I am using the CryptoTokenKit API in order to communicate with smart cards through NFC, with TKSmartCardSlotNFCSession. I call the createNFCSlotWithMessage method from TKSmartCardSlotManager, which displays successfuly the NFC dialog. However, when I put any smart card next to the phone, the NFC dialog shuts down instantly. I notice the following log in the system console:
-[_NFReaderSession(Entitlement) validateAID:allowsPrefixMatch:]:317 Non-permissible identifier: A000000308000010000100
When I add the A000000308000010000100 AID mentioned in the error message to the Info.plist of my application, the NFC dialog does not shut down anymore and I am able to communicate with the smart card (using TKSmartCard).
This behavior has been reproduced on an iPhone 16e, iOS 26.4.
This AID does not correspond to anything in the smart card. It seems to be related to PIV, but this behavior also occurs with cards that are not PIV (PKCS#15...). Also, with an implementation using CoreNFC API instead of CryptoTokenKit API, this AID is not needed to be able to communicate with the card, so it seems CryptoTokenKit-specific. I did not find anything related to this in the documentation, have I missed something here ? Is this a special AID that is required all the time to work with NFC through CryptoTokenKit ?
I’m not entirely sure who allocates AID values, but some rummaging around on the ’net confirms that AID A000000308000010000100 is definitely associated with PIV.
As to your current issue, the doc comments in <CryptoTokenKit/TKSmartCard.h> for the -[TKSmartCardSlotManager createNFCSlotWithMessage:completion:] method says:
Warning Caller requires
com.apple.developer.nfc.readersession.iso7816.select-identifiersInfo.plistrecord which specifies application identifiers of the NFC cards link
which suggests that your solution is the right one.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"