Advanced Card Systems ACR1281U Users Manual
ACR1281U
ACR1281U
Specification
V1.04
Advanced Card Systems Ltd. Page 1 of 81
ACR1281U
Revision History
Rev
Number
V1.00 20-May-2010 Vincent Zhong Preliminary specification for ACR1281U
Date Author Notes
V1.01 28-May-2010 Vincent Zhong/Nathan
Li/Kit Au
V1.02 8-Oct-2010 Vincent Zhong/Nathan
Li/Kit Au
V1.03 28-Oct-2010 Vincent Zhong/Nathan
Li/Kit Au
V1.04 8-Dec-2010 Vincent Zhong/Jessy Wei 1) Modify PICC Polling control command.
1) Firmware Upgrade Instruction Added
2) Extended APDU Example Added
1) Added Counter Command
1) Modify the command of RC531 register
write/read.
2) Request command Test added.
3) Continuous request command updated.
4) Contactless EMV loop command added.
5) Default LED and Buzzer Behavior Command
added.
2) Contact memory cards operation command is
added.
Advanced Card Systems Ltd. Page 2 of 81
ACR1281U
Index
Introduction..........................................................................................................................................6
features.................................................................................................................................................6
Terms ...................................................................................................................................................7
Quick Overview of the ACR1281U Reader ........................................................................................8
1. ACR1281U (with Contact Card Option) .....................................................................................8
2. ACR1281U (without Contact Card Option)................................................................................8
3. ACR1281U ICC Interface ...........................................................................................................9
4. ACR1281U PICC Interface .........................................................................................................9
5. ACR1281U Firmware Upgrade Procedures ..............................................................................11
System description.............................................................................................................................12
1. The Reader Block Diagram .......................................................................................................12
2. Communication Flow Chart of ACR1281U..............................................................................13
Hardware Description........................................................................................................................13
1. USB Interface ............................................................................................................................13
2. LED Indicator ............................................................................................................................13
3. Buzzer........................................................................................................................................14
4. ICC Interface (Contact Smart Card)..........................................................................................14
5. PICC Interface (Contactless Smart Card)..................................................................................14
Software Description .........................................................................................................................15
1. TAPDUDemoCard Demo App..................................................................................................15
Peripherals Control ............................................................................................................................16
1. Get Firmware Version ...............................................................................................................16
2. LED Control ..............................................................................................................................17
3. Buzzer Control...........................................................................................................................17
4. Default LED and Buzzer Behaviors ..........................................................................................18
5. Automatic PICC Polling............................................................................................................18
6. PICC Polling for specific PICC Types ......................................................................................19
7. Auto PPS (Communication Speed Change) ..............................................................................19
8. Antenna Field ON/OFF .............................................................................................................20
9. Request Command Test.............................................................................................................21
10. Continuous Request Command Sending Test .........................................................................22
11. Read and Update the RC531 Register .....................................................................................23
12. Go into Contactless EMV Terminal Loop...............................................................................24
13. Go into Contact EMV Terminal Loop.....................................................................................24
14. Read and Initial Card Insert Counter.......................................................................................25
15. Initial RC531 Setting For PICC...............................................................................................25
PICC Interface Description................................................................................................................26
1. ATR Generation ........................................................................................................................26
Advanced Card Systems Ltd. Page 3 of 81
PICC Commands for General Purposes ............................................................................................28
1. Get Data.....................................................................................................................................28
ACR1281U
PICC Commands (T=CL Emulation) for MIFare 1K/4K MEMORY Cards ....................................29
2.1 Load Authentication Keys .......................................................................................................29
2.2.1 Authentication for MIFARE 1K/4K.....................................................................................31
2.3 Read Binary Blocks .................................................................................................................34
2.4 Update Binary Blocks..............................................................................................................35
2.5 Value Block Related Commands.............................................................................................36
2.5.1 Value Block Operation .........................................................................................................36
2.5.2 Read Value Block.................................................................................................................37
2.5.3 Restore Value Block.............................................................................................................38
Memory Card Access ........................................................................................................................41
1. Memory Card – 1,2,4,8,16 kbit I2C card...................................................................................41
1.1 Select Card Type .....................................................................................................................41
1.2 Select Page Size.......................................................................................................................41
1.3 Read Memory Card .................................................................................................................41
1.4 Write Memory Card.................................................................................................................42
2. Memory Card – 32,64,128,256,512,1024 kbit I2C card............................................................42
