The most popular topic of IC card industry this year is the security issue of non-MIFARE 1 card. Not only has the industry given unprecedented attention, but the government has also promoted the IC card with more understanding. The whole industry is even more bleak. It seems that the MIFARE 1 card can be easily cracked. The used ones must be deactivated or replaced. The users who are ready to use also respect the MIFARE 1 card. As a total solution provider for contactless IC cards, we have learned a variety of information, some users have banned the use of access control systems, and installed traditional mechanical locks on the door; domestic and foreign chip manufacturers The CPU card upgrade program was introduced; some manufacturers even misled the users with the low-frequency ID card solution that was gradually eliminated for the market to eliminate the number; even more, the chips of foreign manufacturers went to the point of talking about it. What do we think about this incident, what does the security issue of the MIFARE 1 card bring to us?

Advantages of MIFARE 1 non-contact IC card

The MIFARE 1 contactless IC card was invented in 1994 by NXP Semiconductors of the Netherlands. It successfully combines radio frequency identification technology and IC technology to solve the technical problem of passive (no power in the card) and contactless technology. Innovations. The MIFARE 1 card is the most inductive smart IC card in the world with the largest usage, the most mature technology and the most stable performance. It has the following advantages:

The operation is simple and fast. Because it adopts RF wireless communication, it does not need to be inserted or removed, and is not restricted by direction and front and back. Therefore, it is very convenient for users to use. It takes only 0.1 second to complete one read and write operation, which greatly improves the speed of each use, which is suitable for general use. It is also suitable for fast, high-flow places.

Strong anti-interference ability. The MIFARE 1 card has a fast anti-collision mechanism. When multiple cards enter the read/write range at the same time, it can also effectively prevent data interference between cards. The reading and writing device can process one pair of cards, which improves the parallel application research. Sex and the speed of system work.

High reliability. There is no mechanical contact between the MIFARE 1 card and the reader, which avoids various faults caused by contact and reading; and the chip and sensor antenna in the card are completely sealed in the standard PVC, further improving the reliability and card of the application. The service life.

Good security. The serial number of the MIFARE 1 card is globally unique and cannot be changed. The three-way authentication mechanism between the card and the reader is used to verify the validity of each other, and all data is encrypted and transmitted during the communication process. In addition, each partition of the card has its own read and write password and access mechanism, and the security of the data in the card is effectively guaranteed.

Suitable for multiple use of one card. The storage structure and features of the MIFARE 1 card enable it to be applied to different occasions or systems, especially for government agencies, public facilities, schools, enterprises and institutions, intelligent community identification, access control, parking lot management, attendance check-in, The comprehensive application of dining room dining, entertainment consumption, book management, etc., has a strong system application expansion, and can truly achieve "one card."

low cost. With the wide application of MIFARE 1 card, China has become the world's largest card production technology and has been mastered by many domestic manufacturers, which has greatly reduced the ex-factory price of MIFARE I and its compatible cards, greatly reducing user investment. ISO1443 Type A is based on the technical standards of the MIFARE 1 card. According to data provided by NXP, 650 cities in more than 50 countries use MIFARE solutions, almost all use MIFARE 1 cards, and more than 1 billion MIFARE 1 cards have been used in the market. In China, the MIFARE 1 card used by more than 140 cities in public transportation has a market share of over 70%. At the same time, many MIFARE reader manufacturers also provide users with convenient, cheap and timely services.

Looking at the security of the MIFARE 1 card from a technical perspective

In 2008, there were researchers in Europe and the United States who had a security hole in the MIFARE 1 card that could be cracked or copied, causing the society to be in turmoil. Especially in the mistakes made last year and at the beginning of this year, the relevant departments of China issued relevant documents specifically for the safety of the MIFARE 1 card, requiring units using the MIFARE 1 card, especially the government agencies, the military and the city bus card department to give high priority to the comprehensive investigation. With the use of the MIFARE 1 card, some application areas have been discontinued, and the city bus card department is also planning their own upgrade plans.

