Part Number Hot Search : 
A5800430 CY7C14 BC859 4530C A7805 HBD3C4G PESD5V 12DCCG5B
Product Description
Full Text Search
 

To Download NTAG213 Datasheet File
  If you can't view the Datasheet, Please click here to try to view without PDF Reader .  
 
 

  Datasheet File OCR Text:
  1. general description NTAG213, ntag215 and ntag216 have been developed by nxp semiconductors as standard nfc tag ics to be used in mass market applications such as retail, gaming and consumer electronics, in combination with nfc devices or nfc compliant proximity coupling devices. NTAG213, ntag215 and ntag216 (from now on, generally called ntag21x) are designed to fully comply to nfc forum type 2 tag ( ref. 2 ) and iso/iec14443 type a ( ref. 1 ) specifications. target applications include out-of-home and print media smart advertisement, solomo applications, product authentication, nf c shelf labels, mobile companion tags. target use cases include out-of-home smar t advertisement, product authentication, mobile companion tags, bluetooth or wi-fi pairing, electronic shelf labels and business cards. ntag21x memory can also be segment ed to implement multiple applications at the same time. thanks to the high input capacitance, nt ag21x tag ics are particularly tailored for applications requiring small footprints, wi thout compromise on performance. small nfc tags can be more easily embedded into e. g. product labels or electronic devices. the mechanical and electrical specificatio ns of ntag21x are tailored to meet the requirements of inlay and tag manufacturers. 1.1 contactless energy and data transfer communication to ntag21x can be establis hed only when the ic is connected to an antenna. form and specification of the coil is out of scope of this document. when ntag21x is positioned in the rf field, the high speed rf communication interface allows the transmission of the data with a baud rate of 106 kbit/s. NTAG213/215/216 nfc forum type 2 tag compliant ic with 144/504/888 bytes user memory rev. 3.0 ? 24 july 2013 265330 product data sheet company public
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 2 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 1.2 simple deployment and user convenience ntag21x offers specific features designed to improve integration and user convenience: ? the fast read capability allows to scan the complete ndef me ssage with only one fast_read command, thus reducing the overhead in high throughput production environments ? the improved rf perf ormance allows for mo re flexibility in the choice of shape, dimension and materials ? the option for 75 ? m ic thickness enables the manufacturing of ultrathin tags, for a more convenient integration in e.g. magazines or gaming cards. 1.3 security ? manufacturer programmed 7-byte uid for each device ? pre-programmed capability container with one time programmable bits ? field programmable read-only locking function ? ecc based originality signature ? 32-bit password protection to prevent unauthorized memory operations 1.4 nfc forum tag 2 type compliance ntag21x ic provides full compliance to the nfc forum tag 2 type technical specification (see ref. 2 ) and enables ndef data structure configurations (see ref. 3 ). 1.5 anticollision an intelligent anticollision func tion allows to operate more than one tag in the field simultaneously. the anticollision algorithm select s each tag individually and ensures that the execution of a transaction with a sele cted tag is performed correctly without interference from another tag in the field. fig 1. contactless system 001aao403 energy data nfc enabled device nfc tag ntag ic
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 3 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 2. features and benefits ? contactless transmission of data and supply energy ? operating frequency of 13.56 mhz ? data transfer of 106 kbit/s ? data integrity of 16-bit crc, parity, bit coding, bit counting ? operating distance up to 100 mm (depending on various parameters as e.g. field strength and antenna geometry) ? 7-byte serial number (cascade level 2 according to iso/iec 14443-3) ? uid ascii mirror for automatic serialization of ndef messages ? automatic nfc counter triggered at read command ? nfc counter ascii mirror for automatic adding the nfc counter value to the ndef message ? ecc based originality signature ? fast read command ? true anticollision ? 50 pf input capacitance 2.1 eeprom ? 180, 540 or 924 bytes organized in 45, 135 or 231 pages with 4 bytes per page ? 144, 504 or 888 bytes freely available user read/write area (36, 126 or 222 pages) ? 4 bytes initialized capability containe r with one time programmable access bits ? field programmable read-only locking function per page for the first 16 pages ? field programmable read-only locking function above the first 16 pages per double page for NTAG213 or per 16 pages for ntag215 and ntag216 ? configurable password protection with op tional limit of unsuccessful attempts ? anti-tearing support for capability container (cc) and lock bits ? ecc supported originality check ? data retention time of 10 years ? write enduranc e 100.000 cycles 3. applications ? smart advertisement ? goods and device authentication ? call request ? sms ? call to action ? voucher and coupons ? bluetooth or wi-fi pairing ? connection handover ? product authentication ? mobile companion tags ? electronic shelf labels ? business cards
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 4 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 4. quick reference data [1] lcr meter, t amb = 22 ? c, f i = 13.56 mhz, 2 v rms. 5. ordering information table 1. quick reference data symbol parameter conditions min typ max unit c i input capacitance [1] -50.0-pf f i input frequency - 13.56 - mhz eeprom characteristics t ret retention time t amb = 22 ? c10--years n endu(w) write endurance t amb = 22 ? c 100000 - - cycles table 2. ordering information type number package name description version nt2h1311g0duf ffc bump 8 inch wafer, 75 ? m thickness, on film frame carrier, electronic fail die marking according to secs-ii format), au bumps, 144 bytes user memory, 50 pf input capacitance - nt2h1311g0dud ffc bump 8 inch wafer, 120 ? m thickness, on film frame carrier, electronic fail die marking according to secs-ii format), au bumps, 144 bytes user memory, 50 pf input capacitance - nt2h1511g0duf ffc bump 8 inch wafer, 75 ? m thickness, on film frame carrier, electronic fail die marking according to secs-ii format), au bumps, 504 bytes user memory, 50 pf input capacitance - nt2h1511g0dud ffc bump 8 inch wafer, 120 ? m thickness, on film frame carrier, electronic fail die marking according to secs-ii format), au bumps, 504 bytes user memory, 50 pf input capacitance - nt2h1611g0duf ffc bump 8 inch wafer, 75 ? m thickness, on film frame carrier, electronic fail die marking according to secs-ii format), au bumps, 888 bytes user memory, 50 pf input capacitance - nt2h1611g0dud ffc bump 8 inch wafer, 120 ? m thickness, on film frame carrier, electronic fail die marking according to secs-ii format), au bumps, 888 bytes user memory, 50 pf input capacitance -
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 5 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 6. block diagram fig 2. block diagram of NTAG213/215/216 antenna rf-interface digital control unit eeprom aaa-006979 anticollision command interpreter eeprom interface
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 6 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 7. pinning information 7.1 pinning the pinning of the NTAG213/215/216 wafer delivery is shown in section ?bare die outline? (see section 13.2 ). 8. functional description 8.1 block description ntag21x ics consist of a 180 (NTAG213 ), 540 bytes (ntag215) or 924 bytes (ntag216) eeprom, rf interfac e and digital control unit (dcu). energy and data are transferred via an antenna consisting of a co il with a few turns which is directly connected to ntag21x. no further external components are necessary. refer to ref. 4 for details on antenna design. ? rf interface: ? modulator/demodulator ? rectifier ? clock regenerator ? power-on reset (por) ? voltage regulator ? anticollision: multiple cards may be selected a nd managed in sequence ? command interpreter: processes memory access commands supported by the ntag21x ? eeprom interface ? NTAG213 eeprom: 180 bytes, organized in 45 pages of 4 byte per page. ? 26 bytes reserved for manufacturer and configuration data ? 34 bits used for the read-only locking mechanism ? 4 bytes available as capability container ? 144 bytes user programmable read/write memory ? ntag215 eeprom: 540 bytes, organized in 135 pages of 4 byte per page. ? 26 bytes reserved for manufacturer and configuration data ? 28 bits used for the read-only locking mechanism ? 4 bytes available as capability container ? 504 bytes user programmable read/write memory ? ntag216 eeprom: 924 bytes, organized in 231 pages of 4 byte per page. ? 26 bytes reserved for manufacturer and configuration data table 3. pin allocation table pin symbol la la antenna connection la lb lb antenna connection lb
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 7 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory ? 37 bits used for the read-only locking mechanism ? 4 bytes available as capability container ? 888 bytes user programmable read/write memory 8.2 rf interface the rf-interface is based on the iso/iec 14443 type a standard. during operation, the nfc device generates an rf field. the rf field must always be present (with short pauses for dat communicati on) as it is used for both communication and as power supply for the tag. for both directions of data communication, there is one start bit at the beginning of each frame. each byte is transmitted with an odd pari ty bit at the end. the lsb of the byte with the lowest address of the selected block is transmitted first. the maximum length of a nfc device to tag frame is 163 bits (16 data bytes + 2 crc bytes = 169 + 29 + 1 start bit). the maximum length of a fixed size tag to nfc device frame is 307 bits (32 data bytes + 2 crc bytes = 32 ? 9 + 2 ? 9 + 1 start bit). the fast_read command has a variable frame length depending on the start and end address parameters. the maximum frame length supported by the nfc device needs to be taken into account when issuing this command. for a multi-byte parameter, the least signif icant byte is always transmitted first. as an example, when reading from the memory using the read command, byte 0 from the addressed block is transmitted first, followed by bytes 1 to byte 3 out of this block. the same sequence continues for the next block and all subsequent blocks. 8.3 data integrity following mechanisms are implemented in the contactless communication link between nfc device and ntag to ensure very reliable data transmission: ? 16 bits crc per block ? parity bits for each byte ? bit count checking ? bit coding to distinguish between ?1?, ?0? and ?no information? ? channel monitoring (protocol sequence and bit stream analysis)
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 8 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.4 communication principle the commands are initiated by the nfc device and controlled by the digital control unit of the ntag21x. the command response is de pending on the state of the ic and for memory operations also on the access conditions valid for the corresponding page. remark: in all states, the command interpreter returns to the idle state on receipt of an unexpected command. if the ic was previously in the halt state, it returns to that state. fig 3. state diagram pwd_auth select cascade level 2 select cascade level 1 wupa reqa wupa ready 1 ready 2 active authenticated idle halt por anticollision read from page 0 read from page 0 hlta hlta memory operations identification and selection procedure aaa-008072 read (16 byte) fast_read write, compatibility_write (4 byte) get_version read_sig read_cnt anticollision
