VivoKey Apex update

Hello everyone!

After such a long wait, we finally have an update regarding the VivoKey Apex product.

Customized P71 sample chips received

Originally we were going to base what was then called the UKI (“you” “key”) on the NXP P40 SmartMX chip. This was in 2016. I installed a prototype into my arm and hopped on a plane to CeBIT in Germany. Then a bug was discovered in the P40 that would brick the chip in an unrecoverable state if the field coupling was too weak to support a garbage collection routine’s data writing processes. We were advised to wait for the release of the P60 SmartMX2 chip, so we waited… 2 years.

By March 2018, the P60 SmartMX2 chip became available to us. It was faster and had more memory capacity. By this time the Dangerous Things product UKI had become the Dangerous Things product called VivoKey. Ultimately we ended up starting VivoKey as a separate company and the product itself became the VivoKey Flex One. We launched a beta program for the Flex One, and many participated. Immediately though, the beta program bore sour fruit… a similar bug was discovered in the P60 which would brick the chip unrecoverably if the field coupling was weak and underpowered the chip during applet management (deployment or removal). This is not the exact same bug, but a very similar bug. We were enraged and ultimately devastated. There was nothing to do but issue a recall. At the same time we could not let an entire company like VivoKey sit fallow, so we started work on the VivoKey Spark product and the backend platform for identity validation. Again, we were told by NXP to wait for the P71 SmartMX3 for these problems to be solved.

At this point we considered other chips, but honestly the SmartMX chip line is one of the only contactless smart card chips in the world that will do a couple very critical things; 1) offer the ability to completely segregate an applet or collection of applets into separate security domains so they can’t mess with each other, and 2) perform public private key pair generation on the chip itself. The first feature is critical for partnership with Fidesmo, and the second feature is critical for creating public keys which nobody has the private key for except the chip itself. Most other chips require you to generate the key pairs externally and push the keys into the chip. This creates a whole bundle of security problems we would really rather avoid all together… so we settled on being patient and waiting for NXP to release the P71 SmartMX3.

After a very long wait, the P71 was released… but this hurdle was only half the battle. Like the P60, the P71 was split into two chip types… SECID and EMV. This meant that payment applets could be loaded on the EMV version but it would not support many crypto functions required for secure ID like RSA, ECC, etc. and many applets that require those types of functions would not work… and the SECID version would not support payment applets. So, VivoKey and Fidesmo both needed a version of the chip that did both. So, Fidesmo worked for many many months to create a custom ROM mask for the P71 that solved this problem. After many tests and adjustments and additional months of waiting, we finally have a custom “Fidesmo” version of the P71 with both capabilities baked in.

We received a very small number of sample chips last week, and I was finally able to make a handful and provision with Fidesmo as VivoKey devices for testing.

The test sample was immediately recognized as a VivoKey Apex Flex.

We are now working on a battery of tests with the few samples we have.

Payment features WILL NOT WORK

The one feature everyone has been waiting for is contactless payment. The Apex line will technically be capable of performing contactless payment on both MasterCard and Visa networks. The payment applications for both MasterCard and Visa, which must be loaded onto the chip in a secure facility (NXP factory), will be present on the Apex chips. The security keys required to perform contactless tokenized payment and in-the-field token updates will also be loaded. This means the chip can be tokenized to any card account tied to a supporting bank in the field. This means if the card account in question expires, the Apex can be re-tokenized to a new card account and continue making contactless payments.

However…

Apex will not be allowed to be tokenized to any card accounts or make contactless payments upon release. MasterCard and Visa have still not authorized any implantable devices on their networks and we’ve been instructed they have no plans to do so now or for the foreseeable future. This means that while technically the Apex has all the required applications and keys to make contactless payment, those features will not be usable upon release. You will not be able to use the Apex to make contactless payments at this time, and possibly never.

We do have some plans to move forward with both MasterCard and Visa which are in the works, but we cannot in any way guarantee anything what so ever with regard to making contactless payment with the Apex line now or ever.

