INFINEON SRF55V10SC

Security & Chip Card ICs
my-d products for contactless systems
my-d vicinity
SRF 55V10S
Intelligent 10–KBit EEPROM
with Contactless Interface complying to ISO/IEC 15693
and Security Logic
Secure Mode Operation
Short Product Information
July 2002
SRF 55V10S Short Product Information
Revision History:
Current Version 2002-07-30
Previous Releases:
2001-08-15
Page
Ref.: SPI_SRF55V10S_0702.doc
Subjects (changes since last revision)
Editorial changes
Important: Further information is confidential and on request. Please contact:
Infineon Technologies AG in Munich, Germany,
Security & Chip Card ICs,
Tel +49 (0)89 / 234-80000
Fax +49 (0)89 / 234-81000
E-Mail: [email protected]
Published by Infineon Technologies AG, CC Applications Group
St.-Martin-Strasse 53, D-81541 München
© Infineon Technologies AG 2002
All Rights Reserved.
To our valued customers
We constantly strive to improve the quality of all our products and documentation. We have spent an exceptional
amount of time to ensure that this document is correct. However, we realise that we may have missed a few things. If
you find any information that is missing or appears in error, please use the contact section above to inform us. We
appreciate your assistance in making this a better document.
Attention please!
The information herein is given to describe certain components and shall not be considered as warranted
characteristics.
Terms of delivery and rights to technical change reserved.
We hereby disclaim any and all warranties, including but not limited to warranties of non-infringement, regarding
circuits, descriptions and charts stated herein.
Infineon Technologies is an approved CECC manufacturer.
Information
For further information on technology, delivery terms and conditions and prices please contact your nearest Infineon
Technologies Office in Germany or our Infineon Technologies Representatives world-wide (see address list).
Warnings
Due to technical requirements components may contain dangerous substances. For information on the types in
question please contact your nearest Infineon Technologies Office.
Infineon Technologies Components may only be used in life-support devices or systems with the express written
approval of Infineon Technologies, if a failure of such components can reasonably be expected to cause the failure of
that life-support device or system, or to affect the safety or effectiveness of that device or system. Life support devices
or systems are intended to be implanted in the human body, or to support and/or maintain and sustain and/or protect
human life. If they fail, it is reasonable to assume that the health of the user or other persons may be endangered.
my-d vicinity
SRF 55V10S
Intelligent 10–KBit EEPROM
with Contactless Interface complying to ISO/IEC 15693
and Security Logic
my-d vicinity – Secure Mode Operation
Features
•
10-KBit EEPROM
—
—
—
—
—
—
—
•
Smart Electronic Article Surveillance (EAS)
—
—
•
—
—
—
—
—
—
—
—
—
—
1)
2-way (mutual) authentication with 64-bit secret key between reader and label
2 keys for each sector allow hierarchical key management
Multi-level security structure possible
Individual access rights for each key within a sector for each page
Only one sector can be opened at a time
Data integrity supported by 16 bit CRC (ISO 3309) and 32 bit MAC (after authentication)
Access protection of EEPROM by transport keys on chip delivery (optional use)
Physical Interface and Anticollision complying to ISO/IEC 15693
—
•
•
•
•
•
Each page in User Area configurable as a Counter
Support of Anti-Tearing
High Security Authentication Unit (optional use)
—
•
•
Easy Integration in existing infrastructure
On/Off EAS switch feature
Value Counters: up to 65536 units (with a value range from 0 to 216-1)
—
•
Organised in 128 pages located in up to 16 sectors
Each page organised in 8 bytes for data storage + 2 bytes for administrative purposes
Configurable number of sectors (1 to 15) & sector size (1 up to 128 pages)
Service Area 4 pages
Configurable Key Area with up to 14 key pairs
Configurable User Area
Unique chip identification number
Carrier frequency: 13.56 MHz
up to 26 kbit/s data rate transfer
Anticollision method complying with ISO/IEC 15693 with identification of up to 30 tags/sec
Contactless transmission of data and supply energy
Coupling distance from 0 to 120 cm (typical, dependent on antenna)
EEPROM updating (erase and program) time maximum 4 ms per page
EEPROM endurance minimum 105 write/erase cycles1)
Data retention for minimum of 10 years1)
ESD protection typical 4 kV
Ambient temperature –25 … +85°C for chip and MCC, –25 … +70°C for Inlay
Values are temperature dependent
Short Product Information
3 / 10
2002-07-30
my-d vicinity
SRF 55V10S
Document References
―
Confidential Data Sheet
Qualification report chip
―
Chip delivery specification for wafer with chip-layout (die size, orientation, …)
―
Module specification containing description of package, product logistic etc.
