ON-SITESan Antonio · Bulverde · New Braunfels · Boerne · Schertz · Selma · Universal CityREMOTENationwide US & Into CanadaCERTIFIEDNASTF Registered · OEM ToolingHOTLINE(210) 439-7905ON-SITESan Antonio · Bulverde · New Braunfels · Boerne · Schertz · Selma · Universal CityREMOTENationwide US & Into CanadaCERTIFIEDNASTF Registered · OEM ToolingHOTLINE(210) 439-7905
▸ FOR SHOPS · TRADE / B2B

What You Need to Program Keys After 2018 — NASTF VSP, Explained for Shops

Bottom line: if you've tried to program a key or immobilizer on a late-model vehicle and hit a wall, it's usually not your scanner. Modern key work is gated behind a credential and authenticated tools — not just tooling. Here's what the authorized path actually requires, and where we fit if you'd rather just sublet it.

Two locks, not one

Getting a key made on a modern vehicle means clearing two separate barriers: the secure data (the codes and PINs that come from the automaker) and, on a lot of vehicles, the gateway that decides whether your tool can talk to the car at all. Miss either one and you're stuck.

Lock #1 — the secure data (NASTF VSP)

The codes, PINs, and immobilizer data you need live on the automakers' own secure websites, and those sit behind the NASTF Secure Data Release Model. To pull them, you have to be a credentialed Vehicle Security Professional (VSP) in NASTF's registry. That's not a checkbox — it means a background check, professional references, carrying commercial liability coverage, and a personal credential that's one-to-one and can't be shared.

Every request is validated in real time and logged, and for each job you verify the customer actually owns the vehicle — photo ID matched to the registration and the VIN — and file an authorization form. The whole model exists so key work is traceable and done on the level, not anonymous. No credential, no secure data. (Mercedes takes it a step further and gates theft-related parts behind the same credential.)

Lock #2 — the secure gateway

Even with the data, a lot of newer vehicles won't let an aftermarket tool perform secured functions until the tool itself is authenticated. FCA/Stellantis is the one everyone's run into: a Secure Gateway on select 2018 and all 2019-and-newer Chrysler, Dodge, Jeep, Ram, and Fiat vehicles blocks bidirectional work — clearing codes, actuations, relearns — unless your tool is registered and authenticated. Other automakers are rolling out their own versions. Translation: even a capable scanner is read-only on these until it's cleared to talk.

Why this matters for your shop

Put the two together and the reason the corner shop "can't just program a key anymore" is clear — it's a credentialing and access problem, not a knowledge one. And getting set up for it yourself is real overhead: the vetting, the insurance, the OEM subscriptions, the authenticated tooling, and keeping the compliance paperwork straight — all for work you might only see once in a while.

Two ways to work with us

We're NASTF VSP credentialed and set up for exactly this. So you've got two clean options:

  • Sublet the job to us — mobile to your bay within our dispatch area, or
  • Send us the module — mail-in bench work from anywhere.

You keep the customer and the ticket; we handle the secured piece and hand it back ready. Call (210) 439-7905 or reach out through the site to get set up.

4715 N Stahl Park, Suite 105, San Antonio, TX 78217.

Sublet your key & immobilizer work

NASTF VSP credentialed · mobile to your bay or mail-in bench

Request dispatch →
▸ Related
Key & Immobilizer Programming → NASTF AIR / TRP → Lost All Your Keys? → How Shops Get Dispatch → For Trade Partners →