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 9 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.4.1 idle state after a power-on reset (por), ntag21x switches to the idle state. it only exits this state when a reqa or a wupa command is received from the nfc device. any other data received while in this state is interpreted as an error and ntag21x remains in the idle state. after a correctly executed hlta command i.e. out of the acti ve or authenticated state, the default waiting state changes from th e idle state to the halt state. this state can then be exited with a wupa command only. 8.4.2 ready1 state in this state, the nfc device resolves the first part of the uid (3 bytes) using the anticollision or select commands in cascade level 1. this state is correctly exited after execution of either of the following commands: ? select command from cascade level 1: the nfc device switches ntag21x into ready2 state where the second part of the uid is resolved. ? read command (from address 0 ): all anticollision mechanis ms are bypassed and the ntag21x switches directly to the active state. remark: if more than one ntag is in the nfc device field, a read command from address 0 selects all ntag21x devices. in this case, a collision occurs due to different serial numbers. any other data received in the ready1 state is interpreted as an error and depending on its previous state ntag21x returns to the idle or halt state. 8.4.3 ready2 state in this state, ntag21x supports the nfc devi ce in resolving the second part of its uid (4 bytes) with the cascade level 2 anticollis ion command. this state is usually exited using the cascade level 2 select command. alternatively, ready2 state can be skipped using a read command (from address 0) as described for the ready1 state. remark: the response of ntag21x to the cascade level 2 select command is the select acknowledge (sak) byte. in accordance with iso/iec 14443, this byte indicates if the anticollision cascade proced ure has finished. ntag21x is now uniquely selected and only this device will communicate with the nfc device even when other contactless devices are present in the nfc device field. if more than one ntag21x is in the nfc device field, a read command from address 0 selects all ntag21x devices. in this case, a collision occurs due to the different serial numbers. any other da ta received when the device is in this state is interpreted as an error. depending on its previous state the ntag21x returns to either the idle state or halt state.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 10 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.4.4 active state all memory operations and other functions like the originality signature read-out are operated in the active state. the active state is exited with the hl ta command and upon reception ntag21x transits to the halt state. any other data received when the device is in this state is interpreted as an error. depending on its pr evious state ntag21x returns to either the idle state or halt state. ntag21x transits to the authenticated st ate after successful pa ssword verification using the pwd_auth command. 8.4.5 authenticated state in this state, all operations on memory pages, which are configured as password verification protected, can be accessed. the authenticated state is exited with the hlta command and upon reception ntag21x transits to the halt state. any othe r data received when the device is in this state is interpreted as an error. depending on its previous state ntag21x returns to either the idle state or halt state. 8.4.6 halt state halt and idle states constitute the two wait states implemented in ntag21x. an already processed ntag21x can be set into the halt state using the hlta command. in the anticollision phase, this state helps the nf c device to distinguish between processed tags and tags yet to be selected. ntag21x can only exit this state on execution of the wupa command. any other data received when th e device is in this state is interpreted as an error and ntag21x state remains unchanged.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 11 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.5 memory organization the eeprom memory is organi zed in pages with 4 bytes per page. NTAG213 variant has 45 pages, ntag215 variant has 135 pages and ntag216 variant has 231 pages in total. the memory organization can be seen in figure 4 , figure 5 and figure 6 , the functionality of the different memory sections is described in the following sections. the structure of manu facturing data, lock bytes, capab ility container and user memory pages are compatible to ntag203. fig 4. memory organization NTAG213 fig 5. memory organization ntag215 2ch 0 1 2 3 4 5 41 42 43 44 39 38 ... 40 0h 1h 2h 3h 4h 5h 28 h 29 h 2ah 2bh 27 h 26 h ... byte number within a page 0 3 1 2 serial number internal lock bytes lock bytes capability container (cc) pack serial number serial number user memory cfg 0 cfg 1 pwd rfui description manufacturer data and static lock bytes capability container user memory pages configuration pages dynamic lock bytes dynamic lock bytes rfui hex dec page adr aaa-008087 86 h 0 1 2 3 4 5 131 132 133 134 129 128 ... 130 0h 1h 2h 3h 4h 5h 82 h 83 h 84 h 85 h 81 h 80 h ... byte number within a page 0 3 1 2 serial number internal lock bytes lock bytes capability container (cc) pack serial number serial number user memory cfg 0 cfg 1 pwd rfui description manufacturer data and static lock bytes capability container user memory pages configuration pages dynamic lock bytes dynamic lock bytes rfui hex dec page adr aaa-008088
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 12 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.5.1 uid/serial number the unique 7-byte serial number (uid) and its two check bytes are programmed into the first 9 bytes of memory covering page addre sses 00h, 01h and the first byte of page 02h. the second byte of page address 02h is reserved for internal data. these bytes are programmed and write protected in the production test. in accordance with iso/iec 14443-3 check byte 0 (bcc0) is defined as ct ? sn0 ? sn1 ? sn2 and check byte 1 (bcc1) is defined as sn3 ? sn4 ? sn5 ? sn6. sn0 holds the manufacturer id for nxp semiconductors (04h) in accordance with iso/iec 14443-3. 8.5.2 static lock bytes (ntag21x) the bits of byte 2 and byte 3 of page 02h represent the field programmable read-only locking mechanism. each page from 03h (cc) to 0fh can be individually locked by setting the corresponding locking bit lx to logic 1 to prevent further write access. after locking, the corresponding page becomes read-only memory. fig 6. memory organization ntag216 e6h 0 1 2 3 4 5 227 228 229 230 225 224 ... 226 0h 1h 2h 3h 4h 5h e2h e3h e4h e5h e1h e0h ... byte number within a page 0 3 1 2 serial number internal lock bytes lock bytes capability container (cc) pack serial number serial number user memory cfg 0 cfg 1 pwd rfui description manufacturer data and static lock bytes capability container user memory pages configuration pages dynamic lock bytes dynamic lock bytes rfui hex dec page adr aaa-008089 fig 7. uid/serial number 001aai001 msb lsb page 0 byte check byte 0 serial number part 1 serial number part 2 manufacturer id for nxp semiconductors (04h) 00000100 0123 page 1 0123 page 2 0123 internal check byte 1 lock bytes
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 13 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory the three least significant bits of lock byte 0 are the block-locking bits. bit 2 deals with pages 0ah to 0fh, bit 1 deals with pages 04h to 09h and bit 0 deals with page 03h (cc). once the block-locking bits are set, the locking configuration for the corresponding memory area is frozen. for example if bl15-10 is set to logic 1, then bi ts l15 to l10 (lock byte 1, bit[7:2]) can no longer be changed. the so called static locking and block-locking bits are set by a write or compatibility_write command to page 02h. bytes 2 and 3 of the write or compatibility_write command, and the contents of the lock bytes are bit-wise or?ed and the result then becomes the new c ontent of the lock bytes. this process is irreversible. if a bit is set to logic 1, it cannot be changed back to logic 0. the contents of bytes 0 and 1 of page 02h ar e unaffected by the corresponding data bytes of the write or compatibility_write command. the default value of the static lock bytes is 00 00h. any write operation to the static lock bytes is tearing-proof. 8.5.3 dynamic lock bytes to lock the pages of ntag21x starting at page address 10h and onwards, the so called dynamic lock bytes are used. the dynamic lock bytes are located at page 28h for NTAG213, at page 82h for ntag215 and at page e2h for ntag216. the three lock bytes cover the memory area of 96 data bytes for NTAG213, 456 data bytes for ntag215 and 840 data bytes for ntag216. the granularity is 2 pages for NTAG213 ( figure 9 ) and 16 pages for ntag215 ( figure 10 ) and ntag216 ( figure 11 ). remark: set all bits marked with rfui to 0, when writing to the dynamic lock bytes. fig 8. static lock bytes 0 and 1 l 7 l 6 l 5 l 4 l cc bl 15-10 bl 9-4 bl cc msb 0 page 2 lx locks page x to read-only blx blocks further locking for the memory area x lock byte 0 lock byte 1 123 lsb l 15 l 14 l 13 l 12 l 11 l 10 l 9 l 8 msb lsb aaa-006983
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 14 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory fig 9. NTAG213 dynamic lock bytes 0, 1 and 2 fig 10. ntag215 dynamic lock bytes 0, 1 and 2 aaa-008090 0 1 2 3 page 40 (28h) lock page 30-31 msb lsb bit 7 6 lock page 28-29 lock page 26-27 lock page 24-25 lock page 22-23 lock page 20-21 lock page 18-19 lock page 16-17 543210 rfui msb lsb bit 7 6 rfui rfui rfui lock page 38-39 lock page 36-37 lock page 34-35 lock page 32-33 543210 rfui msb lsb bit 7 6 rfui bl 36-39 bl 32-35 bl 28-31 bl 24-27 bl 20-23 bl 16-19 543210 aaa-008091 0 1 2 3 page 130 (82h) lock page 128-129 msb lsb bit 7 6 lock page 112-127 lock page 96-111 lock page 80-95 lock page 64-79 lock page 48-63 lock page 32-47 lock page 16-31 543210 rfui msb lsb bit 7 6 rfui rfui rfui rfui rfui rfui rfui 543210 rfui msb lsb bit 7 6 rfui rfui rfui bl 112-129 bl 80-111 bl 48-79 bl 16-47 543210
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 15 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory the default value of the dynamic lock bytes is 00 00 00h. the value of byte 3 is always bdh when read. any write operation to the dynamic lock bytes is tearing-proof. fig 11. ntag216 dynamic lock bytes 0, 1 and 2 aaa-008092 0 1 2 3 page 226 (e2h) lock page 128-143 msb lsb bit 7 6 lock page 112-127 lock page 96-111 lock page 80-95 lock page 64-79 lock page 48-63 lock page 32-47 lock page 16-31 lock page 224-225 543210 rfui msb lsb bit 7 6 rfui lock page 208-223 lock page 192-207 lock page 176-191 lock page 160-175 lock page 144-159 543210 rfui msb lsb bit 7 6 bl 208-225 bl 176-207 bl 144-175 bl 112-143 bl 80-111 bl 48-79 bl 16-47 543210
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 16 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.5.4 capability container (cc bytes) the capability container cc (p age 3) is programm ed during the ic production according to the nfc forum type 2 tag specification (see ref. 2 ). these bytes may be bit-wise modified by a write or compatibility_write command. the parameter bytes of the write command and the current contents of the cc bytes are bit-wise or?ed. the result is the new cc byte contents. this process is irreversible and once a bit is set to logic 1, it cannot be changed back to logic 0. any write operation to the cc bytes is tearing-proof. the default values of the cc bytes at delivery are defined in section 8.5.6 . 8.5.5 data pages pages 04h to 27h for NTAG213, pages 04h to 81h for ntag215 and pages 04h to e1h for ntag216 are the user memory read/write area. the access to a part of the user memory area can be restricted using a password verification. see section 8.8 for further details. the default values of the data pages at delivery are defined in section 8.5.6 . fig 12. cc bytes example aaa-008093 byte 0124 page 3 example NTAG213 cc bytes data e1h 10h 12h 00 cc bytes default value (initialized state) 11100001 00010000 00010010 00000000 write command to page 3 00000000 00000000 00000000 00001111 result in page 3 (read-only state) 11100001 00010000 00010010 00001111