If you are interested in a contactless payment implant, your best bet is to get one of the existing conversions or “traditional” payment instruments which do have an expiration date that is typically between 2 to 4 years, and will need to be removed and / or replaced, but you will have a working payment implant and it should work well for you while we all wait for the miracle of a legitimate tokenzied payment implant to become reality.

Release plan for Apex Flex & Apex Max

At this time, we only have a very small handful of P71 sample chips to perform testing with. There is no ETA for obtaining more MOB packaged chips to make Apex Flex with, just as there is no ETA for obtaining bare die P71 chips for making Apex Max 3mm glass implants with either. What we do know is that MOB packaged chips for Flex should technically become available well before the die chips for Apex Max become available.

Once we do have sufficient MOB packaged chips for making Apex Flex with, our immediate obligation is to our Flex One beta customers. If we have an order on file for you for a Flex One beta product, you can expect an email from us soon to confirm your understanding that you will be getting an Apex Flex replacement for your Flex One beta unit. There may be some small cost involved a shipping fee or something like that, but for all intents and purposes your Apex Flex will be a free replacement for the Flex One beta unit. Also, you will not have to return your Flex One beta unit.

Again we have no ETAs for any of this, but we suspect we can obtain sufficient MOB packaged customized P71 chips and begin shipping Apex Flex in early 2021.

53 Likes

Can I be the first to say.

FUCK YEAH!

Can’t wait for preorders like you said yes I want payment but the fact it can be tokenism in the field means I’m happy to get one with the future use case in mind.

11 Likes

Woohoo! I’m more happy for you that that particular hurdle has been overcome. This is great news!

8 Likes

Never thought I’d read those words in 2020.

^^

10 Likes

Of course, with the MOB package P71 we are also exploring a custom jumbo sized circle version that is 25mm diameter with blinkies :wink:

22 Likes

Hell yeah!

I’m quite excited for Apex Max myself, with or without payment, having a Javacard implant that I can run my code in sounds amazing.

4 Likes

Oooooooooooo now I gotta decide if I want to hold off on a flexMT or flexNExT

3 Likes

I don’t even know how to describe my feelings rn…

4 Likes

This microchip used to be dangerous if I am correct for humans?

3 Likes

Congrats @amal! This has been a long time coming! Hopefully you can take a while to relax; you’ve earned it. I’m looking forward to the updates!

5 Likes

No this is a safe type of implant. We use a biocompatible polymer resin to make these. We call them “flex” implants, however some of the transponders we encapsulate are not actually flexible (like the flexEM - dngr.us/flexem)

6 Likes

Not likely I imagine there is lots to do now :sweat_smile:

3 Likes

NEVER! hahah so much to do…

9 Likes

A Vivokey that may eventually be able to handle payments And has blinkies!? My wildest dreams are coming true at last!

4 Likes

Literally, me while reading this. I am so happy!
As soon as it hits the store im getting a flex. Im avoiding the max because I have tested my NExT on the most common payment terminal in my area and it does read (and give an error) but holy hell is it absurdly hard to get a read with the x series on a payment term. not something i want to do regularly. big circle is a bit much for me though…

4 Likes

I’m excited to get you guys some actual chips and be able to show off all the work we put into the apps - which we are indeed coming back to, by the way.

7 Likes

Don’t! It’ll add 25 years to the EMV certification process!

4 Likes

11 Likes

Oh this is fantastic news! I’m so glad that you have persisted through all this and played the long con to get these things! I doubt you’d thought it’d be 2021 before you’d have the Vivokey (UKI) shipped out, but at least it’ll be a much more robust and capable chip than it would’ve been with a P40 under the hood.

Best of luck with the rest of the process, and thanks for the continuous effort!:slight_smile:

3 Likes

It has been highly frustrating, but at least this time around we were able to do initial break-testing before the P71 chips came to us in the Flex-format (I was able to obtain P71 PVC card samples last year).

Edit: I’ve tried to break it so far, and haven’t been able to. It also let me set all the apps up so we’re mostly ready to go.

3 Likes