NXP MIFARE® DESFire® EV2 16K
- Description
- Features
- Applications
- Specifications
- Comparison Table
- About MIFARE
- Support & Downloads
- Videos
Description
The NXP MIFARE DESFire EV2 16K contactless IC is ideal for system operators and developers building reliable, interoperable and scalable contactless solutions. The second evolution of our industry-leading MIFARE DESFire family offers superior performance, security and enhanced multi-application support.
The second evolution of our MIFARE® DESFire® ICs offers a good performance, security, privacy and enhanced multi-application support to enable new business models. The new MIFARE DESFire EV2 contactless IC further increases flexibility and is also available on NXP’s SmartMX secure smart card platform used e.g. for contactless bank cards and secure elements for the use with NFC enabled mobile devices providing good end user experience in mobile ticketing.
MIFARE DESFire EV2 is based on global open standards for both air interface and cryptographic methods. It is compliant to all levels of ISO/IEC 14443A and supports optional ISO/IEC 7816-4 commands (APDU and file structure supported) and is fully interoperable with existing NFC reader infrastructure.
Featuring an on-chip backup management system and the mutual three-pass authentication, a MIFARE DESFire EV2 card can hold as many applications as the memory can accommodate. Each application can hold up to 32 files with various data configurations.
INNOVATION IN MULTI-APPLICATION SMART CARDS
Compared to MIFARE DESFire EV1 a MIFARE DESFire EV2 chip can hold as many different applications as the memory size supports and new applications can be loaded after the card has been deployed into the market. A purse can even be shared between applications, for greater interoperability.
The MIFARE DESFire EV2 contactless IC brings many benefits to end users. Cardholders can experience convenient contactless ticketing while also being able to use the same device for applications such as student ID, closed-loop payment at vending machines, access control management, and loyalty programs. The innovative MIsmartApp feature enables new business models. System providers can offer or sell application space to third parties without having to share the master key. A MIFARE DESFire EV2 product-based card can hold as many different applications as the memory will support, and new applications can be loaded after the product is in the field. It’s like having an app store on a smart card. A purse can even be shared between applications, for greater interoperability.
CONTACTLESS PERFORMANCE
For a truly convenient touch-and-go experience, MIFARE DESFire EV2 offers a significant increase in operating distance and speed compared to previous versions. The 70 pF option enables read range optimizations of small antenna form factors. MIFARE DESFire EV2 delivers the perfect balance of speed, performance and cost efficiency. Its open concept allows for the future seamless integration of other media such as smart paper tickets, key fobs, and mobile ticketing With MIFARE DESFire EV2, data transfer rates up to 848 Kbit/s can be achieved, making fast data processing possible.
SECURITY AND PRIVACY
MIFARE DESFire EV2 is based on open global standards for air interfaces and cryptographic methods. Proximity Check protects against relay attacks, while the Virtual Smart Card architecture anticipates future needs of privacy protection. Other features include an on-chip backup management system and mutual three-pass authentication. Additionally, an automatic anti-tear mechanism is available for all file types, which guarantees transaction-oriented data integrity. MIFARE DESFire EV2 is Common Criteria EAL5+ security certified which is the same security certification level as demand for smart card IC products used, e.g., for banking cards or electronic passports.
The MIFARE DESFire EV2 silicon solution is the consumer friendly choice for system design, with heightened security and reliability, using a DES, 2K3DES, 3K3DES and AES hardware cryptographic engine for securing transmission data.
DESFire’s are available in PVC and Composite PET/PVC card construction, the MIFARE DESFire EV2 card is exceptionally durable and can accept an embeddable SAM card for logical access and biometric ID systems.
Features
The MIFARE DESFire EV2 contactless IC is ideal for system operators and developers building reliable, interoperable and scalable contactless solutions. The second evolution of our industry-leading MIFARE DESFire family offers superior performance, security and enhanced multi-application support.