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 17 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.5.6 memory content at delivery the capability container in page 03h and the data pages 04h and 05h of ntag21x are pre-programmed to the initialized state according to the nfc forum type 2 tag specification (see ref. 2 ) as defined in table 4 , ta b l e 5 and ta b l e 6 . the access to a part of the user memory area can be restricted using a password verification. please see section 8.8 for further details. remark: the default content of the data pages from page 05h onwards is not defined at delivery. table 4. memory content at delivery NTAG213 page address byte number within page 0 1 2 3 03h e1h 10h 12h 00h 04h 01h 03h a0h 0ch 05h 34h 03h 00h feh table 5. memory content at delivery ntag215 page address byte number within page 0 1 2 3 03h e1h 10h 3fh 00h 04h 01h 03h 88h 08h 05h 66h 03h 00h feh table 6. memory content at delivery ntag216 page address byte number within page 0 1 2 3 03h e1h 10h 6fh 00h 04h 01h 03h e8h 0eh 05h 66h 03h 00h feh
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 18 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.5.7 configuration pages pages 29h to 2ch for NTAG213, pages 83h to 86h for ntag215 and pages e3h to e6h for ntag216 are used to configure the memory access restriction and to configure the uid ascii mirror feature. the memory content of the configuration pages is detailed below. [1] page address for resp. NTAG213/ntag215/ntag216 table 7. configuration pages page address [1] byte number dec hex 0 1 2 3 41/131/ 227 29h/83h /e3h mirror rfui mirror_page auth0 42/132/ 228 2ah/84 h/e4h access rfui rfui rfui 43/133/ 229 2bh/85 h/e5h pwd 44/134/ 230 2ch/86 h/e6h pack rfui rfui table 8. mirror configuration byte bit number 7 6 5 4 3 2 1 0 mirror_conf mirror_byte rfui strg_ mod_en rfui table 9. access configuration byte bit number 7 6 5 4 3 2 1 0 prot cfglck rfui nfc_cnt _en nfc_cnt _pwd_p rot authlim table 10. configuration parameter descriptions field bit default values description mirror_conf 2 00b defines which ascii mirror shall be used, if the ascii mirror is enabled by a valid the mirror_page byte 00b ... no ascii mirror 01b ... uid ascii mirror 10b ... nfc counter ascii mirror 11b ... uid and nfc counter ascii mirror mirror_byte 2 00b the 2 bits define the byte posi tion within the page defined by the mirror_page byte (beginning of ascii mirror) strg_mod_en 1 1b strg mod_en defines the modulation mode 0b ... strong modulation mode disabled 1b ... strong modulation mode enabled
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 19 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory remark: the cfglck bit activates the permanent write protection of the first two configuration pages. the write lock is only activated after a power cycle of ntag21x. if write protection is enabled, each writ e attempt leads to a nak response. 8.6 nfc counter function ntag21x features a nfc counter function . this function enables ntag21x to automatically increase the 24 bit counter value, triggered by the first valid ? read command or ? fast-read command after the ntag21x tag is powered by an rf field. mirror_page 8 00h mirror_page defines the page for the beginning of the ascii mirroring a value >03h enables the ascii mirror feature auth0 8 ffh auth0 defines the page address from which the password verification is required. valid address range for byte auth0 is from 00h to ffh. if auth0 is set to a page address which is higher than the last page from the user configuration, the password protec tion is effectively disabled. prot 1 0b one bit inside t he access byte defining the memory protection 0b ... write access is protected by the password verification 1b ... read and write access is protected by the password verification cfglck 1 0b write locking bit for the user configuration 0b ... user configuration open to write access 1b ... user configuration permanently lock ed against write access, except pwd and pack nfc_cnt_en 1 0b nfc counter configuration 0b ... nfc counter disabled 1b ... nfc counter enabled if the nfc counter is enabled, the nfc co unter will be automatically increased at the first read or fast_read command after a power on reset nfc_cnt_pwd _prot 1 0b nfc counter password protection 0b ... nfc counter not protected 1b ... nfc counter password protection enabled if the nfc counter password protection is enabled, the nfc tag will only respond to a read_cnt command with the nfc counter value after a valid password verification authlim 3 000b limitation of negative password verification attempts 000b ... limiting of negative password verification attempts disabled 001b-111b ... maximum number of negative password verification attempts pwd 32 ffffffffh 32-bit password used for memory access protection pack 16 0000h 16-bit password acknowledge used during the password verification process rfui - all 0b reserved for future use - implemented. write all bits and bytes denoted as rfui as 0b. table 10. configuration parameter descriptions field bit default values description
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 20 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory once the nfc counter has reached the maximum value of ff ff ff hex, the nfc counter value will not change any more. the nfc counter is enabled or disabled with the nfc_cnt_en bit (see section 8.5.7 ). the actual nfc counter value can be read with ? read_cnt command or ? nfc counter mirror feature the reading of the nfc counter (by read_cnt command or with the nfc counter mirror) can also be protected with the password authentication. the nfc counter password protection is enabled or disabled with the nfc_cnt_pwd_prot bit (see section 8.5.7 ). 8.7 ascii mirror function ntag21x features a ascii mirror function. th is function enables ntag21x to virtually mirror ? 7 byte uid (see section 8.7.1 ) or ? 3 byte nfc counter value (see section 8.7.2 ) or ? both, 7 byte uid and 3 byte nfc counter value with a separation byte (see section 8.7.3 ) into the physical memory of the ic in asc ii code. on the read or fast read command to the involved user memory pages, ntag21x will respond with the virtual memory content of the uid and/or nf c counter value in ascii code. the required length of the reserved physical me mory for the mirror functions is specified in ta b l e 11 . if the ascii mirror exce eds the user memory ar ea, the data will not be mirrored. the position within the user memory where th e mirroring of the uid and/or nfc counter shall start is defined by the mi rror_page and mirror_byte values. the mirror_page value defines the page where the ascii mirror shall start and the mirror_byte value defines the starting byte within the defined page. the ascii mirror function is enabled with a mirror_page value >03h. the mirror_conf bits (see table 8 and ta b l e 1 0 ) define if ascii mirror shall be enabled for the uid and/or nfc counter. if both, the uid and nfc counter, are enabled for the ascii mirror, the uid and the nfc counter bytes are sepa rated automatically with an ?x? character (78h ascii code). table 11. required memory space for ascii mirror ascii mirror required number of bytes in the physical memory uid mirror 14 bytes nfc counter 6 bytes uid + nfc counter mirror 21 bytes (14 bytes for uid + 1 byte separa tion + 6 bytes nfc counter value)
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 21 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.7.1 uid ascii mirror function this function enables ntag21x to virtually mi rror the 7 byte uid in ascii code into the physical memory of the ic. the length of the uid ascii mirror requires 14 bytes to mirror the uid in ascii code. on the read or fast read command to the involved user memory pages, ntag21x will respond with the vi rtual memory content of the uid in ascii code. the position within the user memory where th e mirroring of the uid shall start is defined by the mirror_page and mirror_byte values. the mirror_page value defines the page where the uid ascii mirror shall start and the mirror_byte value defines the starting byte within the defined page. the uid ascii mirror function is enabled with a mirror_page value >03h and the mirror_conf bits are set to 01b. remark: please note that the 14 bytes of the uid ascii mirror shall not exceed the boundary of the user memory. therefore it is required to use only valid values for mirror_byte and mirror_page to ensure a proper functionality. if the uid ascii mirror exceeds the user memory area, the uid will not be mirrored. table 12. configuration parameter description mirror_page mirror_byte bits minimum values 04h 00b maximum values last user memory page - 3 01b
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 22 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.7.1.1 uid ascii mirror example ta b l e 1 3 show the memory content of a NTAG213 which has been written to the physical memory. without the uid ascii mirror feature, the content in the user memory would be a url according to the nfc data exchange format (ndef) ref. 3 with the content: http://www.nxp.com/index.html?m=00000000000000 with the uid mirror feature and the rela ted values in the mirror_page and the mirror_byte the uid 04-e1-41-12 -4c-28-80h will be mirrored in ascii code into the user memory starting in page 0ch byte 1. the virtual memory content is shown in ta b l e 1 4 . reading the user memory, the data will be return ed as an url according to the nfc data exchange format (ndef) ref. 3 with the content: http://www.nxp.com/index.html?m=04e141124c2880 table 13. uid ascii mirror - physical memory content page address byte number dec. hex. 0 1 2 3 ascii 0 00h 04 e1 41 2c 1 01h 12 4c 28 80 2 02h f6 internal lock bytes 3 03h e1 10 12 00 4 04h 01 03 a0 0c .... 5 05h 34 03 28 d1 4.(. 6 06h 01 24 55 01 .$u. 7 07h 6e 78 70 2e nxp. 8 08h 63 6f 6d 2f com/ 9 09h 69 6e 64 65 inde 100ah782e6874x.ht 110bh6d6c3f 6dml?m 12 0ch 3d 30 30 30 = 000 13 0dh 30 30 30 30 0000 14 0eh 30 30 30 30 0000 15 0fh 30 30 30 fe 000 . 16 10h 00 00 00 00 .... ... ... 39 27h 00 00 00 00 .... 40 28h dynamic lock bytes rfui 41 29h 54 rfui 0c auth0 42 2ah access 43 2bh pwd 44 2ch pack rfui
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 23 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.7.2 nfc counter mirror function this function enables ntag21x to virtually mi rror the 3 byte nfc co unter value in ascii code into the physical memory of the ic. th e length of the nfc counter mirror requires 6 bytes to mirror the nfc counter value in ascii code. on the read or fast read command to the involved user memory page s, ntag21x will respond with the virtual memory content of the nfc counter in ascii code. the position within the user memory where the mirroring of the nfc counter shall start is defined by the mirror_page and mirror_byte values. the mirror_page value defines the page where the nfc counter mirror shall start and the mirror_byte value defines the starting byte within the defined page. the nfc counter mirror function is enabled with a mirror_page value >03h and the mirror_conf bits are set to 10b. if the nfc counter is password protected wi th the nfc_cnt_pwd_p rot bit set to 1b (see section 8.5.7 ), the nfc counter will only be mirrored into the physical memory, if a valid password authentication has been executed before. table 14. uid ascii mirror - virtual memory content page address byte number dec. hex. 0 1 2 3 ascii 0 00h 04 e1 41 2c 1 01h 12 4c 28 80 2 02h f6 internal lock bytes 3 03h e1 10 12 00 4 04h 01 03 a0 0c .... 5 05h 34 03 28 d1 4.(. 6 06h 01 24 55 01 .$u. 7 07h 6e 78 70 2e nxp. 8 08h 63 6f 6d 2f com/ 9 09h 69 6e 64 65 inde 100ah782e6874x.ht 110bh6d6c3f 6dml?m 12 0ch 3d 30 34 45 = 04e 13 0dh 31 34 31 31 1411 14 0eh 32 34 43 32 24c2 15 0fh 38 38 30 fe 880 . 16 10h 00 00 00 00 .... ... ... 39 27h 00 00 00 00 .... 40 28h dynamic lock bytes rfui 41 29h 54 rfui 0c auth0 42 2ah access 43 2bh pwd 44 2ch pack rfui
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 24 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory remark: to enable the nfc co unter itself (see section 8.6 ), the nfc_cnt_en bit shall be set to 1b . remark: please note that the 6 bytes of the nfc counter mirror shall not exceed the boundary of the user memory. therefore it is required to use only valid values for mirror_byte and mirror_page to ensure a pr oper functionality. if the nfc counter mirror exceeds the user memory area, the nfc c ounter will not be mirrored. table 15. configuration parameter description mirror_page mirror_byte bits minimum values 04h 00b maximum values last user memory page - 1 01b
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 25 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.7.2.1 nfc counter mirror example ta b l e 1 6 show the memory content of a NTAG213 which has been written to the physical memory. without the nfc counter mirror featur e, the content in the user memory would be a url according to the nfc data exchange format (ndef) ref. 3 with the content: http://www.nxp.com/index.html?m=000000 with the nfc counter mirror feature and the related values in the mirror_page and the mirror_byte the nfc counter value of e.g. 00-3f-3 1h will be mirrored in ascii code into the user memory starting in page 0ch byte 1. the virtual memory content is shown in ta b l e 1 7 . reading the user memory, the data will be return ed as an url according to the nfc data exchange format (ndef) ref. 3 with the content: http://www.nxp.com/index.html?m=003f31 table 16. nfc counter mirror - physical memory content page address byte number dec. hex. 0 1 2 3 ascii 0 00h 04 e1 41 2c 1 01h 12 4c 28 80 2 02h f6 internal lock bytes 3 03h e1 10 12 00 4 04h 01 03 a0 0c .... 5 05h 34 03 20 d1 4.(. 6 06h 01 1c 55 01 .$u. 7 07h 6e 78 70 2e nxp. 8 08h 63 6f 6d 2f com/ 9 09h 69 6e 64 65 inde 100ah782e6874x.ht 110bh6d6c3f 6dml?m 12 0ch 3d 30 30 30 = 000 13 0dh 30 30 30 fe 000 . 140eh00000000.... ... ... 39 27h 00 00 00 00 .... 40 28h dynamic lock bytes rfui 41 29h 94 rfui 0c auth0 42 2ah access 43 2bh pwd 44 2ch pack rfui
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 26 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.7.3 uid and nfc counter mirror function this function enables ntag21x to virtually mirror the 7 byte uid and 3 byte nfc counter value in ascii code into the physical memory of the ic separated by 1 byte (?x? character, 78h). the length of the mirror requires 21 by tes to mirror the uid, nfc counter value and the separation byte in ascii code. on the re ad or fast read command to the involved user memory pages, ntag21x will respond wit h the virtual memory content of the uid and nfc counter in ascii code. the position within the user memory where the mirroring shall start is defined by the mirror_page and mirror_byte values. the mirror_page value defines the page where the mirror shall start and the mirror_byte value defines the starting byte within the defined page. the uid and nfc counter mirror function is enabled with a mirror_page value >03h and the mirror_conf bits are set to 11b. if the nfc counter is password protected wi th the nfc_cnt_pwd_p rot bit set to 1b (see section 8.5.7 ), the nfc counter will only be mirrored into the physical memory, if a valid password authentication has been executed before. table 17. nfc counter mirror - virtual memory content page address byte number dec. hex. 0 1 2 3 ascii 0 00h 04 e1 41 2c 1 01h 12 4c 28 80 2 02h f6 internal lock bytes 3 03h e1 10 12 00 4 04h 01 03 a0 0c .... 5 05h 34 03 20 d1 4.(. 6 06h 01 1c 55 01 .$u. 7 07h 6e 78 70 2e nxp. 8 08h 63 6f 6d 2f com/ 9 09h 69 6e 64 65 inde 100ah782e6874x.ht 110bh6d6c3f 6dml?m 12 0ch 3d 30 30 33 = 003 13 0dh 46 33 31 fe f31 . 140eh00000000.... ... ... 39 27h 00 00 00 00 .... 40 28h dynamic lock bytes rfui 41 29h 94 rfui 0c auth0 42 2ah access 43 2bh pwd 44 2ch pack rfui
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 27 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory remark: to enable the nfc co unter itself (see section 8.6 ), the nfc_cnt_en bit shall be set to 1b . remark: please note that the 21 bytes of the uid and nfc counter mirror shall not exceed the boundary of the user memory. theref ore it is required to use only valid values for mirror_byte and mirror_page to ensure a proper functionality. if the uid and nfc counter mirror exceeds t he user memory area, the ui d and nfc counter will not be mirrored. table 18. configuration parameter description mirror_page mirror_byte bits minimum values 04h 00b maximum values last user memory page - 5 10b
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 28 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.7.3.1 uid and nfc counter mirror example ta b l e 1 9 show the memory content of a NTAG213 which has been written to the physical memory. without the uid ascii mirror feature, the content in the user memory would be a url according to the nfc data exchange format (ndef) ref. 3 with the content: http://www.nxp.com/index.html?m=00000000000000x000000 with the uid mirror feature and the rela ted values in the mirror_page and the mirror_byte the uid 04-e1-41-12-4c-28-80h and the nfc counter value of e.g. 00-3f-31h will be mirr ored in ascii code into the user memory star ting in page 0ch byte 1. the virtual memory content is shown in ta b l e 2 0 . remark: please note that the separation charac ter ?x? (78h) is automatically mirrored between the uid mirror and the nfc counter mirror. reading the user memory, the data will be return ed as an url according to the nfc data exchange format (ndef) ref. 3 with the content: table 19. uid and nfc counter ascii mirror - physical memory content page address byte number dec. hex. 0 1 2 3 ascii 0 00h 04 e1 41 2c 1 01h 12 4c 28 80 2 02h f6 internal lock bytes 3 03h e1 10 12 00 4 04h 01 03 a0 0c .... 5 05h 34 03 2f d1 4.(. 6 06h 01 2b 55 01 .$u. 7 07h 6e 78 70 2e nxp. 8 08h 63 6f 6d 2f com/ 9 09h 69 6e 64 65 inde 100ah782e6874x.ht 110bh6d6c3f 6dml?m 12 0ch 3d 30 30 30 = 000 13 0dh 30 30 30 30 0000 14 0eh 30 30 30 30 0000 15 0fh 30 30 30 78 000x 16 10h 30 30 30 30 0000 17 11h 30 30 fe 00 00 .. 18 12h 00 00 00 00 .... ... ... 39 27h 00 00 00 00 .... 40 28h dynamic lock bytes rfui 41 29h d4 rfui 0c auth0 42 2ah access 43 2bh pwd 44 2ch pack rfui
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 29 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory http://www.nxp.com/index.html?m=04e141124c2880x003f31 table 20. uid and nfc counter ascii mirror - physical memory content page address byte number dec. hex. 0 1 2 3 ascii 0 00h 04 e1 41 2c 1 01h 12 4c 28 80 2 02h f6 internal lock bytes 3 03h e1 10 12 00 4 04h 01 03 a0 0c .... 5 05h 34 03 2f d1 4.(. 6 06h 01 2b 55 01 .$u. 7 07h 6e 78 70 2e nxp. 8 08h 63 6f 6d 2f com/ 9 09h 69 6e 64 65 inde 100ah782e6874x.ht 110bh6d6c3f 6dml?m 12 0ch 3d 30 34 45 = 04e 13 0dh 31 34 31 31 1411 14 0eh 32 34 43 32 24c2 15 0fh 38 38 30 78 880x 16 10h 30 30 33 46 003f 17 11h 33 31 fe 00 31 .. 18 12h 00 00 00 00 .... ... ... 39 27h 00 00 00 00 .... 40 28h dynamic lock bytes rfui 41 29h d4 rfui 0c auth0 42 2ah access 43 2bh pwd 44 2ch pack rfui
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 30 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.8 password verific ation protection the memory write or read/write access to a configurable part of the memory can be constrained by a positive password verificati on. the 32-bit secret password (pwd) and the 16-bit password acknowledge (pack) response are typically programmed into the configuration pages at the tag personalization stage. the authlim parameter specified in section 8.5.7 can be used to limit the negative verification attempts. in the initial state of ntag21x, password prot ection is disabled by a auth0 value of ffh. pwd and pack are freely writable in this state. access to the configuration pages and any part of the user memory can be restrict ed by setting auth0 to a page address within the available memory space. this page address is the first one protected. remark: the password protection method provided in ntag21x has to be intended as an easy and convenient way to prevent unauthorized memory accesses. if a higher level of protection is required, cryptographic methods can be implemented at application layer to increase overall system security. 8.8.1 programming of pwd and pack the 32-bit pwd and the 16-bit pack need to be programmed into the configuration pages, see section 8.5.7 . the password as well as the password acknowledge are written lsbyte first. this byte order is the same as the byte order used during the pwd_auth command and its response. the pwd and pack bytes can never be read out of the memory. instead of transmitting the real value on any valid read or fast _read command, only 00h bytes are replied. if the password verification does not protec t the configuration pages, pwd and pack can be written with normal write and compatibility_write commands. if the configuration pages are protected by the password configuration, pwd and pack can be written after a successful pwd_auth command. the pwd and pack are writable even if the cfglck bit is set to 1b. therefore it is strongly recommended to set auth0 to the page where the pwd is located after the password has been written. this page is 2bh for NTAG213, page 85h for ntag215 and page e5h for ntag216. remark: to improve the overall system security, it is advisable to diversify the password and the password acknowledge using a die individual parameter of the ic, that is the 7-byte uid available on ntag21x.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 31 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 8.8.2 limiting negative verification attempts to prevent brute-force attacks on the password, the maximum allowed number of negative password verification attempts can be set using authlim. this mechanism is disabled by setting authlim to a value of 000b, which is also the initial state of ntag21x. if authlim is not equal to 000b, each negativ e authentication verifica tion is internally counted. the count operation f eatures anti-tearing support. as soon as this internal counter reaches the number specified in authlim, any further negative password verification leads to a permanent locking of the protected part of the memory for the specified access modes. specifically, whethe r the provided password is correct or not, each subsequent pwd_auth fails. any successful password veri fication, before reaching the limit of negative password verification attempts, resets the internal counter to zero. 8.8.3 protection of special memory segments the configuration pages can be protected by the password authentication as well. the protection level is defined with the prot bit. the protection is enabled by setting the au th0 byte to a value that is within the addressable memory space. 8.9 originality signature ntag21x features a cryptographica lly supported originality check. with this feature, it is possible to verify with a certain confidence that the tag is using an ic manufactured by nxp semiconductors. this check can be performed on personalized tags as well. ntag21x digital signature is based on standard elliptic curv e cryptography (curve name secp128r1 ), according to the ecdsa algorithm. the use of a standard algorithm and curve ensures easy software integration of the originality check procedure in nfc devices without specific hardware requirements. each ntag21x uid is signed with a nxp privat e key and the resulting 32-byte signature is stored in a hidden part of the ntag21x memory during ic production. this signature can be retrieved using the r ead_sig command and can be verified in the nfc device by using the corresponding ecc public key provided by nxp. in case the nxp public key is stored in the nfc device, the complete signature verification procedure can be performed offline. to verify the signature (for example with t he use of the public domain crypto library openssl) the tool domain para meters shall be set to secp128r1, defined within the standards for elliptic cu rve cryptography sec ( ref. 7 ). details on how to check the signature value are provided in following application note ( ref. 5 ). it is foreseen to offer an online and offline way to verify originality of ntag21x.