MF3ICD2101DUD

MIFARE DESFire EV1 contactless multi-application IC


MIFARE DESFire EV1 (MF3ICD(H) 21/41/81), a Common Criteria (EAL4+) certified product, is ideal for service providers wanting to use secure multi-application smart cards in public transport schemes, access managment or closed-loop e-payment applications. It is fully complies with the requirements for fast and highly secure data transmission, flexible memory organization and interoperability with existing infrastructure.

MIFARE DESFire EV1 is based on open global standards for both air interface and cryptographic methods. It is compliant to all 4 levels of ISO/IEC 14443A and uses optional ISO/IEC 7816-4 commands.

Featuring an on-chip backup management system and the mutual three pass authentication, a MIFARE DESFire EV1 card can hold up to 28 different applications and 32 files per application. The size of each file is defined at the moment of its creation, making MIFARE DESFire EV1 a truly flexible and convenient product.

Additionally, an automatic anti-tear mechanism is available for all file types, which guarantees transaction oriented data integrity. With MIFARE DESFire EV1, data transfer rates up to 848 kbit/s can be achieved, allowing fast data transmission.

The main characteristics of this device are denoted by its name "DESFire": DES indicates the high level of security using a 3DES or AES hardware cryptographic engine for enciphering transmission data and Fire indicates its outstanding position as a fast, innovative, reliable and secure IC in the contactless proximity transaction market. Hence, MIFARE DESFire EV1 brings many benefits to end users. Cardholders can experience convenient contactless ticketing while also having the possibility to use the same device for related applications such as payment at vending machines, access control or event ticketing. In other words, the MIFARE DESFire EV1 silicon solution offers enhanced consumer-friendly system design, in combination with security and reliability.

MIFARE DESFire EV1 delivers the perfect balance of speed, performance and cost efficiency. Its open concept allows future seamless integration of other ticketing media such as smart paper tickets, key fobs, and mobile ticketing based on Near Field Communication (NFC) technology. It is also fully compatible with the existing MIFARE reader hardware platform. MIFARE DESFire EV1 is your ticket to contactless systems worldwide.

Features and benefits

  • 2.1 RF interface: ISO/IEC 14443 Type A
    • Contactless transmission of data and powered by the RF-field (no battery needed)
    • Operating distance: up to 100 mm (depending on power provided by the PCD and antenna geometry)
    • Operating frequency: 13.56 MHz
    • Fast data transfer: 106 kbit/s, 212 kbit/s, 424 kbit/s, 848 kbit/s
    • High data integrity: 16/32 bit CRC, parity, bit coding, bit counting
    • True deterministic anticollision
    • 7 bytes unique identifier (cascade level 2 according to ISO/IEC 14443-3 and option for random ID)
    • Uses ISO/IEC 14443-4 protocol
  • 2.2 ISO/IEC 7816 compatibility
    • Supports ISO/IEC 7816-3 APDU message structure
    • Supports ISO/IEC 7816-4 INS code ‘A4’ for SELECT FILE
    • Supports ISO/IEC 7816-4 INS code ‘B0’ for READ BINARY
    • Supports ISO/IEC 7816-4 INS code ‘D6’ for UPDATE BINARY
    • Supports ISO/IEC 7816-4 INS code ‘B2’ for READ RECORDS
    • Supports ISO/IEC 7816-4 INS code ‘E2’ for APPEND RECORD
    • Supports ISO/IEC 7816-4 INS code ‘84’ for GET CHALLENGE
    • Supports ISO/IEC 7816-4 INS code ‘88’ for INTERNAL AUTHENTICATE
    • Supports ISO/IEC 7816-4 INS code ‘82’ for EXTERNAL AUTHENTICATE
  • 2.3 Non-volatile memory
    • 2 kB or 4 kB or 8 kB NV-Memory
    • Data retention of 10 years
    • Write endurance typcial 500 000 cycles
  • 2.4 NV-memory organization
    • Flexible file system
    • Up to 28 applications simultaneously on one PICC
    • Up to 32 files in each application (standard data file, back-up data file, value file, linear record file and cyclic record file)
    • File size is determined during creation
  • 2.5 Security
    • Common Criteria Certification: EAL4+ (Hardware and Software)
    • Unique 7 bytes serial number for each device
    • Optional "RANDOM" ID for enhance security and privacy
    • Mutual three pass authentication
    • Mutual authentication according to ISO/IEC 7816-4
    • 1 card master key and up to 14 keys per application
    • Hardware DES using 56/112/168 bit keys featuring key version, data authenticity by 8 byte CMAC
    • Hardware AES using 128-bit keys featuring key version, data authenticity by 8 byte CMAC
    • Data encryption on RF-channel
    • Authentication on application level
    • Hardware exception sensors
    • Self-securing file system
    • Backward compatibility to MF3ICD40: 4 byte MAC, CRC 16
  • 2.6 Special features
    • Transaction oriented automatic anti-tear mechanism
    • Configurable ATS information for card personalisation
    • Backward compatibility mode to MF3ICD40
    • Optional high input capacitance (70pF) for small form factor design (MF3ICDH 21/41/81)

