Transaction Timer Feature

NXP MIFARE Team
NXP MIFARE TeamMIFARE is the leading contactless development platform used in more than 40 different applications worldwide.
EXTERNAL NXP, THE NXP LOGO AND NXP SECURE CONNECTIONS FOR A SMARTER WORLD ARE TRADEMARKS OF NXP B.V. ALL OTHER PRODUCT OR SERVICE NAMES ARE THE PROPERTY OF THEIR RESPECTIVE OWNERS. © 2020 NXP B.V. 3 1 S T J U LY 2 0 2 0 Sandra Fuchs Principal Customer Application Engineer TRANSACTION TIMER A MIFARE® DESFire® EV3 & MIFARE Plus® EV2 KEY FEATURE VIDEO
1EXTERNAL RESTRICTING TRANSACTION TIME TO MITIGATE MAN-IN-THE-MIDDLE ATTACKS V I A T RAN S AC T I O N T I M ER F E AT U R E • Newly available feature on MIFARE DESFire EV3 and MIFARE Plus EV2 products • Transaction Timer allows card issuer to configure a maximum time a transaction can take to avoid interference by Man-in-the-Middle attacker • Enablement of transaction timer limits the possibility of keeping the card powered and not finishing (holding) the ongoing transaction by an attacker • The value of the Transaction Timer can be set for each application individually (1, 10, 100 seconds can be chosen) • Once threshold of Transaction Timer is exceeded, the card will automatically reset itself, go into IDLE mode and abort the transaction • As long as the Transaction Timer does not expire, regular command execution is not influenced by the feature at all − Applicable for existing infrastructures without changing reader terminals Enhanced security without changing existing infrastructures Helping to avoid Man-in-the-Middle attacks and transaction holding Individual configuration of maximum time a transaction can take
2EXTERNAL RESTRICTING TRANSACTION TIME TO MITIGATE MAN-IN-THE-MIDDLE ATTACKS V I A T RAN S AC T I O N T I M ER F E AT U R E Valid Transaction Reader Terminal Commit Transaction Successful Transaction • Finalized in time Incomplete Transaction • Not finalized in time • Transaction Timer expired Valid Transaction Reader Terminal Commit Transaction
3EXTERNAL TECHNICAL DETAILS: HOW TO ENABLE TRANSACTION TIMER ON THE CARD On MIFARE DESFire EV3 • Individual enablement for each application (independently) • Different Transaction Timer values for different applications • Enablement is done using the SetConfiguration command with option 0x55 • Once enabled, timer setting will be reflected in the response to the AuthenticateEV2First command in the parameter PDCap2.2 • The timer starts counting for every application selection On MIFARE Plus EV2 • Can be enabled once for each card • Enablement is done by writing the PDCap2.2 value inside the FieldConfigurationBlock to the chosen Transaction Timer setting • Once enabled, timer starts counting when receiving the first command after ISO/IEC 14443-4 card activation • The Transaction Timer is active in SL1, SL3 and SL1SL3MixMode (not supported in SL0)
4EXTERNAL MORE INFORMATION ABOUT THE TRANSACTION TIMER FEATURE Item Number Availability Datasheet - MIFARE DESFire EV3 DS4489 NXP DocStore (confidential) Datasheet - MIFARE Plus EV2 DS5223 NXP DocStore (confidential) Application Note - MIFARE DESFire EV3 Quick-Start Guide AN5755 NXP website (public) Application Note - MIFARE DESFire EV3 Features and Hints AN5881 NXP DocStore (confidential) Application Note - Feature and Functionality Comparison between MIFARE DESFire EV2 and MIFARE DESFire EV3 AN5756 NXP website (public) Application Note - MIFARE Plus EV2 Features and Hints AN5760 NXP website (public) Application Note - Comparison between MIFARE Plus EV2 and previous types AN5762 NXP website (public) RFID Discover Software SW1866 NXP DocStore (confidential) NXP Reader Library (Windows based) SW1717 NXP DocStore (confidential) https://www.nxp.com/products/rfid-nfc/mifare-hf/mifare-desfire https://www.nxp.com/products/rfid-nfc/mifare-hf/mifare-plus https://www.docstore.nxp.com/
NXP, THE NXP LOGO AND NXP SECURE CONNECTIONS FOR A SMARTER WORLD ARE TRADEMARKS OF NXP B.V. ALL OTHER PRODUCT OR SERVICE NAMES ARE THE PROPERTY OF THEIR RESPECTIVE OWNERS. © 2020 NXP B.V.
1 of 6

Transaction Timer Feature

Download to read offline
Devices & Hardware

The Transaction Timer feature of NXP’s MIFARE DESFire EV3 and MIFARE Plus EV2 ICs defends against Man-in-the-Middle attacks. The new feature makes it possible to set a minimum time per transaction, so it’s harder for an attacker to interfere with the transaction. Learn more about the technical details of the Transaction Timer feature and how it can be used to make access control, transport ticketing, and micropayment installations more secure.

