ACGPass e-ID Desktop Reader Document No.: 1510-USM-01-0-01 Firmware: Version Dual ISO 2.3 User Manual ASSA ABLOY Identification Technologies GmbH Am Klingenweg 6A 65396 Walluf Germany Phone +49 (0) 6123 791 0 Fax +49 (0) 6123 791 199 www.aaitg.com Document Nr.: QSI-040902-OM-1-a-UserManual Dual ISO Module, V2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Edition One - October 2006 ASSA ABLOY Identification Technologies GmbH (ASSA ABLOY ITG) reserves the right to make changes to its products or services or to discontinue any product or service at any time without notice. ASSA ABLOY ITG provides customer assistance in various technical areas, but does not have full access to data concerning the use and applications of customer's products.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 All other products mentioned in this document might be brands or brand names of the different suppliers. This document may be downloaded onto a computer, stored and duplicated as necessary to support the use of the related ASSA ABLOY ITG products. Any other type of duplication, circulation or storage on data carriers in any manner not authorized by ASSA ABLOY ITG represents a violation of the applicable copyright laws and shall be prosecuted.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Safety Instructions / Warning - Read before start-up! • The device may only be used for the intended purpose designed by for the manufacturer. The operation manual should be conveniently kept available at all times for each user. • Unauthorized changes and the use of spare parts and additional devices that have not been sold or recommended by the manufacturer may cause fire, electric shocks or injuries.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Preface Read This First About This Guide This manual describes the ACGPass e-ID Desktop Reader. Its goal is to describe the reader, how it works, how to integrate it and how to use it. If You Need Assistance Our application center is located in Europe to provide direct support. For more information, please contact your nearest ASSA ABLOY ITG Sales Center. The contact addresses can be found on our home page: http://www.aaitg.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Table of contents 1 Scope .............................................................................................. 12 2 Extended Documentation .............................................................. 12 3 Definitions and Abbreviations ...................................................... 13 3.1 Definitions .................................................................................................. 13 3.1.1 Anti-collision loop ..........
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.2 External Connections ...........................................................................29 7.1.2.1 USB Cable ................................................................................... 29 7.1.2.2 Power Supply............................................................................... 29 7.1.2.3 SAM Socket ................................................................................. 30 7.1.3 Function Control Indicator LEDs ..........
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.9.4 Noisy Environment (default 0)...................................................... 44 8.3.9.5 Reset Recovery Time Multiplier (default 0) .................................. 45 8.3.9.6 Enable ISO14443 B Anti-collision (default 0) ............................... 45 8.3.9.7 Disable ISO 14443-4 Error Handling (default 0)........................... 45 8.3.10 Reset Off Time (14h)............................................................................45 8.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.6.5 Maximum number of tags ......................................................... 61 8.4.3.7 Include tag type............................................................................ 62 8.4.3.8 Exclude tag type .......................................................................... 63 8.4.3.9 Set tag type.................................................................................. 64 8.4.3.10 Set Configuration Flags..........................
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.21.4 Out of range failure 'R' ............................................................ 80 8.4.3.22 Write EEPROM ............................................................................ 80 8.4.3.22.1 Out of range failure 'R' ............................................................ 80 8.4.3.23 Reset............................................................................................ 81 8.4.3.23.1 Disable Start-up Message..................
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.5 SR176 only commands ........................................................................93 8.4.5.1 Lock block .................................................................................... 93 8.4.5.1.1 Operation mode failure 'O' ........................................................ 93 8.4.5.1.2 Apply settings ........................................................................... 93 8.4.6 DESFire command set ..............................
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10.2 Personalized ACGPass e-ID Desktop Reader ..........................................127 10.3 What type of mifare® card should I use? ...................................................128 10.4 How safe is mifare® Standard for cashless payment?...............................128 10.5 Using a mifare® card .................................................................................130 10.6 Using a DESFire card...............................................
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 1 Scope The ACGPass e-ID Desktop Reader supports a broad range of tags compliant with ISO 14443 type A and B standards, including SR176 tags and tags which belong to the Philips mifare® family. An open command structure allows the device to communicate with tags that use an operating system. The read/write unit supports automatic chaining, 256 byte buffer and frame length, extended time framing and up to 848kBaud transmission rates over the air interface.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 3 Definitions and Abbreviations 3.1 Definitions 3.1.1 Anti-collision loop An algorithm used to identify and handle a dialogue between a reader and one or more tags in its antenna field. 3.1.2 Hex notation A hexadecimal value is marked with the suffix ‘h’, i.e. A1h has the value A1 hexadecimal. 3.1.3 ASCII notation ASCII characters are listed within apostrophes, i.e. ‘x’ means a single x.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 3.2 Abbreviations Abbreviation Description AID Application ID ASCII American Standard Code for Information Interchange ATR Answer to Reset ATS Answer to Select Block For the mifare® Standard one block contains 16 bytes CID Card Identifier (logical card address, ISO 14443-4) CRC Cyclic Redundancy Check DES Data Encryption Standard, for more details about DES refer to [3].
