Search

MIFARE Plus

NXP MIFARE Plus

The MIFARE Plus product family adds security to Smart City services by enabling a seamless migration of contactless infrastructures to higher security, and its backward compatibility allows for a cost-efficient way to upgrade the security level of in-place smart card applications. Special features, such as support for mobile and over-the-air top-ups, make Smart City services even more convenient to use.

MIFARE Plus EV2 - Secure IC for Contactless Smart City Services

As the next generation of NXP’s MIFARE Plus product family, the MIFARE Plus EV2 IC is designed to be both a gateway for new Smart City applications and a compelling upgrade, in terms of security and connectivity, for existing deployments. Its expanded feature set makes it a great choice for contactless Smart City services:
  • Security-level concept for seamless migration from legacy infrastructures to high-level SL3 security
  • Transaction MAC on Data and Value Blocks to prove genuineness of transaction towards backend system
  • AES 128-bit cryptography for authentication and secure messaging
  • Transaction Timer to mitigate man-in-the-middle attacks
  • IC hardware and software certification according to Common Criteria EAL 5+
Features
RF interface: ISO/IEC 14443 Type A
  • Contactless interface compliant with ISO/IEC 14443-2/3 A
  • Low Hmin enabling operating distance up to 100 mm (depending on power provided by the PCD and antenna geometry)
  • Fast data transfer: 106 kbit/s, 212 kbit/s, 424 kbit/s, 848 kbit/s
  • 7 bytes unique identifier (option for Random ID), 4-byte NUID
  • Uses ISO/IEC 14443-4 transmission protocol
  • Configurable FSCI to support up to 256 bytes frame size
Non-volatile memory
  • 2 kB, 4 kB
  • Data retention of 25 years
  • Write endurance typical 1 000 000 cycles
  • Fast programming cycles
Security and Privacy
  • Common Criteria certification: EAL5+ (Hardware and Software)
  • Unique 7 bytes serial number for each device
  • Optional "RANDOM" ID for enhanced security and privacy
  • Mutual three-pass authentication
  • Mutual authentication according to ISO/IEC 7816-4
  • Hardware AES using 128-bit keys
  • Data authenticity by 8 byte CMAC
  • Data encryption on RF-channel
  • Authentication on sector level
  • Hardware exception sensors
  • Transaction MAC to proof a transaction is genuine towards the backend system
  • Virtual Card Architecture for enhanced card/application selection on multi-VC devices with privacy protection
  • Proximity Check for protection against Relay Attacks
  • Originality Check for proof of genuine NXP's product

MIFARE Plus SE

MIFARE Plus is the only mainstream smart card family compatible with MIFARE® Classic® 1K and MIFARE Classic 4K that offers preissuance of cards before making security upgrades in the infrastructure. After security upgrade to Security Level 3, MIFARE Plus uses Advanced Encryption Standard (AES) for authentication, data integrity, and encryption.

MIFARE Plus SE is the entry-level version of NXP’s proven and reliable MIFARE Plus product family. Designed for full functional compatibility with MIFARE Classic 1K, it provides support for the MIFARE Classic value blocks.

MIFARE Plus SE is the choice for customers who want to switch to higher security while preparing for the future by introducing cards, ready for AES security, into the existing system environment.

MIFARE Plus SE cards are easy to distribute into running MIFARE Classic systems since it uses a linear memory structure compatible to MIFARE Classic, and because MIFARE Plus SE supports all MIFARE Classic value-block operations in the Security Levels SL1 and SL3. MIFARE Plus SE stores its 128-bit AES keys on top of the data blocks. The optional AES authentication in SL1 enables efficient detection of cards not belonging to the system.

Features
  • Entry-level version of the proven MIFARE Plus product family
  • Simple fixed memory structure compatible with MIFARE Classic
  • AES-128 for authenticity and integrity
  • Freely configurable access conditions
  • Optional support of random IDs
  • Anti-tearing mechanism for writing AES keys
  • Virtual card concept
  • Number of single write operations: 200000 typical
  • 1 kB EEPROM
  • Fully supports MIFARE Classic value block operations
  • NXP originality check
  • Supports ISO/IEC 14443-3 UIDs (4-Byte NUID, 7-byte UID)
  • Multisector authentication, Multiblock read and write
  • Keys can be stored as MIFARE CRYPTO1 keys (2 x 48-bit per sector) and AES keys (2 x 128-bit per sector)
  • Communication speed up to 848 kbit/s
  • Data retention time: 10 years