Skip to main content
M
Milad_b80
Visitor II
August 17, 2025
Solved

what is key table used in ST25RU3993-HPEV GUI for authentication (ISO/IEC 29167-10)?

  • August 17, 2025
  • 1 reply
  • 317 views

Hi, I bought ST25RU3993-HPEV and In the tag authentication menu I want to use 29167-10 as CSI and there is a field with 'keyID' parameter. I want to know what is the key which this ID is assigned to. you know, the key in the tag and the the reader must be same for encryption and decryption. I want to know the 128-bit key used for this cryptographic suite indicator.

And one more thing, according to the ISO/IEC 29167-10 standard, there are MAM and IAM functions, but in the GUI I can only select between TAM1 & 2. how can I use these features with this reader?

Thanks.

    This topic has been closed for replies.
    Best answer by Nick K

    Hi,

    the used TAG key is only referenced via its keyID. You have to know what the key is on TAG side. If you know it, it can also be change with the Gen2 KeyUpdate command. The reader FW itself does not hold any key. It is not doing any crypto operation itself. This is not part of the Gen2 specification.

    The host using the reader is responsible to do the cryptographic operation and verify the replied data and results from the TAG. The host has to verify the data using the selected algorithm (AES, Grain, ..) by using the expected key. 

    For the GUI, with CS0 (ISO29167-10 AES128) only TAM1 & TAM2 is showcased, and for CS3 (ISO29167-13 Grain) TA1 and TAR. 

     

    BR, Nick

    1 reply

    U
    Ulysses HERNIOSUS
    Technical Moderator
    August 22, 2025

    Hi,

    are you still basing work on this part: https://community.st.com/t5/st25-nfc-rfid-tags-and-readers/clarify-st25ru3993-availability/td-p/629278

    Regards, Ulysses

    M
    Milad_b80Author
    Visitor II
    August 24, 2025

    Yes, I know it has reached end of life in 2024. But still works for me.

    Thanks.

    N
    Nick KAnswer
    ST Employee
    September 15, 2025

    Hi,

    the used TAG key is only referenced via its keyID. You have to know what the key is on TAG side. If you know it, it can also be change with the Gen2 KeyUpdate command. The reader FW itself does not hold any key. It is not doing any crypto operation itself. This is not part of the Gen2 specification.

    The host using the reader is responsible to do the cryptographic operation and verify the replied data and results from the TAG. The host has to verify the data using the selected algorithm (AES, Grain, ..) by using the expected key. 

    For the GUI, with CS0 (ISO29167-10 AES128) only TAM1 & TAM2 is showcased, and for CS3 (ISO29167-13 Grain) TA1 and TAR. 

     

    BR, Nick

    Terms & ConditionsAccessibility statement