manualshive.com logo in svg

Sunricher SR-SBP2801-BLE-E, Instructions Manual

The Sunricher SR-SBP2801-BLE-E user manual is available for free download from manualshive.com. This manual provides detailed instructions on how to use and set up the product, ensuring a seamless experience for all users. Get your manual today and unlock the full potential of your Sunricher device.

Share
Download
background image

6.2.8 Password authentication 
(PWD_AUTH) command

The protected memory area can be accessed 
only after successful password verification via 
the PWD_AUTH command.

The PWD_AUTH command takes the 
password as parameter and, if successful, 
returns the password authentication 
acknowledge, PACK.

Figure 25 below shows the password 
authentication sequence.

Figure 25 – Password authentication sequence

After successful authentication, the password can be changed by writing the new password to memory page 
0xE5.

Note that a read access to page 0xE5 always return 0x00000000, i.e. it is not possible to read out the current 
PIN code.

6.3 Using TWN4 as USB NFC reader

Elatec RFID Systems provides a PC software called “Director” as part of their software sup- port package. At 
the time of writing, this was available from this address: https://www.elatec-rfid.com/en/download-
center/contact-form-twn4-devpack-sdk/

Figure 26 below shows the user interface of this software.

Figure 26 – User interface of TWN4 Director

By using this software, it is easily possible to generate the required serial commands that have to be sent via 
CDC / Virtual COM port to TWN4 and understand the structure of the response that will be received back.

6.3.1 Useful commands

The following commands are especially useful:

1.SearchTag(maximum ID bytes)
Used to search for a connected tag and identify type and ID of such tag. This should always be used as first 
operation ahead of any read / write / authenticate actions. Example: SearchTag(32)

2.NTAG_PwdAuth(32 bit password as hex bytes, 16 bit password_ack as hex bytes)
Used to authenticate access to the protected memory area 
Example: NTAG_PwdAuth(0x00 0x00 0xE2 0x15, 0x00 0x00)

3.NTAG_Read(page)
Used to read one page of data
Example: NTAG_Read(0x04)

4.NTAG_Write(page, data)
Used to write one page of data
Example: NTAG_Write(0x40, 0x12 0x34 0x56 0x78)

5.NTAG_Write(0xE5, PIN Code)
Used to set a new pin code by writing to page 0xE5
Example: NTAG_Write(0xE5, 0x12 0x34 0x56 0x78)

6.3.2 Translation into binary data

In order to use these commands within a user application, they have to be translated into raw data. This can be 
done by enabling the “Show Raw Data” feature in the command log of the Director software as shown in Figure 
27 below.

Figure 27 – Enabling raw data display

This raw data can then be transmitted to TWN4 via a virtual COM port. TWN4 will respond to the request with 
the corresponding response as shown in Figure 28 below.

Figure 28 – Binary data exchange

6.4 Configuration memory organization

The SR-SBP2801-BLE-E configuration 
memory is divided into the following areas:

1.Public data

2.Protected data

In addition to that, SR-SBP2801-BLE-E 
maintains a private configuration memory 
region used to store default parameters and 
confidential information which is not 
accessible to the user.

Figure 29 below shows the configuration 
memory structure used by SR-SBP2801-BLE-
E.

Figure 29 – Configuration memory structure

Summary of Contents for SR-SBP2801-BLE-E

Page 1: ...Wall Switches and US style rocker pads 1 2 Technical data Dimensions Weight Security Power Supply Button Inputs Communication Range guidance only Max transmit power measured Antenna Communication Sta...

Page 2: ...o channels Channel A and Channel B each containing two button contacts State O and State I The state of all four button contacts pressed or not pressed is transmitted together with a unique device ide...

Page 3: ...he two channel radio transmission sequence removes transmission on the third radio channel selected by TX_CHANNEL3 and instead repeats the transmission once more four times in total The SR SBP2801 BLE...

Page 4: ...key as identity resolution key This key can be modified if needed via the NFC configuration interface as described in chapter 6 7 5 For each data telegram transmitted by SR SBP2801 BLE E i e for every...

Page 5: ...lease Action then this is indicated by the according status bit set to 1 Note that all contacts that were pressed during Press Action will be released during Release Action The case of continuing to h...

Page 6: ...key as part of the NFC based commissioning process To do so follow the procedure outlined in chapter 6 7 5 For additional security NFC read out of the new security key can be disabled by setting the P...

Page 7: ...ssioning mode Button_X is pressed or released again 5 3 3 Exit from commissioning mode Pressing any key except the button used for entry into commissioning mode Button_X will cause SR SBP2801 BLE E to...

Page 8: ...e Any other data received by the NFC tag while in IDLE state is discarded and the NFC tag will remain in IDLE state 6 2 3 READY 1 state READY 1 is the first UID resolving state where the NFC tag resol...

