Atmel applications journal.Summer 2004
.pdf
A T M E L A P P L I C A T I O N S J O U R N A L
mounted on a metal surface, a ferrite spacer must be used under the antenna. If the metal is one inch or more from the antenna, no ferrite is necessary. Metal near the edge of the antenna is less detrimental than metal in parallel with the antenna. The reader antenna may need to be retuned if installed in the vicinity of metal.
CryptoRF integrated circuits are delivered with all security features disabled. If a customer decides to utilize a data protection feature, the feature can be activated when the RFID tag is initialized. For industrial RFID applications, the zone write lock and password features are often used. Simply writing the appropriate configuration register enables these features.
Videotape RFID Application Example
A typical large memory RFID application is tagging of videotape cartridges for television studios. The RFID tag stores information about the contents of the tape as well as the usage history. All of the information in the tag can be quickly and easily read with a hand-held reader or by a reader installed in the tape players without viewing the tape. Errors are prevented and advertising revenue maximized by using an RFID device, like CryptoRF.
There are several different videotape applications within the television studio and each type of tape will contain slightly different data in the RFID tag. All these types of tapes, including archive, field report, production and advertising tapes, contain a general information area. This header file describes the type of tape, tape ID, production date, location, subject, length of video for each subject, production team members (reporter, cameraman, editor, etc.) and equipment IDs. This area will also typically contain a copyright notice.
The type of tape determines what additional information is stored in the RFID tag. An archive tape containing the recording of a specific broadcast or group of broadcasts may contain only a small amount of additional information such as source information for video segments played during this broadcast.
A field report tape will typically contain a large number of video segments that are collected in the field. For each video segment, the RFID tag will contain timestamps and comment fields for use by the reporter and video editor.
The GPS coordinates for each video segment can also be stored, if the video camera contains a GPS locator module.
A production tape is produced by gathering video segments from various field report and studio tapes, then editing them to make them suitable for broadcast. The production tape will contain a log with the subject of each broadcast segment and the sources of video used within that video clip. The RFID tag in a production tape may also contain a broadcast log.
Advertising tape RFID tags have an expiration date and contain a broadcast log listing the date, timestamps, and equipment ID for each time it is broadcast. This information is important, because the television station can only collect advertising revenue if the correct tape is played within the broadcast time constraints of the advertising contract. If an expired ad is played or the broadcast is prematurely interrupted, then the advertising revenue is lost. The broadcast log can be quickly and easily downloaded from the tape and sent to the advertising customer or stored in the billing system.
The security settings of the videotape RFID tags are configured so that all of the data can be read by anyone without restriction. Write permission is restricted by requiring passwords to write data to the files. The RFID readers built into the studio equipment contain the write passwords for the type of tapes they are allowed to use. An application program stored in the RFID reader manages the data formatting and security.
As you can see, using CryptoRF RFID tags in broadcast systems allow collected video to be systematically managed from collection to broadcast. Videotape contents can be easily identified and more precisely described than on an adhesive label. Broadcast and file footage archives are more easily maintained by downloading RFID tag data into the studio database system. Efficiency is improved and advertising revenue maximized by reducing errors, so the system pays for itself. 
CryptoRF Security Options
and Operating Features
•All security can be disabled
•64-Bit Key Encryption
•Symmetric Private Key Encryption Algorithm
•Family of Seven Devices, from 1 Kbit (128 Bytes) to 64 Kbits (8K Bytes); different densities can be used in the same application
•Dynamic Mutual Authentication between Device and Host
•Four Completely Independent Secret Key Sets for Multi-application Systems
•Contactless 13.56 MHz Interface, Compliant with ISO/IEC 14443 Type B
•Anticollision Protocol
•Tolerant of Type A Signaling for Multiprotocol Applications
•Integrated Tuning Capacitor
•High Reliability Memory, 100K Write Cycles with 10-year Data Retention
•Stream Encryption with Changing Session Keys Ensures Data Privacy
•Encrypted Passwords with Attempts Counters for Additional Security
•Read and Write Encrypted Checksum, Guarantees Data Integrity and Authenticity of Source
•Anti-Tearing, Avoids Data Corruption or Recovers Data in Case of Power Loss
Contactless Smart Card and
Token Applications
•Security-focused ID and Access Cards (Biometric ID cards, visas, etc.)
