FAQs
English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

PN5190 security

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

PN5190 security

‎09-16-2024 01:36 AM
2,727 Views
alaahamo
Contributor I

Hello NXP community,

I’m currently working with the PN5190 frontend and have a couple of questions regarding its SPI communication with the microcontroller.

  1. Is SPI communication encrypted when exchanging sensitive data?
  2. Can we store the secret key for DESFire directly on the frontend? If not, what is the recommended method for secure key storage? Additionally, I couldn’t find detailed documentation on the encryption technology used for communication and key management. Could you point me in the right direction for this?

Thanks in advance for your help!

Labels (1)
Labels
0 Kudos
Reply
5 Replies

‎09-18-2024 02:40 PM
2,691 Views
EduardoZamora
NXP TechSupport
NXP TechSupport

Hello @alaahamo,

A pure SPI communication based on Commands, Responses and Events is used to connect with host controller for configuration, NFC data exchange and high-level NFC protocol implementation. More information on this can be found in PN5190 instruction layer.

Key handling will depend on your setup/hardware; for example, you could consider using a MIFARE SAM. These devices offer secure storage and strong protection of highly sensitive keys.

If you are looking for information about DESFire devices, as some of the information and software supporting DESFire is under NDA (Non-Disclosure Agreement), the information is not public, and it is secured under Secure Files. Please consult the Non-Disclosure Agreement FAQs and Secure Access Rights | NXP Semiconductors for more information.

Regards,
Eduardo.

0 Kudos
Reply

‎09-19-2024 01:22 AM
2,679 Views
alaahamo
Contributor I
Hi Eduardo,

Thank you for your response.

I was searching for the way the keys are exchanged between the microcontroller and the frontend.
I think, in the lib they are using an encryption algorithm, when the key are in exchange process. My question is: Which kind of encryption algorithm is used there? There is no documentation regarding the SPI encryption.
Are the keys are shared and static? Do we have to change them?

Best regards,

Hamo
0 Kudos
Reply

‎09-19-2024 01:55 PM
2,664 Views
EduardoZamora
NXP TechSupport
NXP TechSupport

Hi,

What are the keys you are referring to? Some auth processes may involve calculations, and not a raw key exchange. However, it depends on the PICC being used, and this information is under NDA and secured in the Secure Files.

Regards,
Eduardo.

0 Kudos
Reply

‎09-20-2024 02:24 AM
2,653 Views
alaahamo
Contributor I
Hi,

I'm referring to the PICC_MasterKey_DES and PICC is used.

Regrads,
Hamo
0 Kudos
Reply

‎09-20-2024 11:22 AM
2,642 Views
EduardoZamora
NXP TechSupport
NXP TechSupport

Hi,

Assuming that you are working with MIFARE DESFire EV3 devices, information is not public and may be under Secure Files. For more information, please refer to the Secure Access Rights | NXP Semiconductors.

Regards,
Eduardo.

0 Kudos
Reply