2.1 Select Card Type .....................................................................................................................42
2.2 Select Page Size.......................................................................................................................43
2.3 Read Memory Card .................................................................................................................43
2.4 Write Memory Card.................................................................................................................44
3. Memory Card – ATMEL AT88SC153......................................................................................44
3.1 Select Card Type .....................................................................................................................44
3.2 Read Memory Card .................................................................................................................45
3.3 Write Memory Card.................................................................................................................45
3.4 Verify Password ......................................................................................................................46
3.5 Initialize Authentiction ............................................................................................................47
3.6 Verify Authentication ..............................................................................................................47
4. Memory Card – ATMEL AT88SC1608....................................................................................47
4.1 Select Card Type .....................................................................................................................47
4.2 Read Memory Card .................................................................................................................48
4.3 Write Memory Card.................................................................................................................48
4.4 Verify Password ......................................................................................................................49
4.5 Initialize Authentiction ............................................................................................................49
4.6 Verify Authentication ..............................................................................................................50
5. Memory Card – SLE4418/SLE4428/SLE5518/SLE5528.........................................................50
5.1 Select Card Type .....................................................................................................................50
5.2 Read Memory Card .................................................................................................................51
5.3 Presentation Error Counter Memory Card (only SLE4428 and SLE5528).............................51
5.4 Read Protection Bit..................................................................................................................51
5.5 Write Memory Card.................................................................................................................52
5.6 Write Protection Memory Card ...............................................................................................53
5.7 Present Code Memory Card (only SLE 4428 and SLE5528)..................................................53
6. Memory Card – SLE4432/SLE4442/SLE5532/SLE5542.........................................................54
6.1 Select Card Type .....................................................................................................................54
6.2 Read Memory Card .................................................................................................................54
6.3 Read Present Error Counter Memory Card (only SLE4442 and SLE5542)............................55
6.4 Read Protection Bits ................................................................................................................55
6.5 Write Memory Card.................................................................................................................56
6.6 Write Protection Memory Card ...............................................................................................56
6.7 Present Code Memory Card (only SLE 4442 and SLE5542)..................................................57
6.8 Change Code Memory Card (only SLE 4442 and SLE5542) .................................................57
Advanced Card Systems Ltd. Page 4 of 81
ACR1281U
7. Memory Card – SLE4406/SLE4436/SLE5536/SLE6636.........................................................58
7.1 Select Card Type .....................................................................................................................58
7.2 Read Memory Card .................................................................................................................58
7.3 Write One Byte Memory Card ................................................................................................59
7.4 Present Code Memory Card ....................................................................................................60
7.5 Authenticate Memory Card (SLE4436, SLE5536 and SLE6636 only) ..................................60
8. Memory Card – SLE4404..........................................................................................................62
8.1 Select Card Type .....................................................................................................................62
8.2 Read Memory Card .................................................................................................................62
8.3 Write Memory Card.................................................................................................................62
8.4 Erase Scratch Pad Memory Card.............................................................................................63
8.5 Verify User Code.....................................................................................................................63
8.6 Verify Memory Code...............................................................................................................64
9. Memory Card – AT88SC101 / AT88SC102 / AT88SC1003....................................................65
9.1 Select Card Type .....................................................................................................................65
9.2 Read Memory Card .................................................................................................................65
9.3 Write Memory Card.................................................................................................................66
9.4 ERASE_NON_APPLICATION_ZONE .................................................................................66
9.5 Erase Application Zone with erase..........................................................................................67
9.6 Erase Application Zone with Write and Erase ........................................................................68
9.7 Verify Security Code ...............................................................................................................69
9.8 Blown Fuse ..............................................................................................................................69
Basic Program Flow for Contactless Applications............................................................................71
1. How to access PCSC Compliant Tags (ISO14443-4)? .............................................................72
2. How to access DESFIRE Tags (ISO14443-4)?.........................................................................75
3. Extended APDU ........................................................................................................................77
Appendix A: Supported Card Types.................................................................................................78
Technical Specification .....................................................................................................................79
Advanced Card Systems Ltd. Page 5 of 81
ACR1281U
INTRODUCTION
The ACR1281U is a dual-interface reader (IFD and PCD) that supports both contact and
contactless (PICC) smart cards.
