ISO/IEC INTERNATIONAL STANDARD 13157-2 Second edition 2016-04-01 Information technology Telecommunications and information exchange between systems NFC Security - Part 2: NFC-SEC cryptography standard using ECDH and AES Technologies de I'information - Teleinformatique - Sécurité NFC Partie 2: Norme de cryptographie NFC-SEC utilisant ECDH et AES Reference number IS0/IEC 13157-2:2016(E) IEC S International Organization for Standardization STANDARDIZATIONC15956617 @ IS0/IEC 2016 ed without license from IHS IS0/IEC 13157-2:2016(E) COPYRIGHT PROTECTEDDOCUMENT IS0/IEC 2016, Published in Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO's member body in the country of the requester. ISO copyright office Ch. de Blandonnet 8 . CP 401 CH-1214 Vernier, Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22 749 09 47 [email protected] www.iso.org Licensee-ZHEJIANG INST OF STANDRJSA/IEC O6 - All rights reserved Not for Resale, 2016/6/2 08:48:11 networking permited without license from IHS ISO/IEC 13157-2:2016(E) Contents Page Foreword. Introduction. 1 Scope.. 2 Conformance 3 Normativereferences 4 Terms and definitions .. 5 Conventions and notations .. 5.1 Concatenation.... 5.2 6 Acronyms. 7 General 8 Protocol Identifier (PID) 9 Primitives 9.1 Key agreement... 9.1.1 CurveP-192. 9.1.2 EC Key Pair Generation Primitive.. 9.1.3 9.1.4 ECDH secret value derivation Primitive. 9.1.5 Random nonces.. 9.2 Key Derivation Functions. 9.2.1 KDF for theSSE 9.2.2 KDF for the SCH. 9.3 Key Usage ... 9.4 Key Confirmation.. 9.4.1 Key confirmation tag generation 9.4.2 Key confirmation tag verification 9.5 Data Encryption .. 9.5.1 Initial value of counter (IV) 9.5.2 Encryption... 9.5.3 Decryption 9.6 9.6.1 Protect data integrity. 9.6.2 Check data integrity .. 9.7 Message Sequence Integrity ....... 10 Data Conversions.. 10.1 Integer-to-Octet-String Conversion.... 10.2 Octet-String-to-lnteger Conversion, 10.3 Point-to-Octet-String Conversion . 10.4 Octet-String-to-Point Conversion.. 11 SSE and ScH service invocation. 11.1 11.2 Key Agreement. .10 11.2.1 Sender (A) Transformation.. 10 11.2.2 Recipient (B) Transformation. 10 11.3 Key Derivation .... 11 11.3.1 Sender (A) Transformation... Internatioal organization SQ/E2016All rights reserved Licensee=ZHEJIANG INST OF STANDARDIZATION C1 5956617 ili No reproduction or networking permitted without license from IHS Not for Resale, 2016/6/2 08:48:11