NXP MIFARE Team
NXP MIFARE TeamMIFARE is the leading contactless development platform used in more than 40 different applications worldwide.

Recommended

SL1SL3 MixMode Feature by
SL1SL3 MixMode FeatureSL1SL3 MixMode Feature
SL1SL3 MixMode FeatureNXP MIFARE Team
350 views6 slides
Security Level 3 (SL3) Capabilities by
Security Level 3 (SL3) CapabilitiesSecurity Level 3 (SL3) Capabilities
Security Level 3 (SL3) CapabilitiesNXP MIFARE Team
815 views6 slides
EPG PGW SAPC SACC PISC Configuration by
EPG PGW SAPC SACC PISC ConfigurationEPG PGW SAPC SACC PISC Configuration
EPG PGW SAPC SACC PISC ConfigurationMustafa Golam
3.4K views27 slides
Ieee nfv-sdn-2020-srv6-tutorial by
Ieee nfv-sdn-2020-srv6-tutorialIeee nfv-sdn-2020-srv6-tutorial
Ieee nfv-sdn-2020-srv6-tutorialStefano Salsano
629 views117 slides
Ims conference-call by
Ims conference-callIms conference-call
Ims conference-callGovind Dolare
811 views6 slides
Building DataCenter networks with VXLAN BGP-EVPN by
Building DataCenter networks with VXLAN BGP-EVPNBuilding DataCenter networks with VXLAN BGP-EVPN
Building DataCenter networks with VXLAN BGP-EVPNCisco Canada
12.4K views153 slides

More Related Content

What's hot

Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe... by
Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe...Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe...
Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe...Netgate
15.8K views22 slides
Netmanias L2,L3 Training (3) L2, L3 QoS by
Netmanias L2,L3 Training (3) L2, L3 QoSNetmanias L2,L3 Training (3) L2, L3 QoS
Netmanias L2,L3 Training (3) L2, L3 QoSChris Changmo Yoo
1.5K views72 slides
Overview of Distributed Virtual Router (DVR) in Openstack/Neutron by
Overview of Distributed Virtual Router (DVR) in Openstack/NeutronOverview of Distributed Virtual Router (DVR) in Openstack/Neutron
Overview of Distributed Virtual Router (DVR) in Openstack/Neutronvivekkonnect
12K views33 slides
Bluetooth Secure Simple Pairing Using NFC Part 1 by
Bluetooth Secure Simple Pairing Using NFC Part 1 Bluetooth Secure Simple Pairing Using NFC Part 1
Bluetooth Secure Simple Pairing Using NFC Part 1 NFC Forum
16.3K views56 slides
Deploying Cisco ISR G2 and ASR 1000 in the Enterprise by
Deploying Cisco ISR G2 and ASR 1000 in the EnterpriseDeploying Cisco ISR G2 and ASR 1000 in the Enterprise
Deploying Cisco ISR G2 and ASR 1000 in the EnterpriseCisco Canada
6.7K views62 slides

What's hot(20)

Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe... by Netgate
Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe...Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe...
Using Google Cloud Identity Secure LDAP with pfSense - Netgate Hangout Octobe...
Netgate15.8K views
Aruba Webinar - 1-29-15 by Aruba, a Hewlett Packard Enterprise company
Aruba Webinar - 1-29-15Aruba Webinar - 1-29-15
Aruba Webinar - 1-29-15
Aruba, a Hewlett Packard Enterprise company1.5K views
Netmanias L2,L3 Training (3) L2, L3 QoS by Chris Changmo Yoo
Netmanias L2,L3 Training (3) L2, L3 QoSNetmanias L2,L3 Training (3) L2, L3 QoS
Netmanias L2,L3 Training (3) L2, L3 QoS
Chris Changmo Yoo1.5K views
Overview of Distributed Virtual Router (DVR) in Openstack/Neutron by vivekkonnect
Overview of Distributed Virtual Router (DVR) in Openstack/NeutronOverview of Distributed Virtual Router (DVR) in Openstack/Neutron
Overview of Distributed Virtual Router (DVR) in Openstack/Neutron
vivekkonnect12K views
Bluetooth Secure Simple Pairing Using NFC Part 1 by NFC Forum
Bluetooth Secure Simple Pairing Using NFC Part 1 Bluetooth Secure Simple Pairing Using NFC Part 1
Bluetooth Secure Simple Pairing Using NFC Part 1
NFC Forum16.3K views
Deploying Cisco ISR G2 and ASR 1000 in the Enterprise by Cisco Canada
Deploying Cisco ISR G2 and ASR 1000 in the EnterpriseDeploying Cisco ISR G2 and ASR 1000 in the Enterprise
Deploying Cisco ISR G2 and ASR 1000 in the Enterprise
Cisco Canada6.7K views
NDEF Writerを使ってみよう by Hirokuma Ueno
NDEF Writerを使ってみようNDEF Writerを使ってみよう
NDEF Writerを使ってみよう
Hirokuma Ueno9.2K views
FIWARE Connecting to IoT by fisuda
FIWARE Connecting to IoTFIWARE Connecting to IoT
FIWARE Connecting to IoT
fisuda 1K views
【Interop Tokyo 2023】ShowNetにおけるジュニパーネットワークスの取り組み by Juniper Networks (日本)
【Interop Tokyo 2023】ShowNetにおけるジュニパーネットワークスの取り組み【Interop Tokyo 2023】ShowNetにおけるジュニパーネットワークスの取り組み
【Interop Tokyo 2023】ShowNetにおけるジュニパーネットワークスの取り組み
Juniper Networks (日本)126 views
Mobile Networks Architecture and Security (2G to 5G) by Hamidreza Bolhasani
Mobile Networks Architecture and Security (2G to 5G)Mobile Networks Architecture and Security (2G to 5G)
Mobile Networks Architecture and Security (2G to 5G)
Hamidreza Bolhasani1K views
SRVCC (Single Radio Voice Call Continuity) in VoLTE & Comparison with CSFB by Vikas Shokeen
SRVCC (Single Radio Voice Call Continuity) in VoLTE & Comparison with CSFBSRVCC (Single Radio Voice Call Continuity) in VoLTE & Comparison with CSFB
SRVCC (Single Radio Voice Call Continuity) in VoLTE & Comparison with CSFB
Vikas Shokeen2.3K views
MP BGP-EVPN 실전기술-1편(개념잡기) by JuHwan Lee
MP BGP-EVPN 실전기술-1편(개념잡기)MP BGP-EVPN 실전기술-1편(개념잡기)
MP BGP-EVPN 실전기술-1편(개념잡기)
JuHwan Lee13.2K views
Real-world 802.1X Deployment Challenges by Aruba, a Hewlett Packard Enterprise company
Real-world 802.1X Deployment ChallengesReal-world 802.1X Deployment Challenges
Real-world 802.1X Deployment Challenges
Aruba, a Hewlett Packard Enterprise company8.5K views
Introduction to DIAMETER by Hossein Yavari
Introduction to DIAMETERIntroduction to DIAMETER
Introduction to DIAMETER
Hossein Yavari663 views
月刊NDEF 2013年 1、2、3月号 by Hirokuma Ueno
月刊NDEF 2013年 1、2、3月号月刊NDEF 2013年 1、2、3月号
月刊NDEF 2013年 1、2、3月号
Hirokuma Ueno13.2K views
Multicast in OpenStack by Vikram G Hosakote
Multicast in OpenStackMulticast in OpenStack
Multicast in OpenStack
Vikram G Hosakote4K views
NetFlow Analyzer Training Part I: Getting the initial settings right by ManageEngine, Zoho Corporation
NetFlow Analyzer Training Part I: Getting the initial settings rightNetFlow Analyzer Training Part I: Getting the initial settings right
NetFlow Analyzer Training Part I: Getting the initial settings right
ManageEngine, Zoho Corporation2K views
oneM2M - taking a look inside by oneM2M
oneM2M - taking a look insideoneM2M - taking a look inside
oneM2M - taking a look inside
oneM2M4.6K views
Introduction to Diameter Protocol - Part1 by Basim Aly (JNCIP-SP, JNCIP-ENT)
Introduction to Diameter Protocol - Part1Introduction to Diameter Protocol - Part1
Introduction to Diameter Protocol - Part1
Basim Aly (JNCIP-SP, JNCIP-ENT)21K views
Diameter Presentation by Beny Haddad
Diameter PresentationDiameter Presentation
Diameter Presentation
Beny Haddad40.3K views