FEATURES
• One standard ICC landing type card acceptor.
• ISO 7816 Parts 1-4 Compliant for Contact Smart Card Interface.
• The ACR1281U supports contact memory cards (refer to appendix A).
• ISO 14443 Parts 1-4 Compliant for Contactless Smart Card Interface.
• A built-in antenna for PICC contactless access applications.
• The ACR1281U supports the following Tag Types:
o MIFARE Classic. E.g. MIFARE 1K, 4K, MINI and Ultralight.
o ISO14443-4 Type A and B.
• T=CL emulation for MIFare 1K/4K PICCs. Multi-Blocks Transfer Mode is provided for
efficient PICC access.
• High Speed (424 kbps) Communication for PICCs. #Maximum 848 kbps.
• Intelligent Support for Hybrid Cards and Combi Cards.
• Extended APDU supported (max: 64k bytes)
• Energy saving modes for turning off the antenna field whenever the PICC is inactive, or no
PICC is found. It prevents the PICC from exposing to the field all the time.
• User-Controllable Peripherals. E.g. LED, Buzzer.
• Microsoft CCID Compliant for both ICC and PICC interface.
• PCSC Compliant for Contact and Contactless Interfaces.
• USB V2.0 Interface. (12M bps)
• Device Firmware Upgradeable through the USB Interface.
Advanced Card Systems Ltd. Page 6 of 81
ACR1281U
TERMS
• IFD: Interface Device. A terminal, communication device, or machine to which the
integrated circuit(s) card is electrically connected during operation.
• PCD: Proximity Coupling Device. ISO 14443 Contactless Reader.
• ICC: Integrated Circuit(s) Card. Refer to a plastic card containing an integrated circuit,
which is compatible with ISO 7816.
• PICC: Proximity Integrated Circuit(s) Card. Contactless Cards operating without
mechanical contact to the IFD, using magnetic coupling.
• Combi-Card: A smart card that supports both ICC and PICC Interfaces. But only one
interface can be operating at any one time.
• Hybrid-Card: A smart card that consists of both ICC and PICC cards. Both ICC and PICC
cards can be operating at the same time.
• USB: Universal Serial Bus, a common device interface used in PC environment.
• CCID: The specifications for USB devices that interface with ICC or act as interfaces with
ICC/PICC.
• PCSC: Personal Computer Smart Card, a specification that can facilitate the interoperability
necessary to allow ICC/PICC technology to be effectively utilized in the PC environment.
• ISO 7816: A standard for contact smart cards (ICC).
• T=0: Character-oriented asynchronous half duplex transmission protocol for ICCs (ISO
7816).
• T=1: Block-oriented asynchronous half duplex transmission protocol for ICCs (ISO 7816).
• ISO 14443: A standard for contactless smart cards (PICC)
• T=CL: Block-oriented asynchronous half duplex transmission protocol for PICCs (ISO
14443).
• APDU: Application Protocol Data Unit.
• ATR: Answer-to-Reset. The transmission sent by an ICC to the reader (IFD) in response to
a RESET condition.
• ATS: Answer-to-Select. The transmission sent by a PICC Type A to the reader (PCD) in
response to a SELECT condition.
• ATQB: Answer-to-Request. The transmission sent by a PICC Type B to the reader (PCD)
in response to a REQUEST condition.
• Card Insertion Event: Either an ICC or a PICC is just appeared to the reader.
• Card Removal Event: Either an ICC or a PICC is removed from the reader.