KEY FEATURES
- ISO/IEC 14443 A 1–4 and ISO/IEC 7816 compliant
- 8 kB EEPROM with fast programming
- Flexible file structure
- NFC Tag Type 4 compliant
- Secure, high-speed command set
- MIsmartApp grants application space to third parties without sharing the master key
- Unlimited number of applications
- Transaction MAC to authenticate transactions
- Multiple key sets per application for key rolling
- Virtual Smart Card architecture for privacy protection
- Proximity check to protect againt relay attacks
- High data rates according to ISO/IEC 14443-4: up to 848 Kbits/s
- Choice of open DES/2K3DES/3K3DES/AES crypto algorithms in hardware
- Unique 7-byte serial number (ISO Cascade Level 2)
- Transaction oriented automatic anti-tear mechanism
- Common Criteria certification: EAL5+ for IC hardware and software
- Optional MIFARE Classic® implementation
- Backward compatibility mode to MIFARE DESFire EV1 and D40 (MF3ICD40)
KEY BENEFITS
- Functional backward compatible to MIFARE DESFire EV1
- Improved operating range and performance
- Enhanced security level with Common Criteria EAL5+ certification
- MIsmartApp enabling post–issuance of additional services in already deployed cards
- Multiple keysets with key rolling for simplified key migration in the field
- Transaction MAC ensuring the authenticity of each transaction
Innovation in multi-application smart cards
MIFARE DESFire EV2 brings many benefits to end users. Cardholders can experience convenient contactless ticketing while also being able to use the same device for applications such as student ID, closed-loop payment at vending machines, access management, and loyalty programs. The innovative MIsmartApp feature enables new business models. System providers can offer or sell application space to third parties without having to share the master key. A MIFARE DESFire EV2 card can hold as many different applications as the memory will support, and new applications can be loaded after the product is in the field. It’s like having an app store on a smart card. A purse can even be shared between applications, for greater interoperability.
Applications
Targeted Applications
- Smart City
- Closed Loop Payments
- Smart Lock
- Access Management
- Transport Ticketing
- Public transportation
- Campus and student ID cards
- Loyalty Programs
- ePurse
- Vending
- Event Tickets
- Gaming and Hospitality
Specifications
Memory | |
EEPROM size | 16KB |
Write endurance [cycles] | 500,000 |
Data retention [yrs] | 25 |
Programming cycles (erase/write) | 1 ms |
Organization | Flexible file system |
Security | |
Unique serial number [byte] | 7, cascaded |
Random number generator | Yes |
Access keys | 14 keys per application |
Multiple key sets | Up to 16 per application |
Access conditions | Per File |
AES, 3DES & DES Security | MACing/Encipherment |
Anti-tear supported by chip | Yes |
Common Criteria certification (HW+SW) | EAL5 + |
Special Features | |
Multi-application | Unlimited applications, MIsmartApp |
Number fo files per app | 32 |
Purse functionality | Value file |
Inter-app file sharing | Yes |
Transaction MAC | Per application |
Virtual smart card architecture | PICC and application level |
Proximity check | Yes |
RF-Interface | |
Acc. to ISO 14443A | Yes-up to layer 4 |
Frequency [MHz] | 13.56 |
Baud rate [kbit/s] | 106 kbit/s, 212 kbit/s, 424 kbit/s, 848 kbit/s |
Anti-collision | Bit-wise |
Operating distance [mm] | Up to 100 |
Comparison Table
MIFARE DESFire EV3 | MIFARE DESFire EV2 | MIFARE DESFire EV1 | |
---|---|---|---|
ISO/IEC 14443 A 1-4 | Yes | Yes | Yes |
ISO/IEC 7816-4 support | Extended | Extended | Extended |
EEPROM data memory | 2/4/8KB | 2/4/8/16/32KB | 2/4/8KB |
Flexible file structure | Yes | Yes | Yes |
NFC Forum Tag Type 4 | Yes | Yes | Yes |
Unique ID | 7B UID or 4B RID | 7B UID or 4B RID | 7B UID or 4B RID |
Number of applications | As many as memory size supports | As many as memory size supports | 28 |
Number of files per app | 32 | 32 | 32 |
Data rates supported | Up to 848 Kbit/s | Up to 848 Kbit/s | Up to 848 Kbit/s |
Crypto algorithms supported | DES/2K3DES/ 3K3DES/ AES128 |
DES/2K3DES/ 3K3DES/ AES128 |
DES/2K3DES/ 3K3DES/ AES128 |
CC certification (HW+SW) | EAL 5+ | EAL 5+ | EAL 4+ |
Delegated Application Management (Multi-Application) | Yes, preloaded keys | Yes | – |
SUN (Secure Unique NFC Message) | Yes, compatible with NTAG DNA | – | – |
Transaction MAC per app | Yes | Yes | – |
Multiple keysets per app | Up to 16 keysets | Up to 16 keysets | – |
Multiple file access rights | Up to 8 keys | Up to 8 keys | – |
Inter-app file sharing | Yes | Yes | |
Transaction Timer | Yes | – | – |
Virtual Card Architecture | Yes | Yes | – |
Proximity Check | Yes | Yes | – |
Delivery types | Wafer, MOA4, MOA8, 1FF (ID-1) & 2FF (SIM) | Wafer, MOA4, MOA8, 1FF (ID-1) & 2FF (SIM) | Wafer, MOA4, MOA8, 1FF (ID-1) & 2FF (SIM) |
About MIFARE
MIFARE is NXP‘s well-known brand for a wide range of contactless IC products used in more than 40 different applications worldwide. With more than 150 million reader core components and 5 billion smart card ICs sold, MIFARE products are more proven and more reliable than any other interface technology on the market. MIFARE products comply with the international standard ISO/IEC 14443 and are backward-compatible within the product families. This ensures that the existing infrastructure can be smoothly upgraded to higher security and feature levels, such as payment systems, ticketing solutions, loyalty programs, access management, and parking. To further extend the reach of MIFARE products, the MIFARE4Mobile Industry Group brings MIFARE applications into NFC-enabled mobile devices.
