About the security of SLIX2 signature data

takuyaota · ‎02-15-2024

Hello,

SLIX with illegally copied UID is in circulation. I have a few questions.

SLIX2 stores both the UID and signature data in the configuration area. Isn't there a risk that the signature data will be illegally copied?
Has the security of the configuration area been strengthened in SLIX2? Or are there special security measures applied to the signature data?

Best Regards,

KellyLi · ‎02-19-2024

Each ICODE SLIX2 UID is signed with an NXP private key and the resulting 32-byte signature is stored in a hidden part of the ICODE SLIX2 memory during IC production. This signature can be retrieved using the READ_SIGNATURE command and can be verified in the NFC device by using the corresponding ECC public key provided by NXP. The signature can only be read, and the saved address is private and cannot be written, so there is no risk of tampering.

Best Regards,

kelly

View solution in original post

KellyLi · ‎02-19-2024

Hello @takuyaota

Each ICODE SLIX2 UID is signed with an NXP private key and the resulting 32-byte signature is stored in a hidden part of the ICODE SLIX2 memory during IC production. This signature can be retrieved using the READ_SIGNATURE command and can be verified in the NFC device by using the corresponding ECC public key provided by NXP. The signature can only be read, and the saved address is private and cannot be written, so there is no risk of tampering.

Best Regards,

kelly