Advanced Card Systems Ltd. Page 7 of 81
ACR1281U
QUICK OVERVIEW OF THE ACR1281U READER
1. ACR1281U (with Contact Card Option)
2. ACR1281U (without Contact Card Option)
Advanced Card Systems Ltd. Page 8 of 81
ACR1281U
3. ACR1281U ICC Interface
4. ACR1281U PICC Interface
Advanced Card Systems Ltd. Page 9 of 81
ACR1281U
Recommended ICAO E-Passport Placement
ICAO
E-Passport
• In case the E-Passport is not accessible, try to place the E-Passport above the reader by
5~10mm.
5~10mm
Advanced Card Systems Ltd. Page 10 of 81
ACR1281U
5. ACR1281U Firmware Upgrade Procedures
5.1 Upgrade by “FW” Key
Step 1: Unplug the Reader
Step 2: Open Casing
Step 3: Press the “FW, and Hold it
Step 4: Plug the Reader into PC’s USB Port
Step 5: Release the “FW” key
Step 6: Run Firmware Upgrade Application for Firmware Upgrade
5.2 Upgrade by APDU command
Step 1: Plug the Reader into PC’s USB Port
Step 2: Run Firmware Upgrade Application for Firmware Upgrade
Step 3: Select the Reader Name and Connect, then Press “Load Patch” For firmware upgrade.
Advanced Card Systems Ltd. Page 11 of 81
ACR1281U
SYSTEM DESCRIPTION
1. The Reader Block Diagram
LED & Buzzer
Built-In
Antenna
PICC
Contactless Card
RC531
NFC Interface
Contactless Interface
Carrier = 13.56MHz
Chip
S
P
I
ISO7816 Interface
Host Controller
Contact Card
AT90SCR100H
ICC
USB CCID
USB
Firmware
Upgrade
PC
Operation
System
Advanced Card Systems Ltd. Page 12 of 81
ACR1281U
2. Communication Flow Chart of ACR1281U
Host
ACR1281U
ACR1281U PCSC
ICC Interface
ISO 7816 Part1-4
ICC Interface
ACR1281U PCSC
PICC Interface
USB
Interface
(CCID)
PCSC Layer
T=CL &T=1
Emulation
ISO 14443 Part1-4
PICC Interface
Physical
Interface
ICC
And
PICC
ICC
(Landing Type
Acceptor)
PICC
(Built-In Antenna )
Advanced Card Systems Ltd. Page 13 of 81
ACR1281U
HARDWARE DESCRIPTION
1. USB Interface
The ACR1281U is connected to a computer through USB as specified in the USB Specification 2.0.
ACR1281U is working in Full speed mode, i.e. 12 Mbps.
Pin Signal Function
1 V
BUS
2 D3 D+
4 GND
+5V power supply for the reader (Max 200mA)
Differential signal transmits data between ACR1281U and PC.
Differential signal transmits data between ACR1281U and PC.
Reference voltage level for power supply
2. LED Indicator
The LEDs are used for showing the state of the contact and contactless interfaces. The Red LED is
used for showing PICC status and Green LED for ICC.
Reader States Red LED
1. No PICC Found or PICC present but
not activated.
PICC Indicator
A single pulse per ~ 5
seconds
Green LED
ICC Indicator
2. PICC is present and activated ON
3. PICC is operating Blinking
4. ICC is present and activated ON
5. ICC is absent or not activated OFF
6. ICC is operating Blinking
Advanced Card Systems Ltd. Page 15 of 81
ACR1281U
3. Buzzer
A monotone buzzer is used to show the “Card Insertion” and “Card Removal” events.
Events Buzzer
1. The reader powered up and initialization success. Beep
2. Card Insertion Event (ICC or PICC) Beep
3. Card Removal Event (ICC or PICC) Beep
4. ICC Interface (Contact Smart Card)
A landing type Smart Card Acceptor is used for providing reliable operations. The minimum life
cycle of the acceptor is about 300K times of card insertion and removal.
5. PICC Interface (Contactless Smart Card)
A built-in antenna is used for communication between the PCD and PICC.
