Is a SAM required for DESFire EV3 / Light readers, or can reader authentication be software-only?

キャンセル
次の結果を表示 
表示  限定  | 次の代わりに検索 
もしかして: 

Is a SAM required for DESFire EV3 / Light readers, or can reader authentication be software-only?

ソリューションへジャンプ
3,110件の閲覧回数
andrei_l
Contributor I

I have an existing reader based on ST25R3911B transceiver, but with no SAM
(currently using ISO15693 tags, but this reader supports ISO14443A/B options as well)

Could reader authentication be implemented in software (w/o hardware change), or is a SAM required?

Thank you!

0 件の賞賛
返信
1 解決策
3,063件の閲覧回数
Kan_Li
NXP TechSupport
NXP TechSupport

Hi @andrei_l ,

 

As far as I know, it is possible to do the authentication on DESFire tags just based on software, but this has lower security than with a SAM. Because the Auth Key is saved inside your application code, so any one has the source code may easily know what the key is. You know,  that would lead to some security issue. so we have DESFire demos running without a SAM but for production you better use a SAM.

 

Hope that makes sense,

 

Have a great day,
Kan


-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

元の投稿で解決策を見る

4 返答(返信)
3,079件の閲覧回数
andrei_l
Contributor I

Hi Kan,

Thank you for the reply!
More broadly speaking, does a DESFire tag rely on proprietary NXP reader hardware (dedicated SAM or integrated functionality in the reader chip) for authentication, or can the authentication be software-based?

Thank you,

-Andrei

0 件の賞賛
返信
3,064件の閲覧回数
Kan_Li
NXP TechSupport
NXP TechSupport

Hi @andrei_l ,

 

As far as I know, it is possible to do the authentication on DESFire tags just based on software, but this has lower security than with a SAM. Because the Auth Key is saved inside your application code, so any one has the source code may easily know what the key is. You know,  that would lead to some security issue. so we have DESFire demos running without a SAM but for production you better use a SAM.

 

Hope that makes sense,

 

Have a great day,
Kan


-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

3,048件の閲覧回数
andrei_l
Contributor I
Thank you very much, Kan!
0 件の賞賛
返信
3,103件の閲覧回数
Kan_Li
NXP TechSupport
NXP TechSupport

Hi @andrei_l ,

 ST25R3911B is not a NXP product, please contact ST for further support on this topic, but for easy implementation, I would recommend NFC reader IC from NXP. Please kindly refer to https://www.nxp.com/products/rfid-nfc/nfc-hf/nfc-readers:NFC-READER for more details.

 

Hope that helps,

 

Have a great day,
Kan


-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

 

0 件の賞賛
返信