Amiibo Encryption Key 2021

By listening to the communication between a legitimate amiibo and a Wii U—sniffing the radio waves—they could capture the handshake. Combined with the ability to write to blank chips via the industrial writer, they could now clone an amiibo perfectly.

On writing: console re-encrypts with updated counters + salt, updates HMAC. amiibo encryption key

While the encryption algorithm (AES-128) is public, the are Nintendo’s trade secrets. Reverse engineering for personal/educational use is often tolerated, but distributing keys or enabling cloning of amiibo (e.g., mass-producing spoofed tags) is likely illegal under DMCA (anti-circumvention) and similar laws. By listening to the communication between a legitimate

Once decrypted, software like amiitool allows users to modify the saved data inside the amiibo. While the encryption algorithm (AES-128) is public, the

The system was brilliant in its simplicity. When you placed an amiibo on a Wii U GamePad, the console sent a challenge to the chip. The chip used its secret key to mathematically sign the response. If the math checked out, the console unlocked the in-game content. If you tried to copy the data onto a blank sticker or a generic NFC tag, the console would scoff. The copy might look right, but without the specific cryptographic signature generated by the secret key, the console saw an intruder.

Each amiibo “series” (Smash Bros., Zelda, Animal Crossing, etc.) uses — but all amiibo share the same key per series type (not per figure).