帮助
英语(美国) | English (US) 日本語 | Japanese 中文 | Chinese (Simplified)

When to change keys for MiFare Classic Cards?

取消
开启建议
自动建议可通过在您键入时建议可能的匹配,而快速缩小您的搜索结果范围。
显示结果 
显示  仅  | 搜索替代 
您的意思是: 
已解决
跳至解决方案

When to change keys for MiFare Classic Cards?

跳至解决方案
‎09-19-2022 01:43 PM
2,400 次查看
user_leo
Contributor II

I have an empty Mifare Classic card and want to encrypt memory in just one sector by changing the key for that sector. 

However since this is an empty card all sectors have the default key FF FF FF FF FF FF. 

Should I change the key for all the other sectors as well even though they are unused and empty? 

标签 (1)
标签
0 项奖励
回复
1 解答

跳至解决方案
‎09-21-2022 01:00 AM
2,380 次查看
Florian_Mikulik
NXP Employee
NXP Employee

Hello!

Yes, it is advised to change ALL keys on MIFARE Classic cards away from the default values (even the key for Sector0)

Please refer to the document "AN11302 - End to end system security risk considerations for implementing MIFARE Classic" which describes possible attacks and countermeasures on MIFARE Classic. 

Please be also aware that for storing sensitive data, its not advised to use MIFARE Classic, but rather a more secure MIFARE card like DESFire Light.

Best regards,

Florian

Customer Application Support Engineer - Gratkorn - Austria

在原帖中查看解决方案

回复
3 回复数

跳至解决方案
‎09-21-2022 01:00 AM
2,381 次查看
Florian_Mikulik
NXP Employee
NXP Employee

Hello!

Yes, it is advised to change ALL keys on MIFARE Classic cards away from the default values (even the key for Sector0)

Please refer to the document "AN11302 - End to end system security risk considerations for implementing MIFARE Classic" which describes possible attacks and countermeasures on MIFARE Classic. 

Please be also aware that for storing sensitive data, its not advised to use MIFARE Classic, but rather a more secure MIFARE card like DESFire Light.

Best regards,

Florian

Customer Application Support Engineer - Gratkorn - Austria
回复

跳至解决方案
‎08-01-2024 01:54 PM
618 次查看
Fernando_Magro
Contributor I

Hi @Florian_Mikulik ,

First of all thanks for your message.

I was able to find the referred "AN11302 - End to end system security risk considerations for implementing MIFARE Classic" in the NXP website, but i'm unable to download it - a username/password is required.

Please, can you try the link below:

https://www.nxp.com/restricted_documents/53420/AN11302.pdf

Can you share this document or point out how to get the credentials?

Thank you.

标记 (2)
0 项奖励
回复

跳至解决方案
‎08-02-2024 01:51 AM
600 次查看
Florian_Mikulik
NXP Employee
NXP Employee
Hi Fernando,
Indeed, this document is only available under NDA. I would recommend to get a full NDA in place with nxp (if not yet done: https://www.nxp.com/support/support:SUPPORTHOME) and then also enable secure files access (same link as above) for your nxp.com account. Once done, i can push you this and other documents that might be required. The option for retrieveing those passwords can not be used anymore for security reasons, and anyhow will be removed soon, so the only way is to obtain it via the secure files process under NDA. Thanks for understanding.

Br,
Florian
Customer Application Support Engineer - Gratkorn - Austria
0 项奖励
回复