How correct protect NXP NTAG215 for read/write

Question

i've an big trouble with my NTAG215 tags.

I use this PDF below for reffer:

https://www.nxp.com/docs/en/data-sheet/NTAG213_215_216.pdf

COMMANDS

I send these raw commands:

AUTH TAG ( with default password )

nfc.transceive('1B FF FF FF FF')

CHANGE DEFAULT PASSWORD

nfc.transceive('A2 85 AA BB CC DD')

SET PACK

nfc.transceive('A2 86 EE FF 00 00')

PROTECT ADDRESS 04 TO 81

nfc.transceive('A2 83 04 00 00 04')

ENABLE READ/WRITE PROTECTION

nfc.transceive('A2 84 10 00 00 00')

After send these commands, i read my NTAG215, and confirm results, but...i can read all memory blocks without PWD ( 1B command ).

I need protect these memory blocks from read without correct password.

Thanks for all help guys.

Answer 1

for disabling the write protection. you need to set the AUTH0 from 00 to FF. first authenticate by

nfc.transceive('1B FF FF FF FF')

then

nfc.transceive('A2 83 04 00 00 FF')

Answer 2

nfc.transceive('A2 84 80 00 00 00') after send this command now how i can disable READ/WRITE PROTECTION

Answer 3

Everything looks fine except for the last command.

ENABLE READ/WRITE PROTECTION
nfc.transceive('A2 84 10 00 00 00')

In order to enable the protection the command must be as follows:

nfc.transceive('A2 84 80 00 00 00')

Answer 4

So once a "session" is authenticated it stays authenticated until the session ends.

So if you connect with no/default/existing password, you then have to remove the Tag from the RF field so that the session ends.

The next time the Tag enters RF fields it will need authenticating again with the new password.