PUBLIC

IHAR BAYARENKA

8-9 FEBRUARY 2017

NXP TECHNOLOGY SEMINAR

JAKARTA, INDONESIA

ADDING CRYPTOGRAPHIC

SUPPORT TO LONG RANGE

RFID TAGS

SECURITY

IN RFID TAGS

PUBLIC 2

Security pyramid for RFID tags

UID based• Online tracking based on UID

• Check related to time/location information

• User memory locked

UID + Originality Signature• Additional validation of originality signature

• Optional usage of password

Tag

Authenticaion

Originality verification

based on cryptographic

authentication

PUBLIC 3

In the past: either read range or security

Functional

Security

Read Range

UCODE

SmartMX

MIFARE

ICODE

UHF

HF

PUBLIC 4

Today: both read range and security

Read Range

UCODE

DNA

Functional

Security

UHF

HF

ICODE

DNA

PUBLIC 5 Security

Op

erat

ing

ran

ge

MIFARE PLUS

MIFARE Ultralight

MIFARE DESFire

MIFARE on SmartMX

NTAG

MIFARE Ultralight C

MIFARE Classic

up to 10 cmHF

MIFARE®, NTAG®

ISO14443, ISO 18092 (NFC)

@ 13,56 MHz (HF)

Note: The operating distance of an RFID system (Tag/ reader-writer) depends on various parameters:- Tag and reader ´s

- antenna size and form factor- shape- tuning

- Reader IC features- Environment (e.g. metal in proximity)- etc.

UCODE

UCODE DNA up to 15 m

UCODE - ISO18000

@ 860-960MHz (UHF)

UHF

HITAG

ICODEup to 1,2 m

ICODE - ISO15693 @ 13,56 MHz (HF)

HITAG - ISO 11784/85 @ 100-125 KHz (LF)

HF

LF

operating range

HITAGICODE

UCODE

MIFARENTAG

SmartMX

NXP Contactless tag IC familiesrelative positioning operating range vs. features and data security

ICODE DNA

PUBLIC 6

AES (Advanced Encryption Standard)

• Worldwide open, mature and acknowledged cryptographic standard

(NIST, National Institute of Standards and Technology)

• Used in numerous applications globally

• Broad software and hardware supporting tools available from various sources

• Cost/area efficient implementation possible

• Symmetric algorithm

UCODE DNA:

INTRODUCTION

PUBLIC 8

All based on international standards

* GS1 EPCglobal™ Inc. UHF RFID Generation-2 Version 2.0

** ISO/IEC 29167-10 for proof of origin

based on AES (Advanced Encryption Standard)

Passive UHF tag IC

with cryptographic authentication

world-leading

long range

contactless performance

cutting-edge

security implementation

for tag authentication

Highly sophisticated

secure privacy protection

with untraceability feature

PUBLIC 9

UCODE DNA support by the industry

Provided by NXP

• Specifications, application notes, IC and tag samples

• Demo app SW for smartphones/tablets

Provided by our customers

• Paper labels and hard tags

• Windshield stickers

• License plates

• Dual frequency (HF + UHF) inlays and cards

Provided by our partners

• Readers

• UHF antennas

• SI services

• Training services

UCODE DNA

APPLICAITONS:

VEHICLE ID

PUBLIC 11

Once upon a time, there was “stop, pay, then go”…

PUBLIC 12

… now UCODE DNA enables secure MLFF road tolling…

PUBLIC 13

…and secure vehicle identification

Not to scale

PUBLIC 14

Secure passive RFID takes you well beyond tolling…

…access to restricted parking area…

PUBLIC 15

Secure passive RFID takes you well beyond tolling…

…payment for vehicle-related services such as car wash…

PUBLIC 16

Secure passive RFID takes you well beyond tolling…

…payment for vehicle-related goods such as fuel at gas stations…

PUBLIC 17

Secure passive RFID takes you well beyond tolling…

…loyalty and superior customer service tool at drive-through facilities…

PUBLIC 18

…UCODE DNA turns your vehicle into authentic credential for

loyalty, micro-payment and access…

PUBLIC 19

UCODE DNA projects – some success stories

• Government authorities in a South East Asian country are using UCODE DNA for vehicle ID purposes

• Government authorities in an African country are using UCODE DNA for electronic toll collection

• Two South American countries are using UCODE DNA for electronic vehicle registration purposes with windshield labels

• One South American country is using UCODE DNA for license plate authentication

• European system integrator is using UCODE DNA for parking access application

• South East Asian retailer is piloting dual frequency loyalty cards where MIFARE is used for short range use cases and UCODE DNA for car access to retailer parking facilities

PUBLIC 20

And more…

• These are not all but just some of the projects we have ongoing. More details cannot be shared at

this time but are planned once they are made public.

• Some relevant public sources:

NXP Completes Field Trial with Over 100 Military Vehicles – Reveals Effectiveness of RFID

Technology for Vehicle Identification

http://media.nxp.com/phoenix.zhtml?c=254228&p=irol-newsArticle&id=2185205

Secure UHF RFID tags show excellent performance in the leading road tolling systems in Russia

https://nxp-rfid.com/secure-uhf-rfid-tags-show-excellent-performance-in-the-leading-road-tolling-

systems-in-russia/

PUBLIC 21

UCODE DNA

APPLICAITONS:

PEOPLE ID

PUBLIC 22

Accessibility for disabled individuals

Some travelers in public transport networks cannot easily get to their ticket

and/or cannot easily tap their ticket at the reader terminal.

