> For the complete documentation index, see [llms.txt](https://developer.magtek.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://developer.magtek.com/hardware/~/revisions/aurjDoOhAcnQLHeoR1ks/card-readers/mms-dyna-devices/emv-common-kernel/dynaflex-ii-go/documents/developers-manuals/programmers-manual-commands/commands/file-operations/start-send-file-to-device-secured.md). # Start Send File to Device (Secured) ## Command 0xD811 - Start Send File to Device (Secured) The host uses this command to start sending secured files to the device for storage or processing. It is similar to **Command 0xD812 - Start Send File to Device (Unsecured)**, but is used to send a different subset of file types that impact device security and require some form of authentication from the host. Refer to Table 206 to determine which file type requires a secure command. All files require the command to be authorized via a secure wrapper. In some cases, files include additional signatures within the file structure itself. This command is paired with **Command 0xD821 - Start Get File from Device**, which the host can use to retrieve files. However, some file types are “one way only” and cannot be retrieved using that command after the host sends them to the device. {% stepper %} {% step %} ### Sequence of Events — Step 1 The host uses **Command 0xE001 - Get Challenge** to establish a secure session with the device. {% endstep %} {% step %} ### Sequence of Events — Step 2 The host determines which file type it will send to the device (see section **6.7.1** **About Files**), and either opens an existing file in its file system for reading, or begins constructing it. {% endstep %} {% step %} ### Sequence of Events — Step 3 The host constructs **Command 0xD811 - Start Send File to Device (Secured)** per **Table 212**. {% endstep %} {% step %} ### Sequence of Events — Step 4 The host constructs **Command 0xEEEE - Send Secured Command to Device** using the previously constructed command as the payload, and sends that command to the device as a **Request Message** to start the process of uploading a file. Sub-steps and notes for building the secured wrapper: * Use **Command 0xEF11 - Get Key Info** to gather information about the key to use to secure the message payload(s). Because this command requires a MAC, use key slot 1111. * Build the **Security Parameters Type** portion of the wrapper with: * Security Operation Type populated with the following values: * Operation Type = **Command Authorization Using MAC** * Operation Algorithm = CMAC * Operation Cipher = AES-256 * Padding = One and zeros * **MAC Block Size** with any number * **Key Information Type** populated with the key information gathered earlier. {% endstep %} {% step %} ### Sequence of Events — Step 5 The device sends a **Response Message** so the host knows it can begin sending the file. {% endstep %} {% step %} ### Sequence of Events — Step 6 The host sends a **Data File Message** to the device. If the device does not receive file data within a reasonable period of time, it times out and stops listening for the data file. {% endstep %} {% step %} ### Sequence of Events — Step 7 The device checks to make sure the **File ID** and the length and hash of the File Payload match with the values the host specified in this command. {% endstep %} {% step %} ### Sequence of Events — Step 8 The device repeats the same **Response Message**, this time with the **Message Reference Number** set to the same value the host used in the **Data File Message**. {% endstep %} {% endstepper %} ## Table - Request Data for Command 0xD811 - Start Send File to Device (Secured)
TagLenValue / DescriptionTypReqDefault
Beginning of any wrappers, at minimum including Request Message
D811 = Command 0xD811 - Start Send File to Device (Secured)
8104File ID from Table 206BR
A2varFile transfer propertiesTR
/81Var

Length of File Payload

This is the length of the File Payload parameter in the Data File Message the host sends to the device.

BR
/8201

Hash Checksum Type

  • 0x04 = SHA-256
BR
/8320Hash Checksum Anticipated checksum calculated against the File Payload, according to the standard specified in Hash Checksum Type.BR
A3varFile Description The host should populate this value to help identify the file using Command 0xD825 - Get File Info from Device.TR
/81varFile Name Maximum length 32 bytes Reserved for future use. Leave empty.BONull
/82varFile Label Maximum length 16 bytes Reserved for future use. Leave empty.BONull
/83varFile Version Maximum length 7 bytes Reserved for future use. Leave empty.BONull
/84varFile Date Maximum length 20 bytes Reserved for future use. Leave empty.BONull
8701Reserved for future use. Leave empty.BONull
End of any wrappers, at minimum including Request Message
## Table - Response Data for Command 0xD811 - Start Send File to Device (Secured)
TagLenValue / DescriptionTypReqDefault
Beginning of any wrappers, at minimum including Response Message
D811 = Command 0xD811 - Start Send File to Device (Secured)
No parameters.
End of any wrappers, at minimum including Response Message
If the request started successfully, the Request Status in the message wrapper is **OK, Started / Running, All good / requested operation was successful**. {% hint style="info" %} For additional support, please contact MagTek Support. {% endhint %} ## Table - Request Example | Example (Hex) | | ----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | AA 00 81 04 01 04 D8 11 84 81 8F EE EE A1 19 81 05 03 03 06 02 08 84 00 85 00 A8 0A 81 02 11 02 82 00 86 00 88 00 A9 00 82 04 FF FF FF F0 83 08 C9 65 45 F2 97 69 85 B1 84 4E D8 11 81 04 00 00 03 00 A2 2B 81 04 00 00 02 99 82 01 04 83 20 87 A4 B3 54 61 C5 CB D3 1D DC BA 9D 65 25 5A D4 6A 22 FA 51 5E FD 65 87 AF AC A8 8C 4F AF 80 9B A3 14 38 31 30 38 33 30 33 30 33 30 33 30 33 33 33 30 33 30 87 01 01 9E 10 7D E4 27 C8 A0 70 72 08 19 0A 1E 0A 3F 48 BB F1 | ## Table - Response Example | Example (Hex) | | ----------------------------------------- | | AA 00 81 04 82 0C D8 11 82 04 00 00 00 00 | --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://developer.magtek.com/hardware/~/revisions/aurjDoOhAcnQLHeoR1ks/card-readers/mms-dyna-devices/emv-common-kernel/dynaflex-ii-go/documents/developers-manuals/programmers-manual-commands/commands/file-operations/start-send-file-to-device-secured.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.