NXP's second-generation MIFARE Plus EV2 - MF1P (H) x2 IC comes with improved performance and security features, along with support for mobile services and wireless upgrades. MIFARE Plus EV2 is a fast and cost-effective way to upgrade your existing AES proximity infrastructure and provides a better experience, with greater convenience, in Smart City services. As the next generation of NXP's MIFARE Plus product family, the MIFARE Plus EV2 has been designed as a gateway for new Smart City applications and as an attractive security and connectivity upgrade for existing MIFARE Plus deployments. The IC has a greater read range and shorter transaction times compared to its predecessor, making contactless services more convenient to use, offering backward compatibility with MIFARE Classic EV1 and MIFARE Plus products, providing a cost-effective way to upgrade security features - without major investment in to start the migration.
Strong support for existing infrastructures
MIFARE Plus EV2 uses an innovative Security Level (SL) concept to help create a seamless, upgradeable legacy infrastructure to increase its security. The IC enables switching SL from low security (SL1) to high security (SL3) based on 128-bit AES security for authentication, data integrity checking and data protection. The SL switching can be applied to the integrated circuit as a whole or to its individual sectors. A special feature called SL1SL3MixMode allows you to enable secure AES-128 authentication in sectors based on MIFARE Classic EV1. This allows, in conjunction with the new SL1 upgrade limitations, to read data stored in a block with SL1 authentication, but updating data only works with AES-128 secure authentication. The MIFARE Plus EV2 block structure uses technological logic that conforms to the block structure of the Crypto1 application, so Crypto1 based deployments can retain their structural logic. This allows for cost-effective migration paths from legacy MIFARE Classic EV1 and Crypto1 standards to high-level 128-bit AES security. As the chip supports both the legacy and new infrastructure, end users can still conveniently use the same smart card while the system is updated to increase overall security.
Extended features for safe, non-contact, Smart City services
Special functions meet the need for increased security and privacy in Smart City services. For example, Transaction MAC (TMAC) can help to ensure the authenticity of each transaction to minimize fraud and identify theft. To help mitigate man-in-the-middle attacks, the new Transaction Timer feature, which is also available on the MIFARE DESFire EV3 chip, allows you to set a maximum time per transaction, making it more difficult for an attacker to interfere with the transaction. Support for EEPROM sizes up to 4 KB in turn helps meet the growing memory requirements of applications.
SUPPORT FOR MOBILE AND OVER-THE-AIR SERVICES
With MIFARE Plus EV2, Smart City services such as transport tickets can run on NFC-enabled smartphones and wearables, including watches and bands. MIFARE Plus EV2 support with Securit Level 3 supports the use of NXP's MIFARE 2GO cloud service, which manages digitized credentials based on MIFARE products and provides features such as contactless payments and mobile access using NFC-enabled devices. By using the secure, end-to-end communication channel (SL1SL3MixMode) provided by MIFARE Plus EV2, system operators can design additional revenue streams based on the introduction of wireless services such as mobile phone top-ups, even for older versions of Crypto1.
Key Applications
- Public transport
- Access control
- Closed-loop micropayments
- Student ID cards
- Loyalty programs
- Electronic toll collection
- Parking systems
Key Features
- Compliance with ISO/IEC 14443A 1-4 and ISO/IEC 7816-4,
- The MAC address generated on the card for transaction authentication Transaction Timer protects against man-in-the-middle attacks,
- Improved coverage and faster transaction speed compared to predecessors improve both user experience and security,
- Smooth migration of the existing infrastructure, with backward compatibility with MIFARE Classic EV1 and MIFARE Plus products,
- Higher level protection with upgrade from Crypto1 to 128-bit AES key,
- Bank-class security with Common Criteria EAL5 + certification,
- Distribution of access rights between SL1 and SL3 to limit update operations.
Żródło: NXP Semiconductors Austria GmbH Styria / Tłumaczenie: Netronix Sp. z o.o.
Cooperating devices
More information
NFC proximity standard of tomorrow
Near Field Communication is a standard for short-range, high-frequency wireless RFID communication operating at 13.56MHz.
LEGIC® secure RFID access control
Master-Token is a unique security concept used in the LEGIC access control system. Instead of protecting the administrator's rights in the system with uncertain passwords, the LEGIC system is associated with a special, physical proximity card.
HITAG® a stable RFID standard for demanding applications
HITAG® is the proven low frequency RFID standard (LF - 125kHz), which is the right choice for applications operating in harsh environments, where high reliability and secure data transmission is a basic requirement.