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Abbreviation Description TDES Triple DES Value block 32 bit data block format.
1 ASSA ABLOY Identification Technologies GmbH ISO 14443 A compliant (1) ISO 14443 B compliant() - √ √ - Toshiba TOSMART P032/064 - √ √ Sharp Sharp B - √ Various ASK ASK GTML √ √ - ASK ASK GTML2 ISO √ √ √ STM SLIX 4K - √ √ √ √ - √ √ √ √ √ √ √ √ √ - Various STM SR176 Dual Interface Infineon SLE6666CL160S ISO 14443 B Philips Philips Philips Philips Philips Infineon Infineon Philips Innovision Serial Read number block - - - - - - √ √ - √ √ √ √ - √ √ √ √ √
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 The mifare® Transponder Family 5 The mifare® transponder family consists of various 13.56 MHz transponder ICs, all compliant to the ISO 14443 standard. 5.1 mifare® Standard The mifare® Standard card consists of 16 sectors. A sector includes four blocks of 16 bytes each. mifare® Standard Sector 2 Sector 0 (Block: 0...3) Block 8: Data or value (16 bytes) Sector 1 (Block: 4...7) Block 9: Data or value (16 bytes) Sector 2 (Block 8...
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 5.1.2 Blocks 3, 7, 11, 15, … Transport keys are set on delivery: Key A (6 bytes) Access Conditions (4 bytes) Key B (6 bytes) Figure 5-3: mifare® Standard: block 3, 7, 11, 15, … Key A A0 A1 A2 A3 A4 A5 (Infineon) or FF FF FF FF FF FF (new Philips cards) Key B B0 B1 B2 B3 B4 B5 (Infineon) or FF FF FF FF FF FF (new Philips cards) Access Conditions FF 07 80 xx (key A is used to read or write; key A itself is not readable; key B is data only).
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 5.2 State Diagram All mifare® cards use the following state diagram. Power Off Reset Reader Instruction Set Idle REQA Select ISO 14443 Commands Ready Halt Wake Up Select Active Anticollision Loop Authenticate Log In read/write/...
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 5.3 mifare® Ultralight mifare® Ultralight cards have no encryption included. They only support plain text data transmission. mifare® Ultralight only supports 4 bytes per sector, but the command set uses 16 bytes per sector. Only the 4 least significant bytes are valid when using mifare® Ultralight. Ensure that the other bytes match with the tag content when using the write command; otherwise the read back will fail. 5.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 5.6 mifare® DESFire This tag supports additional security algorithms (DES, Triple-DES, MAC) for security sensitive applications. DESFire tags are addressed using a specific command set (see DESFire command set). 5.6.1 Memory organization The memory of a DESFire card can be personalized to specific requirements. The card can be seen as data storage device like a hard disk in a PC.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 5.6.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 5.6.2.1 Activate PICC Before accessing a DESFire card, the card must be selected. A mifare® DESFire card has a 7 byte UID. After activation, the card is powered up and ready to accept a mifare® DESFire command. Application 0 is selected automatically. 5.6.2.2 Select application To jump into another application, the application has to be selected. An application can be seen as a directory, which contains up to 16 files.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 6 ISO 14443 Type B ISO 14443 type B cards are supported. 6.1 SR176 The SR176 label contains only 30 bytes of data organized in two bytes per page. 6.1.1 Memory organization block address Byte 1 0Fh Lock byte Byte 0 RFU 0Eh User data … … 04h User data 03h Serial number 02h Serial number 01h Serial number 00h Serial number Chip ID Figure 6-1: SR176 memory organization 6.1.2 Serial number UID The UID is stored in the first 4 pages.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 6.1.3 Lock byte Bit 2 Bit 1 Bit 0 Page 00h Page 01h Page 0Ah Page 0Bh Bit 3 Page 02h Page 03h Page 0Ch Page 0Dh Bit 4 Page 04h Page 05h Bit 5 Page 06h Page 07h Bit 6 Page 08h Page 09h Bit 7 Page 0Eh Page 0Fh The lock byte defines the write access condition of a pair of pages. Each bit can only be set once. This procedure is irreversible. This byte is implemented as an OTP. Figure 6-3: Lock byte 6.1.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.1 Features 2 • Interface type: USB 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.2 External Connections 7.1.2.1 USB Cable The USB connector is located on the bottom side of the housing. Depending on the users preferences the cable can be put and easily fixed within one of three cable guides. Each cable guide leads the cable to one of three possible sides of the housing. Figure 7-3: mechanical drawing, bottom view 7.1.2.2 Power Supply The power supply is automatically provided via the USB connection.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.2.3 SAM Socket The integrated SAM socket is accessible only by opening the housing. • Before opening the housing an ESD protection has to be used. • The reader has to be unpowered and unpluged from the host system. It’s recommended to remove the USB cable on the reader side. • Open the four screws on the bottom side with an appropriate screwdriver. • Carefully remove the bottom part of the housing. Install the SAM.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.3 Function Control Indicator LEDs The reader comes with four integrated indicator LEDs.