The functionality possible with our smart badge is only limited by your imagination. Well maybe not quite literally but there is a lot you can do by combining the different functions with an UI in a workflow editor. To give you an overview about some of the possible use cases you can check them out here. This overview will explore all the basic technical functionality like ID-management, tracking, NFC functionality for access and transactions, movement analysis, messaging and how to combine them in a process or workflow.
Every company or institution that employs staff members or deals with visitors of any kind needs to issue proofs of ID. Usually this is done with either a programmable NFC card or a smartphone app (if there is no need for visual IDs). For regular staff members a card with ID-picture can be printed after the hiring process, whereas for visitors its a bit more difficult to print cards on the spot.
With the CC1 Smart Badge it becomes very easy to issue a visual badge that is temporarily linked to a digital visitor ID. Just by taking a quick picture and assigning it to the device the journey can begin.
Benefits:
- multi use
- Visual ID + QR code
- blockchain backed e-ID
- secure NFC
Knowing where assets and people are is crucial for digital workflow managment. RTLS tracking and localization of assets and people helps to make processes safer and more efficient. Knowing what happens when and where is not a luxury but a nescessity. Highlight: RTLS definitions drive NFC credential activation.
Infrafon CC1 smart badge consolidates your organization´s smart cards. Dynamic and smart MIFARE DESFire NFC emulation for door locks and coffee machine operation makes your digital journey easier and safer. NXP Secure Element as well as highest encryption standards protect credentials against digital and physical attacks.
In this Demo we are looking at a simple variable NFC-card emulation. The operator can choose to give access using a certain predefined or individual Mifare Desfire credential. In this case both readers expect a different UID.
NFC keys communicate using a cryptographic protocol like Calypso, Mifare, HID or Legic, the readers expect one or more of those protocols. If the protocol matches up there are mainly two ways of identifying. There is a UID which is fixed for a card and programmable data usually stored in a NDEF format. Though the files are interchangeable during the card setup, once ready for use it is fixed like the UID. With the CC1 things are looking a little different:
1. The CC1 is enabled or disabled over the air (manually or automatically triggered)
2. Our Smart-Badge is able to read and emulate various UIDs.
3. It can change the crypto protocols depending on the location.
4. NDEF files are completely interchangeable and even streamable from the backend.
5. Enables 2FA trough pin-code or location.
The Infrafon CC1 device is provided with two different NFC peripherals,
1. NXP PN7150: High performance NFC controller with integrated firmware, supporting all NFC forum modes
2. NXP NTP52101: NTAG 5 switch - NFC Forum-compliant PWM and GPIO bridge
The embedded PN7150 controller allows the microcontroller to read and emulate most NFC TAGs on the market at 13.56MHz. In particular the PN7150 is capable of handling in firmware all of the communication up to the ISO 14443-4 layer, while delegating to the firmware on the microcontroller the upper layer protocols.The PN7150 supports card emulation mode based on either technology NFC-A, NFC-B, or NFC-F.By using the combination of the PN7150 frontend with a microcontroller, it is possible to emulate tags like the NXP MIFARE Classic or NXP DESFire EV1/2/3 and/or the use of NDEF messages.It is also possible to emulate tags based on the ISO-DEP protocols on top of NFC-A or NFC-B by using the firmware integrated in the PN7150. The PN7150 also allows the microcontroller to emulate T3T tags trough NFC-F protocol support. Finally, other protocols, like FeliCA or Topaz, may be supported, but their full emulation has not been investigated yet.
Figure 1: View of the capabilities of the firmware of the NXP PN7150. "NFC Protocol Stack" by Erik Hubers is licensed under CC-BY-SA-4.0.
src: Link
The PN7150 is capable of acting as both a reader and an emulator, while also supporting peer to peer (P2P) communication mode. By using the NCI API interface, it is possible to exchange with the Cortex M0 microcontroller embedded in the NXP PN5170, in order to set its mode to reader, emulator, or P2P communication.
A variety of encryption protocols are possible on the CC1 NFC modules. Especially interesting is the integration of the most common NXP protocols Mifare Classic and DESFire EV2:
The emulation of the NXP Mifare Classic protocol with the PN7150 is different from that of other NFC protocols. As the Mifare Classic protocol is built upon the ISO 14443-3 layer, messages coming from such a layer are not forwarded to the external microcontroller. Thus, the PN7150 implements the Mifare Classic protocol in firmware. In particular, by setting particular values in the Flash memory of the PN7150, it is possible to customize various aspects of the NXP Mifare Classic responses, from the UID, ATS, to various other aspects of the radio communication of the lower layers. Finally, NXP firmware provides space to configure up to 16 keys used in MIFARE Classic Authentication command.
As a proof of concept, part of the NXP Mifare DESFire protocol has been developed on the ESP32 with support from the PN7150. In particular, the proof of concept allows emulating the UID of another card, setting a particular 2TEA key for authentication, emulating the originality signature of an authentic NXP DESFire EV2 card, and in general being recognized as a valid DESFire EV2 tag.Python APIs are provided on the ESP32 to set the 2TEA key, or to set a custom NDEF message of the NFC emulator.When tested with a proxmark3 reader, the Infrafon device was able to emulate the answers of an authentic NXP DESFire EV2 card to the following requests:
- UID
- ATQA
- SAK
- ATS
- Authentication with 2tdea key
- GetVersion command (originality check)
Finally, the TagInfo application from NXP recognized the emulated tag as an authentic (Signature verified with NXP public key) DESFire EV2 (MF3D22) tag.
By leveraging the connection of the Infrafon CC1's ESP32 microcontroller to the SE050 secure element by NXP, it is possible to use the security functionalities of the SE050 to handle sensitive data. It is thus possible to pair the SE050 and the NFC controller PN7150 through the microcontroller, to use the security of the SE050 to perform secure NFC transactions.
Security Pattern is our designated Partner when it comes to custom NFC projects. Please reach out to us if you do have any special requirements to get more details and an estimate.
Alarms, Pager-messages, Appointment-confirmations or data driven automated replys - smart communication is one of the most important factors in functioning work environments. Let’s make it as easy and efficient as possible.
Documentation that is secure and verifiable is gaining importance and in many industries is already mandatory. The infrafon smart badge is the swiss army knife for efficient digital documentation, as well as being a carrier for commands and permissions.
With the BMA 456 movement patterns can be easily recognized and used to monitor healing progress of walking related injuries, as well as for walking pattern analysis for security reasons to detect if unauthorized individuals are using the badge.
