P5DF072EV2/T0PD409 NXP Semiconductors, P5DF072EV2/T0PD409 Datasheet - Page 7

P5DF072EV2/T0PD409

Manufacturer Part Number

P5DF072EV2/T0PD409

Description

IC SAM MIFARE SAM AV1 8PLLCC

Manufacturer

NXP Semiconductors

Datasheets

1.OM5588N5331U0169.pdf (17 pages)

2.P5DF072EV2T0PD409.pdf (22 pages)

Specifications of P5DF072EV2/T0PD409

Rf Type

Read / Write

Frequency

1MHz ~ 10MHz

Package / Case

Module

Lead Free Status / RoHS Status

Lead free / RoHS Compliant

Features

Lead Free Status / RoHS Status

Lead free / RoHS Compliant, Lead free / RoHS Compliant

Other names

935285621118

Current page: 7 of 22
Download datasheet (174Kb)

NXP Semiconductors

P5DF072EV2/T0PD4090_SDS_31

Product short data sheet

PUBLIC

7.5.3 SAM security related commands

SAM_ChangeKeyPICC

This command generates the cryptogram that has to be sent to the PICC in order to

change any key stored in the PICC. Both the current and the new key need to be stored in

the KST to execute this command. This means a new PICC key needs to be loaded into

the SAM prior to issuing this command.

SAM_DumpSessionKey

The command SAM_DumpSessionKey can be used to retrieve the session key generated

by the SAM.

The session key could be retrieved either in plain or encrypted with the session key of any

logical channel. A CRC is appended before encryption as usual.

SAM_DisableKeyEntry

The SAM_DisableKeyEntry command disables a key entry. After executing this

command, the corresponding disable flag in the key entry is set and the key entry cannot

be used anymore for authentication and key change procedures. The key entry can still be

read by a SAM_GetKeyEntry command. To reactivate the entry, a SAM_ChangeKeyEntry

command has to be issued. All fields in the key entry can still be changed by this

command even if the entry has been disabled.

SAM_ChangeKeyMIFARE

This command is intended to change a key in a MIFARE card. The command allows:

In the latter case, the key can be retrieved encrypted from the SAM using the current

available session key of the channel (host authentication required). The first case requires

an active MIFARE authentication for producing the stream to be sent to the card.

SAM_AuthenticateHost

The command SAM_AuthenticateHost is used to run a mutual 3-pass authentication

between the SAM and host system.

SAM_SelectApplication

The command SAM_SelectApplication is the equivalent of the SelectApplication

command of DESFire. The SAM generates a list of available keys linked to the specified

Application ID as defined in the key entry property ‘DF_AID’.

SAM_AuthenticatePICC

In this procedure both the PICC as well as the SAM device show in an encrypted way that

they posses the same secret which especially means the same key. This procedure not

only confirms that both entities are permitted to do operations on each other but also

creates a session key which can be used to keep the further communication path secure.

As the name ‘session key’ implicitly indicates, each time a new authentication procedure

is successfully completed a new key for further cryptographic operations is obtained.

•

a prepared encrypted stream to be written to a MIFARE 1K or 4K card containing the

desired keys and the given access conditions

reading out a single MIFARE key to be used for any kind of MIFARE transaction in a

host system directly

All information provided in this document is subject to legal disclaimers.

Rev. 3.1 — 14 June 2010

189731

P5DF072EV2/T0PD4090

MIFARE SAM AV1

7 of 22

P5DF072EV2/T0PD409 NXP Semiconductors, P5DF072EV2/T0PD409 Datasheet - Page 7

P5DF072EV2/T0PD409

Specifications of P5DF072EV2/T0PD409

Related parts for P5DF072EV2/T0PD409