LEAF Community Debuts LEAF Verified Credential With Asymmetric Encryption
LEAF Community’s LEAF Verified credential, developed with contributions from members including Wavelynx, is built on NXP’s MIFARE DUOX technology and uses public key cryptography to enhance security and interoperability in access control systems.
The LEAF Community has launched LEAF Verified, a next-generation access credential built on NXP’s MIFARE DUOX technology designed to simplify encryption key management and enable broader interoperability across physical access control systems.
LEAF Verified embeds Public Key (PK) cryptography at the chip manufacturing stage, providing secure authentication from the moment credentials are produced and achieving EAL 6+ certification, the highest commercial security standard available.
Julia Webb-Twoomey, vice president of Credentials at Wavelynx, said LEAF Verified is intended to challenge long-standing assumptions that vulnerable credentials and complex key management are unavoidable. She noted the credential eliminates vulnerabilities at the chip level, deploys quickly and turns every credential into a platform that can deliver additional value.
LEAF Verified uses certificate-based PK authentication with asymmetric encryption instead of traditional shared-key methods. Each credential carries a public key for sharing and a private key embedded securely within the card during manufacturing, a structure that makes credential cloning nearly impossible, according to an announcement.
The platform is also designed to support enterprises managing compliance requirements such as SOC 2, PCI-DSS, HIPAA and FIPS, with a certificate-based approach that simplifies audit trails while limiting exposure of sensitive data.
LEAF Community officials stated public key cryptography enables one credential to work across any LEAF compatible device from any manufacturer, removing single-vendor limitations and giving organizations flexibility to choose best-in-class solutions for different applications.
LEAF Verified is also described as extending beyond simple access control. Using NFC Data Exchange Format (NDEF) technology, tapping a LEAF Verified card on an NFC-enabled smartphone can direct users to a unique URL where partners can deliver personalized services, from self-service enrollment to support portals or visitor management workflows.
The LEAF Community unites industry stakeholders to push access control forward with universal integration standards and credentials that reduce vendor lock-in and complexity in physical security deployments.