NXP MIFARE® DESFire® EV2 16K

  • Common Criteria certification: EAL5+ (Hardware and Software)
  • 16K of user memory
  • Hardware DES using 56/112/168 bit keys
  • Hardware AES using 128-bit keys
  • Backward compatibility mode to MIFARE DESFire EV1
Request Custom Card Quote

Description

The NXP MIFARE DESFire EV2 16K contactless IC is ideal for system operators and developers building reliable, interoperable and scalable contactless solutions. The second evolution of our industry-leading MIFARE DESFire family offers superior performance, security and enhanced multi-application support.

The second evolution of our MIFARE® DESFire® ICs offers a good performance, security, privacy and enhanced multi-application support to enable new business models. The new MIFARE DESFire EV2 contactless IC further increases flexibility and is also available on NXP’s SmartMX secure smart card platform used e.g. for contactless bank cards and secure elements for the use with NFC enabled mobile devices providing good end user experience in mobile ticketing.

MIFARE DESFire EV2 is based on global open standards for both air interface and cryptographic methods. It is compliant to all levels of ISO/IEC 14443A and supports optional ISO/IEC 7816-4 commands (APDU and file structure supported) and is fully interoperable with existing NFC reader infrastructure.

Featuring an on-chip backup management system and the mutual three-pass authentication, a MIFARE DESFire EV2 card can hold as many applications as the memory can accommodate. Each application can hold up to 32 files with various data configurations.

INNOVATION IN MULTI-APPLICATION SMART CARDS

Compared to MIFARE DESFire EV1 a MIFARE DESFire EV2 chip can hold as many different applications as the memory size supports and new applications can be loaded after the card has been deployed into the market. A purse can even be shared between applications, for greater interoperability.

The MIFARE DESFire EV2 contactless IC brings many benefits to end users. Cardholders can experience convenient contactless ticketing while also being able to use the same device for applications such as student ID, closed-loop payment at vending machines, access control management, and loyalty programs. The innovative MIsmartApp feature enables new business models. System providers can offer or sell application space to third parties without having to share the master key. A MIFARE DESFire EV2 product-based card can hold as many different applications as the memory will support, and new applications can be loaded after the product is in the field. It’s like having an app store on a smart card. A purse can even be shared between applications, for greater interoperability.

CONTACTLESS PERFORMANCE

For a truly convenient touch-and-go experience, MIFARE DESFire EV2 offers a significant increase in operating distance and speed compared to previous versions. The 70 pF option enables read range optimizations of small antenna form factors. MIFARE DESFire EV2 delivers the perfect balance of speed, performance and cost efficiency. Its open concept allows for the future seamless integration of other media such as smart paper tickets, key fobs, and mobile ticketing With MIFARE DESFire EV2, data transfer rates up to 848 Kbit/s can be achieved, making fast data processing possible.

SECURITY AND PRIVACY

MIFARE DESFire EV2 is based on open global standards for air interfaces and cryptographic methods. Proximity Check protects against relay attacks, while the Virtual Smart Card architecture anticipates future needs of privacy protection. Other features include an on-chip backup management system and mutual three-pass authentication. Additionally, an automatic anti-tear mechanism is available for all file types, which guarantees transaction-oriented data integrity. MIFARE DESFire EV2 is Common Criteria EAL5+ security certified which is the same security certification level as demand for smart card IC products used, e.g., for banking cards or electronic passports.

The MIFARE DESFire EV2 silicon solution is the consumer friendly choice for system design, with heightened security and reliability, using a DES, 2K3DES, 3K3DES and AES hardware cryptographic engine for securing transmission data.

DESFire’s are available in PVC and Composite PET/PVC card construction, the MIFARE DESFire EV2 card is exceptionally durable and can accept an embeddable SAM card for logical access and biometric ID systems.

Features

The MIFARE DESFire EV2 contactless IC is ideal for system operators and developers building reliable, interoperable and scalable contactless solutions. The second evolution of our industry-leading MIFARE DESFire family offers superior performance, security and enhanced multi-application support.

