2
} High data rates up to 848 kbit/s } Available in MOA4 modules or 8-inch sawn bumped wafer NXP MIFARE Plus is based on global standards both for air interface and cryptographic methods. It’s available in two versions: MIFARE Plus S, the Standard version, for straightforward migration of MIFARE Classic systems, and MIFARE Plus X, the eXpert version, which offers more flexibility to optimize the command flow for speed, privacy and confidentiality. It offers a rich feature set, including proximity checks against relay attacks. MIFARE Plus is fully functional backwards compatible with MIFARE 1 K, 4 K and Mini. Interoperability with MIFARE Classic has been verified by the MIFARE Certification Institute. It offers the possibility to issue cards seamlessly into existing Classic applications, before the infrastructure is upgraded. Once the security upgrades are in place, MIFARE Plus cards can be switched to a more secure mode in the field with no customer interaction necessary. It then uses AES (advanced encryption standard) for authentication, encryption and data integrity. NXP MIFARE PLUS - benchmark security for mainstream applications Key applications } Public transportation } Access management, e.g. employee, school or campus cards } Electronic toll collection } Car parking } Internet cafes } Loyalty programs Key features } 2- or 4-KB EEPROM } Simple fixed memory structure compatible with MIFARE Mini (MF1ICS20), MIFARE 1 K (MF1ICS50), MIFARE 4 K (MF1ICS70) } Access conditions freely configurable } Smooth migration from Classic to Plus security level supported } Open standard AES crypto for authentication, integrity and encryption } Composite Common Criteria Certification: EAL4+ } ISO/IEC 14443-A unique serial number, 4 or 7 byte and random IDs } Multi-sector authentication, multi-block read and write } Anti-tear function for writing AES keys } Keys can be stored as MIFARE CRYPTO1 keys (2 x 48 bit per sector) or as AES keys (2 x 128 bit sector) } Supports virtual card concept MIFARE PLUS brings benchmark security to mainstream contactless smart card applications. It is the only mainstream technology compatible with MIFARE 1 K / 4 K / Mini offering a seamless upgrade path, with minimal effort, for existing infrastructure and services. Migrate mainstream contactless smart card systems to the next security level

Mifare Plus

Embed Size (px)

Citation preview

Page 1: Mifare Plus

} High data rates up to 848 kbit/s} Available in MOA4 modules or 8-inch sawn bumped wafer

NXP MIFARE Plus is based on global standards both for air interface and cryptographic methods. It’s available in two versions: MIFARE Plus S, the Standard version, for straightforward migration of MIFARE Classic systems, and MIFARE Plus X, the eXpert version, which offers more flexibility to optimize the command flow for speed, privacy and confidentiality. It offers a rich feature set, including proximity checks against relay attacks. MIFARE Plus is fully functional backwards compatible with MIFARE 1 K, 4 K and Mini. Interoperability with MIFARE Classic has been verified by the MIFARE Certification Institute. It offers the possibility to issue cards seamlessly into existing Classic applications, before the infrastructure is upgraded. Once the security upgrades are in place, MIFARE Plus cards can be switched to a more secure mode in the field with no customer interaction necessary. It then uses AES (advanced encryption standard) for authentication, encryption and data integrity.

NXP MIFARE PLUS - benchmark security for mainstream applications

Key applications} Public transportation} Access management, e.g. employee, school or campus cards} Electronic toll collection} Car parking} Internet cafes} Loyalty programs

Key features} 2- or 4-KB EEPROM} Simple fixed memory structure compatible with MIFARE Mini

(MF1ICS20), MIFARE 1 K (MF1ICS50), MIFARE 4 K (MF1ICS70)} Access conditions freely configurable} Smooth migration from Classic to Plus security level supported} Open standard AES crypto for authentication, integrity and

encryption} Composite Common Criteria Certification: EAL4+} ISO/IEC 14443-A unique serial number, 4 or 7 byte and

random IDs} Multi-sector authentication, multi-block read and write} Anti-tear function for writing AES keys} Keys can be stored as MIFARE CRYPTO1 keys

(2 x 48 bit per sector) or as AES keys (2 x 128 bit sector)} Supports virtual card concept

MIFARE PLUS brings benchmark security to mainstream contactless smart card applications. It is the only mainstream technology compatible with MIFARE 1 K / 4 K / Mini offering a seamless upgrade path, with minimal effort, for existing infrastructure and services.