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 32 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 9. command overview ntag activation follows the iso/iec 14443 typ e a. after ntag21x has been selected, it can either be deactivated using the iso/iec 14443 hlta command, or the ntag commands (e.g. read or write) can be performed. for more details about the card activation refer to ref. 1 . 9.1 ntag21x command overview all available commands for ntag21x are shown in ta b l e 2 1 . [1] unless otherwise specified, all commands use the coding and framing as described in ref. 1 . [2] this command is new in ntag21x compared to ntag203. 9.2 timings the command and response timings shown in this document are not to scale and values are rounded to 1 ? s. all given command and response transmission times refer to the data frames including start of communication and end of communicati on. they do not include the encoding (like the miller pulses). a nfc devic e data frame contains the start of communication (1 ?start bit?) and the end of communication (one logic 0 + 1 bit length of unmodulated carrier). a nfc tag data frame contains the start of communication (1 ?start bit?) and the end of communication (1 bit length of no subcarrier). the minimum command response ti me is specified according to ref. 1 as an integer n which specifies the nfc device to nfc tag fr ame delay time. the frame delay time from nfc tag to nfc device is at least 87 ? s. the maximum command response time is specified as a time-out value. depending on the command, the t ack value specified for command responses defines the nfc device to nfc tag frame delay time. it does it for table 21. command overview command [1] iso/iec 14443 nfc forum command code (hexadecimal) request reqa sens_req 26h (7 bit) wake-up wupa all_req 52h (7 bit) anticollision cl1 anticollision cl1 sdd_req cl1 93h 20h select cl1 select cl 1 sel_req cl1 93h 70h anticollision cl2 anticollision cl2 sdd_req cl2 95h 20h select cl2 select cl 2 sel_req cl2 95h 70h halt hlta slp_req 50h 00h get_version [2] --6 0 h read - read 30h fast_read [2] --3 a h write - write a2h comp_write - - a0h read_cnt [2] --3 9 h pwd_auth [2] --1 b h read_sig [2] --3 c h
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 33 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory either the 4-bit ack value specified in section 9.3 or for a data frame. all command timings are according to iso/iec 14443-3 frame specification as shown for the frame delay time in figure 13 . for more details refer to ref. 1 . remark: due to the coding of commands, the measur ed timings usually excludes (a part of) the end of communication. considered this factor when comparing the specified with the measured times. 9.3 ntag ack and nak ntag uses a 4 bit ack / nak as shown in ta b l e 2 2 . fig 13. frame delay time (from nfc device to nfc tag) last data bit transmitted by the nfc device fdt = (n* 128 + 84)/fc first modulation of the nfc tag fdt = (n* 128 + 20)/fc aaa-006986 128/fc logic ?1 128/fc logic ?0 256/fc end of communication (e) 256/fc end of communication (e) 128/fc start of communication (s) communication (s) 128/fc start of table 22. ack and nak values code (4-bit) ack/nak ah acknowledge (ack) 0h nak for invalid argument (i.e. invalid page address) 1h nak for parity or crc error 4h nak for invalid authentication counter overflow 5h nak for eeprom write error
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 34 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 9.4 atqa and sak responses ntag21x replies to a reqa or wupa command with the atqa value shown in table 23 . it replies to a select cl2 comm and with the sak value shown in ta b l e 2 4 . the 2-byte atqa value is transmitted with the least significant byte first (44h). remark: the atqa coding in bits 7 and 8 indicate the uid size according to iso/iec 14443 independent from the settings of the uid usage. remark: the bit numbering in the iso/iec 14443 starts with lsb = bit 1 and not with lsb = bit 0. so 1 byte counts bit 1 to bit 8 instead of bit 0 to 7. table 23. atqa response of the ntag21x bit number sales type hex value 16 15 14 13 12 11 10 9 8 7 6 5 4 3 2 1 ntag21x 00 44h 0000000001000100 table 24. sak response of the ntag21x bit number sales type hex value 8 7 6 5 4 3 2 1 ntag21x 00h 00000000
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 35 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10. ntag commands 10.1 get_version the get_version command is used to retrieve information on the ntag family, the product version, storage size and other pro duct data required to identify the specific ntag21x. this command is also available on other ntag products to have a common way of identifying products across platforms and evolution steps. the get_version command has no arguments and replies the version information for the specific ntag21x type. the command structure is shown in figure 14 and ta b l e 2 5 . ta b l e 2 6 shows the required timing. [1] refer to section 9.2 ? timings ? . fig 14. get_version command table 25. get_version command name code description length cmd 60h get product version 1 byte crc - crc according to ref. 1 2 bytes data - product version information 8 bytes nak see table 22 see section 9.3 4-bit table 26. get_version timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout get_version n=9 [1] t timeout 5 ms crc crc nfc device cmd data ntag ,,ack'' 283 s 868 s ntag ,,nak'' nak time out t timeout t nak t ack 57 s aaa-006987
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 36 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory the most significant 7 bits of the storage size byte are interpreted as a unsigned integer value n. as a result, it codes the to tal available user memory size as 2 n . if the least significant bit is 0b, the user memory size is exactly 2 n . if the least significant bit is 1b, the user memory size is between 2 n and 2 n+1 . the user memory for NTAG213 is 144 bytes. this memory size is between 128bytes and 256 bytes. therefore, the most significant 7 bi ts of the value 0fh, are interpreted as 7d and the least significant bit is 1b. the user memory for ntag215 is 504 bytes. this memory size is between 256 bytes and 512 bytes. therefore, the most significant 7 bi ts of the value 11h, are interpreted as 8d and the least significant bit is 1b. the user memory for ntag216 is 888 bytes. this memory size is between 512 bytes and 1024 bytes. therefore, the most significant 7 bits of the val ue 13h, are interpreted as 9d and the least significant bit is 1b. table 27. get_version response for NTAG213, ntag215 and ntag216 byte no. description NTAG213 ntag215 ntag216 interpretation 0 fixed header 00h 00h 00h 1 vendor id 04h 04h 04h nxp semiconductors 2 product type 04h 04h 04h ntag 3 product subtype 02h 02h 02h 50 pf 4 major product version 01h 01h 01h 1 5 minor product version 00h 00h 00h v0 6 storage size 0fh 11h 13h see following information 7 protocol type 03h 03h 03h iso/iec 14443-3 compliant
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 37 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.2 read the read command requires a start page address, and returns the 16 bytes of four ntag21x pages. for example, if address (addr) is 03h then pages 03h, 04h, 05h, 06h are returned. special conditions apply if the read command address is near the end of the accessible memory area. the special conditions also apply if at least part of the addressed pages is within a password protec ted area. for details on those cases and the command structure refer to figure 15 and ta b l e 2 8 . ta b l e 2 9 shows the required timing. [1] refer to section 9.2 ? timings ? . in the initial state of ntag21x, all memory pages are allowed as addr parameter to the read command. ? page address 00h to 2ch for NTAG213 ? page address 00h to 86h for ntag215 ? page address 00h to e6h for ntag216 addressing a memory page beyond the limit s above results in a nak response from ntag21x. fig 15. read command table 28. read command name code description length cmd 30h read four pages 1 byte addr - start page address 1 byte crc - crc according to ref. 1 2 bytes data - data content of the addressed pages 16 bytes nak see table 22 see section 9.3 4-bit table 29. read timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout read n=9 [1] t timeout 5 ms crc crc addr nfc device cmd data ntag ,,ack'' 368 s 1548 s ntag ,,nak'' nak time out t timeout t nak t ack 57 s aaa-006988
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 38 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory a roll-over mechanism is implemented to continue reading from page 00h once the end of the accessible memory is reached. reading from address 2ah on a NTAG213 results in pages 2ah, 2bh, 2ch and 00h being returned. the following conditions apply if part of t he memory is password protected for read access: ? if ntag21x is in the active state ? addressing a page which is equal or higher than auth0 results in a nak response ? addressing a page lower than auth0 results in data being returned with the roll-over mechanism occurring just before the auth0 defined page ? if ntag21x is in the authenticated state ? the read command behaves like on a ntag21x without access protection remark: pwd and pack values can never be read out of the memory. when reading from the pages holding those two values, all 00h bytes are replied to the nfc device instead.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 39 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.3 fast_read the fast_read command requires a start page address and an end page address and returns the all n*4 bytes of the addressed pages. for example if the start address is 03h and the end address is 07h then pages 03h, 04h, 05h, 06h and 07h are returned. if the addressed page is outside of accessible ar ea, ntag21x replies a nak. for details on those cases and the command structure, refer to figure 16 and ta b l e 3 0 . ta b l e 3 1 shows the required timing. [1] refer to section 9.2 ? timings ? . in the initial state of ntag21x, all memory pages are allowed as startaddr parameter to the fast_read command. ? page address 00h to 2ch for NTAG213 ? page address 00h to 86h for ntag215 ? page address 00h to e6h for ntag216 addressing a memory page beyond the limit s above results in a nak response from ntag21x. fig 16. fast_read command table 30. fast_read command name code description length cmd 3ah read multiple pages 1 byte startaddr - start page address 1 byte endaddr - end page address 1 byte crc - crc according to ref. 1 2 bytes data - data content of the addressed pages n*4 bytes nak see table 22 see section 9.3 4-bit table 31. fast_read timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout fast_read n=9 [1] t timeout 5 ms crc crc startaddr nfc device cmd data ntag ,,ack'' 453 s depending on nr of read pages ntag ,,nak'' nak time out t timeout t nak t ack 57 s endaddr aaa-006989
