Authentication in SL1

[Tithi Patel]

Hi,

I have a MF Plus X card in SL1. I want to authenticate it to read and write data with Classic Protocol. When I try the authentication fails. Even the FirstAuth with 9004 key doesn't work.

I have successfully implemented FirstAuth with 9003 key to switch the card to SL3, so my code for that is good.

Please share steps to follow to achieve Auth in SL1.

Thank you!

---

+ 0  |  - 0

[TapLinx Support]

Hi Tithi,

MIFARE Plus in SL1 means compatible with MIFARE Classic. You should authenticate like a Classic with key A or key B.

The TapLinx team

---

+ 0  |  - 0

[Tithi Patel]

I am doing the same, but the authentication fails. Should I use 14443-3 or 14443-4?

---

+ 0  |  - 0

[gpagliaroli]

The card is in SL1 or SL3?
If it is in SL1, the authentication to compatible sectors is the same as using Classic, using 14443-3.
Now if the card is in SL1, and it is required to authenticate to Sector 0x9003, it is first required to execute a RATS and then a FirstAuth (using 14443-4).

---

+ 0  |  - 0

[TapLinx Support]

Hi Tithi,

If your card is in state SL1 (MIFARE Classic compliant) you can prepare the switch to SL3. SL1 is ISO/IEC14443-3 and SL3 ISO/IEC14443-4. This is the reason why you cannot do the switch in one session; the protocol is different for both security levels.

For switching, you must store the “SL2 switch key” (an AES key with 16 bytes) in 0x9003. Here you must go through the “Activate Ide” and “RATS+PPS” protocol steps. If you remove the card from the reader and start a new session, the card should be in SL3.

The TapLinx team

---

+ 0  |  - 0

[Author]

Posts