Migrate mainstream contactless smart card systems to the next security level

Page 2: Mifare Plus

storage and AES calculation for a reader device. To support the design-in process for reader manufacturers and solutions developers, NXP has MIFARE Plus documentation, application notes, and software toolkits available.

MIFARE pedigreeThe NXP MIFARE portfolio is the leading technology platform for contactless ticket, card, and reader solutions. It is a proven and reliable technology and, with more than 10 million read core components, 1 billion cards, and 800 million smart ticket ICs sold, has the largest installed base worldwide. MIFARE complies with the international standard ISO/IEC 14443 A, ensuring that today’s infrastructure can easily be upgraded. It makes it possible for service providers to expand their transportation networks and integrate additional services, such as payment systems for taxi fares, cinema and theatre tickets, loyalty programs, access management, and parking – while reducing the total costs of operations.

MIFARE Plus supports high-speed communication between card and terminal at up to 848 kbps/s, for time critical services. The read range of up to 10 cm increases the convenience of the touch-and-go experience.

Security levelsMIFARE Plus cards support four security levels (0 through 3) as described below. Cards operate in one security level at any given time and can only be switched to a higher level.

An automatic anti-tear mechanism is available for secure deployment of rolling keys. If a card is removed from the field during a key update, it either concludes the update or automatically falls back to the previous key.MIFARE Plus is available in the proven MOA4 module and as sawn bumped wafers, so no changes need to be made to existing manufacturing processes. For benchmark security on the reader side, the MIFARE SAM AV2 (secure application module) is available. The Common Criteria 5+ certified IC includes all MIFARE Plus commands, secure key

Product Features MIFARE PLUS S 2 K MIFARE PLUS S 4 K MIFARE PLUS X 2 K MIFARE PLUS X 4 K

Memory

EEPROM size [byte] 2 K 4 K 2 K 4 K

Write endurance [typical cycles] 200 000

Data retention [years] 10

Organization 32 sectors with 4 blocks32 sectors with 4 blocks8 sectors with 16 blocks

32 sectors with 4 blocks32 sectors with 4 blocks8 sectors with 16 blocks

RF-Interface

Acc. To ISO 14443A yes - up to layer 4

Frequency [MHz] 13.56

Baudrate [kbit /s] 106 … 848

Anticollision bit-wise

Security

Unique Serial Number [byte] 4 or 7

4 byte Random ID yes in SL3

True Random Number Generator yes

Access keys CRYPTO1 or AES keys per sector

Access conditions per sector

AES security CMACing CMACing / Encipherment

Anti-tearing for AES keys, sector trailers and configuration

Cryptography AES (128 bit), CRYPTO 1

Special Features

Supported MF PLUS levels SL1, SL3 SL1, SL2, SL3

Multi-sector authentication yes

Virtual card support yes, limited command set yes, full command set

Proximity check no yes

Packaging

Sawn Wafer (Au Bumped)

7 byte UID MF1SPLUS6001DUD/01 MF1SPLUS8001DUD/01 MF1PLUS6001DUD/01 MF1PLUS8001DUD/01

4 byte UID MF1SPLUS6011DUD/01 MF1SPLUS8011DUD/01 MF1PLUS6011DUD/01 MF1PLUS8011DUD/01MOA4 Module

7 byte UID MF1SPLUS6001DA4/01 MF1SPLUS8001DA4/01 MF1PLUS6001DA4/01 MF1PLUS8001DA4/01

4 byte UID MF1SPLUS6011DA4/01 MF1SPLUS8011DA4/01 MF1PLUS6011DA4/01 MF1PLUS8011DA4/01

www.nxp.com

Date of release: April 2009

Document order number: 9397 750 16722

Printed in the Netherlands

© 2009 NXP B.V.