Qualification report module
―
―
―
―
Inlay specification containing description of package, product logistic etc.
Qualification report inlay
Development Tool Overview
―
my-d vicinity evaluation and demonstration kit
1
Ordering and Packaging information
Table 1
Ordering Information
Type
Package1)
SRF 55V10S C
Die
SRF 55V10S MCC8 P-MCC8-2-1
SRF 55V10S Y1.0
Inlay 45 x 45 mm2
SRF 55V10S Y2.0
Inlay 45 x 76 mm2
1)
Memory
User
Admin.
Pages
Ordering Code
Q67100H4897
1024 bytes
256 bytes
128
on request
Q67100H4906
Q67100H4907
Available as a die (C) for customer packaging, as inlay (Y) or as a Module Contactless Card (MCC) for embedding in
plastic cards
Short Product Information
4 / 10
2002-07-30
my-d vicinity
SRF 55V10S
Pin Description
Figure 1 Pin Configuration Label Inlay (top view)
Figure 2
Pin Configuration Module Contactless Card (top view)
LA
m y-d vicinity
SRF 55V10S
Figure 3
Pad Configuration Die
Table 2
Pin Definitions and Functions
Symbol
LA
LB
LB
Function
Antenna connection
Antenna connection
Short Product Information
5 / 10
2002-07-30
my-d vicinity
SRF 55V10S
2
my-d products for contactless systems
my-d products for contactless systems are designed to meet the increased security and flexibility
demand of the market. This family of contactless memories supports the different interface and
memory size needs as well as various security requirements for variable applications.
The product series functional architecture (e.g. memory organisation, authentication) is the same
for both proximity (ISO/IEC 14443) and vicinity (ISO/IEC 15693). This eases the system design
and allows simple adaptation of applications from my-d proximity to my-d vicinity or vice versa.
Applications are supported very flexible by setting the appropriate mode for the my-d product,
starting with plain mode with a page locking mechanism up to various settings in secure mode for
multi user / multi application configurations with tearing protected counters. In secure mode a
strong cryptographic algorithm with 64 bit key length is additionally available for security
mechanisms like mutual authentication and message authentication codes.
User Area
1 up to 15 Sectors
Administration
Area
Control of Memory
Access
Configurable Sector Size
Key Area
up to 14 Key Pairs
Service Area
Unique Serial Number
Legend
Blocks marked by cross hatch - Defined by chip manufacturer
Figure 4 Memory principle of my-d products
These powerful features make the contactless security memory product series my-d ready to cope
with even high-end requirements. Architectural compatibility of all my-d products allow an easy
migration path from simple to powerful demanding applications.
Short Product Information
6 / 10
2002-07-30
my-d vicinity
SRF 55V10S
3
my-d vicinity products
my-d vicinity focuses on flexible memory and sector configuration with higher read/write distances.
This family of contactless memory chips supplies the user with different memory sizes and
optionally offers the use of security features meeting the requirements of variable applications. As
special feature the EAS (Electronic Article Surveillance) mode is built in to achieve higher and
more robust performance in the demanding EAS application.
my-d vicinity products are available in two memory sizes as well as in plain mode and in secure
mode:
• my-d vicinity plain mode with plain memory allowing unlimited access (SRF 55VxxP). Thus the
memory is organised in one sector.
• my-d vicinity secure mode allowing to configure counters and to secure memory access by
authentication measures (SRF 55VxxS). Thus the memory may be organised in up to 16
sectors with at least one sector in plain mode.
• 2,5 KBit memory sizes
32 pages with 10 Bytes (8 byte user data)
• 10 KBit memory sizes
128 pages with 10 Bytes (8 byte user data)
• In security mode advanced functions are available. Please refer to the relevant data book for
details.
