Introducing MIFARE DESFire EV2

Similar documents
Training. MIFARE4Mobile. Public. MobileKnowledge April 2015

Gemalto Mifare 1K Datasheet

Training MIFARE SDK. Public. MobileKnowledge June 2015

Transport Ticketing. Driving multi-application & transport ticketing on open standards.

A Secure and Open Solution for Seamless Transit Systems

OT PRODUCTS & SOLUTIONS TRANSPORT

NFC: Enabler for Innovative Mobility and Payment NFC: MOBILIDADE E MEIOS DE PAGAMENTO

advant advanced contactless smart card system

AN1305. MIFARE Classic as NFC Type MIFARE Classic Tag. Application note COMPANY PUBLIC. Rev October Document information

MF3ICD81, MF3ICD41, MF3ICD21

New Media for Transit Opportunities and challenges

Smart Tiger STARCHIP SMART TIGER PAYMENT PRODUCT LINE. Payment. STiger SDA. STiger DDA. STiger DUAL

AN1304. NFC Type MIFARE Classic Tag Operation. Application note PUBLIC. Rev October Document information

MF1 IC S General description. Functional specification. 1.1 Contactless Energy and Data Transfer. 1.2 Anticollision. Energy

WBS AFC Standard SW Solution Development

Payment and Identification Secure solutions

1. Product Overview 2. Product Features 3. Comparison Chart 4. Product Applications 5. Order Information 6. Q & A

The Contactless- NFC Project of ATM Barcelona

MF3ICDx21_41_ General description. MIFARE DESFire EV1 contactless multi-application IC. Product short data sheet COMPANY PUBLIC

Infineon Chip Card & Security Security for the connected world

Worldwide Smart Card Implementations using GlobalPlatform Standards

MIFARE ISO/IEC PICC

Using Contactless Smart Cards for Secure Applications

Banking. Extending Value to Customers. KONA Banking product matrix. is leading the next generation of payment solutions.

Significance of Tokenization in Promoting Cloud Based Secure Elements

MIFARE Trademark Usage Guidelines

Mifare DESFire Specification

Mobile Electronic Payments

Offering you the New Age of Vending and Micro Markets The Most Technologically Advanced System in the World!

MIFARE CONTACTLESS CARD TECHNOLOLGY AN HID WHITE PAPER

Secure Automatic Ticketing System

Chip Card & Security ICs Mifare NRG SLE 66R35

NFC Application Mobile Payments

Loyalty Systems over Near Field Communication (NFC)

Using RFID Techniques for a Universal Identification Device

M2M For industrial and automotive

NACCU Migrating to Contactless:

CONTACTLESS INTEROPERABILITY IN TRANSIT

The Future Of Cloud based Ticketing. Ernst Bovelander Director Advisory Services

Training. NFC in Android. Public. MobileKnowledge October 2015

AN MIFARE DESFire as Type 4 Tag. Rev May Application note COMPANY PUBLIC. Document information.

Supporting Smart Cards in UEFI

Calypso Technology. A leader application to build up eticketing systems for modern and smart urban transport systems of the future

Transaction Security. Advisory Services

IDENTITY SOLUTIONS END-TO-END SYSTEMS SOLUTIONS TO PROTECT IDENTITIES AND SECURE ACCESS FOR A MOBILITY WORLD

Secure egovernment Where convenience meets security.

From Barcodes to the Internet of Things. Patrick Pype Director European Affairs NXP Semiconductors

Best Practices for the Use of RF-Enabled Technology in Identity Management. January Developed by: Smart Card Alliance Identity Council

NFC Tags & Solutions. Understanding Near Field Communication (NFC) Technology. Executive Summary

RESEARCH SURVEY ON MIFARE WITH RFID TECHNOLOGY

MF0ICU2. 1. General description. MIFARE Ultralight C. 1.1 Contactless energy and data transfer. 1.2 Anticollision. Rev May

Guard All Security Symposium. Identity and Access Management

Preventing fraud in epassports and eids

Smart Card Technology Capabilities

Documentation of Use Cases for NFC Mobile Devices in Public Transport

AN Software Design Guide for POS Development Kit OM5597/RD2663. Rev August Application note COMPANY PUBLIC

Karsten Nohl University of Virginia. Henryk Plötz HU Berlin

Common requirements and recommendations on interoperable media and multi-application management

NXP Secure Smart Card Controllers P5CD016V1D / P5CD021V1D / P5CD041V1D / P5Cx081V1D with DESFire EV1

RF-Enabled Applications and Technology: Comparing and Contrasting RFID and RF-Enabled Smart Cards

Store Logistics and Payment with Near Field Communication

Entrust Smartcard & USB Authentication

Identiv is a publicly traded company and its common stock is listed on the NASDAQ Capital Market in the U.S. under the symbol INVE.