PUBLIC 23

Hands-free access in public transport

Increasing throughput, especially at high frequency stations, and improving user experience

PUBLIC 24

Access control management in corporate environment

Dual frequency solution enables two-level security:

high security HF for perimeter access and secure UHF for easy internal movement

PUBLIC 25

Crowd control and event ticketing

Crowd management / location service / easy registration / pre-screening

at events, theme parks, sport events

allows increasing of people flow and reduce safety risks due to gated systems

PUBLIC 26

Protecting vulnerable road users

Detecting vulnerable road users (e.g. kids, disabled, elderly people)

for alerting to drivers and/or managing traffic lights

allows reducing amount of road incidents

PUBLIC 27

Hands free access solutions already being put into use today

Several cities

in North America

implementing solution

for disabled travelers

Several major European

metropolitan areas

implementing solution

at key station for faster

throughput at rush hour

SAE capital exploring

new solution for

increased travel

convenience

PUBLIC 28

ICODE DNA:

INTRODUCTION

PUBLIC 29

ICODE® DNAEnhanced Security for Vicinity Applications

PUBLIC 30

ICODE family continuous evolution

ICODE SLI- 896 bit memory- EAS- Fast inventory read

ICODE 1- 1st HF IC

- proprietary protocol

1999

2001

2007

ICODE SLI-S- Performance improved - 1280 bit memory- Password

ICODE SLI-L- Performance improved- 256 bit memory

2010

ICODE SLIX- Performance improved- Password EAS/AFI

ICODE SLIX-S- Performance improved - Password protected read/write access

ICODE SLIX-L- Performance improved

ICODE ILT / ILT-M- HF EPC G2- up to 512 bit memory

2012ICODE SLIX2- Performance improvement - 2528 bit memory- NFC forum tag type 5

ICODE DNA

- 2016 bit memory - AES authentication- 23.5pF

2015

2016

13,56Mhz

NFC forum tag type 5

PUBLIC 31

ICODE DNA for secure vicinity applications

ICODE is the leading brand for high-frequency (HF) smart label solutions with billions of ICs in the field and thousands of successful installations

With the new ICODE DNA, NXP revolutionizes its ICODE portfolio by bringing tag and mutual AES cryptographic authentication to enhance the security for vicinity applications

Moreover ICODE DNA offers easy cloud connectivity through NFC phones to support convenient consumer engagement and offers easy system integration thanks to a broad range of supporting tools

PROGRAMABLE Originality signature

− Public key (asymmetric) based tag validation method

with easy distribution of ECC public key

− Customer can generate and store own tag individual

originality signature

− Standard NFC reader/mobile devices with dedicated

app allows for online and offline validation ConnectivityNFC phone readability and cloud connectivity

enabling easy product authenticationand brand protection

Advanced SecurityAES cryptographic

authentication with broad availability of supporting tools

for easy system integration

Vicinity read rangeConsumer and industrial

applications thanks to the read range up to 1m.

Reliability, Sustainability,

Maturitycontinuos product

advancements and backwardcompatibility

ISO15693

PUBLIC 32

ICODE DNA:

TARGET

APPLICATIONS

PUBLIC 33

ICODE DNA Target Applications

Industrial Access Document tracking

• Automation & data

exchange in the factory.

• Track & trace products

along production and

supply chain

• Original spare part /

consumable

identification

• Hands-free access

control for corporate and

leisure

• Enabled service offering:

− easy online booking

via mobile phones

− direct engagement

with user

− enabled monitoring of

consumer behavior

• Document identification

• Automatic document

management

− Inventory management

− Control of document

stock

− Document validation

• Archiving of documents

• Product identification

thanks to source-to-sale

traceability

• Digital authentication of

genuines or fake

• Built-in data protection

• Theft detection

• Increases in-store

experiences and

enables:

− Personalized services

− Sharing of product

info, offers and

services

− Reminders, re-orders

− Connecting consumer

to the social media,

loyalty schemes,

company relevant

content,…

Brand protectionCustomer

interaction

PUBLIC 34

Product lifecycle management – from source to services

PUBLIC 35

Hands-Free Access

• Focus use cases

− Ski ticketing

− Theme parks

− Event ticketing

• Flexible, secure and convenient solutions

− Enhanced protection of business case

− Enabling working in harsh environments and with small form factors

− Enriching user experience through NFC

• Easy integration to existing systems

− AES authentication ensures security and highest performance in both HW and SW implementations

− Backwards compatible with existing systems

PUBLIC 36

Brand Protection

• Counterfeiting is a major global problem

− It impacts a range of industries

− Over 90% of Fortune 500 companies are affected

− Losses will reach $2.3 trillion by 2018(source: Vandagraf)

• ICODE DNA is the ideal solution

• NFC compliancy enables direct interaction with the consumers

− authenticating items in real time, before or after the purchase, anywhere

− brand owners get a new way to engage their customers in deeper dialogues

PUBLIC 37

SUMMARY

PUBLIC 38

Summary

• UCODE DNA and ICODE DNA is the evolution of highly successful long range

RFID tag IC families for UHF and HF frequency bands

• New products are fully compliant with industry standards

• Cryptographic authentication available on a long distance enables new business

models and applications

• NXP invites you to join industry leaders by designing in secure RFID tags into your

next projects