Contactless Access Credentials Guide

Author: Brian Rhodes, Published on Sep 10, 2015

Few access topics are as complicated as contactless credentials. Chosing the correct one can be the difference between a secure facility and wasting big money. Understanding how they operate and what their specifications mean is a big challenge.

In this update, we cover the basic elements needed to specify the right contactless credentials everytime, including:

  • HID vs. NXP Credential Formats
  • 125 kHz vs. 13.56 MHz Frequencies
  • Facility Names
  • Facility Codes
  • Card ID/Serial Numbers
  • ISO 14443A vs. 14443B
  • Form Factors

*** ****** ****** *** ** *********** ** *********** ***********. ******* the ******* *** *** ** *** ********** ******* * ****** facility *** ******* *** *****. ************* *** **** ******* *** what ***** ************** **** ** * *** *********.

** **** ******, ** ***** *** ***** ******** ****** ** specify *** ***** *********** *********** *********, *********:

  • *** **. *** ********** *******
  • *** *** **. **.** *** ***********
  • ******** *****
  • ******** *****
  • **** **/****** *******
  • *** ****** **. ******
  • **** *******

[***************]

Credentials ********

***** ***** ********** ******* *****, *** ********** ****** *** **** 'contactless' *****. ********** *******, ****** **% ** ******* *** *********** ***** ** **** built **** ** ********* ********** **** **** ** ******* *** read **** ******* ***** ** * ****** ****. **** '******** power' ******* ** ************** ****** ********.

** ***** *** ******* ********* ** **** ** ************ ******* ********, ******* *** ****** ****** ***** * ***** ********* ** *** card, ********** ******** ****** ** * ****** **** *********** ****** a ******** **** ******** ******* *** ***.  *** ***** ***** details ******* ******** ********** ** *** ****, ***** *** **** antenna ******** ******, *** ********* ****** **, *** **** **** discharges *** **** (**********) **** **** ******* *** ******* ** the ******:

** *******, *** *********** *********** **** **** *** *** *** exact ********** **** ********* *********, **** ** ********** ****, **********, and ****** ** *** **** ******* **** ** *** *****.  In *** ******** **** ******, ** ******* ***** ********** ** depth.

Contactless *********** ********* ** ******

*** ** *** ******* *********** ** *********** *********** ** *** format ** *** **** ** ********, ********* ********** ** *** manufactured **. ******* ** ***** ******** ** *********** *********** *** ******* ********* ** ******** ** *** ****** *** *** *************.

*** ********

***** *** ****** ***** ********* **** **** '*********' *********** ** the ***** ****'*, *** ****** **** ** ********** **** **'* *** *** "****" *********. ***** ***** ********* ** **** *****, *** ******* ****** '*** *********** *****' *** * **** swath ** *** ******** ******, *** **** ******** *** ****** brands **** *****, *********, *** *******. *** *******'* ****-***** ******* include:

  • "*********": ** ***** *** *** ******, *** ***** ********* **** *** ********* **** ** *** systems
  • ******: ** *** ****** ******** **.** *** '*********'

*** ** *** **** ****** ****** *** *********** ** *** US. ******* ** ********** ****** *****, *** ** **** ** license *** *** ** *** ********** ******* ** * ******* of ********** *** ****** *************. **** **** ********* ******* '*** 14443 *********' *********, *** ******** ******* "**** *" ********* (** Part "*" - ********* ** **** ****** *****).

*** ********

******** ******** *************, ******-***** *** ****** * ****** ** '***********' ********** ********** **** ** * number ** ******* - ********, *******, *** **********. **** ********** adoption ** *** ********* ** ********** *************, *** ****** * catalog ** ***** ***** ** ****, *********:

  • ****** ****: ***'* *** *** ****** ***** ** ***** ****** ** *** *********, *** *** as ****** ******* ** ***'* "*********" *****
  • ******/*******: ** *** ********* ***** *** '*********' ******, **** ********* on **.** *** *** '*******' ******* *** ********** ** *** early ***** ** *********** *** ****** **** '****** *******' ***********. DESFire *********** ******* ******** ********** **** ******** ****** ********** *****. The '*******' ****** **** ***** ******** *** ***** ********** ** ***** *******, *** ******* ********* **** ******. ******* ***** ************ **** made **** ** ***********, *** ******** ****** ******* ***** ***** be ****, *** *** ****** ****** ***** ** '******/*******'.

