MIFARE Plus is a replacement card for the MIFARE Classic. It provides an easy upgrade of existing infrastructures toward high security. The applicative data management is identical to the MIFARE Classic, however the security management requires the modification of the installed reader base. Other features include:

-2Kbytes or 4Kbytes of memory.

-7 or 4 bytes UID. Optional supporting random UID.

Support for 128-bit AES.

-Common Criteria certified at level EAL 4+.

-MIFARE Plus S for simple migration or MIFARE Plus X with many eXpert commands.

-Security upgrade with cards in the field.

It differs from DESFire EV1 in not being as flexible as the latter.

MIFARE Plus has been publicly announced in March 2008 with availability of first samples in Q1 2009.

MIFARE Plus, when used in older transportation systems that do not yet support AES on the reader side, still leaves an open door to attacks. Though it helps to mitigate threats from attacks that broke the Crypto-1 cipher through the weak random number generator, it does not help against attacks that do not take into account the weak random number generator. Such attacks are the brute force attacks and cryptoanalytic attacks.