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 40 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory the endaddr parameter must be equal to or higher than the startaddr. the following conditions apply if part of t he memory is password protected for read access: ? if ntag21x is in the active state ? if any requested page address is equal or higher than auth0 a nak is replied ? if ntag21x is in the authenticated state ? the fast_read command behaves like on a ntag21x without access protection remark: pwd and pack values can never be read out of the memory. when reading from the pages holding those two values, all 00h bytes are replied to the nfc device instead. remark: the fast_read command is able to read out the whole memory with one command. nevertheless, receive buffer of the nfc device must be able to handle the requested amoun t of data as there is no chaining possibility.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 41 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.4 write the write command requires a block address, and writes 4 bytes of data into the addressed ntag21x page. the write command is shown in figure 17 and ta b l e 3 2 . ta b l e 3 3 shows the required timing. [1] refer to section 9.2 ? timings ? . in the initial state of ntag21 x, the following memory pages ar e valid addr parameters to the write command. ? page address 02h to 2ch for NTAG213 ? page address 02h to 86h for ntag215 ? page address 02h to e6h for ntag216 addressing a memory page beyond the limit s above results in a nak response from ntag21x. pages which are locked against writing cannot be reprogrammed using any write command. the locking mechanisms include static and dynamic lock bits as well as the locking of the configuration pages. fig 17. write command table 32. write command name code description length cmd a2h write one page 1 byte addr - page address 1 byte crc - crc according to ref. 1 2 bytes data - data 4 bytes nak see table 22 see section 9.3 4-bit table 33. write timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout write n=9 [1] t timeout 10 ms crc addr nfc device cmd ntag ,,ack'' 708 s ntag ,,nak'' nak time out t timeout t nak t ack 57 s ack 57 s data aaa-006990
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 42 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory the following conditions apply if part of t he memory is password protected for write access: ? if ntag21x is in the active state ? writing to a page which address is equal or higher than auth0 results in a nak response ? if ntag21x is in the authenticated state ? the write command behaves like on a ntag21x without access protection ntag21x features tearing protected write op erations to specific memory content. the following pages are protected against tearing events during a write operation: ? page 02h containing static lock bits ? page 03h containing cc bits ? page 28h containing the additional dynamic lock bits for the NTAG213 ? page 82h containing the additional dynamic lock bits for the ntag215 ? page e2h containing the additional dynamic lock bits for the ntag216
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 43 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.5 compatibility_write the compatibility_write command is implem ented to guarantee in teroperability with the established mifare classic pcd infrastructu re, in case of coexistence of ticketing and nfc applications. even though 16 bytes are transferred to ntag21x, only the least significant 4 bytes (bytes 0 to 3) are written to the specified address. set all the remaining bytes, 04h to 0fh, to logic 00h. the compatibility_write co mmand is shown in figure 18 , figure 19 and ta b l e 3 4 . ta b l e 3 5 shows the required timing. fig 18. compatibility_write command part 1 fig 19. compatibility_write command part 2 table 34. compatibility_write command name code description length cmd a0h compatibility write 1 byte addr - page address 1 byte crc - crc according to ref. 1 2 bytes data - 16-byte data, only least significant 4 bytes are written 16 bytes nak see table 22 see section 9.3 4-bit aaa-006991 crc addr nfc device cmd ntag ,,ack'' 368 s ntag ,,nak'' nak time out t timeout t nak t ack 59 s ack 59 s aaa-006992 crc nfc device data ntag ,,ack'' 1558 s ntag ,,nak'' nak time out t timeout t nak t ack 59 s ack 59 s
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 44 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory [1] refer to section 9.2 ? timings ? . in the initial state of ntag21 x, the following memory pages ar e valid addr parameters to the compatibility_write command. ? page address 02h to 2ch for NTAG213 ? page address 02h to 86h for ntag215 ? page address 02h to e6h for ntag216 addressing a memory page beyond the limit s above results in a nak response from ntag21x. pages which are locked against writing cannot be reprogrammed using any write command. the locking mechanisms include static and dynamic lock bits as well as the locking of the configuration pages. the following conditions apply if part of t he memory is password protected for write access: ? if ntag21x is in the active state ? writing to a page which address is equal or higher than auth0 results in a nak response ? if ntag21x is in the authenticated state ? the compatibility_write command behaves the same as on a ntag21x without access protection ntag21x features tearing protected write op erations to specific memory content. the following pages are protected against tearing events during a compatibility_write operation: ? page 02h containing static lock bits ? page 03h containing cc bits ? page 28h containing the additional dynamic lock bits for the NTAG213 ? page 82h containing the additional dynamic lock bits for the ntag215 ? page e2h containing the additional dynamic lock bits for the ntag216 table 35. compatibility_write timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout compatibility_write part 1 n=9 [1] t timeout 5 ms compatibility_write part 2 n=9 [1] t timeout 10 ms
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 45 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.6 read_cnt the read_cnt command is used to read out the current value of the nfc one-way counter of the NTAG213, ntag215 and ntag216. the command has a single argument specifying the counter number and returns the 24-bit counter value of the corresponding counter. if the nfc_cnt _pwd_prot bit is set to 1b the counter is password protected and can only be read with the read_cnt command after a previous valid password authentication (see section 10.7 ). the command structure is shown in figure 20 and ta b l e 3 6 . ta b l e 3 7 shows the required timing. [1] refer to section 9.2 ? timings ? . the following conditions apply if the nfc counter is password protected: ? if ntag21x is in the active state ? response to the read_cnt command results in a nak response ? if ntag21x is in the authenticated state ? response to the read_cnt command is the current counter value plus crc fig 20. read_cnt command table 36. read_cnt command name code description length cmd 39h read counter 1 byte addr 02h nfc counter address 1 byte crc - crc according to ref. 1 2 bytes data - counter value 3 bytes nak see table 22 see section 9.3 4-bit table 37. read_cnt timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout read_cnt n=9 [1] t timeout 5 ms aaa-008094 crc crc addr nfc device cmd data ntag ,,ack'' 368 s 444 s ntag ,,nak'' nak time out t timeout t nak t ack 57 s
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 46 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.7 pwd_auth a protected memory area can be accessed only after a successful password verification using the pwd_auth command. the auth0 co nfiguration byte defines the protected area. it specifies the first page that the password mechanism protects. the level of protection can be configured using the prot bi t either for write protection or read/write protection. the pwd_auth command takes the password as parameter and, if successful, returns the password authenticat ion acknowledge, pack. by setting the authlim configuration bits to a value larger than 000b, the number of unsuccessful password verifications can be limited. each un successful authentication is then counted in a counter featuring anti-tearing support. after re aching the limit of unsuccessful attempts, the memory access specified in prot, is no longer possible. the pwd_auth command is shown in figure 21 and table 38 . ta b l e 3 9 shows the required timing. [1] refer to section 9.2 ? timings ? . remark: it is strongly recommended to change the password from its delivery state at tag issuing and set the auth0 value to the pwd page. fig 21. pwd_auth command table 38. pwd_auth command name code description length cmd 1bh password authentication 1 byte pwd - password 4 bytes crc - crc according to ref. 1 2 bytes pack - password authentication acknowledge 2 bytes nak see table 22 see section 9.3 4-bit table 39. pwd_auth timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout pwd_auth n=9 [1] t timeout 5 ms crc nfc device cmd ntag ,,ack'' 623 s ntag ,,nak'' nak time out t timeout t nak t ack 57 s pack 274 s pwd aaa-006993
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 47 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 10.8 read_sig the read_sig command returns an ic specif ic, 32-byte ecc signature, to verify nxp semiconductors as the silicon vendor. the si gnature is programmed at chip production and cannot be changed afterwards. the command structure is shown in figure 22 and ta b l e 4 0 . ta b l e 4 1 shows the required timing. [1] refer to section 9.2 ? timings ? . details on how to check the signature value are provided in the following application note ( ref. 5 ). it is foreseen to offer an online and offline way to verify originality of ntag21x. fig 22. read_sig command crc crc addr nfc device cmd sign ntag ,,ack'' 368 s 2907 s ntag ,,nak'' nak time out t timeout t nak t ack 57 s aaa-006994 table 40. read_sig command name code description length cmd 3ch read ecc signature 1 byte addr 00h rfu, is set to 00h 1 byte crc - crc according to ref. 1 2 bytes signature - ecc signature 32 bytes nak see table 22 see section 9.3 4 bit table 41. read_sig timing these times exclude the end of communication of the nfc device. t ack/nak min t ack/nak max t timeout read_sig n=9 [1] t timeout 5 ms
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 48 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 11. limiting values stresses exceeding one or more of the lim iting values can cause permanent damage to the device. exposure to limiting values for ex tended periods can affect device reliability. [1] ansi/esda/jedec js-001; human body model: c = 100 pf, r = 1.5 k ? 12. characteristics table 42. limiting values in accordance with the absolute maximum rating system (iec 60134). symbol parameter min max unit i i input current - 40 ma p tot total power dissipation - 120 mw t stg storage temperature ? 55 125 ?c v esd electrostatic discharge voltage on la/lb [1] 2- k v table 43. characteristics symbol parameter conditions min typ max unit t amb ambient temperature ? 25 - 70 ?c c i input capacitance - 50.0 - pf f i input frequency - 13.56 - mhz eeprom characteristics t ret retention time t amb = 22 ? c10--year n endu(w) write endurance t amb = 22 ? c 100.000 - - cycle
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 49 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 13. wafer specification for more details on the wafer delivery forms see ref. 5 . [1] the step size and the gap between chips may vary due to changing foil expansion [2] pads gnd and tp are disconnected when wafer is sawn table 44. wafer specifi cations NTAG213/215/216 wafer diameter 200 mm typical (8 inches) maximum diameter after foil expansion 210 mm thickness nt2l1x11g0dud nt2l1x11g0duf 120 ? m ? 15 ? m 75 ? m ? 10 ? m flatness not applicable potential good dies per wafer (pgdw) 86470 wafer backside material si treatment ground and stress relieve roughness r a max = 0.5 ? m r t max = 5 ? m chip dimensions step size [1] x = 505 ? m y = 720 ? m gap between chips [1] typical = 20 ? m minimum = 5 ? m passivation type sandwich structure material psg / nitride thickness 500 nm / 600 nm au bump (substrate connected to vss) material > 99.9 % pure au hardness 35 to 80 hv 0.005 shear strength > 70 mpa height 18 ? m height uniformity within a die = ? 2 ? m within a wafer = ? 3 ? m wafer to wafer = ? 4 ? m flatness minimum = ? 1.5 ? m size la, lb, gnd, tp [2] =60 ? m ? 60 ? m size variation ? 5 ? m under bump metallization sputtered tiw
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 50 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 13.1 fail die identification electronic wafer mapping covers the electrical test results and additionally the results of mechanical/visual inspection. no ink dots are applied. 13.2 bare die outline for more details on the wafer delivery forms see ref. 5 .