KEY FEATURES

  • ISO/IEC 14443 A 1–4 and ISO/IEC 7816 compliant
  • 8 kB EEPROM with fast programming
  • Flexible file structure
  • NFC Tag Type 4 compliant
  • Secure, high-speed command set
  • MIsmartApp grants application space to third parties without sharing the master key
  • Unlimited number of applications
  • Transaction MAC to authenticate transactions
  • Multiple key sets per application for key rolling
  • Virtual Smart Card architecture for privacy protection
  • Proximity check to protect againt relay attacks
  • High data rates according to ISO/IEC 14443-4: up to 848 Kbits/s
  • Choice of open DES/2K3DES/3K3DES/AES crypto algorithms in hardware
  • Unique 7-byte serial number (ISO Cascade Level 2)
  • Transaction oriented automatic anti-tear mechanism
  • Common Criteria certification: EAL5+ for IC hardware and software
  • Optional MIFARE Classic® implementation
  • Backward compatibility mode to MIFARE DESFire EV1 and D40 (MF3ICD40)

KEY BENEFITS

  • Functional backward compatible to MIFARE DESFire EV1
  • Improved operating range and performance
  • Enhanced security level with Common Criteria EAL5+ certification
  • MIsmartApp enabling post–issuance of additional services in already deployed cards
  • Multiple keysets with key rolling for simplified key migration in the field
  • Transaction MAC ensuring the authenticity of each transaction

Innovation in multi-application smart cards

MIFARE DESFire EV2 brings many benefits to end users. Cardholders can experience convenient contactless ticketing while also being able to use the same device for applications such as student ID, closed-loop payment at vending machines, access management, and loyalty programs. The innovative MIsmartApp feature enables new business models. System providers can offer or sell application space to third parties without having to share the master key. A MIFARE DESFire EV2 card can hold as many different applications as the memory will support, and new applications can be loaded after the product is in the field. It’s like having an app store on a smart card. A purse can even be shared between applications, for greater interoperability.

Applications

Targeted Applications

Specifications

Memory
EEPROM size 16KB
Write endurance [cycles] 500,000
Data retention [yrs] 25
Programming cycles (erase/write) 1 ms
Organization Flexible file system
Security
Unique serial number [byte] 7, cascaded
Random number generator Yes
Access keys 14 keys per application
Multiple key sets Up to 16 per application
Access conditions Per File
AES, 3DES & DES Security MACing/Encipherment
Anti-tear supported by chip Yes
Common Criteria certification (HW+SW) EAL5 +
Special Features
Multi-application Unlimited applications, MIsmartApp
Number fo files per app 32
Purse functionality Value file
Inter-app file sharing Yes
Transaction MAC Per application
Virtual smart card architecture PICC and application level
Proximity check Yes
RF-Interface
Acc. to ISO 14443A Yes-up to layer 4
Frequency [MHz] 13.56
Baud rate [kbit/s] 106 kbit/s, 212 kbit/s, 424 kbit/s, 848 kbit/s
Anti-collision Bit-wise
Operating distance [mm] Up to 100

Comparison Table

MIFARE DESFire EV3 MIFARE DESFire EV2 MIFARE DESFire EV1
ISO/IEC 14443 A 1-4 Yes Yes Yes
ISO/IEC 7816-4 support Extended Extended Extended
EEPROM data memory 2/4/8KB 2/4/8/16/32KB 2/4/8KB
Flexible file structure Yes Yes Yes
NFC Forum Tag Type 4 Yes Yes Yes
Unique ID 7B UID or 4B RID 7B UID or 4B RID 7B UID or 4B RID
Number of applications As many as memory size supports As many as memory size supports 28
Number of files per app 32 32 32
Data rates supported Up to 848 Kbit/s Up to 848 Kbit/s Up to 848 Kbit/s
Crypto algorithms supported DES/2K3DES/
3K3DES/
AES128
DES/2K3DES/
3K3DES/
AES128
DES/2K3DES/
3K3DES/
AES128
CC certification (HW+SW) EAL 5+ EAL 5+ EAL 4+
Delegated Application Management (Multi-Application) Yes, preloaded keys Yes
SUN (Secure Unique NFC Message) Yes, compatible with NTAG DNA
Transaction MAC per app Yes Yes
Multiple keysets per app Up to 16 keysets Up to 16 keysets
Multiple file access rights Up to 8 keys Up to 8 keys
Inter-app file sharing Yes Yes
Transaction Timer Yes
Virtual Card Architecture Yes Yes
Proximity Check Yes Yes
Delivery types Wafer, MOA4, MOA8,  1FF (ID-1) & 2FF (SIM) Wafer, MOA4, MOA8,  1FF (ID-1) & 2FF (SIM) Wafer, MOA4, MOA8,  1FF (ID-1) & 2FF (SIM)

About MIFARE

MIFARE is NXP‘s well-known brand for a wide range of contactless IC products used in more than 40 different applications worldwide. With more than 150 million reader core components and 5 billion smart card ICs sold, MIFARE products are more proven and more reliable than any other interface technology on the market. MIFARE products comply with the international standard ISO/IEC 14443 and are backward-compatible within the product families. This ensures that the existing infrastructure can be smoothly upgraded to higher security and feature levels, such as payment systems, ticketing solutions, loyalty programs, access management, and parking. To further extend the reach of MIFARE products, the MIFARE4Mobile Industry Group brings MIFARE applications into NFC-enabled mobile devices.