Advanced Card Systems Ltd. Page 16 of 81
ACR1281U
SOFTWARE DESCRIPTION
1. TAPDUDemoCard Demo App
This program is used to demonstrate the PCSC functions of the ACR1281U readers.
Operating Procedures:
1) Place a PICC on the top of the ACR1281U reader.
2) Press “1. Select Reader” and select the “ACS ACR1281Dual Reader PICC 0”.
3) Select “T1” in the connection-protocol. Press “2. Connect” to establish a connection
between the card and reader.
4) Enter the APDU in text box “Message to the card”
5) Press “3. Transmit” to send the APDU to the card.
6) Press “4. Disconnect” to terminate the connection between the card and reader.
Advanced Card Systems Ltd. Page 17 of 81
ACR1281U
1. Get Firmware Version
Command = {E0 00 00 18 00}
Response = {E1 00 00 00 “Frame Length” {Firmware Version}}
In which, Firmware Version = 13 bytes;
e.g. Response = E1 00 00 00 0D 41 43 52 31 32 38 31 55 5F 56 31 30 33
Firmware Version (HEX) = 41 43 52 31 32 38 31 55 5F 56 31 30 33
Firmware Version (ASCII) = “ACR1281U_V103
2. Enter Firmware Upgrade Mode
Command = {FF 00 00 E0 00}
Response = {FF 00 00 E1 02 90 00}
Hints:
After the response display, the reader will enter the firmware upgrade mode that the reader can be
upgraded firmware.
3. LED Control
Setting the LED State:
Command = {E0 00 00 29 01 “CMD”}.
Response = {E1 00 00 00 01 “Status”}
Reading the existing LED State:
Command = {E0 00 00 29 00}.
Response = {E1 00 00 00 01 “Status”}
CMD Bit Map
CMD Description Description
Bit 0 RED LED 1 = ON; 0 = OFF
Bit 1 GREEN LED 1 = ON; 0 = OFF
Bit 2 RFU RFU
Bit 3 RFU RFU
Bit 4 RFU RFU
Bit 5 RFU RFU
Bit 6 RFU RFU
Bit 7 RFU RFU
The “Status” bit map is the same as “CMD”.
Advanced Card Systems Ltd. Page 20 of 81
ACR1281U
4. Buzzer Control
Setting the Buzzer State:
Command = {E0 00 00 28 01 “Duration”} Unit = 10mS
00 = Turn off
01 ~ FE = Duration
FF = Turn o
Response = {E1 00 00 00 01 “Status”}
Reading the existing Buzzer State:
Command = {E0 00 00 28 00}
Response = {E1 00 00 00 01 “Status”}
5. Default LED and Buzzer Behaviors
CMD MODE Description
Bit 0 ICC Activation Status
LED
Bit 1 PICC Polling Status LED To show the PICC Polling Status.
Bit 2 PICC Activation Status LED To show the activation status of the
Bit 3 Card Insertion and Removal
Events Buzzer
Bit 4 RFU RFU
Bit 5 RFU RFU
Bit 6 RFU RFU
Bit 7 Card Operation Blinking
LED
Setting the LED and Buzzer behaviors:
Command = { E0 00 00 21 01 “CMD”}. Default value of CMD = 8F;
Response = {E1 00 00 00 01 “Status”}
Reading the existing behaviors of the LED and Buzzer:
Command = { E0 00 00 21 00}
Response = {E1 00 00 00 01 “Status”}
Hints:
If you want to enjoy the silent environment, just set the CMD value to “87”.
To show the activation status of the
ICC interface.
1 = Enable; 0 =Disable
1 = Enable; 0 =Disable
PICC interface
1 = Enable; 0 =Disable
To make a beep whenever a card
insertion or removal event is
detected. (For both ICC and PICC)
1 = Enable; 0 =Disabled
To blink the LED whenever the card
(PICC or ICC) is being accessed.
Advanced Card Systems Ltd. Page 21 of 81
ACR1281U
6. Automatic PICC Polling
Whenever the reader is connected to the PC, the PICC polling function will start the PICC scanning
to determine if a PICC is placed on / removed from the built-antenna.