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.3.1 Power LED This LED shows the status of the power supply. If on, then enough power is provided by the USB hub to run the reader. Figure 7-6: position and design of Power LED 7.1.3.2 RFID activity indicator LED This LED shows any activities on the reader’s contactless RFID interface. LED On means data is being sent to or received from the card. Figure 7-7: position and design of RFID activity indicator LED 7.1.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 7.1.3.4 Contact Interface activity indicator LED This LED shows any activities on the reader’s contact interface. LED On means data is being sent to or received from the card.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8 Software for contactless interface functions By default, data is transmitted at 9600, n, 8, 1, no handshaking. Two protocol modes are supported. The protocol mode is configured in the reader EEPROM. As factory default, the ASCII protocol is used. If the PC/SC driver has been installed on the host PC, then the commands of this chapter can’t be used as such. Only the PC/SC specification is valid in this case.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.2.1 STX Start of transmission (02h) 8.2.2 Station ID Unique ID of the station 00h: FFh: reserved for the bus master. Readers send response to this device ID. Broadcast message. All devices will execute the command and send their response. 8.2.3 Length Length of the data block, including the flag byte, if binary protocol version 2 is activated. If length is set to zero, 256 data bytes are transmitted.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.2.6 Block Check Character (BCC) The BCC is used to detect transmission errors. The BCC is calculated XOR-ing each byte of the transmission frame excluding the STX/BCC and ETX characters. The flags are part of the data. BCC = ( StatID) XOR ( Length) XOR (Command / Data 0 ) XOR ... XOR (Command / Data N ) 8.2.7 ETX End of transmission. (03h) 8.2.8 Remarks If the reader device receives an invalid instruction frame (i.e.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3 Register Set The reader has several system flags used for customization purposes. The flags are stored in its non-volatile EEPROM. The reader accepts changes to these settings only during the start-up phase. Clearing all RFU bits is recommended in order to guarantee compatibility with future releases. The reader can store up to 32 authentication keys internally to login standard mifare® cards. An additional 32 keys can be stored for DESFire authentication.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.2 Unique device ID (00h – 04h) The unique device ID identifies a reader module. It is factory programmed and cannot be changed. 8.3.3 Station ID (0Ah) The station ID is used in binary mode to address a device in party line set up. The station ID can range from 01h to FEh and can be set freely. The value 00h is reserved for the bus master. All readers send their response to this device.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.4.5 LED (default 0) If set the reader suppresses any LED activity. The user manages the state of the LEDs. 8.3.4.6 Single shot (default 0) If set, the reader displays the serial number of a tag in continuous read mode once within a specified time-out. The time-out is defined at EEPROM register 0Fh. The delay time can be adjusted stepwise in 100ms steps. 00h indicates no delay and FFh indicates infinite delay. 8.3.4.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.4.8 Extend ID (default 0) If set, the reader extends the serial number of tags with additional bytes. ISO 14443 A tags (5/8/11 bytes transmitted) Tag type Serial number 1 byte 4 / 7 / 10 bytes Figure 8-6: ISO 14443 A Extended Serial number The tag type byte indicates the type of cascade level.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.5 BAUD, Baud rate control register (0Ch) The baud rate register defines the communication speed of the reader device. Default value is 00h. Baud rate register Bit 7 Bit 6 Bit 5 Bit 4 Bit 3 Bit 2 Bit 1 Bit 0 RFU RFU RFU RFU RFU BS2 BS1 BS0 Figure 8-9: Baud rate register This register defines the baud rate of the device.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 The following table describes the exact baud rates used by the reader. Baud rate Exact baud rate Difference 9600 baud 9576 baud -0.25 % 19200 baud 19261 baud 0.32 % 38400 baud 38523 baud 0.32 % 57600 baud 58448 baud 1.47 % 115200 baud 113000 baud -1.91 % 230400 baud 241545 baud 4.84 % 460800 baud 483091 baud 4.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.8 Single Shot Time-out (0Fh) The time-out value defines the delay time between two responses of the reader. It only has effect in continuous read mode. To enable the time-out, the single shot flag has to be set. See the protocol configuration register above. One time-out slice is around 100ms. Exact timing depends on the protocol used. Value 00h indicates no delay time. Default value is 0Ah (1 second). 8.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.9.5 Reset Recovery Time Multiplier (default 0) Multiplies the Reset Recovery Time, including the recovery time of the field reset command. Reset Recovery Time Multiplier Reset Recovery Time 0 1x 1 2x 2 3x 3 4x Figure 8-15: Reset Recovery Time Multiplier 8.3.9.6 Enable ISO14443 B Anti-collision (default 0) If set, the anti-collision algorithm for ISO 14443 B tags is enabled. 