In fact, the MIFARE 1 card security issue is a technical issue. We must first look at and analyze it from a technical and market perspective to evaluate the security of the system using the MIFARE 1 card and lay the foundation for finding the right solution.

First, the MIFARE 1 card is a contactless and logically encrypted IC card. If you are a professional in the IC card field, you will know that IC cards can be divided into memory cards, logical encryption cards and CPU encryption cards from the perspective of security. The read/write interface method can be further divided into a contact IC card and a non-contact IC card. The CPU chip contains a CPU chip, which not only processes the file management in the card, but also provides encryption and reset processing, which greatly improves the security of the chip. The logical encryption card, in theory, must be able to be cracked, especially with the improvement of computer performance and people's research on encryption algorithms. The MIFARE I security performance problem arises because of its dominant market share, which has attracted special attention from a certain professional. Even from the attempt of IC circuit die to study the chip of MIFARE 1 card, it has obtained its encryption. The basic mechanism. The same non-contact logical encryption card on the market has a consistent level of security, and there is a possibility of being cracked.

Second, from a user perspective, the security of the system depends not only on the security of the card. The IC card application system is composed of card and card data structure, reading and writing machine and control software, network and computer (server or workstation) and management software. The security of the system is the integration of the above various links. The same is the MIFARE 1 card. The basic encryption mechanism of the card is determined by NXP, but in specific applications, the key system used by different system integrators or implement manufacturers is different, and the entire system can use a key. It may also be that an application uses a key or a card or a card or a sector of a card is a key. Different key system designs have different levels of security. NXP clearly stated in its security report on the MIFARE 1 card that the use of the card key and the UID (Unique Identification Number) binding method can greatly improve the security of the system. The key system of the management software and the encryption mechanism in its data transmission also affect the security of the system. If the public key digital authentication encryption system is adopted, the encryption covers the whole process of data transmission, data storage, card reading and writing, including establishing a sound system management system, which can also improve the security of the system. The design of the card data structure is also one of the security elements of the system. Usually, in the design of a safe consumer system, the system records the consumption serial number of each card on the card and the machine every time the card is consumed, and returns to the database. The problem card will be blacklisted immediately and user losses can be effectively controlled.

Again, contact CPU card applications have formed some industry standards and are widely used. In the "Construction Enterprise Integrated Circuit (IC) Card Application Technical Specification (CJ/T166-2006)", the definition of the CPU card refers to the built-in CPU, program storage space, data storage space, encryption logic circuit, and operating system (cos, chip operation). System) microprocessor card. All operations are under the control of the operating system. A data element refers to each individual data content or information item stored in the storage space. At the same time, it is pointed out that the CPU card is suitable for applications with high anti-counterfeiting requirements for cards and high data security. It can effectively eliminate illegal copying and forgery of cards, and illegal reading, writing and tampering of data on the card. To build a high security identification and payment IC card application system. In fact, in our daily life, the CPU card is not uncommon. The SIM card in the mobile phone is the CPU card, but it is a contact CPU card. The "Social Security (Personal) Card Specification" promulgated by the Ministry of Labor and Social Security in 2000 and the "China Financial Integrated Circuit (IC) Card Application Specification (PBOC 2.0) issued by the People's Bank of China are all non-contact CPU cards. The standards of contact CPU card applications and the continuous implementation of non-contact CPU card products in recent years are still being improved.

The emergence of the security issue of the MIFARE 1 card is actually the continuous development of the technology of the IC card application, and the inevitable expansion of the market application. We must look at it from a technical and market perspective.

Accurate representation of MIFARE 1 card security issues

Through the above analysis, we can express the security of the MIFARE 1 card in this way:

(1) NXP has confirmed that the MIFARE 1 card is at risk of being cracked, and believes that other logical encryption cards will face the same problem sooner or later. However, it can be clearly stated that the non-contact IC card conforming to the ISO1 444. standard and the 125KHZ low-frequency non-contact IC card (commonly known as the ID card) defined by ISO1 8000-2 are in terms of security, data transmission rate, storage capacity, and the like. In an unparalleled advantage.