We can send a command to disable the PICC polling function. The command is sent through the
PCSC Escape command interface. To meet the energy saving requirement, special modes are
provided for turning off the antenna field whenever the PICC is inactive, or no PICC is found. The
reader will consume less current in power saving mode.
Register 0x23: Automatic PICC Polling (Default value = 0x8F)
CMD Description Description
Bit 0 Auto PICC Polling 1 = Enable; 0 =Disable
Bit 1 Turn off Antenna Field if no
PICC found
Bit 2 Turn off Antenna Field if the
PICC is inactive.
Bit 3 Activate the PICC when
detected.
Bit 5 .. 4 PICC Poll Interval for PICC <Bit 5 – Bit 4>
Bit 6 RFU Bit 7 Enforce ISO14443A Part 4 1= Enable; 0= Disable.
• Enable Auto PICC Polling Function = { E0 00 00 23 01 8F}
• Disable Auto PICC Polling Function = { E0 00 00 23 01 8E}
• Read the existing status = { E0 00 00 23 00}; Response = {E1 00 00 00 01 “Status”}
Hints:
1. It is recommended to enable the option “Turn Off Antenna Field if the PICC is inactive”, so that
the “Inactive PICC” will not be exposed to the field all the time so as to prevent the PICC from
“warming up”.
2. The longer the PICC Poll Interval, the more efficient of energy saving. However, the response
time of PICC Polling will become longer.
about 60mA, while the Idle Current Consumption in Non-Power Saving mode is about 130mA.
#Idle Current Consumption = PICC is not activated.
3. The reader will activate the ISO14443A-4 mode of the “ISO14443A-4 compliant PICC”
automatically. Type B PICC will not be affected by this option.
4. The JCOP30 card comes with two modes: ISO14443A-3 (MIFARE 1K) and ISO14443A-4
modes. The application has to decide which mode should be selected once the PICC is activated.
1 = Enable; 0 =Disable
1 = Enable; 0 =Disable
1 = Enable; 0 =Disable
<0 – 0> = 250 msec
<0 – 1> = 500 msec
<1 – 0> = 1000 msec
<1 – 1> = 2500 msec
The Idle Current Consumption in Power Saving Mode is
Advanced Card Systems Ltd. Page 22 of 81
ACR1281U
7. PICC Polling for specific PICC Types
The PICC polling function can be configured to detect “ISO14443 Type A PICCs” or “ISO14443
Type B PICCs” or both.
• ISO 14443 Type A PICCs Only = { E0 00 00 20 01 01}
• ISO 14443 Type B PICCs Only = { E0 00 00 20 01 02 }
• ISO 14443 Type A and B PICCs = { E0 00 00 20 01 03} #default setting
• Read the existing status = { E0 00 00 20 00}; Response = {E1 00 00 00 01 “Status”}
Hints:
1. It is recommended to specific the PICC types in the application so as to speed up the card
detection process.
8. Auto PPS (Communication Speed Change)
Whenever a PICC is recognized, the reader will try to change the communication speed between
the PCD and PICC defined by the Maximum Connection Speed. If the card does not support the
proposed connection speed, the reader will try to connect the card with a slower speed setting.
• Set Connection Speed = {E0 00 00 24 02 “Max Tx Speed” “Max Rx Speed”}
<Max Tx Speed> & <Current Tx Speed> or <Max Rx Speed> & <Current Rx Speed>
106k bps = 00
212k bps = 01
424k bps = 02 #default setting
848k bps = 03
No Auto PPS = FF
• Read the existing status = {E0 00 00 24 00};
Response = {E1 00 00 00 04 “Max Tx Speed” “Current Tx Speed” “Max Rx Speed”
“Current Rx Speed”}
Hints:
1. Normally, the application should know the maximum connection speed of the PICCs being used.
#The environment also affects the maximum achievable speed. The reader just uses the proposed
communication speed to talk with the PICC. The PICC will become inaccessible if the PICC or
environment does not meet the requirement of the proposed communication speed.