•Health Care Cards
•Loyalty Cards, such as Restaurant and POS E-purse
•RFID Tags and Labels
•Energy Meters and E-government
•Multi-applications
CryptoRF devices are available in wafer and bumped wafer form, RF smart card modules and pre-laminate sheets.
www.atmel.com |
page 49 |
|
A T M E L A P P L I C A T I O N S J O U R N A L
PLANETA INFORMATICA IS A DESIGN AND MANUFACTURING COMPANY, SPECIALIZING IN CONTACT AND CONTACTLESS
SMART CARD READERS, TERMINALS, AND BOARDS FOR DEDICATED APPLICATIONS, INCLUDING PUBLIC TRANSPORTATION, VENDING MACHINES, FOOD VOUCHERS, LOTTERY, AND GAMING. FOR THE LAST 10 YEARS, PLANETA HAS DEVELOPED AND PROVIDED CUSTOMERS WITH SECURE, INEXPENSIVE SMART
CARD-BASED SOLUTIONS.
SAM-Based Highly Secure Application using Atmel CryptoMemory® and CryptoRF™ Devices
By Artur Costa
PLANETA INFORMATICA LTDA /Brasil
The Challenge
Two years ago, a customer hired Planeta to improve an existing highly secure purse application with a big restriction: user card cost. The customer already had a pilot application in place, based on two microprocessors: one for the user card and another used inside a terminal that worked as a secure authentication module (SAM). Planeta was asked to suggest a new smart card concept with the same level of security and a lower price for the user card. In addition, the current system was limited to a single smart card manufacturer and had some performance issues that needed to be resolved.
The Solution
Planeta had previously used Atmel’s AT88SC153 chip, a predecessor of the new CryptoMemory® family of devices. The AT88SC153 was successfully implemented in a vending machine application, with the application and card secret keys saved and protected inside the terminal’s protected memory. Since the security of “protected terminal memory” is not reliable enough, the solution for the secure purse application required a new concept of secret keys, diversification of keys, and secure calculations performed by a SAM card instead of a CPU terminal.
While Planeta was working on this solution, Atmel launched the CryptoMemory family of chips, offering very high security functionalities, like bidirectional authentication, encrypted passwords, physical/ electrical monitors, and encrypted and signed communication between card and reader/terminal. Because of these features, Planeta selected CryptoMemory for the user card platform.
The next step was to find the SAM platform. We needed a versatile solution that could be used for different applications like access control, public transportation, vending machines, and multi-application cards. Atmel’s CryptoMemory and CryptoRF™ families of devices met these needs.
Design Strategy
The answer was to adopt a fully programmable, high-performance, secure processor card for the
SAM. Planeta selected Atmel’s AT90SC6464C, a flash-based, high-performance cryptocontroller.
The key elements of this new solution included:
•CryptoMemory AT88SC0808C for the user card.
•AVR™ secure Flash microcontroller AT90SC6464C for the SAM card.
The SAM was built using Atmel’s very highperformance microcontroller, which has a built-in random number generator, 3DES/RSA hardware accelerator, and ISO 7816 interface. To work with the SAM, the External Memory Operating System (EMOS) was selected, because it has the unique ability to utilize the memory in external smart cards as if they were part of the microcontroller memory. In addition, the external smart card memory needed to have mutual authentication and encrypted communication ability to ensure the security of the system. Since CryptoMemory is the only chip in the marketplace with authentication and encryption functions, CryptoMemory provided the solution for the secure purse application.
The end result is that the solution developed by Planeta provides the same functionality as a pair of microprocessor cards (user and SAM cards), meeting the customer’s requirements quickly and at a low cost.
The Advantages
•Cost reduction: The CryptoMemory user card is about one-third the cost of a microprocessor card with the same memory size.
•Very high security.
• Total independence of card manufacturer and personalization.
•Very high performance: The AT90SC6464C chip has a very fast encryption calculation engine.
•Simplified memory management: The SAM manages system memory, building necessary application files within the CryptoMemory and CryptoRF user memory and SAM memory.
•Flexibility: This solution can use a wide range of memory sizes for contact (up to 32K bytes) and contactless smart cards (up to 8K bytes), with the same level of security and interface as microprocessor cards.
www.atmel.com |
page 50 |
|
A T M E L A P P L I C A T I O N S J O U R N A L
• Simplified software development: The application software sees only one single operating system. Using a memory driver built inside the SAM makes it possible to support different types of user cards, including both CryptoMemory for contact and CryptoRF for contactless cards, without changing the application software.
