uPASS Access | installation guide
6/
1.3 Tag security
EPC (Electronic Product Code) tags were introduced as a possible successor to the barcode with added functionalities.
The tag emits its EPC in plain text. This makes the tags vulnerable to cloning and counterfeiting attacks.
There are a few security measures possible against tag cloning.
TID check *
EPC tags contain a data field known as the Tag Identifier (TID). At the discretion of the EPC tag/card manufacturer, the
value is be factory programmed and locked, ensuring that tags have a unique identity and cannot be cross-copied.
NEDAP UHF tags support a locked serialized TID and the uPASS reader can be configured to read the TID data field.
EPC passwords **
EPC tags have 2 passwords. NEDAP has implemented a two-way authentication anti-cloning method using these 2
passwords. This feature is supported in combination with all NEDAP UHF tags.
EPC Gen2 V2 secure authentication ***
The EPC Gen2 V2 tags support a secure authentication method.
This is the best possible anti-cloning measure available.
The authentication data transmitted between tag and reader are enciphered using AES128 bit encryption. The
encryption keys are diversified using the programmed EPC number to ensure that the keys are different for each tag.
Required is that the tags contain an EPC Gen2 V2 compliant RFID chip. Refer to NEDAP uPASS how to order guide for
product numbers.
* Possible for any UHF tag.
** Possible for all NEDAP UHF tags.
*** Possible for all EPC Gen2 V2 tags.
Tag security is not evaluated by UL.
To Next Page
Loading...