****** ***, ***'* ********** ******* *** '*******-****' *** *** ********* standards *** ********* *** ********** *** *** ** ****.  *** manufacturers *** *** ***** ******* ** "**** *" *********.

US ** *** *****

******* ** *** **************'* ******** ** **** *** *** **** ** *********, ******, *******, *** *** ********** derivatives *** ******* ******* *** **.

*******, *** ******'* ********* ******* *** ** *** ********, ********** in *** **. ******* *** ********** **** ** ********* ********* *********** and *******, *** ******* **** ******** ******* **** **** *** ********** *** formats *** *** ***** ** ******* *********** ** * ******.

125 *** ** **.** ***

*** **********'* ** ********* ******* * *** **** ** *** performance. ******* ******* *** **** **** *********** ********* ** ******** matching ***********, **** ********* ** *** ***** ** ********. ** we ******* ** *** **** ****** ********, ** ********* *** ****** **** *** *****, *********** *** ****** not ****. *** ***** ***** ***** *** ********* ** ******* formats:

******* *** ******* ********** ******* *** *** *** **.** *** *********** is ********** ********.  **** ** ********* ** *** **** **. ****** ********* ****, *** *** ******* ** *** ******* ********** *** *** be ******* ** *******.  *******, **.** *** ******* *** ********* (usually *** *** *** ** *******) *** ********** **** *** only ** **** ** * ****** ************ ***** *** *** to ** **.

Deciphering ********** *****

*** ** *** **** *********** **** *** *********** *** *** users ***** ** ****** *********** ***** ********** * ****** ** using. *** ****** ** ******* **** ******** ** ******* **** no ********** ** ************* *** ***** **** *** ****** ** be * ***** ***** ****. *** ***** ***** ******* **** different ********** ***** **** ************ ********* *********** *** ******** ***************, yet **** *** **** *** **** ** *** ********* ***:

*** *********** *****, *** **** **** ***** **********:

  • ****** ****:**** ********** *** *** *** **** **** *** ********** *********, usually ******* ** ** *** ******** *** ******* *******. *** example ****** ** *** ******* ** *** ******, ****** ** HID's ******* ** ***, *** ** **. *** **** *** to ******* *** ****** **** ** * **** ** ** locate * *** ***** ** ******** *****, ** ***** ****** ********** (*****'* ******* ******) ** ********* *** *** *********** ****** ** a ******** ******.  
  • ******** ****: **** ********* ** *** ******* ** *** **** ** most *****. **** ***** ** *********** ** **** ********* ***** on *** ******, *** *** ** ****** ***** *** **** online *********** *** ****** ****.  ** ******* *****, ****** ******* must ** ********** ** ****** ******** ******** ***** *** **** low-end ******* *** ***** ********** ***** ** *** ******** ******.  Without ******* **** ****, *********** *** *** **** ** ****.
  • **** ** ******: ** **** *****, *** ** ****** ** ******** ** printed ** *** ****. **** ****** ** *** '****** **' that **** * **** ** * ******** *****. ***** ********** numbers *** *** ** *****, ********* ******* ***, *** *** same **** ** *** ******** ***** ********** ****** ** ****** twice ** *** **** ******.

** **** *****, * **** ****** ** *********** **** '****' an ******* **** *** * ***, *** **** ****** ***** are *** ******* *** *** **** ******* ******** ****.

** ********* *****, * *** ***** ** ***** ********* ** production *** ** ***** *** ********, ******* *** ** ****** all ***** ****** ** **** ***********, ** *** * ********** part ******:

The ***/*** ***** ********

**** ****** ********* ***'* ****** **** ***'* ****** *********, *** ** *** *** ********* ************** of ** *** ********, **** ***** '****' *** **** ** most *******. *******, ******* ***** ******** ** *** ******** **** room *** ***************, *** *** *** ******** ***** '*********' ********* with * ********* ********** *********.

*** *** ****** ** **** ** **** ******** ** ********** claim '*** ***** **********', *** *** *** ******** ***************. ** ********* **** **********, ISO ******* ***** ** ******* ***** '* ***/** *' ** ********* *** *** *********. **** ******* ** these ***** *** ******** ****** '*****', *** *** ******* **** is ********** ******* *** ***.

