Mifare Plus data template

Overview

Use this template to read arbitrary data from one or more blocks of a Mifare Plus card configured for Security Level 3.

Note

SpringCore SmartReader Template Engine does not support Mifare Plus in Security Level 2. Security Level 1 is same as Mifare Classic.

Configuration

Register t0: select of Mifare Plus data template

Register 03t0 (1 byte) selects the template. Set it to 63 to select this template.

Register t1: output format

Register 03t1 defines the output format. Refer to Template engine : Output Format register.

Register t2: output prefix

Register 03t2 defines the output prefix. Refer to Template engine : Output Prefix.

Register t3: AID, Address, Byte offset / Bit offset

Register 03t3 (5 bytes) allows to finely specify where the data is stored in the card.

Bytes Bits Content
0-1 Desfire Application IDentifier (AID)
2 Block number
3 Offset of data in bytes
4 Second Offset of data in bits

Register t5: secret key and communication mode

The authentication key could be stored either directly in the non-volatile memory at address 03t5) or in the SpringCore device's Secure Element. The second method has to be preferred.

The register also stores the communication mode: ReadPlainMACed , ReadEncrypted, ReadMACed, ReadPlain, ReadUnMACed, ReadUnMACedResponseMACed, ReadPlainUnMACed and ReadPlainUnMACedResponseMACed.

Secret key stored in the template

Register 03t5 (17 bytes) stores the key version to use (A or B), the communication parameters, and the secret key itself.

Bytes Bits Content
0 7 Key selector:
10 : key B
00 : key A
6-3 RFU, must be 0000
2-0 000 : read encrypted
001 : read maced
010 : read plain
011 : read plain maced
100 : read unmaced
101 : read unmaced, response maced
110 : read plain unmaced
111 : read plain unmaced, response maced
1-16 Value of the key
16 bytes AES key

Secret key stored in the Secure Element

Register 03t5 (2 or 3 bytes) stores the key version to use (A or B), the communication parameters, and the address of the key in the Secure Element.

Bytes Bits Content
0 7 Key selector:
10 : key B
00 : key A
6-3 RFU, must be 0000
2-0 000 : read encrypted
001 : read maced
010 : read plain
011 : read plain maced
100 : read unmaced
101 : read unmaced, response maced
110 : read plain unmaced
111 : read plain unmaced, response maced
1 7-0 Address of the key in the Secure Element. Use 11 for template 1, 12 for template 2, 13 for template 3 and 14 for template 4. Any other value is prohibited.
2 Version of the key in the Secure Element. This byte is optional. The reader retrieves the version from the Secure Element if this byte is not set.