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 51 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory fig 23. bare die ou tline NTAG213/215/216 aaa-008074 x [m] y [m] chip step bump size la, lb, gnd, tp 505 (1) 60 720 (1) 60 (1) the air gap and thus the step size may vary due to varying foil expansion (2) all dimensions in m, pad locations measured from metal ring edge (see detail) typ. 505,0 (1) typ. 720,0 (1) 43,0 423,0 638,0 typ. 20,0 (1) lb gnd la tp x y 43,0 min. 5,0 typ. 20,0 (1) min. 5,0
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 52 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 14. abbreviations table 45. abbreviations and symbols acronym description ack acknowledge atqa answer to request, type a crc cyclic redundancy check cc capability container ct cascade tag (value 88h) as defined in iso/iec 14443-3 type a ecc elliptic curve cryptography eeprom electrically erasable programmable read-only memory fdt frame delay time ffc film frame carrier ic integrated circuit lcr l = inductance, capacitance, resistance (lcr meter) lsb least significant bit nak not acknowledge nfc device nfc forum device nfc tag nfc forum tag nv non-volatile memory reqa request command, type a rf radio frequency rfui reserver for future use - implemented rms root mean square sak select acknowledge, type a secs-ii semi equipment communications standard part 2 tiw titanium tungsten uid unique identifier wupa wake-up protocol type a
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 53 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 15. references [1] iso/iec 14443 ? international organization for standardization [2] nfc forum tag 2 type operation, technical specification ? nfc forum, 31.05.2011, version 1.1 [3] nfc data exchange format (ndef), technical specification ? nfc forum, 24.07.2006, version 1.0 [4] an11276 ntag ante nna design guide ? application note, bu-id document number 2421** 1 [5] an11350 ntag21x originality signature validation ? application note, bu-id document number 2604** [6] general specification for 8" wafer on uv-tape; delivery types ? delivery type description, bu-id document number 1005** [7] certicom research. sec 2 ? recommended elliptic curv e domain parameters, version 2.0, january 2010 1. ** ... bu id document version number
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 54 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 16. revision history table 46. revision history document id release date data sheet status change notice supersedes NTAG213_215_216 v.3.0 20130724 product data sheet NTAG213_215_216 v.2.0 modifications: ? hexadecimal addresses for NTAG213 in figure 4 and tables 13 , 14 , 16 , 17 , 19 , 20 corrected ? dynamic lock bytes addresses for ntag215 ( figure 10 ) and ntag216 ( figure 11 ) corrected ? number of possible good dies per wafer (pgdw) and step size in ta b l e 4 4 corrected ? memory content in tables 13 , 14 , 16 , 17 , 19 , 20 corrected ? table 2 ? ordering information ? : corrected NTAG213_215_216 v.2.0 20130528 preliminary data sheet - - ? initial version
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 55 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 17. legal information 17.1 data sheet status [1] please consult the most recently issued document before initiating or completing a design. [2] the term ?short data sheet? is explained in section ?definitions?. [3] the product status of device(s) described in this document may have changed since this document was published and may differ in case of multiple device s. the latest product status information is available on the internet at url http://www.nxp.com . 17.2 definitions draft ? the document is a draft versi on only. the content is still under internal review and subject to formal approval, which may result in modifications or additions. nxp semiconductors does not give any representations or warranties as to the accuracy or completeness of information included herein and shall hav e no liability for the consequences of use of such information. short data sheet ? a short data sheet is an extract from a full data sheet with the same product type number(s) and title. a short data sheet is intended for quick reference only and should not be relied upon to contain detailed and full information. for detailed and full information see the relevant full data sheet, which is available on request vi a the local nxp semiconductors sales office. in case of any inconsistency or conflict with the short data sheet, the full data sheet shall prevail. product specification ? the information and data provided in a product data sheet shall define the specification of the product as agreed between nxp semiconductors and its customer , unless nxp semiconductors and customer have explicitly agreed otherwis e in writing. in no event however, shall an agreement be valid in which the nxp semiconductors product is deemed to offer functions and qualities beyond those described in the product data sheet. 17.3 disclaimers limited warranty and liability ? information in this document is believed to be accurate and reliable. however, nxp semiconductors does not give any representations or warranties, expressed or implied, as to the accuracy or completeness of such information and shall have no liability for the consequences of use of such info rmation. nxp semiconductors takes no responsibility for the content in this document if provided by an information source outside of nxp semiconductors. in no event shall nxp semiconductors be liable for any indirect, incidental, punitive, special or consequential damages (including - without limitation - lost profits, lost savings, business interruption, costs related to the removal or replacement of any products or rework charges) whether or not such damages are based on tort (including negligence), warranty, breach of contract or any other legal theory. notwithstanding any damages that customer might incur for any reason whatsoever, nxp semiconductors? aggregate and cumulative liability towards customer for the products described herein shall be limited in accordance with the terms and conditions of commercial sale of nxp semiconductors. right to make changes ? nxp semiconductors reserves the right to make changes to information published in this document, including without limitation specifications and product descriptions, at any time and without notice. this document supersedes and replaces all information supplied prior to the publication hereof. suitability for use ? nxp semiconductors products are not designed, authorized or warranted to be suitable for use in life support, life-critical or safety-critical systems or equipment, nor in applications where failure or malfunction of an nxp semiconductors product can reasonably be expected to result in personal injury, death or severe property or environmental damage. nxp semiconductors and its suppliers accept no liability for inclusion and/or use of nxp semiconducto rs products in such equipment or applications and therefore such inclusion and/or use is at the customer?s own risk. applications ? applications that are described herein for any of these products are for illustrative purpos es only. nxp semiconductors makes no representation or warranty that such applications will be suitable for the specified use without further testing or modification. customers are responsible for the design and operation of their applications and products using nxp semiconductors products, and nxp semiconductors accepts no liability for any assistance with applications or customer product design. it is customer?s sole responsibility to determine whether the nxp semiconductors product is suitable and fit for the customer?s applications and products planned, as well as fo r the planned application and use of customer?s third party customer(s). customers should provide appropriate design and operating safeguards to minimize the risks associated with their applications and products. nxp semiconductors does not accept any liability related to any default, damage, costs or problem which is based on any weakness or default in the customer?s applications or products, or the application or use by customer?s third party customer(s). customer is responsible for doing all necessary testing for the customer?s applic ations and products using nxp semiconductors products in order to av oid a default of the applications and the products or of the application or use by customer?s third party customer(s). nxp does not accept any liability in this respect. limiting values ? stress above one or more limiting values (as defined in the absolute maximum ratings system of iec 60134) will cause permanent damage to the device. limiting values are stress ratings only and (proper) operation of the device at these or any other conditions above those given in the recommended operating conditions section (if present) or the characteristics sections of this document is not warranted. constant or repeated exposure to limiting values will permanently and irreversibly affect the quality and reliability of the device. terms and conditions of commercial sale ? nxp semiconductors products are sold subject to the gener al terms and conditions of commercial sale, as published at http://www.nxp.com/profile/terms , unless otherwise agreed in a valid written individual agreement. in case an individual agreement is concluded only the terms and conditions of the respective agreement shall apply. nxp semiconductors hereby expressly objects to applying the customer?s general terms and conditions with regard to the purchase of nxp semiconducto rs products by customer. no offer to sell or license ? nothing in this document may be interpreted or construed as an offer to sell products t hat is open for acceptance or the grant, conveyance or implication of any lic ense under any copyrights, patents or other industrial or intellectual property rights. document status [1] [2] product status [3] definition objective [short] data sheet development this document contains data from the objecti ve specification for product development. preliminary [short] data sheet qualification this document contains data from the preliminary specification. product [short] data sheet production this document contains the product specification.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 56 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory export control ? this document as well as the item(s) described herein may be subject to export control regu lations. export might require a prior authorization from competent authorities. quick reference data ? the quick reference data is an extract of the product data given in the limiting values and characteristics sections of this document, and as such is not comple te, exhaustive or legally binding. non-automotive qualified products ? unless this data sheet expressly states that this specific nxp semicon ductors product is automotive qualified, the product is not suitable for automotive use. it is neither qualified nor tested in accordance with automotive testing or application requirements. nxp semiconductors accepts no liabili ty for inclusion and/or use of non-automotive qualified products in automotive equipment or applications. in the event that customer uses t he product for design-in and use in automotive applications to automotive specifications and standards, customer (a) shall use the product without nxp semiconductors? warranty of the product for such automotive applicat ions, use and specifications, and (b) whenever customer uses the product for automotive applications beyond nxp semiconductors? specifications such use shall be solely at customer?s own risk, and (c) customer fully in demnifies nxp semi conductors for any liability, damages or failed product claims resulting from customer design and use of the product for automotive app lications beyond nxp semiconductors? standard warranty and nxp semiconduct ors? product specifications. 17.4 licenses 17.5 trademarks notice: all referenced brands, produc t names, service names and trademarks are the property of their respective owners. mifare ? is a trademark of nxp b.v. 18. contact information for more information, please visit: http://www.nxp.com for sales office addresses, please send an email to: salesaddresses@nxp.com purchase of nxp ics with nfc technology purchase of an nxp semiconductors ic that complies with one of the near field communication (nfc) standards iso/iec 18092 and iso/iec 21481 does not convey an implied license unde r any patent right infringed by implementation of any of those standards.