Enhancing the Contactless Cards UAT. Enabling faster and efficient transactions.

Frequently Asked Questions

PN532 NFC RFID Module User Guide

Chytré karty opět o rok dál...

Infineon Chip Card & Security ICs Portfolio

Enhancing everyday products with NFC Welcome to the Internet of Things.

Hacking Mifare Classic Cards. Márcio Almeida

Secure Element Deployment & Host Card Emulation v1.0

Readers and Credentials. from Security Technologies

Converged Smart Card for Identity Assurance Solutions. Crescendo Series Smart Cards

SALTO Systems I SALTO Carriers. innovation in ID technology. MIFARE DESFire

Transaction Security. Training Academy

Developing a new Protection Profile for (U)SIM UICC platforms. ICCC 2008, Korea, Jiju Septembre 2008 JP.Wary/M.Eznack/C.Loiseaux/R.

Contactless Smart Cards vs. EPC Gen 2 RFID Tags: Frequently Asked Questions. July, Developed by: Smart Card Alliance Identity Council

NFC. Technical Overview. Release r05

Smart Card Application Standard Draft

CHAPTER 5 SMART CARD TECHNOLOGY

MOBILE NEAR-FIELD COMMUNICATIONS (NFC) PAYMENTS

Smart Cards a(s) Safety Critical Systems

Touch & Travel a SIM-based eticketing System

We make cards and payments work for people as a part of everyday life. We bring information to life

Security on NFC-Enabled Platforms

USING MIFARE CLASSIC TAGS VERSION

Secure & Convenient Smartphones in egovernment

Smart Ride: European transit systems move to contactless mobile payments Trends and Developments, May 05, 2015

Exercise 1: Set up the Environment

Workshop: NEAR FIELD COMMUNICATION TECHNOLOGY

INTRODUCTION AND HISTORY

The Data Center of the Future: Creating New Jobs in Europe

NFC Tags. A technical introduction, applications and products

Transcription:

Z Introducing MIFARE DESFire EV2 Q3 2014 Rainer Lutz, Joo Ming Chua ID Customer Day 2013 1

Agenda Introduction to the world of NXP MIFARE MIFARE DESFire IHS analysis of the transport ticketing market An invitation to explore new business opportunites enabled by MIFARE DESFire EV2 innovations Key innovative features explained Conclusions & possible next steps for you

We bring Security & Convenience NXP is #1 with over 8B units shipped Source: NXP

And is now a platform available across form factors including banking cards and in mobile devices. NXP is the Identification Industry s #1 Semiconductor Supplier egovernment Bank Cards Smart Mobility & Access Management Cards Tags & Authentication Smart Readers Mobile Devices MIFARE DESFire was designed for smart mobility and access

MIFARE the application platform

Media Value NXP s MIFARE Product Portfolio multi-interface CPU card and mobile ICs contactless CPU card ICs PN65T P60D040 J3A041 / J3C081 limited-use ticket ICs MIFARE Ultralight C MIFARE Ultralight EV1 MIFARE Ultralight contactless memory card ICs MIFARE Classic 4k MIFARE Classic 1K MIFARE Plus S/X 4K MIFARE Plus S/X 2K MIFARE DESFire EV2 4K MIFARE DESFire EV2 8K MIFARE DESFire EV2 2K JTA021 P5CD0XX SmartMX Products Functionality 6

MIFARE DESFire by Numbers >300Mpcs shipped >65% annual growth in average for the last 10 years Proven in >30 applications Powering eticketing in >60 cities >10 regional & countrywide schemes Managing access to >250 companies and institutions Supported by leading system integrators Available as implementation on SmartMX >5 Licensees NFC Forum Type 4 Tag compliant #1 rank by ABI research secure microcontroller for transport ticketing category Compliant to >10 standards and industry best practices

