ヘルプ
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

PN5190 security

キャンセル
提案をオンにする
自動提案では、入力時に可能な一致が提案されるので検索結果を素早く絞り込むことができます。
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 

PN5190 security

‎09-16-2024 01:36 AM
2,233件の閲覧回数
alaahamo
Contributor I

Hello NXP community,

I’m currently working with the PN5190 frontend and have a couple of questions regarding its SPI communication with the microcontroller.

  1. Is SPI communication encrypted when exchanging sensitive data?
  2. Can we store the secret key for DESFire directly on the frontend? If not, what is the recommended method for secure key storage? Additionally, I couldn’t find detailed documentation on the encryption technology used for communication and key management. Could you point me in the right direction for this?

Thanks in advance for your help!

ラベル(1)
ラベル
0 件の賞賛
返信
5 返答(返信)

‎09-18-2024 02:40 PM
2,197件の閲覧回数
EduardoZamora
NXP TechSupport
NXP TechSupport

Hello @alaahamo,

A pure SPI communication based on Commands, Responses and Events is used to connect with host controller for configuration, NFC data exchange and high-level NFC protocol implementation. More information on this can be found in PN5190 instruction layer.

Key handling will depend on your setup/hardware; for example, you could consider using a MIFARE SAM. These devices offer secure storage and strong protection of highly sensitive keys.

If you are looking for information about DESFire devices, as some of the information and software supporting DESFire is under NDA (Non-Disclosure Agreement), the information is not public, and it is secured under Secure Files. Please consult the Non-Disclosure Agreement FAQs and Secure Access Rights | NXP Semiconductors for more information.

Regards,
Eduardo.

0 件の賞賛
返信

‎09-19-2024 01:22 AM
2,185件の閲覧回数
alaahamo
Contributor I
Hi Eduardo,

Thank you for your response.

I was searching for the way the keys are exchanged between the microcontroller and the frontend.
I think, in the lib they are using an encryption algorithm, when the key are in exchange process. My question is: Which kind of encryption algorithm is used there? There is no documentation regarding the SPI encryption.
Are the keys are shared and static? Do we have to change them?

Best regards,

Hamo
0 件の賞賛
返信

‎09-19-2024 01:55 PM
2,170件の閲覧回数
EduardoZamora
NXP TechSupport
NXP TechSupport

Hi,

What are the keys you are referring to? Some auth processes may involve calculations, and not a raw key exchange. However, it depends on the PICC being used, and this information is under NDA and secured in the Secure Files.

Regards,
Eduardo.

0 件の賞賛
返信

‎09-20-2024 02:24 AM
2,159件の閲覧回数
alaahamo
Contributor I
Hi,

I'm referring to the PICC_MasterKey_DES and PICC is used.

Regrads,
Hamo
0 件の賞賛
返信

‎09-20-2024 11:22 AM
2,149件の閲覧回数
EduardoZamora
NXP TechSupport
NXP TechSupport

Hi,

Assuming that you are working with MIFARE DESFire EV3 devices, information is not public and may be under Secure Files. For more information, please refer to the Secure Access Rights | NXP Semiconductors.

Regards,
Eduardo.

0 件の賞賛
返信