All rights reserved. Reproduction in whole or in part is prohibited without the prior written consent of the copyright owner.

The information presented in this document does not form part of any quotation or contract, is believed to be accurate and

reliable and may be changed without notice. No liability will be accepted by the publisher for any consequence of its use.

Publication thereof does not convey nor imply any license under patent- or other industrial or intellectual property rights.

} Securtiy level 0 MIFARE Plus cards are pre-personalized with configuration keys, level switching keys, crypto 1 and AES keys for the memory.

} Security Level 1 In this level the cards are 100% functionally backwards compatible with MIFARE 4 K/1 K/Mini cards. In this level the cards work seamlessly in existing Classic infrastructure. Card issuance can start before the reader upgrade. In addition already optional AES authentication is possible.

When the infrastructure is ready for Security Level 2 or 3, the MIFARE Plus cards can be automatically upgraded to higher levels, transparently, during normal user operation.

} Security Level 2 (Plus X only) Mandatory AES authentication. MIFARE Crypto for data confidentiality.

} Security Level 3 Mandatory AES for authentication, communication confidentiality and integrity. Optional proximity detection (Plus X only).


Mifare cards

Mifare cards

Technology
The MIFARE Hack - PROXMARKproxmark.nl/files/Documents/13.56 MHz - MIFARE Classic/The_MIFARE... · The MIFARE Hack Mathias Morbitzer m.morbitzer@student.ru.nl Radboud University Nijmegen

The MIFARE Hack - PROXMARKproxmark.nl/files/Documents/13.56 MHz - MIFARE Classic/The_MIFARE... · The MIFARE Hack Mathias Morbitzer [email protected] Radboud University Nijmegen

Documents
MIFARE Plus EV1 - TP-RFID

MIFARE Plus EV1 - TP-RFID

Documents
NXP NFC frontend CLRC663 plus - Digi-Key Sheets/NXP PDFs/CLRC663 plus... · NFC frontend CLRC663 plus NFC controller with ... ISO14443(1) Mifare, FeliCa ISO15693(2) ... ISO RefPICC

NXP NFC frontend CLRC663 plus - Digi-Key Sheets/NXP PDFs/CLRC663 plus... · NFC frontend CLRC663 plus NFC controller with ... ISO14443(1) Mifare, FeliCa ISO15693(2) ... ISO RefPICC

Documents
ID CPR40.xx Firmware mifare PLUS

ID CPR40.xx Firmware mifare PLUS

Documents
MFRC530 Standard MIFARE reader solution - …...MIFARE Classic, MIFARE 1K and MIFARE 4K products and protocols have the generic name MIFARE. 2. General description The MFRC530 is highly

MFRC530 Standard MIFARE reader solution - …...MIFARE Classic, MIFARE 1K and MIFARE 4K products and protocols have the generic name MIFARE. 2. General description The MFRC530 is highly

Documents
MIFARE Ultralight Datasheet

MIFARE Ultralight Datasheet

Documents
High-performance MIFARE and NTAG frontend … Semiconductors MFRC630 High-performance MIFARE and NTAG frontend MFRC630 and MFRC630 plus MFRC630Product data sheet All information provided

High-performance MIFARE and NTAG frontend … Semiconductors MFRC630 High-performance MIFARE and NTAG frontend MFRC630 and MFRC630 plus MFRC630Product data sheet All information provided

Documents
Mifare Classic analysis - Nethemba · Mifare Classic analysis ... one of the most used RFID card (more ... replacing all Mifare Classic cards to safer ones is