2. The reader supports different speed between sending and receiving.
9. Antenna Field ON/OFF
This command is used for turning on/off the antenna field.
• Enable the Antenna Field = {E0 00 00 25 01 01}
• Disable the Antenna Field = {E0 00 00 25 01 00}
• Read the existing status = {E0 00 00 25 00}; Response = {E1 00 00 00 01 “Status”}
Hints:
1. Make sure the Auto PICC Polling is disabled first before turning off the antenna field.
Advanced Card Systems Ltd. Page 23 of 81
ACR1281U
10. Request Command Test
This command is used for sending REQA/REQB by the reader to test antenna field and the
response.
• Command = {E0 00 00 26 02 “Command” “Speed”}
• Response = {E1 00 00 00 “Length” “Data”}
Command coding:
REQA = 01
REQB = 02
WUPA = 03
WUPB = 04
Speed coding:
106k bps = 00
212k bps = 01
424k bps = 02
Length:
No response: 00
ATQA: 02
ATQB: 0C
Others: RFU
Data:
Response Data (ATQA/ATQB/Others)
Hints:
1. Make sure the Auto PICC Polling is disabled first before sending this command.
11. Continuous Request Command Sending Test
This command is used for sending WUPA/WUPB by the reader continuously to test antenna field.
• Command = {E0 00 00 27 02 “Command” “Speed”}
• Disable Command Sending = { E0 00 00 27 00}
• Response = {E1 00 00 00 01 “Status”}
Command coding:
WUPA = 01
WUPB = 02
Speed coding:
106k bps = 00
212k bps = 01
424k bps = 02
Status:
WUPA Sending = 01
WUPB Sending = 02
Hints:
1. Make sure the Auto PICC Polling is disabled first before sending this command.
2. The reader will send the command continuously as long as the command starts. It can be stopped
by “E0 00 00 27 00”.
Advanced Card Systems Ltd. Page 24 of 81
ACR1281U
12. Read and Update the RC531 Register
• Read the Register = {E0 00 00 19 “Register No”}
• Response = {E1 00 00 00 01 “Current Value”}
• Update the Register = {E0 00 00 1A “Register No” “New Value”}
• Response = {E1 00 00 00 00}
13. Go into Contactless EMV Terminal Loop
• Command = {0E 00 01 00 00}
• Response = {
90“Current Value”}
14. Go into Contact EMV Terminal Loop
• Command = {0E 01 01 00 00}
• Response = {E1 00 00 00 01 “Current Value”}
15. Read and Initial Card Insert Counter
• Read the Register = {E0 00 00 09 00}
• Initialize the counter = {E0 00 00 09 04 “ICC Counter (LSB)” “ICC Counter (MSB)”
“PICC Counter (LSB)” “PICC Counter (MSB)”}
Response = {E1 00 00 00 04 “ICC Counter (LSB)” “ICC Counter (MSB)” “PICC Counter
(LSB)” “PICC Counter (MSB)”}
• Update the counter data to static storage unit = {E0 00 00 0A 00}
16. Initial RC531 Setting For PICC
• Read the Register = {E0 00 00 2F 00}
•
• Update the Registers:
E0 00 00 2F 13 BModeIndex RxAThres106 RxAThres212 RxAThres424 RxAThres848
RxBThres106 RxBThres212 RxBThres424 RxBThres848 RxACtl106 RxACtl212
RxACtl424 RxACtl848 RxBCtl106 RxBCtl212 RxBCtl424 RxBCtl848 CWAConductonce
CWBConductonce
• Response:
E1 00 00 00 13 BModeIndex RxAThres106 RxAThres212 RxAThres424 RxAThres848
RxBThres106 RxBThres212 RxBThres424 RxBThres848 RxACtl106 RxACtl212
RxACtl424 RxACtl848 RxBCtl106 RxBCtl212 RxBCtl424 RxBCtl848 CWAConductonce
CWBConductonce
Default value:
1. E0 00 00 2F 13 0B 8F AF 85 80 8F 8F 8F 8F 72 53 32 12 76 52 32 12 3f 3f
Advanced Card Systems Ltd. Page 25 of 81
ACR1281U
PICC INTERFACE DESCRIPTION
1. ATR Generation
If the reader detects a PICC, an ATR will be sent to the PCSC driver for identifying the PICC.
