SE051 Key Diverisification Algorithm

trink185 · ‎02-25-2025

Hello,

I have an SE051 which I am storing symmetric keys on. I am using the Plug and Trust Nano-Package, and am building an app using Zephyr.

Generally, I am able to use the SE051 and the Nano Package in order to generate and use diversified keys on the SE051.

However, I was wondering, am I able to change the algorithm on the SE051 by which keys are diversified? My understanding based on AN12543, is that keys are diversified in a means described by AN10922.

Is there a way to change this? Or is the method described in AN10922 the only way the SE051 can diversify keys?

Thanks!

Kan_Li · ‎02-25-2025

Hi @trink185 ,

The algorithm on the SE051 to diversify key is fixed, but of course you may determine which key to be diversified. AN12543 addresses this explicitly as below:

Create a Diversified Key according [AN10922]. Input is divInput of 1 up to 31 bytes.
Note that users need to create the diversified key object before calling this function.

It is also recommended creating the diversified key object as a transient object to avoid memory consumption.

Hope that helps,

Have a great day,
Kan

-------------------------------------------------------------------------------
Note:
- If this post answers your question, please click the "Mark Correct" button. Thank you!
- We are following threads for 7 weeks after the last post, later replies are ignored
Please open a new thread and refer to the closed one, if you have a related question at a later point in time.
-------------------------------------------------------------------------------

SE051 Key Diverisification Algorithm

SE051 Key Diverisification Algorithm

MIFARE