Similar to Transaction Timer Feature

Transaction MAC Feature by
Transaction MAC FeatureTransaction MAC Feature
Transaction MAC FeatureNXP MIFARE Team
369 views6 slides
Secure Dynamic Messaging Feature by
Secure Dynamic Messaging FeatureSecure Dynamic Messaging Feature
Secure Dynamic Messaging FeatureNXP MIFARE Team
507 views6 slides
Microsemi tp5000 datasheet_vf by
Microsemi tp5000 datasheet_vfMicrosemi tp5000 datasheet_vf
Microsemi tp5000 datasheet_vfCharlie Ateenyi
289 views2 slides
DTMF based Different Load control by
DTMF based Different Load controlDTMF based Different Load control
DTMF based Different Load controlMaheshMankar7592
1.3K views14 slides
Testing Network Routers for Extreme Scale and Performance by
Testing Network Routers for Extreme Scale and Performance Testing Network Routers for Extreme Scale and Performance
Testing Network Routers for Extreme Scale and Performance Sailaja Tennati
1.6K views12 slides
Ppt land rover by
Ppt land roverPpt land rover
Ppt land roverAshu0711
5.6K views19 slides

Similar to Transaction Timer Feature(20)

Transaction MAC Feature by NXP MIFARE Team
Transaction MAC FeatureTransaction MAC Feature
Transaction MAC Feature
NXP MIFARE Team369 views
Secure Dynamic Messaging Feature by NXP MIFARE Team
Secure Dynamic Messaging FeatureSecure Dynamic Messaging Feature
Secure Dynamic Messaging Feature
NXP MIFARE Team507 views
Microsemi tp5000 datasheet_vf by Charlie Ateenyi
Microsemi tp5000 datasheet_vfMicrosemi tp5000 datasheet_vf
Microsemi tp5000 datasheet_vf
Charlie Ateenyi289 views
DTMF based Different Load control by MaheshMankar7592
DTMF based Different Load controlDTMF based Different Load control
DTMF based Different Load control
MaheshMankar75921.3K views
Testing Network Routers for Extreme Scale and Performance by Sailaja Tennati
Testing Network Routers for Extreme Scale and Performance Testing Network Routers for Extreme Scale and Performance
Testing Network Routers for Extreme Scale and Performance
Sailaja Tennati1.6K views
Ppt land rover by Ashu0711
Ppt land roverPpt land rover
Ppt land rover
Ashu07115.6K views
Wilab-NWDAF-datasheet.pdf by FabianToh2
Wilab-NWDAF-datasheet.pdfWilab-NWDAF-datasheet.pdf
Wilab-NWDAF-datasheet.pdf
FabianToh228 views
Internet2 National Video Conferencing Service: Getting ... by Videoguy
Internet2 National Video Conferencing Service: Getting ...Internet2 National Video Conferencing Service: Getting ...
Internet2 National Video Conferencing Service: Getting ...
Videoguy444 views
cellphone based control of electrical equipment by Rohit Sharma
cellphone based control of electrical equipmentcellphone based control of electrical equipment
cellphone based control of electrical equipment
Rohit Sharma6.3K views
Axiros tr069-smartmicrogrid-devicemanagement by Axiros
Axiros tr069-smartmicrogrid-devicemanagementAxiros tr069-smartmicrogrid-devicemanagement
Axiros tr069-smartmicrogrid-devicemanagement
Axiros1K views
Bio scribe 2c_-_bsc2c01 by Reslient Technologies
Bio scribe 2c_-_bsc2c01Bio scribe 2c_-_bsc2c01
Bio scribe 2c_-_bsc2c01
Reslient Technologies288 views
TekIVR Datasheet by Yasin KAPLAN
TekIVR DatasheetTekIVR Datasheet
TekIVR Datasheet
Yasin KAPLAN42 views
s2000nano by Przemek Ostrowski
s2000nanos2000nano
s2000nano
Przemek Ostrowski63 views
System 6000 by Mail Box Production
System 6000System 6000
System 6000
Mail Box Production632 views
IoT LPWAN network security: Sigfox and LoRaWAN (Mikael Falkvidd @ Knowit secu... by Mikael Falkvidd
IoT LPWAN network security: Sigfox and LoRaWAN (Mikael Falkvidd @ Knowit secu...IoT LPWAN network security: Sigfox and LoRaWAN (Mikael Falkvidd @ Knowit secu...
IoT LPWAN network security: Sigfox and LoRaWAN (Mikael Falkvidd @ Knowit secu...
Mikael Falkvidd6.6K views
A2Z Control System by zatinsinghal
A2Z Control SystemA2Z Control System
A2Z Control System
zatinsinghal617 views
BT smartnumbers face to face recording by mParticle
BT smartnumbers face to face recordingBT smartnumbers face to face recording
BT smartnumbers face to face recording
mParticle207 views
Wsn handbook by narmada alaparthi
Wsn handbookWsn handbook
Wsn handbook
narmada alaparthi81 views
Bw32898902 by IJMER
Bw32898902Bw32898902
Bw32898902
IJMER297 views
Hantle c4000-atm-owners-manual by pdfshearing
Hantle c4000-atm-owners-manualHantle c4000-atm-owners-manual
Hantle c4000-atm-owners-manual
pdfshearing3.6K views