8.3.9.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.13 Selection Time-out ISO 14443A (17h) The Selection Time-out represents the reader card communication time-out for the select, high speed select, continuous read, multilist, multiselect and mifare® login command with ISO 14443A tags. For a better reaction time use low values. One time slice is around 300us. The default value is 10h. 8.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.3.16.2 Page read (default 0) If set the continuous read mode retrieves the content of the tag instead of the serial number. The register Page Start (1Ch) defines the start block and the Page Number (1Fh) defines the number of blocks to be read. 8.3.16.3 ReqA Extended ID (default 0) If set the Extended ID information for ISO14443 A tags replaces the cascade level information (1 byte) with Request A answer (2 bytes). 8.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4 Instruction Set Following table describes all the commands of the reader device. Each command returns an answer to the host. Exceptions are mentioned explicitly. The RFID activity indicator LED acknowledges a successfully executed command. The RFID activity indicator LED indicates an error by changing its color to red. 8.4.1 Overview Common commands '!' Test continuous read 'c' Continuous read '.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.2 Error Codes Following figure shows an overview of all error messages of the reader device.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3 Common commands 8.4.3.1 Test Continuous Read This command tests the state of the continuous read command. This command only works in ASCII mode. Command Command Data '!' None Answer Answer Description 'F' Continuous read mode is not active. '!' Continuous read mode is active. 8.4.3.2 Continuous Read The reader device reads and displays serial numbers continuously while one or more tags remain in the field.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.2.1 Multitag continuous read mode If the Multitag flag is set in the Protocol Configuration (PCON) register the reader reads multiple tags continuously. 8.4.3.2.2 Auto start The continuous read mode is started automatically. The auto start flag must be set in the PCON register. 8.4.3.2.3 Noisy Environment If the Noisy Environment flag is set, the continuous read mode can only be aborted with the '.' character. 8.4.3.2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.3 Set LED This command controls the LED activity. If the LED flag is set, the automatic LED function is switched off. The user can set the state of the LED manually.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.4 DES encryption / decryption of data This command returns 8 bytes of encrypted / decrypted data.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.5 Get ID This command returns the station ID of the reader device. The answer is time slotted to enable the detection of all devices in party line mode. The station ID has only effect in binary mode.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.5.1 Binary Protocol Version 2 This command never sends version 2 binary frames. 8.4.3.5.2 High speed select This command selects a card in the antenna field (according to the selection criteria) or prepares a multiselect command, switches to high baud rates and enables 256byte frames. If execution is successful, the command returns the UID of the selected card and the used baud rate.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Answer Answer Description Data (n bytes) serial number + frame size used and baud rate + frame size and baud rate (1byte) 'F' Error: General failure ‘N’ Error: No Tag in the field Example Command Description h08 1234567890ABCD84 Select the card with UID 1234567890SABCD. The card supports a 256-byte frame size and 424kBaud on the air interface.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.5.3 Answer from 0xh and 1xh The lower nibble contains the baud rate used for the air interface. Baud Rate Description x0 106kBaud x2 212kBaud x4 424kBaud x8 848kBaud Figure 8-21: Baud Rate values The higher nibble contains the frame size used for the air interface.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.5.7 Multiple tags This command with parameter 1xh prepares the next multiselect command as a highspeed select. Any other command will disable the preparation. 8.4.3.5.8 RATS Guard Time SFGT A high-speed select with parameters 0xh and 1xh automatically waits the SFGT guard time gotten from the tag before sending the PPS command. 8.4.3.6 Multi-Tag Selection / List This command detects several tags at the same time.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.6.2 Reading distance Each card needs a specific amount of power. The reader always provides the same amount of power. Therefore, the reading distance will decrease if more tags are present. Basically, the reading distance depends on the tag, the antenna and the tuning of the antenna. 8.4.3.6.3 Multi-tag select Using the serial number with as parameter, the corresponding tag will be selected.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.7 Include tag type This command includes a specific tag type to those addressed by the reader device. Command Command Data ‘o+’ tag type (1 byte) Answer Answer Description 'O+' + tag type (1 byte) Command code + String of tag type Tag type character Refer to Set tag type. Example Command Description o+a Include ISO14443-A to the tag types addressed by the reader device.