[Infowarrior] - FW: mifare insecurity
Richard Forno
rforno at infowarrior.org
Sat Jan 12 15:12:55 UTC 2008
For those following RFID security issues, this has the potential to
undermine many enterprise and national-level initiatives (ie, RFID
passports) that mandate proven-vulnerable RFID implementations.....yet I
doubt such revelations will do anything to force a revisit of the underlying
architecture -- no, that'd make too much sense, right? --rf
------ Forwarded Message
From: Jan Krissler <starbug at berlin.ccc.de>
Organization: Chaos Computer Club
Date: Sat, 12 Jan 2008 11:20:45 +0100
Hi.
Maybe some of you are using Mifare based RFID systems for payment or access
controll. you should start to migrate soon. As shown on the 24th chaos
communication congress
http://berlin.ccc.de/~24c3_torrents/24c3-2378-en-mifare_security.mkv.torrent
the proprietary crypto algorithm used in mifare is not a secret anymore.
We havnt disclosed it yet but we will as soon as a practical implemetation
is done.
Bye
you should also have a look at the other talk from the 24c3
http://berlin.ccc.de/~24c3_torrents/
More information about the Infowarrior
mailing list