Upload
ihar-bayarenka
View
206
Download
3
Embed Size (px)
Citation preview
PUBLIC
IHAR BAYARENKA
8-9 FEBRUARY 2017
NXP TECHNOLOGY SEMINAR
JAKARTA, INDONESIA
ADDING CRYPTOGRAPHIC
SUPPORT TO LONG RANGE
RFID TAGS
PUBLIC 2
Security pyramid for RFID tags
UID based• Online tracking based on UID
• Check related to time/location information
• User memory locked
UID + Originality Signature• Additional validation of originality signature
• Optional usage of password
Tag
Authenticaion
Originality verification
based on cryptographic
authentication
PUBLIC 3
In the past: either read range or security
Functional
Security
Read Range
UCODE
SmartMX
MIFARE
ICODE
UHF
HF
PUBLIC 4
Today: both read range and security
Read Range
UCODE
DNA
Functional
Security
UHF
HF
ICODE
DNA
PUBLIC 5 Security
Op
erat
ing
ran
ge
MIFARE PLUS
MIFARE Ultralight
MIFARE DESFire
MIFARE on SmartMX
NTAG
MIFARE Ultralight C
MIFARE Classic
up to 10 cmHF
MIFARE®, NTAG®
ISO14443, ISO 18092 (NFC)
@ 13,56 MHz (HF)
Note: The operating distance of an RFID system (Tag/ reader-writer) depends on various parameters:- Tag and reader ´s
- antenna size and form factor- shape- tuning
- Reader IC features- Environment (e.g. metal in proximity)- etc.
UCODE
UCODE DNA up to 15 m
UCODE - ISO18000
@ 860-960MHz (UHF)
UHF
HITAG
ICODEup to 1,2 m
ICODE - ISO15693 @ 13,56 MHz (HF)
HITAG - ISO 11784/85 @ 100-125 KHz (LF)
HF
LF
operating range
HITAGICODE
UCODE
MIFARENTAG
SmartMX
NXP Contactless tag IC familiesrelative positioning operating range vs. features and data security
ICODE DNA
PUBLIC 6
AES (Advanced Encryption Standard)
• Worldwide open, mature and acknowledged cryptographic standard
(NIST, National Institute of Standards and Technology)
• Used in numerous applications globally
• Broad software and hardware supporting tools available from various sources
• Cost/area efficient implementation possible
• Symmetric algorithm
PUBLIC 8
All based on international standards
* GS1 EPCglobal™ Inc. UHF RFID Generation-2 Version 2.0
** ISO/IEC 29167-10 for proof of origin
based on AES (Advanced Encryption Standard)
Passive UHF tag IC
with cryptographic authentication
world-leading
long range
contactless performance
cutting-edge
security implementation
for tag authentication
Highly sophisticated
secure privacy protection
with untraceability feature
PUBLIC 9
UCODE DNA support by the industry
Provided by NXP
• Specifications, application notes, IC and tag samples
• Demo app SW for smartphones/tablets
Provided by our customers
• Paper labels and hard tags
• Windshield stickers
• License plates
• Dual frequency (HF + UHF) inlays and cards
Provided by our partners
• Readers
• UHF antennas
• SI services
• Training services
PUBLIC 15
Secure passive RFID takes you well beyond tolling…
…payment for vehicle-related services such as car wash…
PUBLIC 16
Secure passive RFID takes you well beyond tolling…
…payment for vehicle-related goods such as fuel at gas stations…
PUBLIC 17
Secure passive RFID takes you well beyond tolling…
…loyalty and superior customer service tool at drive-through facilities…
PUBLIC 18
…UCODE DNA turns your vehicle into authentic credential for
loyalty, micro-payment and access…
PUBLIC 19
UCODE DNA projects – some success stories
• Government authorities in a South East Asian country are using UCODE DNA for vehicle ID purposes
• Government authorities in an African country are using UCODE DNA for electronic toll collection
• Two South American countries are using UCODE DNA for electronic vehicle registration purposes with windshield labels
• One South American country is using UCODE DNA for license plate authentication
• European system integrator is using UCODE DNA for parking access application
• South East Asian retailer is piloting dual frequency loyalty cards where MIFARE is used for short range use cases and UCODE DNA for car access to retailer parking facilities
PUBLIC 20
And more…
• These are not all but just some of the projects we have ongoing. More details cannot be shared at
this time but are planned once they are made public.
• Some relevant public sources:
NXP Completes Field Trial with Over 100 Military Vehicles – Reveals Effectiveness of RFID
Technology for Vehicle Identification
http://media.nxp.com/phoenix.zhtml?c=254228&p=irol-newsArticle&id=2185205
Secure UHF RFID tags show excellent performance in the leading road tolling systems in Russia
https://nxp-rfid.com/secure-uhf-rfid-tags-show-excellent-performance-in-the-leading-road-tolling-
systems-in-russia/
PUBLIC 22
Accessibility for disabled individuals
Some travelers in public transport networks cannot easily get to their ticket
and/or cannot easily tap their ticket at the reader terminal.