Some MIFARE DESFire reference projects Contactless Betalen Open Cash finle Kesko Loyalty Vancouver Seattle San Francisco Monterrey Rosario GM University of Arizona Mexico DF University of Michigan Car2Go St. Louis Toronto University of Pennsylvania Miami Costa Rica ITSO Reims Toulouse London Oyster Madrid Bilbao Istanbul Theme park Orange Cairo & Egypt Railways Nairobi Google Beba Mpumalanga province Berlin Library Hamburg University 1FC Köln Nile University Dubai Abu Dhabi German blood donor card Prague Lubljana Tap&Go Parking Mumbai Velocity Loyalty EU commission Ankara Helsinki Nestlé Daimler Benz Bangalore Vietin Melbourne Kolkata New Delhi Wladiwostok Nanjing Citizen card Bangkok E-money Loyalty BKK Transdev Studios Sydney DoD New Zealand countrywide Road Tolling Public transport Access Management Micro payment Other applications

MIFARE DESFire EV2 speaking the language of the world s leading system integrators

Smart Cards in Transportation World Market 2013 Edition IHS Electronics & Media

IHS Key Global Market Findings It is estimated that 995 million smart cards were sold into transportation applications in 2012. This number is forecast to grow at a CAGR of 14.6%, reaching 2.3 billion shipments in 2018. IHS Electronics & Media

IHS Global Card Shipments IHS Smart Cards in Transportation World 2013 Report Analyst: Wincey.Tang@ihs.com Global Smart Credentials Shipped - By Technology Format (Not Including Limited Use) Thousands of Cards Shipped 2018 2013 2012 By 2018, MIFARE DESFire is projected to reach 111 million which is only 11 million fewer than MIFARE Classic, making it the fastest growing microcontroller card in the market, over the forecast period. 0% 10% 20% 30% 40% 50% 60% 70% 80% 90% 100% MIFARE DESFire MIFARE Classic MIFARE Plus Calypso FeliCa CiPurse S/ CiPurse T MOC Other - Chip Card Source: IHS Aug-13 IHS Electronics & Media

The value of MIFARE DESFire EV2 innovations

To elevate the value for our key applications we have innovated along 3 strategic axes Contactless Performance Convenient touch n go experience through improved operating distance Fast and reliable transactions Design freedom for smaller form factors on the credential and reader side. Security & Privacy Next level certification Security self healing mechanism with rolling keys Assuring authentication in multi operator schemes Anticipating future need for privacy protection Multi-application Enabling new business models through seamless integration of additional services in the field Cross system interoperability Easy migration through backwards compatibility with MIFARE DESFire and MIFARE Classic infrastructure

Key innovation features explained

MIFARE DESFire EV2 Key Features Performance Security & Privacy Multi Application Functional backwards compatible to DESFire EV1 Drop-In Replacement MIsmartApp supporting post-issuance applications Multi-Application Multiple file access conditions Enhances Key Management File sharing between applications Common Purse Multiple Rolling Keysets per application Update Keys in the Field Transaction MAC Fraudulent Transaction Claim Protection Proximity Check Relay Attack Protection Virtual Card Architecture Privacy Protection Improved transaction speed (vs DESFire EV1) Faster Transactions Improved RF performance (vs DESFire EV1) More Operating Range

Transaction MAC (Message Authentication Code) Contactless systems with multiple operators / merchants merchants might not be fully trusted by the clearing instance Making the transaction trusted in MIFARE DESFire EV2: MAC computed over all transaction data by the card Using an AES key that is only known by the card and the backend system Transaction MAC allows the backend system to detect: Forged transactions Replay of valid transactions Unreported transactions (e.g. important for Credit operations)

Transaction MAC System level illustration A TMAC is calculated over the transaction data and is returned by the card Transaction is only accepted for reimbursement with a valid TMAC Backend Clearing House K TMAC Merchant Terminal K Transaction Transaction K Transaction Transaction data + TMAC Submit claims TMAC K TMAC TMAC check OK $ Reimburse

Multiple Rolling Keysets Secure and Reliable updating keys in the field Increase system security with key renewal policy A self-healing mechanism in the event of keys being compromised Application 1 Application 2 Application Keys Application n Active Keyset RollKey command Keyset 2 Keyset 16 Up to 16 keysets per application Std. Data File BackUp Data File Cyclic Record File Linear Record File Value File

Key Updating Reader New Cards Multiple Rolling Keysets per Application Increase system security with key renewal policies Limit the lifespan of each keyset version and its exposure in the field A self-healing mechanism after a keyset has been compromised The next higher keyset version stored on the card can be activated quickly and securely on any terminals in the field New Cards Keyset 1 Keyset 2 Keyset 3 Keyset 4 Keyset 5 Infrastructure support KS1 KS1 KS2 KS1 KS2 KS3 KS2 KS3 KS4 KS3 KS4 KS5 Key rolling during transaction KS1 KS2 KS1 KS3 KS2 KS3 KS1 revoke* KS2 KS4 KS3 KS4 KS1 revoke* KS2 revoke* KS3 KS5 KS4 KS5

