pcsc-tools | Some tools to be used with smart cards and PC/SC | Video Game library

I am building a Windows/Java program (using javax.smartcardio) to communicate with Jewel/Topaz512 tags (from Innovision/Broadcom) using an ACR122U device (with a PN532 NFC Controller chip inside).

I implemented the Topaz512 protocol (from this data sheet) but only half of my commands are working.

• Some commands that work: RID, RALL, READ, WRITE-NE, RSEG
• Some commands that don't work: WRITE-E, READ8, WRITE-E8, WRITE-NE8

For instance, here is what I get when I send a WRITE-NO-ERASE command:

Command: FF:00:00:00:0C:D4:40:01:1A:7F:42:38:01:9A:00:17:E8

Where:

• D4:40:01 is the InDataExchange command,
• 1A:7F:42 is the WRITE-NO-ERASE command (value: 0x42, block 0x0F, byte 7),
• 38:01:9A:00 is the 4-bytes tag UID,
• 17:E8 is the CRC.

Response: D5:41:00:42:90:00

Here the response is correct: 0x42. The status byte (0x00) informs that everything went well.

And here is what I get when I send a WRITE-WITH-ERASE command:

Command: FF:00:00:00:0C:D4:40:01:53:7F:42:38:01:9A:00:28:6E

Where:

• D4:40:01 is the InDataExchange command,
• 53:7F:42 is the WRITE-WITH-ERASE command (value: 0x42, block 0x0F, byte 7),
• 38:01:9A:00 is the 4-bytes tag UID,
• 28:6E is the CRC.

Response: D5:41:01:90:00

Here, the status byte (0x01) informs of a timeout detected by the PN532. (From the PN532 documentation (p67): "Time Out, the target has not answered - 0x01")

Also when I remove the PN532 timeouts (with FF:00:00:00:06:D4:32:02:00:00:00) non-working commands do not respond D5:41:01:90:00, but wait longer, then I get no response.

I just tried to execute the commands using gscriptor (from the pcsc-tools suite) and I got the same behavior. Here are my results:

The script: