MF1PLUS6001DUD/02, NXP Semiconductors, MF1PLUS6001DUD/02, Datasheet - Page 9

RFID Modules & Development Tools MF1PLUS6001DUD/UNCASED/FOIL//0

MF1PLUS6001DUD/02,

Manufacturer Part Number

MF1PLUS6001DUD/02,

Description

RFID Modules & Development Tools MF1PLUS6001DUD/UNCASED/FOIL//0

Manufacturer

NXP Semiconductors

Datasheet

1.MF1PLUS6001DUD03.pdf (20 pages)

Specifications of MF1PLUS6001DUD/02,

Security

MIFARE CRYPTO1, AES

Product

Smart Card

Data Rate

848 Kbps

Antenna

On-Board

Current page: 9 of 20
Download datasheet (154Kb)

NXP Semiconductors

MF1PLUSX0Y1_SDS_31

Product short data sheet

PUBLIC

8.2.2 ISO/IEC 14443-4 Protocol

8.3 Security level switching

8.4 Security level 0

The ISO/IEC 14443-4 Protocol (also known as T=CL) is used in many processor cards.

This protocol is used for the MIFARE Plus with the following security levels:

The MIFARE Plus X offers a unique feature to support migration from CRYPTO1 based

systems to AES based operation. The migration on the card-side is done using different

security levels supporting different cryptographic algorithms and protocols. There are four

security levels:

If the card is a L3 card the Commit Perso command will switch the card directly from

security level 0 to security level 3 instead of security level 1.

The security level switching (i.e. from security level 1 to security level 3) is performed

using the dedicated AES authentication switching keys.

The security level can only be switched from a lower to a higher level, never in the

opposite direction.

Security level 0 is the initial delivery configuration of the PICC. The card can be operated

either using the backwards compatibility protocol or the ISO/IEC 14443-4 protocol.

In this level, the card can be personalized including the programming of user data as well

as CRYPTO1 and/or AES keys. In addition, the originality function can be used.

The following mandatory AES keys must be written, using the Write Perso command

before the PICC can be switched to security level 1 or security level 3 (for L3 card).

•

Security Level 0: all commands

Security Level 1: only the security level switch and originality function

Security Level 2: updating AES keys and configuration blocks as well as the security

level switch and originality function

Security Level 3: all commands

Security level 0: initial delivery configuration, used for card personalization

Security level 1: backwards functional compatibility mode (with MIFARE Classic 1K

and MIFARE Classic 4K) with optional AES authentication

Security level 2: 3-Pass authentication based on AES followed by MIFARE CRYPTO1

authentication, communication secured by MIFARE CRYPTO1

The MIFARE CRYPTO1 uses session keys derived from the AES and MIFARE

CRYPTO1 authentication.

Security level 3: 3-Pass authentication based on AES, data manipulation commands

secured by AES encryption and an AES based MACing method

All information provided in this document is subject to legal disclaimers.

Rev. 3.1 — 19 April 2010

163531

Mainstream contactless smart card IC

MF1PLUSx0y1

9 of 20

MF1PLUS6001DUD/02, NXP Semiconductors, MF1PLUS6001DUD/02, Datasheet - Page 9

MF1PLUS6001DUD/02,

Specifications of MF1PLUS6001DUD/02,

Related parts for MF1PLUS6001DUD/02,