Chip Card & Security ICs my-d(R) vicinity SRF 55V02S Intelligent 2.5 Kbit EEPROM with Contactless Interface compliant to ISO/IEC 15693 and ISO/IEC 18000-3 mode 1 and Security Logic Secure Mode Operation Short Product Information July 2007 SRF 55V02S Short Product Information Revision History: Current Version 2007-07-02 Previous Releases: 2002-07-30 Page Ref.: SRF55V02S_ShortProductInfo_2007-06.doc Subjects (changes since last revision) Editorial changes Important: For further information please contact: Infineon Technologies AG in Munich, Germany, Chip Card & Security ICs, Fax +49 (0)89 / 234-955 9372 E-Mail: security.chipcard.ics@infineon.com Published by Infineon Technologies AG, CC Applications Group D-81726 Munchen (c) Infineon Technologies AG 2007 All Rights Reserved. To our valued customers We constantly strive to improve the quality of all our products and documentation. We have spent an exceptional amount of time to ensure that this document is correct. However, we realise that we may have missed a few things. If you find any information that is missing or appears in error, please use the contact section above to inform us. We appreciate your assistance in making this a better document. Attention please! The information herein is given to describe certain components and shall not be considered as warranted characteristics. Terms of delivery and rights to technical change reserved. We hereby disclaim any and all warranties, including but not limited to warranties of non-infringement, regarding circuits, descriptions and charts stated herein. Infineon Technologies is an approved CECC manufacturer. Information For further information on technology, delivery terms and conditions and prices please contact your nearest Infineon Technologies Office in Germany or our Infineon Technologies Representatives world-wide (see address list). Warnings Due to technical requirements components may contain dangerous substances. For information on the types in question please contact your nearest Infineon Technologies Office. Infineon Technologies Components may only be used in life-support devices or systems with the express written approval of Infineon Technologies, if a failure of such components can reasonably be expected to cause the failure of that life-support device or system, or to affect the safety or effectiveness of that device or system. Life support devices or systems are intended to be implanted in the human body, or to support and/or maintain and sustain and/or protect human life. If they fail, it is reasonable to assume that the health of the user or other persons may be endangered. my-d(R) vicinity secure SRF 55V02S Intelligent 2.5 Kbit EEPROM with Contactless Interface (ISO/IEC 15693 and ISO/IEC 18000-3 mode 1) and Security Logic Features Contactless Interface * Physical Interface and Anticollision compliant to ISO/IEC 15693 and ISO/IEC 18000-3 mode 1 contactless transmission of data and supply energy -- carrier frequency: 13.56 MHz -- data rate up to 26 kbit/s -- anticollision with identification of up to 30 tags/sec -- read / write distance up to 150 cm depending on reader antenna configuration -- 2.5 Kbit EEPROM * ISO mode - block organization of memory up to 56 blocks of user memory (block size 4 bytes) applicable for plain memory only Custom mode - page organization of memory -- up to 32 pages of user memory (page size 8 bytes for data storage and 2 bytes for administrative purposes in addition) -- configurable number of sectors (1 to 15) and sector size (1 to 32 pages) -- configurable Key Area with up to 14 key pairs and configurable User Area Unique chip identification number (UID) EEPROM programming time per block/page < 4 ms EEPROM endurance > 100,000 erase/write cycles1) Data retention > 10 years1) -- * * * * * Value Counters: up to 65536 (value range from 0 to 216-1) -- -- each page in the User Area is configurable as a Value Counter support of Anti-Tearing Security Features * State-of-the-art challenge and response security algorithm 2-way mutual authentication with 64-bit key -- 2 keys per sector enable hierarchical key management -- multi-level security structure possible -- individual access rights for each key within a sector of each page -- only one sector can be accessed at a time -- 32 bit message authentication code (MAC) verifies data integrity Transport key on chip delivery -- * Electrical characteristics * ESD protection minimum 2 kV * Ambient temperature -25 ... +70C (for the chip) 1) Values are temperature dependent Short Product Information 3 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S Development Tool my-d(R) Evaluation Kit including my-d(R) Manager Software 1 Ordering and Packaging information Table 1: Ordering Information Type Package1) SRF 55V02S C Sawn wafer SRF 55V02S NB NiAu bump wafer SRF 55V02S MFCC1 S-MFCC1-2-1 SRF 55V02S MCC2 Memory User Admin. Pages Ordering Code SP000009364 2) 256 bytes 64 bytes 32 P-MCC2-2-1 SP000009491 SP000010034 SP000009368 For more ordering information (wafer thickness and height of NiAu-Bump) please contact your local Infineon sales office. Pin Description Figure 1: Pin Configuration Module Contactless Card - MFCC1 (top / bottom view) Figure 2: Pin Configuration Module Contactless Card - MCC2 (top view) 1) 2) Available as a Module Flip Chip Contactless (MFCC1), Module Contactless Card (MCC) for embedding in plastic cards, as NiAu-bump version (NB) or as a die on sawn / unsawn wafer for customer packaging FCoSTM Flip Chip on Substrate Short Product Information 4 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S LA m y-d (R) vicinity SRF 55V02S LB Figure 3: Pad Configuration Die Table 2 Symbol LA LB Pin Definitions and Functions Function Antenna connection Antenna connection Short Product Information 5 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S 2 my-d(R) product family The my-d(R) products are designed to meet increased demands for security and design flexibility. The family of contactless memory my-d(R) supplies the user with different memory sizes and incorporates security features to enable considerable flexibility in the application design. The functional architecture, meaning the memory organisation and authentication of my-d(R) products is the same for both, my-d(R) proximity (ISO/IEC 14443) and my-d(R) vicinity (ISO/IEC 18000-3 mode 1 or ISO/IEC 15693). This eases the system design and allows simple adaptation between applications. All my-d(R) products are available in plain mode with open memory access and in secure mode with memory access