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.8 Exclude tag type This command excludes a specific tag type from being addressed by the reader device. Command Command Data ‘o-’ Tag type (1 byte) Answer Answer Description 'O-' + tag type (1 byte) Command code + String of tag type Tag type character Refer to Set tag type. Example Command Description o-a Exclude ISO14443-A from the tag types addressed by the reader device.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.9 Set tag type This command sets up the reader for a specific tag type. The continuous read function will speed up because only this type of tag is addressed. After a reset, the reader starts as defined in its start-up configuration.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.10 Set Configuration Flags This command allows setting some configuration flags just in time; no reset is needed. The values are not stored in the EEPROM, therefore the changed values are not available after a reset. Command Command Data of flag type (1 byte) data (1 byte) Answer Answer Description Data (1 byte) Current state of changed flag.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Flag Types The following table shows the Flag Type with its corresponding flag from the specified Protocol Configuration Register.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.11 Set Configuration Register This command allows setting some configuration registers just in time; no reset is needed. The values are not stored in the EEPROM; therefore the changed values are not available after a reset. Command Command Data og Register type (1 byte) data (1 byte) Answer Answer Description Data (1 byte) Current state of changed register.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Register Types The following table shows the Register Type with its corresponding register.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.12 Antenna power on/off This command controls the antenna power. It can be used to decrease the power consumption of the reader. Command Command Data 'pon' Switch reader on 'poff' Put reader in standby mode Answer Answer Description 'P' Positive acknowledge Example Command Description poff Put reader in standby mode 8.4.3.12.1 Power off The reader enters standby mode. Power consumption is decreased.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.13 Read/Write user port This command sets or reads the state of the user port (pin 14) of the OEM reader device. The port is set either as output or as input.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.13.2 Write port If user port is used as an output, a 1kΩ resistor has to be integrated into the wire. Otherwise the reader device can be damaged.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Receive Frame Low Description Start bit Error Bit If set, an error was detected.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.14.2 ISO 14443 Type B Some ISO14443 Type B tags do not support this command or do not respond. ‘Quiet’ is an ISO 14443-4 command, so it will work only if the ‘Deselect’ command is supported by the corresponding transponder. 8.4.3.14.3 SR176 With SR176 tags the Quiet command always answer with 'Q' because the completion command does not send any acknowledge. 8.4.3.15 Read block This command reads a data block on a card.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.15.2 No tag in field 'N' The tag does not respond. There is either no tag present or addressed. 8.4.3.15.3 Operation mode failure 'O' The presented tag is not ISO14443 type A compliant. 8.4.3.15.4 Out of range failure 'R' The block address of the 'r' command is higher than 40h. The block address of the 'r' command conflicts with other commands, therefore the block address has to be limited to 40h. Use the 'rb' command instead. 8.4.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.17 Select This command selects a single card in the antenna field. It can only be used in single tag mode. If successfully executed, the command returns the UID of the selected card. The reader detects the length of the UID automatically. Command Command Data 's' None Answer Answer Description Data serial number 'N' Error: No Tag in the field Example Command Description s 1234567890ABCD Select the card with UID 1234567890SABCD. 8.4.3.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.18 Get Version This command returns the current version of the reader module. Command Command Data 'v' None Answer Answer Description 'Dual 2.2' + + ASCII Mode 02 00 08 44 75 61 6C 20 32 2E 32 32 03 Binary Mode Example Command Description v ‘Dual 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.19 Write DESFire key This command is used to store a key into the DESFire key memory of the reader. The reader can store up to 32 keys. DESFire keys can be used for fast access to applications on a card.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.20 Write master key This command stores a mifare® Standard key into the master key memory of the reader. The reader can store up to 32 keys. Command Command Data 'wm' Key number (1 byte) Key (6 bytes) 00h … 1Fh Answer Answer Description data Written key (6 bytes) 'F' Error: Write failure 'R' Error: Out of range Example Command Description wm00112233445566 Store key 112233445566h in EEPROM (key number 0).
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.21 Write block This command writes data to a block. A read is done automatically after every write to ensure correct writing.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.21.4 Out of range failure 'R' The block address of the 'w' command is higher than 40h. The block address of the 'w' command conflicts with other commands, therefore the block address has to be limited to 40h. Use the 'wb' command instead. 8.4.3.22 Write EEPROM Writes to the internal reader EEPROM. It contains all start-up parameters and the device ID. Changes to the start-up settings will only go into effect after a reset of the device.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.23 Reset This command executes a power on (software) reset. New configuration settings will be loaded. It resets all tags in the antenna field. Command Command Data 'x' None Answer Answer Description 'Dual 2.2' + + ASCII Mode None 8.4.3.23.1 Binary Mode Disable Start-up Message If the start-up message is disabled in the protocol configuration register 2, the ASCII mode does not respond with the version of the reader. 8.4.3.23.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.3.24 Field Reset The field reset switches off the antenna field for the specified duration. All tags need a certain amount of time to initialize before a command can be processed. The second byte specifies the field recovery time. Command Command Data 'y' Off time in milliseconds (1 byte) Field recovery time in milliseconds (1 byte) Answer Answer Description 'Y' After the field reset the reader sends back a ‘Y’ to acknowledge the command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4 ISO 14443 Type A only commands 8.4.4.1 Increment value block (credit) Increments a value block with a defined value. A read is done automatically after a write to verify data integrity. The command fails if the source block is not in value block format. A previous login is needed to access a block.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.1.3 No tag error 'N' The reader does not detect a response from the tag. There is either no tag present or the tag does not respond to the request. 8.4.4.1.4 Operation mode failure 'O' The tag is not ISO14443 type A compliant. 8.4.4.2 Decrement value block (debit) Decrements a value block with a defined value. A read is done automatically after the write to verify data integrity. The command fails if the source block is not in value block format.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.2.2 Decrement failure 'F' The Decrement failure indicates a general failure during the decrement procedure or inability to read after the write process. 8.4.4.2.3 No tag error 'N' The reader does not detect a response from the tag. There is either no tag present or the tag does not respond to the request. 8.4.4.2.4 Operation mode failure 'O' The tag is not ISO14443 type A compliant. 8.4.4.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.3.1 Target block The target block does not need to be a valid value block. If the source block is not in value format, the command fails. 8.4.4.3.2 No value block 'I' Source value block is not in a valid value block. The value block is corrupted. A backup block can be used to restore the correct value. 8.4.4.3.3 Copy failure 'F' The Copy failure indicates a general failure during the copy procedure or inability to read after the write process. 8.4.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.4 Login (authenticate tag) Performs an authentication in order to access one sector of a mifare® card. Only one sector can be accessed at a time. Optionally, the command can be used to transmit the key data to the reader-stored keys, in the reader EEPROM. To store keys in the EEPROM, the write master key command is used. It is possible to store up to 32 master keys in the reader EEPROM. The login requires a successful select.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.4.4 Three transport keys are implemented to access cards quickly. By transmitting instead of the key, the reader module uses the transport keys for the login procedure.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.5 Read value block Reads a value block. The command checks if data is in value block format. The read value block command needs a successful login. Command Command Data 'rv' Value block (1 byte) Answer Answer Description Data Read value (4 bytes) 'F' Error: General failure 'I' Error: value block failure 'N' Error: No tag in field 'O' Error: Operation mode failure Example Command Description rv04 Reads value of block 4. 8.4.4.5.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.6 Write value block This command formats a block as a value block containing a 32-bit value. A read is performed automatically after the write. Value blocks need a complete 16-byte block due to redundant storage. A successful login is required to run the command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.4.6.4 Operation mode failure 'O' The tag is not ISO14443 type A compliant. 8.4.4.6.5 Writing values The write value block command is designed to create blocks in value format. This command requires write access to the specified block. Using this instruction for ticketing operations is not recommended. For ticketing applications, special instructions (Increment/Decrement/Copy) are available.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.5 SR176 only commands 8.4.5.1 Lock block This command locks a block permanently. Command Command Data 'k' Block address (1 byte) Answer Answer Description data 'K' + page address 'F' Error: Lock failure 'N' Error: No tag in field 'O' Error: Operation mode failure (only SR176 tags supported) 'X' Error: Block already locked Example Command Description k05 K05 Lock block 05. 8.4.5.1.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6 DESFire command set This command set provides easy communication with DESFire tags. The reader handles all encryption and decryption automatically. The length byte includes all data and command bytes. For more information about DESFire, refer to DESFire documentation [2]. The DESFire command set is only available for ISO 14443 Type A tags; with other tags, the Error Code 'O' is returned.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.1 Authenticate Authenticates to a DESFire card. Authentication depends on access conditions of an application or file. ROM keys can be used to login. The reader can store up to 32 keys internally.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.2 Change Key Settings This command changes the key settings of a selected application. Command Command Data 01h Settings (1 byte) Answer Answer Description data Status code (1 byte) 00h Success 'N' Error: No tag in field Xxh DESFire status / error code, refer DESFire documentation Example Command Description f0201FF Answer: 00 change key settings to FFh.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.3 Get Key Settings This command gets the key settings of a selected application. Settings of the currently selected application are returned. Additionally the maximum number of keys that can be stored in the application is displayed. Command Command Data 02h none Answer Answer Description 00h + Key settings (1 byte) + max.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.4 Change Key This command changes the key of a selected application.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.5 Get Key Version This command reads the key version of a key of a selected application. Command Command Data 04h Key number on tag (1 byte) Answer Answer Description 00h + Key version (1 byte) Key version 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f020400 Answer: 0000 Key version 00h.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.6 Create Application This command creates an application on a tag. Applications can only be created in the master application (000000h).
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.7 Delete Application This command deletes an application on a tag. Command Command Data 06h Application ID (3 bytes) Answer Answer Description Data Status code (1 byte) 00h Success 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f0406000010 Answer: 00 Delete application 000010h.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.8 Get Application IDs This command returns all application IDs on a tag.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.9 Select Application This command selects a specific application. An application must be selected to access all files stored in it. Command Command Data 08h Application ID (3 bytes) Answer Answer Description Data Status code (1 byte) 00h Success 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f0408000010 Answer: 00 Application 000010h is selected.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.10 Format PICC This command formats the tag. All applications are deleted. The format command requires successful authentication. Command Command Data 09h None Answer Answer Description Data Status code (1 byte) 00h Success 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f0109 Answer: 00 The tag is formatted successfully.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.11 Get Version This command returns the production data of a tag. Command Command Data 0Ah none Answer Answer Description Data Version (28 bytes) For more detailed information refer to DESFire documentation. 'F' Error: General failure 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.12 Get File IDs This command returns all file IDs found for a selected application. Command Command Data 0Bh none Answer Answer Description 00h + File IDs (1 byte each) File IDs 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f010B Answer: 000005 File with ID 00h and 05h exists.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.13 Get File Settings This command returns additional information of a file. Command Command Data 0Ch File number (1 byte) Answer Answer Description 00h + File settings (n bytes) File settings Length depends on file type. For more detailed information refer to DESFire documentation.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.14 Select File This command selects a specific file.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.15 Change File Settings This command changes the access rights of a selected file.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.16 Create Standard Data File This command creates a Standard Data File in a selected application.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.17 Create Backup Data File This command creates a Backup Data File in a selected application. Backup data files use a shadow register for data manipulation operations. The file number must be in the range from 00h to 07h.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.18 Create Value File This command creates a Value File in a selected application. Value blocks are signed long numbers, which are stored in Intel format (LSB first). Value files use a shadow register for data manipulation operations. The file number must be in the range from 00h to 07h.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.19 Create Linear Record File This command creates a Linear Record File in a selected application. Linear record files use a shadow register for data manipulation operations. The file number must be in the range from 00h to 07h.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.20 Create Cyclic Record File This command creates a Cyclic Record File in a selected application. Cyclic record files use a shadow register for data manipulation operations. The file number must be in the range from 00h to 07h.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.21 Delete File This command deletes a file on tag in a selected application. Command Command Data 14h File number (1 byte) Answer Answer Description Data Status code (1 byte) 00h File is successfully deleted 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f021403 Answer: 00 File with ID 03h is deleted.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.22 Read Data / Records This command reads data of a selected Data or Record file.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.23 Data files The offset defines the start address of the reading. The length specifies the number of bytes, which are read. The offset and length must not exceed the limits of the file. 8.4.6.24 Record file Records are always read one at a time. The offset points to the record within the record file from which the reading starts. The length defines the number of records that have to be read. The response always starts with the oldest record.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.25 Write Data / Record This command writes data to a selected Data or Record file. A write record command will append a new record to a linear record file until all records are filled up. Using cyclic record files, the oldest record is updated when all records are used up. The write record command must be validated with the commit/abort transaction command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.25.1 Our of range 'R' If sent data exceeds the maximum of 232 bytes, the error R ('Out of range') is returned. Note If performance is important 232 bytes should be used for plain data and 224 should be used for enciphered and MACed data, because in this case the smaller frames from the DESFire tag are filled up completely. 8.4.6.26 Get Value This command reads a value block of a selected value file.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.27 Credit This command increases a value in a selected value file. All value manipulation commands are accumulated in a shadow register. This shadow register is only written after a successful commit transaction command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.28 Debit This command decreases a value in a selected value file. All value manipulation commands are accumulated in a shadow register. This shadow register is only written after a successful commit transaction command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.29 Limited Credit This command limits the credit to a selected value file. The value depends on all previous debit values. It enables to cancel misattributed debits. All value manipulation commands are accumulated in a shadow register. This shadow register is only written after a successful commit transaction command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.30 Clear Record File This command clears the whole content of a selected record file. After a commit / abort transaction command the changes are written. Command Command Data 1Bh None Answer Answer Description Data Status code (1 byte) 00h Success 'N' Error: No tag in field Xxh DESFire status / error code, refer to DESFire documentation Example Command Description f011B Answer: 00 All records of the record file are erased.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.31 Commit Transaction This command validates all previous write operations to backup data or record files and data manipulations on value files in a selected application. All changes are done at the same time.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 8.4.6.32 Abort Transaction This command aborts all previous write operations to backup data or record files and data manipulations on value files of a selected application. No data is changed. Power loss will be interpreted as an abort transaction command.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 9 Software for contact interface functions The contact interface is fully CCID and PC/SC compliant. Therefore there are no own commands available. The PC/SC documentation can be downloaded from PC/SC workgroup web site http://www.pcscworkgroup.com/. In order to develop own application S/W it’s recommended to use the Microsoft SDK, as the reader supports ScardControl commands.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10 Frequently Asked Questions 10.1 Getting Started To test and interface the ACGPass e-ID Desktop Reader, you just need to connect the reader via the USB cable with a Microsoft Windows 2000® or Microsoft Windows XP® based PC. You do not need a power supply for the reader. Once the reader is connected then please just follow the instruction on the PC screen. The PC/SC driver for the reader should come together with the reader.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10.3 What type of mifare® card should I use? The mifare® standard is designed for multi-application environments. It contains 16 sectors each with 2 individual keys, access conditions, and 3 data or value blocks. Some applications use the 1 Kbytes of the mifare® Standard Card Memory only as storage area. mifare® Ultralight has no crypto unit on chip. It only supports 16 blocks.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 The Application can and should provide more barriers: • Sector access conditions. It is possible to assign access conditions in a way that only decrementing of values is allowed with the keys used in the field. So even a manipulated field station cannot be used to increment the value on the cards. As a general rule, key A is used as a field key, allowing only to read and decrement values, and key B is used to format the card or increment values.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10.5 Using a mifare® card This example demonstrates the detection of a card in the antenna field with continuous read and the reading of a page. Command Answer c Activate continuous read mode B2197B58 a card responds with its serial number .
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10.6 Using a DESFire card 10.6.1 Create a plain standard data file After activation, application 0 is selected automatically. Default access rights of application 0 require a login to create an application. The following example illustrates the successful creation of a plain standard data file.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10.6.3 Create a value file Basically, each application is created in the same way. The access rights of an application can be adjusted to freeze the application organization. In this case, a login to the application is needed to make any changes to the application. Regardless of the application access rights, a file can be selected using its ID. Before accessing a secured file, a login to the application is needed.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 10.6.4 Use a DES secured value file The next example demonstrates the use of a DES secured value file, such as the one created in the previous example. After the selection of the application, a login with the key of the value file is needed to access the file. Modification of the value file is accepted after the commit transaction command is given.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 11 References [1] ISO/IEC 14443 Part 1-4, Identification Cards – Contact less integrated circuit(s) cards – Proximity cards [2] DESFire Documentation, Philips, http://www.semiconductors.philips.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 12 Appendix A: SAM Please note that the power supply of the SAM adapter must be turned off during the entire card insertion period, otherwise SAM card damage might occur. For proper usage of the SAM, a 100nF capacitor between Vcc and GND is necessary.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 13 Appendix C: Timings tCMD PC: tEXEC Request → ← Response Reader: Command tRES tEXEC [ms] Comments Common commands Cont. read (locked tag) Cont. read (worst case) DES en/decryption 2.8 – 22.6 + Reset Off and Recovery Time 54 + 3x Reset Off and Recovery Time 9.6 – 9.7 TDES en/decryption 28.7 – 28.8 High-speed select 'h08' (locked tag) 8.9 – 14.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 Command tEXEC [ms] Comments ISO 14443 Type A only commands Increment value block 18.4 Decrement value block 18.4 Copy value block 18.5 Read value block 2.3 Write value block 7.9 - 10.5 Mifare Login 4.9 Power conditions Power on 79 Enable on 85 Does not include rise time of power supply Figure 13-1: Timings Default Command Guard Time (20h = 1.2ms) was used.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 14 Appendix D: Release Notes 14.1 Version History 14.1.1 Dual 2.0 Initial Release. 14.1.2 Dual 2.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 14.1.4 Dual 2.3 • Reset To Default via MCLR Pin possible • Added 'ra' command: Resend last answer • SAM Command: Option byte modified, Improvements • Default value of ISO 14443B Selection timout register changed to 10h • Asynchronous Baudrates possible with Highspeed select • Added command that returns the version of the bootloader • Added command "rd"/"wd": read/write multiple blocks • "DisableReadAfterWrite" Flag added • Bug fixes 14.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 15 Appendix F: Approvals / Certificates 15.1 CE Declaration ASSA ABLOY Identification Technologies GmbH declares that, in conformity with the European CE requirements specified in the EMC Directive 89/336/EEC, ACGPass e-ID Desktop Reader, described in this manual is CE compliant The relevant documents are available.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 15.2 FCC Declaration ASSA ABLOY Identification Technologies GmbH declares that, in conformity with the U.S. Directive FCC part 15, the ACGPass e-ID Desktop Reader described in this manual, is FCC part15 compliant The relevant documents are available. If any of the ACGPass e-ID Desktop Reader is operated from a mains power supply, all power connections and additional components of the final device must also comply with the US FCC Part 15 directive.
ACGPass e-ID Desktop Reader, Ver. Dual ISO 2.3 15.