• Simple implementation of multiple applications: On one card, it is possible to build directories and isolate one application from another, using OS rules and secret keys.
• Software homogeneity: The application software is a sequence of APDUs, independent of card type and size. Only a small software driver is required
as the gateway between the user card and the SAM.
Figure 1: General Diagram of the Planeta E-Purse solution
Atmel’s AT91 ARM® Thumb®–Everywhere You Are
Atmel's AT91 ARM Thumb microcontrollers provide the 32-bit performance every 8-bit microcontroller user is dreaming of while staying within his tight system budget. The extra performance enables the implementation in software of innovative but evolving protocols for communication, compression or control.
Building a microcontroller product line around the industry-standard ARM processor core guarantees the customer long-term availability, and its widespread acceptance has resulted in the development of an extensive range of qualified software IP products reducing the time-to-market
for new AT91 low-power, already been
tems, MP-3/WMA players, Data Acquisition products, Pagers, Point-of-Sales terminals, Medical equipment, GPS and Networking systems.
The AT91 series is completely supported by state-of-the-art development tools, including C-compilers, Debuggers, Emulators and RTOS.
Start your journey today towards a successful design at: www.atmel.com/arm
Eval Board |
Microprocessor Supported |
AT91EB40 |
Supports AT91X40, enabling code development & eval. |
|
|
AT91EB40A |
Supports AT91RO40008, enabling code development & eval. |
|
|
AT91EB42 |
Supports AT91M42800A, enabling code development & eval. |
|
|
AT91EB55 |
Supports AT91M55800A, enabling code development & eval. |
|
|
AT91EB63 |
Supports AT91M63200 & AT91M43300 |
|
enabling code development & eval. |
|
|
Memory Extension Card
AT91MEC01
Increases memory capacity of AT91 Eval. Board, adding 2M bytes of SRAM and 3M bytes of Flash on the external bus.
Complete with application Guide.
R
Everywhere You Are™
© 2003 Atmel Corporation. Atmel and the Atmel logo are registered trademarks of Atmel Corporation.
www.atmel.com |
page 51 |
|
Atmel’s DataFlash, the world’s fastest and most flexible serial Flash.
(It’s also the most cost effective)
Check out the world’s largest serial Flash family today at www.atmel.com/ad/DataFlash
DataFlash Product Family
D e n s i t y |
I n t e r f a c e |
S p e e d |
V c c |
Ava i l a b i l i t y |
1Mbit – 128 Mbits |
Serial (SPI/RapidSTM) |
Up to 50 MHz |
2.7 – 3.6V |
Now |
DataFlash Cards
|
D e n s i t y |
I n t e r f a c e |
S p e e d |
V c c |
Ava i l a b i l i t y |
|
|
|
1 – 16 Mbytes |
Serial (SPI) |
Up to 20 MHz |
2.7 – 3.6V |
Now |
|
|
|
|
|
|
|
|
|
R |
© 2004 Atmel Corporation. Atmel, the Atmel logo, and DataFlash are registered trademarks of Atmel Corporation. RapidS is the trademark of Atmel Corporation. |
Everywhere You AreSM |
||||||
It’s hard to Compete without the right partner and support…
Look to the All American Team for both!
All American’s Applications Engineers are an experienced team of designers with extensive knowledge of the latest technological advances.
All American engineers are available to support you from idea to finished product and ongoing development. First rate technical support gives you the best solutions to get your products to market quickly.
All American MCU Seminars
Come to the All American Microcontroller Seminars, or let them come to you.
Our seminars:
•Are designed for working engineers and focus on practical solutions that can be put to use in real designs.
•Provide engineers with hands-on training to address your design requirements.
•Are flexible to meet your schedule and design requirements.
800.573.ASAP
Experts in:
ARM®
(32-bit RISC)
AVR
(8-bit RISC)
CPLD
CRYPTOMEMORY®
DATAFLASH
EEPROM
EPROM
FLASH
FPGA
FPGA CONVERSION
(ULC)
FPSLIC
(AVR with FPGA)
USB
WIRELESS
80C51
(8-bit CISC)
For more Information email us at mcuexperts@allamerican.com
LIT #3362C-CORP-VOL.-3-30M