More from NXP MIFARE Team

NTA's Leap Card - Expanding Ticketing while Shrinking Costs by
NTA's Leap Card - Expanding Ticketing while Shrinking CostsNTA's Leap Card - Expanding Ticketing while Shrinking Costs
NTA's Leap Card - Expanding Ticketing while Shrinking CostsNXP MIFARE Team
145 views2 slides
NXP MIFARE Webinar: Complement Use Cases With Mobiles And Wearables by
NXP MIFARE Webinar: Complement Use Cases With Mobiles And WearablesNXP MIFARE Webinar: Complement Use Cases With Mobiles And Wearables
NXP MIFARE Webinar: Complement Use Cases With Mobiles And WearablesNXP MIFARE Team
1.4K views18 slides
NXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And Cloud by
NXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And CloudNXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And Cloud
NXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And CloudNXP MIFARE Team
3.8K views21 slides
NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur... by
NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur...NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur...
NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur...NXP MIFARE Team
1.4K views19 slides
NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment by
NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment
NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment NXP MIFARE Team
2.3K views17 slides
NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag... by
NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag...NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag...
NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag...NXP MIFARE Team
1.6K views18 slides

More from NXP MIFARE Team(9)

NTA's Leap Card - Expanding Ticketing while Shrinking Costs by NXP MIFARE Team
NTA's Leap Card - Expanding Ticketing while Shrinking CostsNTA's Leap Card - Expanding Ticketing while Shrinking Costs
NTA's Leap Card - Expanding Ticketing while Shrinking Costs
NXP MIFARE Team145 views
NXP MIFARE Webinar: Complement Use Cases With Mobiles And Wearables by NXP MIFARE Team
NXP MIFARE Webinar: Complement Use Cases With Mobiles And WearablesNXP MIFARE Webinar: Complement Use Cases With Mobiles And Wearables
NXP MIFARE Webinar: Complement Use Cases With Mobiles And Wearables
NXP MIFARE Team1.4K views
NXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And Cloud by NXP MIFARE Team
NXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And CloudNXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And Cloud
NXP MIFARE Webinar: Added Value To Card Based Environments Through NFC And Cloud
NXP MIFARE Team3.8K views
NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur... by NXP MIFARE Team
NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur...NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur...
NXP MIFARE Webinar: Introduce The Future In Your Today's System- How To Ensur...
NXP MIFARE Team1.4K views
NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment by NXP MIFARE Team
NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment
NXP MIFARE Webinar: Secure Closed Loop Payments In An Open Environment
NXP MIFARE Team2.3K views
NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag... by NXP MIFARE Team
NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag...NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag...
NXP MIFARE Webinar: Enhanced User Experience Through Active Application Manag...
NXP MIFARE Team1.6K views
NXP MIFARE Webinar: Streamlined User Management For Multi-Vendor Installations by NXP MIFARE Team
NXP MIFARE Webinar: Streamlined User Management For Multi-Vendor Installations NXP MIFARE Webinar: Streamlined User Management For Multi-Vendor Installations
NXP MIFARE Webinar: Streamlined User Management For Multi-Vendor Installations
NXP MIFARE Team1.5K views
NXP MIFARE Webinar: How To Protect Contactless Systems Today And Tomorrow by NXP MIFARE Team
NXP MIFARE Webinar: How To Protect Contactless Systems Today And TomorrowNXP MIFARE Webinar: How To Protect Contactless Systems Today And Tomorrow
NXP MIFARE Webinar: How To Protect Contactless Systems Today And Tomorrow
NXP MIFARE Team2.7K views
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside by NXP MIFARE Team
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Webinar: Innovation Road Map: Present Improved- Future Inside
NXP MIFARE Team7.8K views