Multiple Rolling Keysets per Application Security upgrade with key type migration Migrate applications to higher security For existing MIFARE DESFire installations using 3DES crypto to migrate to AES or 3K3DES crypto progressively. 3DES 3K3DES 3DES AES Application x Roll Keyset Application x 3DES AES AES

MIsmartApp Allowing secure application creation in already deployed cards facilitating sharing of a card for multi-application. App. keys App. keys Card Issuer/Owner Service providers / Application owners Card Owner has only access to his applications but not to third party applications EV2 Service provider has entire access to his application

MIsmartApp Card Issuer/Owner can generate a MIsmartApp token for anyone who wants to put their applications on his deployed cards. The MIsmartApp token allows only an agreed application to be created on the cards. PICC keys Request MIsmartApp Token & K MIsmartApp Service providers / Application owners Card Issuer/Owner

MIsmartApp Illustrating an App Store concept with a City card where the card holders can install new applications available for his card at his convenience. CARD ISSUER APP PROVIDERS MIsmartApp Token delivery 1 Master key never shared!!! CARD HOLDER Commercial agreement Upload APP in STORE 2 Card holders install APPs 3 APP STORE

MIsmartApp Interoperability with one card in two separate system environments DMRC (PTO) Request Send MIsmartApp Token & Key Delhi Metro Travel Card MIFARE DESFire EV1 4KB Delhi Metro Travel Card MIFARE DESFire EV2 8KB New Delhi Bangalore BMRCL (PTO) Namma Metro Travel Card MIFARE DESFire EV1 4KB

Feature comparison MIFARE DESFire, EV1, EV2 MIFARE DESFire MIFARE DESFire EV1 MIFARE DESFire EV2 ISO/IEC 14443 A 1-4 ISO/IEC 7816-4 commands and file structure support basic extended extended EEPROM data memory 4KB 2/4/8KB 2/4/8KB Flexible file structure NFC Forum Tag Type 4 V2.0 compliant Secure, high-speed command set Unique ID 7BUID 7BUID or 4B random ID 7BUID or 4B random ID Number of applications 28 28 unlimited Number of files 16 32 32 High data rates according to ISO/IEC 14443-3 up to 424 Kbit/s up to 848 Kbit/s up to 848 Kbit/s Crypto algorithm DES/2K3DES DES/2K3DES/3K3DES/AES DES/2K3DES/3K3DES/AES Unique 7-byte serial number (ISO cascade level 2) Common Criteria certification (HW + SW) EAL 4+ EAL 5+ or higher (in progress) MIsmartApp feature for post-issuance of applications Transaction MAC to authenticate transactions Multiple keysets per application for key rolling Multiple access right settings per file Files sharing between 2 applications Virtual Card architecture for privacy protection Proximity Check against relay attacks Up to 16 keysets per app Up to 8 keys per access Delivery types wafer & MOA4 wafer, MOA4 & MOA8 wafer & MOA4

MIFARE DESFire implementations

MIFARE DESFire implementations by NXP and our licensees NXP MIFARE DESFire EV1 is available on the SmartMX and SmartMX 2 platforms from NXP and will be part of NXP s mobile offering. MIFARE DESFire EV2 is available on future SmartMX platform releases. MIFARE Licensees MIFARE DESFire EV1 is available on IC solutions from STM as well as on UICC SIM solutions form Gemalto, G&D and Oberthur. Key functionality of MIFARE DESFire EV2 has been shared with our licensees. Our MIFARE licensees are required to support the latest version in a defined window after the release of the original NXP product. The actual product availability depends on the individual licensee.

MIFARE DESFire EV2 for you

MIFARE DESFire EV2 for system design ins Documents & Tools Leaflet & Data Sheet Available NXPReaderLib, MIFAREdiscover SW, Application Notes In progress Pricing MIFARE DESFire EV2 offers a wealth of innovations and is positioned at the same price level as MIFARE DESFire EV1 Updated: 2014-08-08

Conclusions & next steps Speaking the language of leading system integrators, MIFARE DESFire EV2 brings a rich heritage to the next level. You can immediately enjoy the improved operating distance and speed in existing MIFARE DESFire installations. System operators are enabled to launch new business models offering additional revenue streams. System integrators will enjoy the functional backwards compatibility and smart feature extensions.

Thank you Please visit us on MIFARE.net

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information