PUBLIC 23
Hands-free access in public transport
Increasing throughput, especially at high frequency stations, and improving user experience
PUBLIC 24
Access control management in corporate environment
Dual frequency solution enables two-level security:
high security HF for perimeter access and secure UHF for easy internal movement
PUBLIC 25
Crowd control and event ticketing
Crowd management / location service / easy registration / pre-screening
at events, theme parks, sport events
allows increasing of people flow and reduce safety risks due to gated systems
PUBLIC 26
Protecting vulnerable road users
Detecting vulnerable road users (e.g. kids, disabled, elderly people)
for alerting to drivers and/or managing traffic lights
allows reducing amount of road incidents
PUBLIC 27
Hands free access solutions already being put into use today
Several cities
in North America
implementing solution
for disabled travelers
Several major European
metropolitan areas
implementing solution
at key station for faster
throughput at rush hour
SAE capital exploring
new solution for
increased travel
convenience
PUBLIC 30
ICODE family continuous evolution
ICODE SLI- 896 bit memory- EAS- Fast inventory read
ICODE 1- 1st HF IC
- proprietary protocol
1999
2001
2007
ICODE SLI-S- Performance improved - 1280 bit memory- Password
ICODE SLI-L- Performance improved- 256 bit memory
2010
ICODE SLIX- Performance improved- Password EAS/AFI
ICODE SLIX-S- Performance improved - Password protected read/write access
ICODE SLIX-L- Performance improved
ICODE ILT / ILT-M- HF EPC G2- up to 512 bit memory
2012ICODE SLIX2- Performance improvement - 2528 bit memory- NFC forum tag type 5
ICODE DNA
- 2016 bit memory - AES authentication- 23.5pF
2015
2016
13,56Mhz
NFC forum tag type 5
PUBLIC 31
ICODE DNA for secure vicinity applications
ICODE is the leading brand for high-frequency (HF) smart label solutions with billions of ICs in the field and thousands of successful installations
With the new ICODE DNA, NXP revolutionizes its ICODE portfolio by bringing tag and mutual AES cryptographic authentication to enhance the security for vicinity applications
Moreover ICODE DNA offers easy cloud connectivity through NFC phones to support convenient consumer engagement and offers easy system integration thanks to a broad range of supporting tools
PROGRAMABLE Originality signature
− Public key (asymmetric) based tag validation method
with easy distribution of ECC public key
− Customer can generate and store own tag individual
originality signature
− Standard NFC reader/mobile devices with dedicated
app allows for online and offline validation ConnectivityNFC phone readability and cloud connectivity
enabling easy product authenticationand brand protection
Advanced SecurityAES cryptographic
authentication with broad availability of supporting tools
for easy system integration
Vicinity read rangeConsumer and industrial
applications thanks to the read range up to 1m.
Reliability, Sustainability,
Maturitycontinuos product
advancements and backwardcompatibility
ISO15693
PUBLIC 33
ICODE DNA Target Applications
Industrial Access Document tracking
• Automation & data
exchange in the factory.
• Track & trace products
along production and
supply chain
• Original spare part /
consumable
identification
• Hands-free access
control for corporate and
leisure
• Enabled service offering:
− easy online booking
via mobile phones
− direct engagement
with user
− enabled monitoring of
consumer behavior
• Document identification
• Automatic document
management
− Inventory management
− Control of document
stock
− Document validation
• Archiving of documents
• Product identification
thanks to source-to-sale
traceability
• Digital authentication of
genuines or fake
• Built-in data protection
• Theft detection
• Increases in-store
experiences and
enables:
− Personalized services
− Sharing of product
info, offers and
services
− Reminders, re-orders
− Connecting consumer
to the social media,
loyalty schemes,
company relevant
content,…
Brand protectionCustomer
interaction
PUBLIC 35
Hands-Free Access
• Focus use cases
− Ski ticketing
− Theme parks
− Event ticketing
• Flexible, secure and convenient solutions
− Enhanced protection of business case
− Enabling working in harsh environments and with small form factors
− Enriching user experience through NFC
• Easy integration to existing systems
− AES authentication ensures security and highest performance in both HW and SW implementations
− Backwards compatible with existing systems
PUBLIC 36
Brand Protection
• Counterfeiting is a major global problem
− It impacts a range of industries
− Over 90% of Fortune 500 companies are affected
− Losses will reach $2.3 trillion by 2018(source: Vandagraf)
• ICODE DNA is the ideal solution
• NFC compliancy enables direct interaction with the consumers
− authenticating items in real time, before or after the purchase, anywhere
− brand owners get a new way to engage their customers in deeper dialogues
PUBLIC 38
Summary
• UCODE DNA and ICODE DNA is the evolution of highly successful long range
RFID tag IC families for UHF and HF frequency bands
• New products are fully compliant with industry standards
• Cryptographic authentication available on a long distance enables new business
models and applications
• NXP invites you to join industry leaders by designing in secure RFID tags into your
next projects