Transaction Timer Feature

  • 1. EXTERNAL NXP, THE NXP LOGO AND NXP SECURE CONNECTIONS FOR A SMARTER WORLD ARE TRADEMARKS OF NXP B.V. ALL OTHER PRODUCT OR SERVICE NAMES ARE THE PROPERTY OF THEIR RESPECTIVE OWNERS. © 2020 NXP B.V. 3 1 S T J U LY 2 0 2 0 Sandra Fuchs Principal Customer Application Engineer TRANSACTION TIMER A MIFARE® DESFire® EV3 & MIFARE Plus® EV2 KEY FEATURE VIDEO
  • 2. 1EXTERNAL RESTRICTING TRANSACTION TIME TO MITIGATE MAN-IN-THE-MIDDLE ATTACKS V I A T RAN S AC T I O N T I M ER F E AT U R E • Newly available feature on MIFARE DESFire EV3 and MIFARE Plus EV2 products • Transaction Timer allows card issuer to configure a maximum time a transaction can take to avoid interference by Man-in-the-Middle attacker • Enablement of transaction timer limits the possibility of keeping the card powered and not finishing (holding) the ongoing transaction by an attacker • The value of the Transaction Timer can be set for each application individually (1, 10, 100 seconds can be chosen) • Once threshold of Transaction Timer is exceeded, the card will automatically reset itself, go into IDLE mode and abort the transaction • As long as the Transaction Timer does not expire, regular command execution is not influenced by the feature at all − Applicable for existing infrastructures without changing reader terminals Enhanced security without changing existing infrastructures Helping to avoid Man-in-the-Middle attacks and transaction holding Individual configuration of maximum time a transaction can take
  • 3. 2EXTERNAL RESTRICTING TRANSACTION TIME TO MITIGATE MAN-IN-THE-MIDDLE ATTACKS V I A T RAN S AC T I O N T I M ER F E AT U R E Valid Transaction Reader Terminal Commit Transaction Successful Transaction • Finalized in time Incomplete Transaction • Not finalized in time • Transaction Timer expired Valid Transaction Reader Terminal Commit Transaction
  • 4. 3EXTERNAL TECHNICAL DETAILS: HOW TO ENABLE TRANSACTION TIMER ON THE CARD On MIFARE DESFire EV3 • Individual enablement for each application (independently) • Different Transaction Timer values for different applications • Enablement is done using the SetConfiguration command with option 0x55 • Once enabled, timer setting will be reflected in the response to the AuthenticateEV2First command in the parameter PDCap2.2 • The timer starts counting for every application selection On MIFARE Plus EV2 • Can be enabled once for each card • Enablement is done by writing the PDCap2.2 value inside the FieldConfigurationBlock to the chosen Transaction Timer setting • Once enabled, timer starts counting when receiving the first command after ISO/IEC 14443-4 card activation • The Transaction Timer is active in SL1, SL3 and SL1SL3MixMode (not supported in SL0)
  • 5. 4EXTERNAL MORE INFORMATION ABOUT THE TRANSACTION TIMER FEATURE Item Number Availability Datasheet - MIFARE DESFire EV3 DS4489 NXP DocStore (confidential) Datasheet - MIFARE Plus EV2 DS5223 NXP DocStore (confidential) Application Note - MIFARE DESFire EV3 Quick-Start Guide AN5755 NXP website (public) Application Note - MIFARE DESFire EV3 Features and Hints AN5881 NXP DocStore (confidential) Application Note - Feature and Functionality Comparison between MIFARE DESFire EV2 and MIFARE DESFire EV3 AN5756 NXP website (public) Application Note - MIFARE Plus EV2 Features and Hints AN5760 NXP website (public) Application Note - Comparison between MIFARE Plus EV2 and previous types AN5762 NXP website (public) RFID Discover Software SW1866 NXP DocStore (confidential) NXP Reader Library (Windows based) SW1717 NXP DocStore (confidential) https://www.nxp.com/products/rfid-nfc/mifare-hf/mifare-desfire https://www.nxp.com/products/rfid-nfc/mifare-hf/mifare-plus https://www.docstore.nxp.com/
  • 6. NXP, THE NXP LOGO AND NXP SECURE CONNECTIONS FOR A SMARTER WORLD ARE TRADEMARKS OF NXP B.V. ALL OTHER PRODUCT OR SERVICE NAMES ARE THE PROPERTY OF THEIR RESPECTIVE OWNERS. © 2020 NXP B.V.