Applications

  • Advanced public transportation schema
  • Highly secure access management
  • Closed-loop e-payment scheme
  • Event ticketing
  • eGovernment applications
All information on this product information page is subject to the subsequent disclaimers:
Go to the parametric search
Parametric search

Show functional diagram

Block diagram: MF3ICD2101DUD, MF3ICD4101DUD, MF3ICD8101DUD, MF3MOD2101DA4, MF3MOD4101DA4, MF3MOD8101DA4
Block diagram: MF3ICD2101DUD, MF3ICD4101DUD, MF3ICD8101DUD, MF3MOD2101DA4, MF3MOD4101DA4, MF3MOD8101DA4

Parametrics of this product

Type numberDelivery TypeISO/IEC SupportBaudrate (kbit/s)UID TypeEEPROM Size (Byte)Memory OrganizationWrite Endudance (cycles)Data Retention (yrs)Security FeaturesPrivacy FeaturesRandom Number GeneratorSpecial Features
MF3ICD2101DUDFFC bumped 120µmISO/IEC 14443-3;ISO/IEC 14443-4;ISO/IEC 7816-4106;212;424;8487-byte UID2048Flexible File System50000010DES; 2 key TDES; 3 key TDES; AES-128Random IDYAnti-tearing; Automatic Backup Mechanism

Documentation for this product

File nameTitleTypeFormatDate
MF3ICDX21_41_81_SDSMIFARE DESFire EV1 contactless multi-application ICShort data sheetpdf2010-12-30
130830AN10834 MIFARE ISO/IEC 14443 PICC SelectionApplication notepdf2009-12-22
AN10922AN10922 Symmetric key diversificationApplication notepdf2010-03-30
AN10957Generic Access Control Data ModelApplication notepdf2011-03-10
AN10787AN10787 MIFARE Application Directory (MAD)Application notepdf2013-01-24
155010AN155010 End to end system security risk considerations for implementing contactless cardsApplication notepdf2008-06-01
AN10969System level security measures for MIFARE installationsApplication notepdf2010-08-26
171311_DESFireEV1_CCDGCard Coil Design Notes for MIFARE DESFire EV1Application notepdf2011-02-14
AN11004MIFARE DESFire as Type 4 TagApplication notepdf2013-05-22
AN10970System Level Countermeasures for MF3ICD40 (MIFARE DESFire)Application notepdf2011-11-28
AN10833MIFARE Type Identification ProcedureApplication notepdf2014-03-28
75015782MIFARE DESFire EV1, NXP IC solution for contactless multi-application, high speed and secure smart cardsLeafletpdf2010-12-16

Technical support

Do you want to ask technical questions to an NXP expert?
Please select one of the following options:

How to search?

Already registered to MyNXP? or Register

Feedback

Restricted Document

You are accessing a password protected document.
Please choose an option below

Fill in your name, company and e-mail address and you will receive an e-mail with a username and password for this restricted document.

First name*

Last name*

Company*

E-mail*

Comments

* required.

Print password request form:

Before we can grant you access to our confidential documents you are required to fill in, print and sign the password request form by which you comply with the NXP Non-disclosure agreement (NDA). Please email or fax the signed form to the email-address or fax-number specified on the form. After approval you will receive username and password via email. In case you already signed an NDA with NXP and already have username and password, you can skip this step.

Open document:

If you have received the username and password, you can open the document by clicking on the "open document" link. You will be prompted for username and password. After you fill in the username and password the download will start.

Forgot your password:

In case you forgot your password you can click on the "forgot your password" link to retrieve your password. Please complete the small form with your personal details and your request will be sent to NXP. You will receive an answer with your password shortly.

Request secure documentation

Fill in your name, company and e-mail address and you will receive an e-mail with a username and password for this secure document.

First name*

Last name*

Company*

E-mail*

Comments

* required.

Datasheet confidential

Fill in your details and you will be contacted

First name*

Last name*

Company*

Country*

Telephone number*

E-mail*

* required.

Your e-mail address will only be used to send the datasheet and will not be used for any other purposes.

No full datasheet available

Fill in your details to receive notification when the datasheet becomes available

First name*

Last name*

Company*

E-mail*

* required.

Your email address will only be used to send the datasheet and will not be used for any other purposes.