content of the PSE file can be decrypted given the proper PIN is provided.

In [5]:
pse_v2.decrypt("1234567980")

'0\x82\n\xc30\x1c\x06\n*\x86H\x86\xf7\r\x01\x0c\x01\x030\x0e\x04\x08w\xcbi\x08\xbe\x86\x08e\x02\x02\'\x10\x18\x0f20180218185308Z\x02\x01\x011\x82\n\x8d0\x82\x01C\x13\x05SKnew\x18\x0f20180218185308Z\x06\x05+$\x02\x03\x040\x82\x01 0\r\x06\t*\x86H\x86\xf7\r\x01\x01\x01\x05\x00\x03\x82\x01\r\x000\x82\x01\x08\x02\x81\x81\x00\xfa*T\xaaG\xf8\x17\x9a\x87{\x11\xf2\x0b\x04\xbe\xf8M\x86\xa8\xb0>\x9f\x16\x12\xb1\xd6\xc4\xf8\x11o P?\xea\xde\xf5\x06n\xed\x1d\xb8\x04\x1b%,\x07\xea\x8d\xa1\x06(\x05X\x08s\xec|\x91\xa4P\xc9\x1c\x0c\x13\x12\xdd\xce\xba;3u\xe7\xfcjE\xad.\x12\xe8\xfdh\x8fv\xe4\xe6\xff\xcbO?\xd2\xe1u\xe7\xe3\x17\xa9\xb7\xba\xef@\xa6\xcd/\xe0Vi\xfd\xdfz\xe5\xd7\x17\x96\xec\xce\xc1\xfe\x9f\xcf\xa7\x9a\xe0tk\xe3\x1a\x18u\x02\x81\x81\x00\xd8VD\xb4\xe7\x8d\x08\xea\xab0\xbc\xe4tX\x13\xba\xf7u\xb0a\x9dcK\xc0\xab\xef\xad\xdf\x89\x84\xeaE\x12O[\xd0Xw\xde1\xfb.\xf3\x8f\xbd\xae\xb7g\xc9n\xeb\x15\r"H\xd9D{\xc1\x95l\x1doZ\x96\x15B?~\xae\x7f\xdb\x06\xc0\xf3\r\xff\xc7\x8f\x1f\x81E\xfbM!T\x138\xb1&\xa2>\xf