Page 9: ...ID of such tag This should always be used as first operation ahead of any read write authenticate actions Example SearchTag 32 2 NTAG_PwdAuth 32 bit password as hex bytes 16 bit password_ack as hex b...

Page 10: ...FC Data SR SBP2801 BLE E reserves 64 byte for customer specific NFC data see chapter 6 7 11 specific security measures are used to restrict read access to this data The following items are located in...

Page 11: ...and release the button of SR SBP2801 BLE E SR SBP2801 BLE E will determine that it should modify the security key based on the setting of the Update Security Key flag and copy the value of the Securit...

Page 12: ...ngs 6 7 9 2 Interval selection Starting with version DC 06 it is possible to reduce the transmission interval from the default setting of 20 ms to 10 ms by setting bit 3 of the Variant register Settin...

Page 13: ...product label encodes key product parameter according to the ANSI MH10 8 2 2013 industry standard The QR code shown in Figure 32 above encodes the following string 30SE280101500100 Z0123456789ABCDEF0...

Page 14: ...estricting transmission range include Switch mounting on metal surfaces up to 30 loss of transmission range Hollow lightweight walls filled with insulating wool on metal foil False ceilings with panel...

Page 15: ...advertising intervals then the scan interval has to be less than the time between the end of the first advertising event and the begin of the third advertising event 2 10 ms 20 ms minus 0 5 ms telegra...

Page 16: ...ules Operation is subject to the following two conditions 1 this device may not cause harmful interference and 2 this device must accept any interference received including interference that may cause...

Page 17: ...essage shown above can be parsed into the following components keep in mind the little endian byte order BLE Access Address 4 byte 0x8E89BED6 BLE Frame Control 2 byte 0x2442 Size of source address pay...

Page 18: ...rameter Comment Description Example Length Field Size Size in bytes of the field used to encode the input length 2 always minimum permissible size Desired size in byte of the signa ture generated by t...

Page 19: ...for a description of the commission telegram structure The location of the security key is for reference highlighted above This means that the security key of this red device is 3DDA31AD44767AE3CE56D...

Page 20: ...table XOR calculator could be found here http xor pw The execution sequence would then be as follows X_1 AES128 B0 Key X_1 AES128 49B819000015E25D0400000000000000 3DDA31AD44767AE3CE56DCE2B3CE2ABB X_1...

Page 21: ...15E2630400000000000000 3DDA31AD44767AE3CE56DCE2B3CE2ABB X_1 ab5ec24beabc9ddeeb73751c7734cc64 X_1A XOR X_1 B_1 X_1A XOR ab5ec24beabc9ddeeb73751c7734cc64 000B0EFFDA0363040000111234000000 X_1A ab55ccb430...

Reviews:

No comments

Related manuals for SR-SBP2801-BLE-E

Hagie 2101 Operator'S Manual Supplement preview
2101
Brand: Hagie Pages: 61
JackJaw 301 Assembly And Operating Instructions preview
301
Brand: JackJaw Pages: 2
Landoll 2510 Series Operator'S Manual preview
2510 Series
Brand: Landoll Pages: 34
Faderfox DL3 User Manual preview
DL3
Brand: Faderfox Pages: 8
p-light Maxi Installation And Instructions For Use preview
Maxi
Brand: p-light Pages: 28
R.M. Young 32500 Quick Start Manual preview
32500
Brand: R.M. Young Pages: 10
FarmTek Growers Supply 109722 Manual preview
Growers Supply 109722
Brand: FarmTek Pages: 9
Gamry Instruments LPI1010 Operator'S Manual preview
LPI1010
Brand: Gamry Instruments Pages: 69
Gamry Instruments MultiPort Operator'S Manual preview
MultiPort
Brand: Gamry Instruments Pages: 30
Gamry Instruments Interface 1000 Operator'S Manual preview
Interface 1000
Brand: Gamry Instruments Pages: 88
Rayger Lite Instruction Manual preview
Lite
Brand: Rayger Pages: 2
Kärcher SC 2 Deluxe EasyFix Operating Instructions Manual preview
SC 2 Deluxe EasyFix
Brand: Kärcher Pages: 12
Kärcher KM 70/15 C Manual preview
KM 70/15 C
Brand: Kärcher Pages: 16
Kärcher SP 16.000 Dirt Manual preview
SP 16.000 Dirt
Brand: Kärcher Pages: 148
SHOWTEC LED PowerBank 48 Product Manual preview
LED PowerBank 48
Brand: SHOWTEC Pages: 12
Zimmer GED5000IL Series Installation And Operating Instructions Manual preview
GED5000IL Series
Brand: Zimmer Pages: 52
KAM Powercan15W Manual preview
Powercan15W
Brand: KAM Pages: 5
Masalta MS100-4 Operation Manual preview
MS100-4
Brand: Masalta Pages: 13

Brands by name

Popular brands

Load more brands