If I store game data on an amiibo, does that mean I can't ... - Nintendo

Several other tools leverage the encryption keys for editing and emulation:

Static information like the character ID is hardcoded and signed by Nintendo. Read/Write Data:

Because the consoles must contain the encryption keys to read the figurines, developers eventually extracted the master keys directly from the RAM of hacked Nintendo Wii U and 3DS consoles.

use these keys to translate the raw hex data from an amiibo into a readable format. Writing to Tags:

One of the NTAG215’s features is a password-based access control mechanism. Nintendo implemented this feature to provide an additional layer of security. The password is of the Amiibo. The algorithm takes specific bytes of the UID, performs XOR operations with constant values (0xAA and 0x55), and combines them to form the 32-bit password. This derivation means that the password is mathematically tied to the physical chip’s identity — copying the raw data to a blank tag without also replicating the password generation logic will not fool the console.

The global Amiibo encryption key is a master key that is shared across all Amiibo figures and compatible Nintendo games. This key is used to secure the data transmission between the Amiibo figures and the game consoles. The use of a single, global encryption key ensures that all Amiibo figures can interact with any compatible game, without the need for individual keys.

Amiibo figures remain popular, and Nintendo continues to release new waves for games such as The Legend of Zelda: Tears of the Kingdom , Super Smash Bros. Ultimate , and various other titles. The fundamental architecture described in this article has remained largely unchanged, demonstrating that Nintendo’s design choices were both robust and well‑thought‑out.

The first key is the , commonly known among reverse engineers as locked‑secret.bin (an 80‑byte binary file). Its purpose is to derive an amiibo‑specific tag key that signs the fixed, locked‑in information of the figure. This includes immutable data such as the UID, the character ID (which identifies the specific amiibo, e.g., “Mario,” “Link,” etc.), and the series it belongs to. The tag master key is used to generate keys that authenticate this static payload, ensuring that the fundamental identity of the amiibo cannot be forged or altered.

Modern solutions bypass physical cards entirely. Bluetooth-enabled NFC hardware emulators can store hundreds of Amiibo files simultaneously. When paired with a smartphone app, the device changes its broadcasted NFC signal on the fly, mimicking any Amiibo instantly. Nintendo's Countermeasures

The bulk of the memory where Nintendo stores the character ID, game-specific save data (like your trained Super Smash Bros. fighter), and timestamps.

When a console scans an amiibo, it uses its internal keys to verify that the signature matches the data. If the signature is invalid—which happens if the data is blindly modified without the keys—the console will reject the tag. Usage and Legal Context

The actual payload containing the character identification code, game progress data (such as Super Smash Bros. fighter levels), and timestamps.

Because encryption keys are bound to the unique hardware ID of the chip, a simple copy-paste of raw data to another tag will fail validation.