Support & Downloads
Software and Utilities
Smart Toolz® MIFARE – Contactless Card Configuration Kit
MIFARE Card Configuration Kit by CardLogix features the MIFARE Card Configuration Utility software program to configure a MIFARE or DESFire card’s file structure with Application IDs (AIDs), to set permissions and keys, and to load data to the card.
RFIDDiscover
Our well known, widely deployed powerful MIFARE®Discover tool is commonly used by the MIFARE development community as it allows to access and handle any MIFARE family chip and data processing feature. This expert tool has been further enhanced to support the latest MIFARE family members of the MIFARE Plus® and the MIFARE DESFire® EV2 platform including the corresponding MIFARE SAM (Secure Access Module) solutions.
Furthermore, ICODE® and NTAG® platform support has been added to the feature set, covering NXP’s entire 13.56 MHz product portfolio now. To reflect these additions the MIFAREDiscover tool has been rebranded to RFIDDiscover.
The tool RFIDDiscover Lite can also be downloaded from MIFARE.net. The full version of the RFIDDiscover tool can be requested in the NXP DocStore – please search for “sw1866”.
TagXplorer PC-Based NFC Tag Reader-Writer Tool
NDEF reader/writer tool for Windows, Mac and Linux Desktop PCs for NXP NFC ICs
Similar to NXP’s TagWriter App for Android the new TagXplorer tool for PCs allows to read, analyze and write NDEF messages to NXP’s NFC tag and smart sensor ICs. The tool is designed using NXP’s TapLinx open Java API and it allows the user to perform NDEF Operations defined by NFC Forum on NFC Forum type 2 and 4 tags for NXP NFC Tag ICs.
Videos
MIFARE Explained | Security Level 3 (SL3) Capabilities
The Security Level (SL) concept of NXP’s MIFARE Plus EV2 IC allows for a step-by-step upgrade of the system’s security by switching only certain applications to a higher security level. The highest security level, SL3, offers support for AES-128 based secure messaging and thus helps to prove authenticity, confidentiality and integrity of transactions.
MIFARE Explained | Transaction MAC
The Transaction MAC feature of NXP’s MIFARE DESFire EV3 and MIFARE Plus EV2 ICs can help to prevent fraudulent merchant attacks. It allows to prove the authenticity of executed transactions between the reader terminal and an IC inside a smart card.
MIFARE Explained | Transaction Timer
The Transaction Timer feature of NXP’s MIFARE DESFire EV3 and MIFARE Plus EV2 ICs defends against Man-in-the-Middle attacks. The new feature makes it possible to set a minimum time per transaction, so it’s harder for an attacker to interfere with the transaction. Learn more about the technical details of the Transaction Timer feature and how it can be used to make access control, transport ticketing, and micropayment installations more secure.
MIFARE DESFire EV2 smart card IC includes the MIsmartApp
Are you planning to offer contactless smart life services? Smart cards can be a powerful tool to host various contactless services, such as micropayments, access solutions, transport services – and even ticketing on one smart contactless card. The MIFARE DESFire EV2 smart card IC includes the MIsmartApp which can hold as many different applications as the memory size supports and new applications can be loaded after the card has been deployed into the market.
MIFARE SDK
The MIFARE SDK is designed to provide access to all hardware features on Java level and enables Android apps to be created for MIFARE, ICODE and NTAG more easily than ever before. Leveraging the worldwide success of NXP´s product installations, the launch of MIFARE SDK opens up a world of new possibilities for creative Android application developers.
NXP AppXplorer
Have you ever counted how many cards per day you are using? In the end of the day why to use different card for every little thing you have to do? The MIFARE® DESFire® card is one single smart card where you can store all the other cards.