1.1 ATR format for ISO 14443 Part 3 PICCs.
Byte
0 3B Initial Header
1 8N T0 Higher nibble 8 means: no TA1, TB1, TC1
2 80 TD1 Higher nibble 8 means: no TA2, TB2, TC2
3 01 TD2 Higher nibble 0 means no TA3, TB3, TC3,
4
To
3+N
4+N UU TCK Exclusive-oring of all the bytes T0 to Tk
e.g. ATR for MIFare 1K = {3B 8F 80 01 80 4F 0C A0 00 00 03 06 03 00 01 00 00 00 00 6A}
Length (YY) = 0x0C
RID = {A0 00 00 03 06} (PC/SC Workgroup)
Standard (SS) = 03 (ISO14443A, Part 3)
Card Name (C0 .. C1) = {00 01} (MIFare 1K)
Card Name (C0 .. C1)
00 01: Mifare 1K
00 02: Mifare 4K
00 03: Mifare Ultralight
00 26: Mifare Mini
FF 28: JCOP 30
FF [SAK]: undefined tags
Value
Designation Description
(Hex)
only TD1 is following.
Lower nibble N is the number of historical
bytes (HistByte 0 to HistByte N-1)
only TD2 is following.
Lower nibble 0 means T = 0
TD3 following.
Lower nibble 1 means T = 1
80 T1 Category indicator byte, 80 means A status
indicator may be present in an optional
COMPACT-TLV data object
4F Application identifier Presence Indicator
Tk
0C Length
RID Registered Application Provider Identifier
(RID) # A0 00 00 03 06
SS Byte for standard
C0 .. C1
Bytes for card name
00 00 00 00 RFU RFU # 00 00 00 00
Advanced Card Systems Ltd. Page 26 of 81
ACR1281U
1.2 ATR format for ISO 14443 Part 4 PICCs.
Byte
Value
(Hex)
Designation Description
0 3B Initial Header
1 8N T0 Higher nibble 8 means: no TA1, TB1, TC1
only TD1 is following.
Lower nibble N is the number of historical
bytes (HistByte 0 to HistByte N-1)
2 80 TD1 Higher nibble 8 means: no TA2, TB2, TC2
only TD2 is following.
Lower nibble 0 means T = 0
3 01 TD2 Higher nibble 0 means no TA3, TB3, TC3,
TD3 following.
Lower nibble 1 means T = 1
to
3 + N
XX T1 4
XX
XX
XX
Tk
Historical Bytes:
ISO14443A:
The historical bytes from ATS response. Refer
to the ISO14443-4 specification.
ISO14443B:
Byte1-4 Byte5-7 Byte8
Application
Data from
ATQB
Protocol Info
Byte from
ATQB
Higher
nibble=MBLI
from
ATTRIB
command
Lower nibble
(RFU)=0
4+N UU TCK Exclusive-oring of all the bytes T0 to Tk
E.g 1. ATR for DESFire = { 3B 81 80 01 80 80 } // 6 bytes of ATR
Hint: Use the APDU “FF CA 01 00 00” to distinguish the ISO14443A-4 and ISO14443B-4 PICCs,
and retrieve the full ATS if available. ISO14443A-3 or ISO14443B-3/4 PICCs do have ATS
returned.
APDU Command = FF CA 01 00 00
APDU Response = 06 75 77 81 02 80 90 00
ATS = {06 75 77 81 02 80}
E.g 2. ATR for ez-link = { 3B 88 80 01 1C 2D 94 11 F7 71 85 00 BE}
Application Data of ATQB = 1C 2D 94 11
Protocol Information of ATQB = F7 71 85
MBLI of ATTRIB = 00
Advanced Card Systems Ltd. Page 27 of 81
Loading...