Mifare Classic analysis - Nethemba · Mifare Classic analysis ... one of the most used RFID card (more ... replacing all Mifare Classic cards to safer ones is

Documents
MIFARE Technical training - MobileKnowledge€¦ · MIFARE® Technical training ABOUT MIFARE ... Native APDU. ISO/IEC7816 wrapped APDU. ISO/IEC7816 native commands. MIFARE DESFIRE

MIFARE Technical training - MobileKnowledge€¦ · MIFARE® Technical training ABOUT MIFARE ... Native APDU. ISO/IEC7816 wrapped APDU. ISO/IEC7816 native commands. MIFARE DESFIRE

Documents
MIFARE Ultralight and MIFARE Ultralight EV1 Features … · Being MIFARE Ultralight EV1 MF0ULx1 backward compatible with MIFARE Ultralight MF0ICU1, the following chapter are applicable

MIFARE Ultralight and MIFARE Ultralight EV1 Features … · Being MIFARE Ultralight EV1 MF0ULx1 backward compatible with MIFARE Ultralight MF0ICU1, the following chapter are applicable

Documents
Over-the-Air top-up with MIFARE DESFire EV2 and MIFARE ...of data between the MIFARE DESFire EV2 IC, the mobile phone and the server backend. For both offline (MIFARE DESFire EV2 IC

Over-the-Air top-up with MIFARE DESFire EV2 and MIFARE ...of data between the MIFARE DESFire EV2 IC, the mobile phone and the server backend. For both offline (MIFARE DESFire EV2 IC

Documents
Mifare Manual

Mifare Manual

Documents
Dismantling MIFARE Classic - Digital security · Dismantling MIFARE Classic Flavio D. Garcia Institute for Computing and Information Sciences, ... RFID MIFARE Timeline Dec 2007 CCC

Dismantling MIFARE Classic - Digital security · Dismantling MIFARE Classic Flavio D. Garcia Institute for Computing and Information Sciences, ... RFID MIFARE Timeline Dec 2007 CCC

Documents
DINMTPX-MF Flush Mount Mifare Reader - VISUAL PLUS · DINMTPX-MF Flush Mount Mifare Reader Operating ... Wiegand 26, 34, 42, 58, 24, 32, 40, 56 bit 50m yes externally controlled

DINMTPX-MF Flush Mount Mifare Reader - VISUAL PLUS · DINMTPX-MF Flush Mount Mifare Reader Operating ... Wiegand 26, 34, 42, 58, 24, 32, 40, 56 bit 50m yes externally controlled

Documents
EM MiFare - CYBERSOFT

EM MiFare - CYBERSOFT

Documents
Secure Solutions Ensuring your peace of mind optional secure MIFARE libraries (MIFARE Plus ® and MIFARE® DESFire EV1/EV2 libraries) are available on ST platforms. ISO/IEC 14443 Type

Secure Solutions Ensuring your peace of mind optional secure MIFARE libraries (MIFARE Plus ® and MIFARE® DESFire EV1/EV2 libraries) are available on ST platforms. ISO/IEC 14443 Type

Documents
Mifare 1K - GMax

Mifare 1K - GMax

Documents
EC50-M Mifare Card Employee Time Clock - EasyClocking · EC50-M Mifare Card Employee Time Clock ... RFID Mifare Card Technology The Easy Clocking® EC50-M is our Mifare card Edition

EC50-M Mifare Card Employee Time Clock - EasyClocking · EC50-M Mifare Card Employee Time Clock ... RFID Mifare Card Technology The Easy Clocking® EC50-M is our Mifare card Edition

Documents
MIFARE Plus MF1SPLUSx0y1 - Common CriteriaMIFARE Plus MF1SPLUSx0y1 Security Target Lite, Rev. 1.2, NXP Semiconductors, 14 May 2010 1.2 TOE reference The term “NXP MIFARE Plus MF1SPLUSx0y1”

MIFARE Plus MF1SPLUSx0y1 - Common CriteriaMIFARE Plus MF1SPLUSx0y1 Security Target Lite, Rev. 1.2, NXP Semiconductors, 14 May 2010 1.2 TOE reference The term “NXP MIFARE Plus MF1SPLUSx0y1”

Documents
Mifare classic-slides

Mifare classic-slides

Technology
Mifare Reader Communication Protocol - SPV1 · 2017-05-02 · Mifare Reader Communication Protocol - SPV1, Release 1.0.0 Attention: Protect your SMR (SonMicro Mifare Reader/Module)

Mifare Reader Communication Protocol - SPV1 · 2017-05-02 · Mifare Reader Communication Protocol - SPV1, Release 1.0.0 Attention: Protect your SMR (SonMicro Mifare Reader/Module)

Documents
KS200-640 Server Cabinet Lock Series Installation … · SE, ISO 15693 ICLASS, ISO 14443A Mifare, Mifare Plus, Desfire SE, Desfire EV1, and NFC over HCE. System Overview The KS200

KS200-640 Server Cabinet Lock Series Installation … · SE, ISO 15693 ICLASS, ISO 14443A Mifare, Mifare Plus, Desfire SE, Desfire EV1, and NFC over HCE. System Overview The KS200

Documents
MIFARE DESFire - postisportugal.com · Mifare DESfire features HID iCLASS features MIFARE DESFire ... Mifare RFID contactless technology reads and writes information to contactless

MIFARE DESFire - postisportugal.com · Mifare DESfire features HID iCLASS features MIFARE DESFire ... Mifare RFID contactless technology reads and writes information to contactless

Documents
MIFARE DESFire - Front Page - TMB salto€¦ · Mifare, Mifare plus, Ultralight C, LEGIC Advant, LEGIC Prime, HID iCLASS®, Inside Picopass and SKIDATA allowing multi-application

MIFARE DESFire - Front Page - TMB salto€¦ · Mifare, Mifare plus, Ultralight C, LEGIC Advant, LEGIC Prime, HID iCLASS®, Inside Picopass and SKIDATA allowing multi-application

Documents
AN1305 MIFARE Classic as NFC Type MIFARE … MIFARE Classic as NFC Type MIFARE Classic Tag Rev. 1.3 — 2 October 2012 130513 Application

AN1305 MIFARE Classic as NFC Type MIFARE … MIFARE Classic as NFC Type MIFARE Classic Tag Rev. 1.3 — 2 October 2012 130513 Application

Documents
Mifare Ultralight

Mifare Ultralight

Documents
ABOUT CIVINTEC · 2020. 5. 25. · CN56X0B TCP/IP access control reader § Smart card chip technologies § 13,56MHz ISO 14443 Mifare® Classic, Mifare®Plus, DESFire® EV1 § ISO

ABOUT CIVINTEC · 2020. 5. 25. · CN56X0B TCP/IP access control reader § Smart card chip technologies § 13,56MHz ISO 14443 Mifare® Classic, Mifare®Plus, DESFire® EV1 § ISO

Documents
ISONAS Smart Card Credentials - MiFare DESFire EV2 · MIFARE DESFire EV2. The open architecture platform of the MIFARE DESFire EV2 provides superior performance,

ISONAS Smart Card Credentials - MiFare DESFire EV2 · MIFARE DESFire EV2. The open architecture platform of the MIFARE DESFire EV2 provides superior performance,

Documents
4 Byte and 7 Byte UID offering for MIFARE Classic™, MIFARE ... · PDF file1 4 Byte and 7 Byte UID offering for MIFARE Classic™, MIFARE Plus™, SmartMX™ and licensed products

4 Byte and 7 Byte UID offering for MIFARE Classic™, MIFARE ... · PDF file1 4 Byte and 7 Byte UID offering for MIFARE Classic™, MIFARE Plus™, SmartMX™ and licensed products

Documents