** *******, ******* ***** ** ** ********* **** ** ***** 'Part *' *********, **** ***-**** *** *** ******** ***** ****.

 

*********, ******* ******** ************ ** *** ** ** **** ******* with * ******* ****** ****** ******* *** ** '**** *' compliance **** ***:

*******, *********** ***** '*****' * ****** ** ********** ** ********* with ** *** ****** ******, *** ********** * ******** *****/**** of ********** *** ** **** ** ********.

Smartcard ****************

***** *** '**** * & *' ******** ** *** ***** separates ******* **** ***** *** ****, ** **** *** ****** mean **** *** ******** **** **** *****. ******** ** *** 14443 *** *** **** ** **** *****, ********* *** '**** Serial ******'. *** **** ****** *******, **** ** *** ****** number **** ********** ****** *****, *** ******* **** ****** ** not *******, ** **** ******** ** '*** ********' *******:

  • ***/*** ******: *********** *** ****'* ****** ********** ** ******** ******* ** ** not ****** ** *** **** '*********' *****. **** ****** *** platforms *** **** **** ****** ** ****** * ****, *** instead *** *** ******** ******** ** ****** ******, *********, *** privileges.
  • ******* ****/*****: *******, *** **** ******** ** ******* ****** *** **** ** encrypted *** ********** ****** ********* ******* *** ****. ********** *** access ******* ***** *** ********** ****** *** ******* (**: *****, ***** *******) *** *** *****-****** ************** (**: **********) **** ******** ***********, *** ****** *** ** *** sufficient.

The *** ********

** ***** ** ********, *** *** ********** ******* *** *********. The '**** ****** ******' (******* ** *** *********) *** **.** *** ***** *** ***** ** **** ********** ** underlying ******, ********** ******, ** **********. *** *** *** ** usable ** * ****** ** ** *** ******, *** *** full ******* ** *** ********** **** *** ** *********.

*** ******* ******* **** **** * *** ***** *** * hundred ** **** ***********, ***** *** *** ** *** ******* ID *** *** ** * *******. *******, *** ****-******** *****, systems **** *** *********** *** ******** ********, ** *** ***** systems ***** ********* *********** *** * **** ***** **** ***** are *** ****** *** ********** *** *********** *** *** **** as *** *** *******.

Form ******

********** ****** *** *** **** ******* ** ***** ** ****. Like ** ***** ** *** ****** ********** **** ****** ********, *** **** *** ****** ** ******* * ********** *** include ********, ******, ****-***** *****, ** **** *******

*** **** ****** ** *** ********** ***** ** ** ********* consideration ** ******* ********** *** ******* ****.  *** *******, ***** a ***** *** **** *** ** ***** ** ***** ** ID ***** ** *** **** **** * *******, ** *** easily ** **** ** ****** ** * ***** ***********. * key ***, ***** ********** *** ******** * ******* **, ** designed ** ** ******* ****** ** ********* *****, ***** *********** exposures, *** **** ********** ** *****.

*** ***** **** ****** ****** ****** ** ******** ** *** user, *** *** ****'* ***********, *** ** ******* *** ***** credential ***** **** ******** **** ****** ******* ** ****.

System ******

** ***** ** ****** *******, ********** *********/******* ****** **** ****** design. ****** ********* **** ******** *** ********** ******, *** *** subsequent ****** ** **** **** ***** **** **** ******. ** terms ** '****** ********** ********' *********, **** ****** **** *** generally ******, ******* *** ****** ****** ********** ********** *************. ** long ** *** ******** ** ********** **** *** ******, ********** choice ** * ******** ******, *** **** ******* ********** ***** based ** ********* *** **** ** ******** ****** **** ********** difference.

*******, **** **** ******** ** ****, ******* *** ****** ******* they ********* ******* *********** ** *********** ** ****** *******. ******** from *** ****** ** *** ***** *** **** ********* *** affects *** *****, ** ******* *** ********.

Comments (3)

**** ***********. ***** ** * *** **** ***** *** ******* that **** ********** ********** *** ***** ******** **.

* *****.

**** * **** ** ******** ** *** ********* ** **** article ** ** *** *** ******* ***** ** **** * nice ********. *** ***** * "****'* *** ****" ******* ** what *** ********** *** ** * ******** ****** *** **** zoom ** ** *** ****** *********.

