Datasheet

MF1PLUSX0Y1_SDS All information provided in this document is subject to legal disclaimers. © NXP B.V. 2011. All rights reserved.
Product short data sheet
PUBLIC
Rev. 3.2 — 21 February 2011
163532 7 of 20
NXP Semiconductors
MF1PLUSx0y1
Mainstream contactless smart card IC
Value blocks are special counters where the stored value can be manipulated with
specific commands such as MF Increment, MF Decrement and MF Transfer.
These value blocks have a fixed data format enabling error detection and correction with
backup management to be performed.
The MIFARE Plus X provides two further commands which can be used to optimize
performance when using value blocks. These are:
MF Increment Decrement
MF Decrement Transfer
A successful mutual authentication is required to allow any data operation.
8.1.2.1 Access conditions
The access conditions for every data block and the sector trailer itself are stored in the
sector trailer of the corresponding sector.
The access bits control the rights of memory operations using the secret keys A and B.
The access conditions may be altered after authentication with the relevant key and the
current access condition allows this operation.
Furthermore, value blocks are configured using the access bits.
8.1.3 AES keys
AES keys are not shown in the memory map. The keys are stored on top of the other data
and can be updated and used by referencing the Key Number. In security level 3,
anti-tearing is supported for the update of AES keys as well as for the update of the sector
trailer. In security level 2, anti-tearing is supported only for the update of AES keys. This
anti-tearing mechanism is done by the PICC itself. The EEPROM stays in a defined
status, even if the PICC is removed from the electromagnetic field during the write
operation.
8.1.4 Proximity check
The security level 3 offers a feature to verify that the PICC is in close proximity to the
PCD. This functionality can be used to effectively prevent relay attacks.
The proximity check is based on a precise time measurement of challenge-response pairs
in combination with cryptographic methods.
8.1.5 Multi-sector authentication
A new feature has been provided in security level 2 and 3 for data which is spread over
multiple sectors to improve transaction performance.
Providing that such sectors are secured with identical keys (key value and key type) only
one authentication is required to read and/or write data from these sectors. There is no
need to re-authenticate when accessing any data within these sectors. Therefore it is
possible to configure a card in such a way that operating with only one authentication is
needed in security level 3 to access all sectors. The same applies also for security level 2
authentications (one is AES-based the other one is CRYPTO1-based)