controlled by authentication procedures. Flexible controls within the my-d ICs start with plain mode operation and individual page locking for more complex applications various settings in secure mode can be set for multi user / multi application configurations. In secure mode a cryptographic algorithm based on 64-bit key is available. Mutual authentication, message authentication codes (MAC) and customized access conditions protect the memory against unauthorized access. Configurable value counters featuring anti-tearing functionality are suitable for value token applications, such as limited use transportation tickets. Architectural interoperability of all my-d(R) products enables an easy migration from simple to more demanding applications. In addition, the my-d(R) light (ISO/IEC 18000-3 mode 1 or ISO/IEC 15693) is part of the my-d(R) family. Its optimized command set and memory expands the range of applications to cost sensitive segments. Short Product Information 6 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S SRF 55V02S my-d(R) vicinity secure 3 my-d(R) vicinity secure focuses on flexible memory and sector configuration at longer read/write distances. All my-d(R) vicinity products comply with ISO/IEC 18000-3 mode 1 or ISO/IEC 15693 standards for contactless vicinity smart cards. The power supply and data are transferred to the my-d(R) products via an antenna. The my-d(R) vicinity is designed to communicate within the operating distance of up to 1.5m depending on appropriate reader antenna configurations. 3.1 Circuit Description The my-d(R) vicinity is made up of an EEPROM memory unit, an analog interface for contactless energy and data transmission, a control unit and a crypto unit. LA POWER Analog Contactless Interface CLOCK Operational Mode Authentication Unit Memory Unit Power Circuit Antenna Rectifier Clock Extractor DATA Parallel Power On Reset Voltage Regulator Serial IO Command Anticollision LB Authentication Memory Access Control Unit Figure 4: Block diagram of the my-d(R) vicinity secure * Analog Contactless Interface: The Analog Contactless Interface comprises the voltage rectifier, voltage regulator and system clock to supply the IC with appropriate power. Additionally the data stream is modulated and demodulated. * Operational mode The access to the memory depends on the actual mode of the my-d(R) vicinity. The memory is accessed according to plain or secure mode after the VICC is selected. * Authentication Unit (optional use) The Authentication Unit generates random numbers, calculates and verifies the message authentication codes (MAC). * Memory Unit The Memory Unit consists of 320 bytes organised in 32 pages each of 8 user and 2 administration bytes. Short Product Information 7 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S * 3.2 Control Unit The Control Unit decodes and executes all commands. Additionally the control unit is responsible for the correct anticollision and authentication flow. Memory Principle The my-d(R) vicinity secure features secure memory access. The User / Key Memory with its flexible organisation permits up to 14 independent secure sectors of a variable size each protected with a 64 bit key pair. Only after a successful authentication a single sector is accessible. In addition, one freely programmable plain sector is available for general purpose use. The service area contains the UID and manufacturer data. The service area cannot be changed. The administration area comprises the access conditions and sector information. User / Key Area Service Area Unique Serial Number control of memory access Administration Area 1 up to 15 sectors up to 14 key pairs Figure 5: Memory principle of my-d(R) SRF 55V02S Short Product Information 8 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S 3.3 System Overview The system consists of a contactless label and a contactless reader together with an antenna. Operations on protected areas of my-d(R) vicinity in secure mode require mutual authentication between the label and the reader. To achieve high system security the my-d(R) security algorithm has to be integrated into the reader. A license can be obtained from Infineon Technologies. Optionally, a Security Access Modules (SAM) contains the algorithm for performing the mutual authentication and data integrity check. Host System C Analog Circuitry DATA SAM SRF 55VxxS my-d(R) vicinity label Antenna VICC Identification Terminal (VCD) ENERGY Figure 6: Contactless System Example my-d(R) vicinity Secure * VICC - Vicinity Card according to ISO/IEC 18000-3 mode 1 or ISO/IEC 15693 * optional SAM - Security Access Module with contacts according to ISO/IEC 7816 Contactless Energy and Data Transfer The read / write distance is up to 1.5 m depending on an appropriate reader antenna configuration. The label antenna consists of a simple coil with few turns. Contactless labels are passive. The RF communication interface exchanges data with data rates of up to 26 kbit/s. An intelligent anticollision function enables operation of more than one label in the field simultaneously. The anticollision algorithm selects each label individually and ensures that the Short Product Information 9 / 10 2007-07-02 my-d(R) vicinity secure SRF 55V02S execution of a transaction with a selected label is performed correctly without data corruption resulting from other labels. Multi-Application Functionality The my-d(R) vicinity secure mode provides the possibility to use one large sector or up to 15 smaller ones of flexible size. Optionally, one sector can be addressed without authentication reading e.g. additional label and user information. The my-d(R) vicinity closes the gap between the diverging requirements for low cost memory and secure, value token applications. Its unique value counter functionality eases the implementation of value blocks and limited use. The hierarchical approach of a key pair enables customized applications comprising different memory access. System Security In the system design, substantial emphasis has been placed on security against fraud. The serial number is unique for each label and cannot be changed. Access to the protected memory of the label is only granted after a mutual authentication. For all operations to the protected memory the authentication unit calculates and validates the message authentication codes (MAC) to verify the data integrity. Additionally a key pair and individually configurable access conditions secure the access to the protected memory Short Product Information 10 / 10 2007-07-02