Multi-application processor card

In general, a multi-application processor card is an RFID identification medium with a complete microcontroller architecture. In the broader sense, a complete computer with a memory that can be programmed with applets (Java software). If a processor card is held in the electrical field of an RFID reader, it is supplied with energy and starts up just like a PC and first loads the operating system and then executes the programs (applets).

If several applications are executed on this card, one speaks of a multi-application processor card, which behaves towards the read / write units of a manufacturer (integrator) as if it were an ordinary RFID card that was issued by him. A Trusted Service (TrustOffice) mediates between the organization that issues the multi-application processor card and the respective integrators. Thus the system sovereignty remains with the publisher.

This results in completely new areas of application compared to conventional RFID cards, which, on the other hand, are a pure storage medium (free and encrypted area).

Example VDV-KA

One example is the MIFARE SmartMX from NXP Semiconductors , which is also used in the VDV core application for local public transport.

The Association of German Transport Companies (VDV) has developed a core application (VDV-KA) based on a multi-application processor card from NXP (MIFARE SmartMX), which enables a uniform nationwide ticketing solution. ETicket Deutschland is the brand name for the system of interoperable electronic fare management based on the VDV core application, which is currently being set up. However, the eTicket only fills a small area of the VDV-KA card. It makes sense to install additional applications on this card.

The user could purchase a park-and-ride ticket and the VDV-KA card thus becomes a multi-application processor card. The Parking application is also saved on his eTicket. He now also uses the card to enter and exit the car park.

For many municipal utilities, the multi-application processor card based on the VDV-KA standard is also a customer card, combined with advantages for their service partners who are equipped with appropriate readers. Customers can now collect bonus points there.

Other cities are thinking about bringing the additional function student ID on the card so that they can also pay in the cafeteria. A payment function is added here. This micropayment also makes it possible to pay at vending machines. The card is topped up at the eTicket machines.

The card can be used to enter events or trade fairs (ticketing). The ticket is ordered online via the Internet. At the entrance control, it is checked whether the card is authorized. In some football stadiums (e.g. Allianz Arena , Impulse Arena) the multi-application processor card can be used for payment.

integration

Additional applications are particularly useful in connection with local public transport, based on the VDV core application (VDV-KA).

However, this requires the integration of various systems (eTicket, parking, bonus, micropayment, ticketing, etc.), not only on the card level, but also on the system level. Special applets support these additional functions on the multi-application processor card and integrate various manufacturers with different card structures and standards into an overall system. In the south of Germany, the first pilot system has already been implemented together with the Augsburg municipal utility.

hardware

The processor card is comparable to a computer. In addition to the usual components, there are also several coprocessors for encryption (Triple DES and PKI). Since the cards are supplied with a dual interface, i.e. both contactless and contact-based, several I / O channels are available.

software

The software area is structured similarly. A basic level (BIOS), an operating system and, in the case of the SmartMX, a further layer which allows the execution of Java Card applets ( Java Card ).

By applying different applets, different manufacturer standards with different data structures can be supported.

communication

The Mifare standard is used as the contactless communication level . The processor card (SmartMX) can therefore be used as a MIFARE card, but by using the corresponding applets it offers significantly higher protection than MIFARE Classic. When using a corresponding applet and not the native MIFARE mode, SmartMX is definitely comparable to MIFARE DESFire.

history

For a long time, due to the power consumption, it was not possible to permanently supply the entire electronics of a passive contactless card with the corresponding energy via the electrical field of a reader. Only the massive use in the area of e-government and the decision of several countries to introduce the electronic passport or an ID card with RFID, has the manufacturers to introduce low-power variants, which are ultimately available today as contactless processor cards.

Web links

Individual evidence

↑ SmartMX engl. NXP website , articles and links to datasheets
↑ eTicket Germany website , interoperable electronic fare management
↑ KARO Card website , the customer card of Stadtwerke Augsburg
↑ Chip card in focus , article in Sicherheit.info

[1] SmartMX engl. NXP website , articles and links to datasheets

[2] Ticket Germany website , interoperable electronic fare management

[3] KARO Card website , the customer card of Stadtwerke Augsburg

[4] Chip card in focus , article in Sicherheit.info