(2) Despite the security issue with the MIFARE 1 card, it is not that the MIFARE 1 card can no longer be used. First of all, the technology used in the whole system is different, and the security of the system is different. To assess security from the system as a whole, it is not easy to say that as long as the MIFARE 1 card is used, the system is not secure. Second, the security of the system is matched with the objects it protects and objects. Hackers or criminals destroy systems and consider costs and risks. System security is phased, and the risk of not being safe is anywhere, anytime. After all, the system technology using the MIFARE 1 card is mature and low in cost. Moreover, the consumption of contactless IC cards is defined as small consumption at the outset, and the risk loss that may be copied is extremely limited. Therefore, in addition to certain specific high security levels, it is still applicable in the workplace, school, factory, and public service areas. Simply replacing or disabling the original MIFARE 1 card system will result in a waste of the original investment in the entire society.

(3) Pay great attention to the security of the MIFARE 1 card for system integrators or implements, improve the security of the system products, and guide users to ensure the security of the system. The number of users in the city card is huge, and the capital turnover is high. The operating company should closely watch the development of the security issue of the MIFARE 1 card, and prepare the anti-crisis response plan in advance.

(4) Increasingly, the use of non-contact CPU cards is a card system and development trend, and system integrators or machine tool manufacturers are accelerating the upgrade of products. At the same time, in the process of product replacement, we must pay attention to protect the value of customers' existing assets and provide a seamless upgrade plan.

Introduce national standards to accelerate industrial development

As a part of the national informatization development strategy, China's smart card application technology has a history of more than 10 years. Smart card applications and industry and local standards have been initially established. For example, the People's Bank of China promulgated the People's Bank of China Financial Integrated Circuit (IC) Card Specification (Version 1.0) as early as 1998, and revised the China Financial Integration in 2005. Circuit (IC) Card Specification (Version 2.0), commonly referred to as PBOC 2.0. In 2002, the Ministry of Construction promulgated and implemented the “Application Technology for IC Cards for Construction Enterprises (CJ/T166-2002)”, and in 2006 it was revised to “Technical Specifications for Application of Integrated Circuits (IC) Cards for Construction (CJ/T166-2006). 2000 The Ministry of Labor and Social Security has also promulgated the "Social Security (Personal) Card Specification". However, the CPU card portion of these standards is basically based on the "ISO/IEC7816 (GB/T 16649)" identification card - integrated circuit (IC) card with contacts.

At the same time, from the perspective of international standards, the standards of contact ICs are unified in ISO/IEC7816, but there are many standards for non-contact IC cards, such as "ISO14443 identification card - contactless integrated circuit card - proximity card", "ISO1 8000" Information Technology - Communication and Information Exchange between Systems - NFC - Interfaces and Protocols, "ISO1 0536 Identification Card - Contactless IC Card - Tightly Coupled Card", "ISO1 5693 Identification Card - Contactless IC Card - Proximity Card" and many more.

With the maturity of contactless CPU card product technology (including dual interface technology) and the promotion of MIFARE 1 card security issues, it is necessary for the relevant state departments to speed up the development of non-contact CPU product technology application system standards and guide IC cards. The use of users and the development of the IC card industry will avoid losses caused by governments and enterprises blindly investing in projects or research and development without standards or standards.

In short, we must correctly look at the security issues of the MIFARE 1 card, deal with the security risks caused by this, avoid causing huge losses to the society, and at the same time, prepare for the development of non-contact CPU cards. To ensure that the IC card industry is developing along the right track.

Noise Barrier

A noise barrier, also known as a sound barrier or acoustic barrier, is a structure designed to reduce or block the transmission of sound from one area to another. It is typically used to mitigate noise pollution from highways, railways, airports, industrial sites, or other sources of loud noise.

The effectiveness of a noise barrier depends on several factors, including its height, length, location, and the type of material used. It is important to consider the specific noise source and the surrounding environment when designing and installing a noise barrier.