💳About Card

Tap and Go Cards are Mifare Classic 1K cards which is a type of contactless smart card that uses radio frequency identification (RFID) technology to communicate with a card reader. The card consists of a microprocessor chip and an antenna, and it is typically used for applications such as access control, public transportation, and payment systems.

Tap and Go has a memory capacity of 1 kilobyte, which is divided into 16 sectors, each with 4 blocks of data. Each sector can be individually configured with access controls to allow or restrict reading, writing, and other operations

The card uses a proprietary protocol called the Mifare Classic protocol to communicate with the card reader. This protocol uses a combination of encryption and authentication techniques to secure the data on the card and prevent unauthorized access

Reading our Cards

• To use a Tap and Go card, a card reader sends a request to the card to initiate communication. The card responds with its unique identifier and other information, such as the type of card and the version of the Mifare Classic protocol it supports. The card reader then authenticates the card using a shared secret key and establishes a secure connection for exchanging data. Once the connection is established, the card reader can read or write data to the card's memory blocks or perform other operations, depending on the access controls set for each sector. When the card is no longer needed, the card reader can terminate the connection and the card will enter a dormant state until it is needed again

• There's an alternative way to read our using the initial RFID card ID. Since user's transactions are ABT (Account Based Transactions). Each card has been linked with the tap and go card number and the RFID serial ID. RFID Card is can be read using a standard RFID reader.

• Using Android NFC Reader.

Security

1. We use strong and unique keys for each card: The security of our Tap and Go cards relies on the strength of the secret keys that are used to authenticate the card and encrypt the data. It is important that we use strong and unique keys for each card to prevent attackers from guessing or brute-forcing the keys and accessing the card's data.

2. Additionally, no sensitive data is written onto the cards like Balance, User Details. We only store the unique card number for user identification. The number is then linked a user's account. All Transactions are done with our secure payment network.

3. Implementing a secure key management system: It is important that we securely store and manage the keys used to authenticate and encrypt the data on Mifare Classic 1K cards. This was done by implementing a secure key management system that uses strong passwords, two-factor authentication, and other security measures to protect the keys from unauthorized access.

4. Using the highest level of encryption available: Our Tap and Go cards support different levels of encryption, ranging from no encryption to AES-128 encryption.

5. Use physical security measures: It is also important to use physical security measures to protect our cards and card readers from unauthorized access. Each card has a anti theft case which is we issue to user when they purchase the card. This will prevent unauthorised card readers from reading card.