NTAG213_215_216 all information provided in this document is subject to legal disclaimers. ? nxp b.v. 2013. all rights reserved. product data sheet company public rev. 3.0 ? 24 july 2013 265330 57 of 58 nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory 19. tables table 1. quick reference data . . . . . . . . . . . . . . . . . . . . .4 table 2. ordering information . . . . . . . . . . . . . . . . . . . . .4 table 3. pin allocation table . . . . . . . . . . . . . . . . . . . . . . .6 table 4. memory content at delivery NTAG213 . . . . . . .17 table 5. memory content at delivery ntag215 . . . . . . .17 table 6. memory content at delivery ntag216 . . . . . . .17 table 7. configuration pages . . . . . . . . . . . . . . . . . . . . .18 table 8. mirror configuration byte . . . . . . . . . . . . . . .18 table 9. access configuration byte . . . . . . . . . . . . . . .18 table 10. configuration parameter descriptions. . . . . . . .18 table 11. required memory space for ascii mirror. . . . .20 table 12. configuration parameter description. . . . . . . . .21 table 13. uid ascii mirror - physical memory content . .22 table 14. uid ascii mirror - virtual memory content. . . .23 table 15. configuration parameter description. . . . . . . . .24 table 16. nfc counter mirror - physical memory content25 table 17. nfc counter mirror - virtual memory content. .26 table 18. configuration parameter description. . . . . . . . .27 table 19. uid and nfc counter ascii mirror - physical memory content . . . . . . . . . . . . . . . . . . . . . . . .28 table 20. uid and nfc counter ascii mirror - physical memory content . . . . . . . . . . . . . . . . . . . . . . . .29 table 21. command overview . . . . . . . . . . . . . . . . . . . . .32 table 22. ack and nak values . . . . . . . . . . . . . . . . . . . .33 table 23. atqa response of the ntag21x . . . . . . . . . . .34 table 24. sak response of the ntag21x . . . . . . . . . . . . 34 table 25. get_version command. . . . . . . . . . . . . . . . 35 table 26. get_version timing. . . . . . . . . . . . . . . . . . . 35 table 27. get_version response for NTAG213, ntag215 and ntag216 . . . . . . . . . . . . . . . . . 36 table 28. read command . . . . . . . . . . . . . . . . . . . . . . . 37 table 29. read timing . . . . . . . . . . . . . . . . . . . . . . . . . . 37 table 30. fast_read command . . . . . . . . . . . . . . . . . . 39 table 31. fast_read timing . . . . . . . . . . . . . . . . . . . . . 39 table 32. write command. . . . . . . . . . . . . . . . . . . . . . . 41 table 33. write timing. . . . . . . . . . . . . . . . . . . . . . . . . . 41 table 34. compatibility_write command . . . . . . . . 43 table 35. compatibility_write timing . . . . . . . . . . . 44 table 36. read_cnt command. . . . . . . . . . . . . . . . . . . 45 table 37. read_cnt timing . . . . . . . . . . . . . . . . . . . . . . 45 table 38. pwd_auth command . . . . . . . . . . . . . . . . . . 46 table 39. pwd_auth timing . . . . . . . . . . . . . . . . . . . . . 46 table 40. read_sig command . . . . . . . . . . . . . . . . . . . 47 table 41. read_sig timing . . . . . . . . . . . . . . . . . . . . . . 47 table 42. limiting values . . . . . . . . . . . . . . . . . . . . . . . . 48 table 43. characteristics . . . . . . . . . . . . . . . . . . . . . . . . 48 table 44. wafer specifications NTAG213/215/216 . . . . . 49 table 45. abbreviations and symbols . . . . . . . . . . . . . . . 52 table 46. revision history . . . . . . . . . . . . . . . . . . . . . . . . 54 20. figures fig 1. contactless system . . . . . . . . . . . . . . . . . . . . . . . .2 fig 2. block diagram of NTAG213/215/216 . . . . . . . . . . .5 fig 3. state diagram. . . . . . . . . . . . . . . . . . . . . . . . . . . . .8 fig 4. memory organization NTAG213. . . . . . . . . . . . . . 11 fig 5. memory organization ntag215. . . . . . . . . . . . . . 11 fig 6. memory organization ntag216. . . . . . . . . . . . . .12 fig 7. uid/serial number . . . . . . . . . . . . . . . . . . . . . . . .12 fig 8. static lock bytes 0 and 1 . . . . . . . . . . . . . . . . . . .13 fig 9. NTAG213 dynamic lock bytes 0, 1 and 2 . . . . . .14 fig 10. ntag215 dynamic lock bytes 0, 1 and 2 . . . . . .14 fig 11. ntag216 dynamic lock bytes 0, 1 and 2 . . . . . .15 fig 12. cc bytes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .16 fig 13. frame delay time (from nfc device to nfc tag). . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .33 fig 14. get_version command. . . . . . . . . . . . . . . . . .35 fig 15. read command . . . . . . . . . . . . . . . . . . . . . . . . .37 fig 16. fast_read command . . . . . . . . . . . . . . . . . . . .39 fig 17. write command . . . . . . . . . . . . . . . . . . . . . . . .41 fig 18. compatibility_write command part 1 . . . . .43 fig 19. compatibility_write command part 2 . . . . .43 fig 20. read_cnt command. . . . . . . . . . . . . . . . . . . . .45 fig 21. pwd_auth command . . . . . . . . . . . . . . . . . . . .46 fig 22. read_sig command . . . . . . . . . . . . . . . . . . . . .47 fig 23. bare die outline NTAG213/215/216 . . . . . . . . . . .51
nxp semiconductors NTAG213/215/216 nfc forum t2t compliant ic with 144/504/888 bytes user memory ? nxp b.v. 2013. all rights reserved. for more information, please visit: http://www.nxp.com for sales office addresses, please se nd an email to: salesaddresses@nxp.com date of release: 24 july 2013 265330 please be aware that important notices concerning this document and the product(s) described herein, have been included in section ?legal information?. 21. contents 1 general description . . . . . . . . . . . . . . . . . . . . . . 1 1.1 contactless energy and data transfer. . . . . . . . 1 1.2 simple deployment and user convenience . . . . 2 1.3 security. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 1.4 nfc forum tag 2 type compliance . . . . . . . . . 2 1.5 anticollision. . . . . . . . . . . . . . . . . . . . . . . . . . . . 2 2 features and benefits . . . . . . . . . . . . . . . . . . . . 3 2.1 eeprom . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 3 applications . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 4 quick reference data . . . . . . . . . . . . . . . . . . . . . 4 5 ordering information . . . . . . . . . . . . . . . . . . . . . 4 6 block diagram . . . . . . . . . . . . . . . . . . . . . . . . . . 5 7 pinning information . . . . . . . . . . . . . . . . . . . . . . 6 7.1 pinning . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6 8 functional description . . . . . . . . . . . . . . . . . . . 6 8.1 block description . . . . . . . . . . . . . . . . . . . . . . . 6 8.2 rf interface . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 8.3 data integrity. . . . . . . . . . . . . . . . . . . . . . . . . . . 7 8.4 communication principle . . . . . . . . . . . . . . . . . 8 8.4.1 idle state . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 8.4.2 ready1 state. . . . . . . . . . . . . . . . . . . . . . . . . . 9 8.4.3 ready2 state. . . . . . . . . . . . . . . . . . . . . . . . . . 9 8.4.4 active state . . . . . . . . . . . . . . . . . . . . . . . . . 10 8.4.5 authenticated state . . . . . . . . . . . . . . . . . 10 8.4.6 halt state . . . . . . . . . . . . . . . . . . . . . . . . . . . 10 8.5 memory organization . . . . . . . . . . . . . . . . . . . 11 8.5.1 uid/serial number. . . . . . . . . . . . . . . . . . . . . . 12 8.5.2 static lock bytes (ntag21x) . . . . . . . . . . . . . . 12 8.5.3 dynamic lock bytes . . . . . . . . . . . . . . . . . . . . 13 8.5.4 capability container (cc bytes) . . . . . . . . . . . 16 8.5.5 data pages . . . . . . . . . . . . . . . . . . . . . . . . . . . 16 8.5.6 memory content at delivery . . . . . . . . . . . . . . 17 8.5.7 configuration pages . . . . . . . . . . . . . . . . . . . . 18 8.6 nfc counter function . . . . . . . . . . . . . . . . . . . 19 8.7 ascii mirror function . . . . . . . . . . . . . . . . . . . 20 8.7.1 uid ascii mirror function . . . . . . . . . . . . . . . . 21 8.7.1.1 uid ascii mirror example . . . . . . . . . . . . . . . 22 8.7.2 nfc counter mirror function . . . . . . . . . . . . . . 23 8.7.2.1 nfc counter mirror example . . . . . . . . . . . . . 25 8.7.3 uid and nfc counter mirror function . . . . . . . 26 8.7.3.1 uid and nfc counter mirror example . . . . . . 28 8.8 password verification protection . . . . . . . . . . . 30 8.8.1 programming of pwd and pack . . . . . . . . . . 30 8.8.2 limiting negative verification attempts . . . . . . 31 8.8.3 protection of special memory segments. . . . . 31 8.9 originality signature . . . . . . . . . . . . . . . . . . . . 31 9 command overview . . . . . . . . . . . . . . . . . . . . 32 9.1 ntag21x command overview . . . . . . . . . . . . 32 9.2 timings. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32 9.3 ntag ack and nak . . . . . . . . . . . . . . . . . . 33 9.4 atqa and sak responses. . . . . . . . . . . . . . . 34 10 ntag commands . . . . . . . . . . . . . . . . . . . . . . 35 10.1 get_version . . . . . . . . . . . . . . . . . . . . . . . 35 10.2 read . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37 10.3 fast_read . . . . . . . . . . . . . . . . . . . . . . . . . 39 10.4 write . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 41 10.5 compatibility_write. . . . . . . . . . . . . . . . 43 10.6 read_cnt . . . . . . . . . . . . . . . . . . . . . . . . . . 45 10.7 pwd_auth. . . . . . . . . . . . . . . . . . . . . . . . . . 46 10.8 read_sig. . . . . . . . . . . . . . . . . . . . . . . . . . . 47 11 limiting values . . . . . . . . . . . . . . . . . . . . . . . . 48 12 characteristics . . . . . . . . . . . . . . . . . . . . . . . . 48 13 wafer specification . . . . . . . . . . . . . . . . . . . . . 49 13.1 fail die identifica tion . . . . . . . . . . . . . . . . . . . 50 13.2 bare die outline . . . . . . . . . . . . . . . . . . . . . . . . 50 14 abbreviations . . . . . . . . . . . . . . . . . . . . . . . . . 52 15 references. . . . . . . . . . . . . . . . . . . . . . . . . . . . 53 16 revision history . . . . . . . . . . . . . . . . . . . . . . . 54 17 legal information . . . . . . . . . . . . . . . . . . . . . . 55 17.1 data sheet status . . . . . . . . . . . . . . . . . . . . . . 55 17.2 definitions . . . . . . . . . . . . . . . . . . . . . . . . . . . 55 17.3 disclaimers . . . . . . . . . . . . . . . . . . . . . . . . . . 55 17.4 licenses. . . . . . . . . . . . . . . . . . . . . . . . . . . . . 56 17.5 trademarks . . . . . . . . . . . . . . . . . . . . . . . . . . 56 18 contact information . . . . . . . . . . . . . . . . . . . . 56 19 tables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57 20 figures . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 57 21 contents. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 58


▲Up To Search▲   

 
Price & Availability of NTAG213

All Rights Reserved © IC-ON-LINE 2003 - 2022  
[Add Bookmark] [Contact Us] [Link exchange] [Privacy policy]
Mirror Sites :  [www.datasheet.hk]   [www.maxim4u.com]  [www.ic-on-line.cn] [www.ic-on-line.com] [www.ic-on-line.net] [www.alldatasheet.com.cn] [www.gdcy.com]  [www.gdcy.net]
 . . . . .
  We use cookies to deliver the best possible web experience and assist with our advertising efforts. By continuing to use this site, you consent to the use of cookies. For more information on cookies, please take a look at our Privacy Policy. X