HID Credentials Based on MIFARE DESFire EV3
HID’s credentials based on NXP MIFARE DESFire EV3 offer a variety of high-frequency technology choices, providing an ideal migration path from legacy, low-frequency 125 kHz systems. Users can deploy a single card with multi-technology to economically improve site security over time.
The IC is Common Criteria EAL 5+ certified and supports a broad choice of open crypto algorithms. Its extensive list of security features includes a new transaction timer function and on-chip backup management.
Enhanced Security
The mifare desfire ev3 chip is equipped with numerous security features to safeguard privacy and integrity. The IC is Common Criteria EAL 5+ certified and supports a variety of open crypto algorithms based on DES, 2K3DES, 3K3DES or AES smart card supplier hardware encryption. It also offers new functions, including a card generated MAC that helps to securely authenticate transactions and a Transaction Timer to help mitigate man-in-the-middle attacks.
Aside from being one of the most secure radio-frequency chips available, mifare desfire ev3 offers many advantages over EV1 type cards for physical access control, loyalty and public transport applications. It supports up to 1 million read/write cycles and can be programmed with multiple applications at the same time. It is also compatible with NXP’s MIFARE 2GO cloud service, which manages digitized credentials and makes them accessible to NFC smartphones, tags and wearables.
HID takes advantage of mifare desfire ev3’s security and privacy features to offer a complete range of high-security credentials. Our MIFARE EV3 cards leverage AES128 encryption, secure channel-based file transfer and proximity checks to protect card data from attack. They also include random UID support, so that a card’s user data cannot be linked to any specific person. This feature is ideal for companies that need to migrate from legacy 125 kHz contactless technology while retaining the ability to use existing MIFARE readers onsite.
Seamless Integration of Mobile Services
The MIFARE DESFire EV3 IC brings new next-generation performance, advanced security features and seamless integration of mobile services for a new era of smart city services. Its improved operating distance and transaction speed compared to its predecessors increase user convenience while boosting system performance without the need for expensive infrastructure upgrades.
A vast set of security features give the MIFARE DESFire EV3 an edge in data protection. Its hardware and software are Common Criteria EAL 5+ certified, while a new transaction timer feature helps mitigate man-in-the-middle attacks and ensures that only the intended data is transferred during a transaction. The new IC also includes an on-chip backup management system and a mutual three-pass authentication mechanism that further enhance data integrity.
MIFARE DESFire EV3 offers the flexibility to integrate multiple applications, including smart paper tickets and key fobs for mobility, in a single card. Its open concept allows the integration of media based on NFC and other proximity technologies, while a 70 pF option enables read range optimization for small antenna form factors.
Smart City services can be deployed on smartphones and mifare desfire ev3 NFC wearables by utilizing the free NXP MIFARE 2GO cloud service, which manages digitized MIFARE product-based credentials and enables contactless payments or access to features on devices equipped with NFC. mifare desfire EV3 also supports the creation of multitechnology cards that provide an economical migration path from legacy, low-frequency 125 kHz readers and systems to modern MIFARE technology, as well as the flexibility to support any future protocol.
Backward Compatibility
The MIFARE DESFire EV3 chips offer the latest security features to safeguard data integrity and confidentiality. These contactless ICs are Common Criteria EAL5+ certified, making them ideal for use in public transport schemes as well as access management and e-payment applications. Moreover, the MIFARE DESFire EV3 is compatible with older generations such as MIFARE DESFire D40, EV1, and EV2 cards to provide a seamless migration path for users from existing legacy systems.
In addition to the aforementioned features, the EV3 IC includes an on-chip backup management system and mutual three-pass authentication to protect against attacks. Furthermore, it allows the integration of various services with a single card using the MiSmartApp feature. This enables a more flexible approach to the deployment of connected smart city services such as car or bike sharing, access to municipal services and citizen applications, closed-loop e-payment solutions and local loyalty programs.
The EV3 IC supports all of the latest security features to meet the increasing demands of users for secure and convenient contactless solutions. These include the new transaction timer that mitigates man-in-the-middle attacks, a more powerful security model that provides several ways to defend against cloning and tampering of the chip contents, and an enhanced rewrite protection to prevent the unauthorized modification of the chip’s memory. The EV3 also supports a more powerful encryption algorithm to prevent the unauthorized transfer of its data to external devices.
Multi-Application Support
MIFARE DESFire EV3 is the ideal contactless IC for solution providers, system operators and integrators who require an extremely reliable, interoperable and scalable contactless chip platform for development of multi application card solutions. The IC features 8 kBytes of memory and is Common Criteria EAL 5+ certified. The new DESFire chip supports the same open functions as the previous generations, while a hardware cryptographic engine based on 2K3DES or AES ensures confidentiality and security of transmission data.
The EV3 chip is compatible with the cloud-based service MIFARE 2GO, which manages digitized MIFARE product-based credentials and helps streamline mobile integration on NFC devices like smart cards, smartphones, tags and wearables. It can also be used to upload applications over-the-air, enabling additional functionality on existing cards or mobiles without the need for card replacement.
New EV3-specific functions include a transaction timer that increases security by ensuring that a unique tap-unique message is transmitted and verified on each read, an optional high input capacitance of 70 pF for improved read range on small form factor designs as well as backward compatibility mode with MIFARE DESFire EV2, EV1 and D40. It also supports the Delegated Application Management system, which allows a card issuer to delegate the creation of applications to third parties (application providers) in the field, without sharing master keys and compromising the security of the chip.