Support & Downloads

Software and Utilities

Smart Toolz® MIFARE – Contactless Card Configuration Kit

Smart Toolz - MIFare and memory smart card development kit (SDK)

MIFARE Card Configuration Kit by CardLogix features the MIFARE Card Configuration Utility software program to configure a MIFARE or DESFire card’s file structure with Application IDs (AIDs), to set permissions and keys, and  to load data to the card.

RFIDDiscover

Our well known, widely deployed powerful MIFARE®Discover tool is commonly used by the MIFARE development community as it allows to access and handle any MIFARE family chip and data processing feature. This expert tool has been further enhanced to support the latest MIFARE family members of the MIFARE Plus® and the MIFARE DESFire® EV2 platform including the corresponding MIFARE SAM (Secure Access Module) solutions.

Furthermore, ICODE® and NTAG® platform support has been added to the feature set, covering NXP’s entire 13.56 MHz product portfolio now. To reflect these additions the MIFAREDiscover tool has been rebranded to RFIDDiscover.

The tool RFIDDiscover Lite can also be downloaded from MIFARE.net. The full version of the RFIDDiscover tool can be requested in the NXP DocStore – please search for “sw1866”.

RFIDDiscover Download

 

TagXplorer PC-Based NFC Tag Reader-Writer Tool

NDEF reader/writer tool for Windows, Mac and Linux Desktop PCs for NXP NFC ICs

Similar to NXP’s TagWriter App for Android the new TagXplorer tool for PCs allows to read, analyze and write NDEF messages to NXP’s NFC tag and smart sensor ICs. The tool is designed using NXP’s TapLinx open Java API and it allows the user to perform NDEF Operations defined by NFC Forum on NFC Forum type 2 and 4 tags for NXP NFC Tag ICs.

TagXplorer Download

 

Videos

MIFARE Explained | Security Level 3 (SL3) Capabilities

The Security Level (SL) concept of NXP’s MIFARE Plus EV2 IC allows for a step-by-step upgrade of the system’s security by switching only certain applications to a higher security level. The highest security level, SL3, offers support for AES-128 based secure messaging and thus helps to prove authenticity, confidentiality and integrity of transactions.

 

MIFARE Explained | Transaction MAC

The Transaction MAC feature of NXP’s MIFARE DESFire EV3 and MIFARE Plus EV2 ICs can help to prevent fraudulent merchant attacks. It allows to prove the authenticity of executed transactions between the reader terminal and an IC inside a smart card.

MIFARE Explained | Transaction Timer

The Transaction Timer feature of NXP’s MIFARE DESFire EV3 and MIFARE Plus EV2 ICs defends against Man-in-the-Middle attacks. The new feature makes it possible to set a minimum time per transaction, so it’s harder for an attacker to interfere with the transaction. Learn more about the technical details of the Transaction Timer feature and how it can be used to make access control, transport ticketing, and micropayment installations more secure.

 

MIFARE DESFire EV2 smart card IC includes the MIsmartApp

Are you planning to offer contactless smart life services? Smart cards can be a powerful tool to host various contactless services, such as micropayments, access solutions, transport services – and even ticketing on one smart contactless card. The MIFARE DESFire EV2 smart card IC includes the MIsmartApp which can hold as many different applications as the memory size supports and new applications can be loaded after the card has been deployed into the market.

 

MIFARE SDK

The MIFARE SDK is designed to provide access to all hardware features on Java level and enables Android apps to be created for MIFARE, ICODE and NTAG more easily than ever before. Leveraging the worldwide success of NXP´s product installations, the launch of MIFARE SDK opens up a world of new possibilities for creative Android application developers.

 

NXP AppXplorer

Have you ever counted how many cards per day you are using? In the end of the day why to use different card for every little thing you have to do? The MIFARE® DESFire® card is one single smart card where you can store all the other cards.

Go to Top