All my-d vicinity products comply to the standard ISO/IEC 15693 for contactless vicinity smart
cards. The power supply and data are transferred to my-d products via an antenna. my-d vicinity is
designed to communicate up to a typical operating distance of 120 cm with a contactless reader in
an appropriate gate configuration.
Short Product Information
7 / 10
2002-07-30
my-d vicinity
SRF 55V10S
3.1
Circuit Description
my-d vicinity consists of a EEPROM memory unit, an analog interface for contactless energy and
data transmission, a control and a crypto unit.
Power
Clock
Antenna
Power Circuit
Rectifier
Clock Extractor
Power on Reset
Voltage Regulator
Data
Authentication
Unit
Memory Unit
Serial Parallel
Converter
LA
Operational
Mode
Analog
Contactless
Interface
IO
LB
Command
Anticollision
Authentication
Memory
Access
Control Unit
Figure 5 Block diagram of my-d vicinity
•
Analog Contactless Interface consists of:
— Rectifier
— Voltage Regulator
— Power on Reset
— Modulator / Demodulator
— Clock Extractor
•
Operational mode
The access to the memory depends on the actual mode of my-d vicinity; the memory is
accessed according to plain or protected mode when the VICC is selected.
•
Authentication Unit (optional use)
Generates random numbers, checks and calculates message authentication code (MAC).
•
Memory Unit
1280 bytes organised in 128 pages with 8 + 2 bytes each.
•
Control Unit
— Decoding and execution of the commands
— Anticollision method complying to ISO/IEC 15693. It allows the recognition of several
labels in the field which may be selected and operated in sequence.
— Access to key-protected sectors is only permitted after authentication with an appropriate
key. Only one sector is opened within a session. One sector is optionally configurable
without key protection and authentication.
— Memory access to the pages according to the individual access conditions programmed
for every page and every key
Short Product Information
8 / 10
2002-07-30
my-d vicinity
SRF 55V10S
3.2
System Overview
The system consists of a contactless label on one hand and a contactless reader together with an
antenna on the other. Operations on protected areas of my-d vicinity in secure mode require a
mutual authentication with the reader. To achieve a high system security a Security Access Module
(SAM) holds the algorithm for performing the mutual authentication and integrity check of all data
exchange.
Host System
µC
SAM
Analog
Circuitry
Data
Antenna
Identification Terminal
my-d
vicinity
Label
VICC
Energy
Figure 6 Contactless System Example
•
VICC – Vicinity Card according to ISO/IEC 15693
•
optional SAM – Security Access Module with contacts according to ISO/IEC 7816
Contactless Energy and Data Transfer
The operating distance between label and reader antenna is typically up to 120 cm in an
appropriate gate configuration. The label antenna consists of a simple coil with a few turns.
Contactless labels are passive. The RF communication interface allows to exchange data with
26 kbit/s. This high data transmission rate permits short transaction times.
An intelligent anticollision function allows to operate more than one label in the field
simultaneously. The anticollision algorithm selects each label individually and ensures that the
execution of a transaction with a selected label is performed correctly without data corruption
resulting from other labels.
Short Product Information
9 / 10
2002-07-30
my-d vicinity
SRF 55V10S
Multi-Application Functionality
my-d vicinity provides the possibility to use one large sector or several smaller ones with different
sizes.
Optionally, one sector can be opened without authentication to read e.g. additional label and issuer
information.
Thus, my-d vicinity meets the need of low cost memory applications like public transport as well as
the more extensive needs of payment systems, which is also supported by the counter function.
Two different key sets for each memory sector support systems using key hierarchies.
System Security
In the system design, special emphasis has been placed on security against fraud.
The serial number is unique for each label and can not be changed. Access to the protected
memory of the label is only possible after a mutual authentication (challenge/response) which is a
function of the unique serial number, random number and key to be used. Authentication is only
possible with a security access module, SAM, that holds the algorithm.
Therefore, for all operations on the protected memory, the SAM calculates and checks by a
message authentication code (MAC) the integrity of the transferred data. Thus, operations on the
protected memory are key protected, and restricted by page-configurable access conditions.
Short Product Information
10 / 10
2002-07-30