***** *********** *** ***** * ****** **** ********* **** * am **** **. * ******* ************ ******** *** **** ****** systems, *** **** *** **** * ***** ******** ** *** the ****** ******** *****!

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

Access Controller Software Guide on Dec 11, 2017
Properly configuring access controllers software is key to a professional access system. These devices have fundamental settings that must be...
Access Control Course Winter 2018 on Dec 07, 2017
Learn more below about the Winter 2018 IPVM Access Control Course. Register here. IPVM offers the most comprehensive access control course in...
Broken Hikvision App Exposes Hypocrisy on Dec 06, 2017
While Hikvision talks about a commitment to cybersecurity, their broken app and their insecure 'solution' exposes not only their engineering...
ZKAccess Control Tested on Dec 04, 2017
China manufacturer ZKTeco / ZKAcces has been expanding in the West, offering a low-cost access control platform. But how good is it? And how does...
IP Camera Manufacturer Compression Comparison on Nov 27, 2017
Despite the use of standards-based video compression (H.264/H.265), our tests show that default image quality settings for different manufacturers...
Hazardous & Explosion Proof Access Control Tutorial on Nov 27, 2017
Controlling access to hazardous environments require equipment meeting specific ratings that certify they will not start fires. Understanding those...
Top Maglock Provider Warns Against Using Maglocks on Nov 21, 2017
Do not buy my company's product. It sounds strange indeed, but a senior Allegion consultant stated that maglocks should not be used in common...
CBR vs VBR vs MBR - Surveillance Streaming on Nov 21, 2017
How you stream video has a major impact on quality and bandwidth. And it is not simply CODEC choice (e.g., H.264 vs H.265). Regardless of the...
Isonas Cofounders Split, Launch Partner/Competitor on Nov 16, 2017
Breaking up is hard to do, especially when door access security is at stake. But that is exactly what has happened at Isonas. Senior employees...
PoE UPS Tested (Energy Reconnect) on Nov 15, 2017
In security, backup power is important, but most often requires UPS systems or extra cabling to devices for low voltage power. Now, some have...

Most Recent Industry Reports

Startup Flock Declares Itself "The New Standard For Neighborhood Security" on Dec 15, 2017
Mega startup generator YCombinator has backed a startup targeting neighborhood video surveillance and security. Flock Safety is taking a...
Directory of VSaaS / Cloud Video Surveillance Providers on Dec 15, 2017
This directory provides a list of VSaaS / cloud video surveillance providers to help you see and research what options are available. 2018 State...
Integrator Managing Projects Statistics on Dec 14, 2017
Who actually manages projects for security integrators? Does the average security integrator have dedicated project managers, or are technicians,...
Hikvision NVR Load Testing on Dec 14, 2017
IPVM members recently debated Hikvision NVR's performance under load in Hikvision 30+ Cameras On NVR - Apps And Client Really Slow Down And CPU...
This Manufacturer Shuns IP Cameras on Dec 14, 2017
One manufacturer has chosen a bold strategy in avoiding getting caught up in the race to the bottom: shun IP solutions. We spoke with an executive...
Testing DMP XTLPlus / Virtual Keypad Vs Alarm.com & Honeywell on Dec 13, 2017
DMP has a strong presence in commercial intrusion alarms, but not in residential. However, the company's XTLPLus wireless combo panel and Virtual...
BBC Features Dahua on Dec 13, 2017
Hikvision is not the only mega-Chinese video surveillance manufacturer getting global attention. Last month, the WSJ investigated Hikvision and now...
Hiring Camera Calculator Product Manager on Dec 12, 2017
We are working on making the Camera Calculator even better and hoping you can help us find the right person to join our team. IPVM is hiring a...
Testing $20 WyzeCam, The Money Losing Amazon Vet Startup on Dec 12, 2017
This startup is perfecting the old adage: We lose money on every sale, but make it up on volume But it is no joke. The company, Wyze Labs, is...
Xiongmai New Critical Vulnerability - Same Manufacturer Whose Products Drove Mirai Botnet Attacks on Dec 12, 2017
The Chinese manufacturer whose products were primarily responsible for the 2016 Mirai botnet attack has a new critical vulnerability, confirmed by...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact