News items for tag rfid - Koos van den Hout

2011-02-11 (#)
Ik lees de laatste stunt rond de OV-chipkaart: Fout in OV-chipkaart legt NS-kaartverkoop plat - nu.nl. Als ik dat vergelijk met mijn experimenten met de Magna carta koffiekaart dan is de robuustheid en fraudepreventie van de koffiekaart beter dan van de OV-chipkaart.

Tags: , ,
2011-02-05 Trying to understand fields in the Magna Carta mifare coffee card
For a while I dumped my work 'coffee card' Magna Carta mifare card every day and found where the 'last used' date is stored (record changes only once a day). But I can't think of the right encoding. So I'll post what I have at the moment, maybe someone else sees what I can't decode.
Read the rest of Trying to understand fields in the Magna Carta mifare coffee card

Tags: ,
2011-01-26 (#)
De ov-chipkaart is nu nog gekraakter, er is een saldo-editor applicatie. Journalisten hebben ook veel langer met een kaart met aangepast saldo kunnen reizen dan origineel door Translink systems aangegeven. Bij controles in de trein wordt een aangepaste kaart niet ontdekt, zelfs niet als de kaart door de kaartautomaat gezien wordt als geblokkeerd.

Ondertussen is er ook de 'uitbreiding', naast het verhogen van het saldo en daarna op de normale manier inchecken wat bij bij de NS incheckpalen dus uiteindelijk gedetecteerd zal worden als fraude is er ook de aanpak om een kaart een fake incheck-record te geven wat bij controle in de trein nog niet gedetecteerd wordt.

Berichtgeving: Info op ov-chipkaart.org: Ik heb het nieuws hierover even neutraal aangekeken, maar dit zijn natuurlijk ook dingen waar ik een Mening™ over heb.

Translink systems blijft op een naïeve manier volhouden dat er niets aan de hand is. Eerst met beweren dat het allemaal heel theoretisch is en dat fraude heel snel gedetecteerd wordt. En nu blijven ze volhouden dat fraude verboden is en dus niet voorkomt. Te hard rijden is ook verboden, toch gebeurt het.

In een ideale wereld vervangt Translink systems de OV-chipkaart nu door iets veiligers wat verbeteringen brengt voor de reiziger, zowel kwa privacy als kwa gebruiksgemak. Een systeem waarbij minimale gegevens opgeslagen worden en zo snel mogelijk aggregatie toegepast word. En tegelijkertijd hoeft de reiziger niet vantevoren te bedenken wat het ideale reisproduct is voor zijn reisbehoefte maar achteraf wordt de beste aanpak berekend. Ja dit zijn tegenstrijdige eisen, maar voor de bedragen die er in Translink systems gestopt zijn kunnen ze ook wat hele knappe koppen inhuren om dat op te lossen. Oh, en met een rfid kaart die wel gewoon leesbaar is zodat de gebruiker z'n eigen kaart kan lezen en het saldo kan zien (en reishistorie) zonder dat daarvoor de kaartautomaat of het loket opgezocht hoeft te worden.

Tags: , ,
2011-01-17 (#)
Mooie opmerking van Arnoud Engelfriet in de Kroniek van het Internetrecht in 2010 :
Journalistiek verantwoord kraken leidde tot een blafbrief van TLS: wij houden u in de gaten. Maar dat wisten we al: daar is de OV-chipkaart immers voor gemaakt.

Tags: , , ,
2011-01-12 (#)
In between other stuff I also found time to play with the touchatag rfid reader I ordered.

Some of the things which got me interested which I previously did not mention:

After an article in the Dutch magazine PC-active how easy it is to access your data on the ov-chipkaart people (naturally) got interested again. People on the site www.ov-chipkaart.org started decoding the card. Resulting in a wiki with all known data on the ov-chipkaart decoded which got implemented as open-source scripts to decode and view your own ov-chipkaart dump. Including lists of known station numbers.

In true open-source style: a lot of cooperation (browse the comments on the ov-chipkaart.org site to see this happen) and people sharing the tools they wrote so other people can improve them.

The next implementation of the ov-chipkaart with better security, positive effects for the traveller and improved privacy for the traveller can learn from this. Give people access to their own data (and not just through a crappy website) and learn from projects like the one above. Transportation rfid cards from other countries also get decoded, read for example Public transportation passes and their secrets

Tags: , ,
2010-12-29 (#)
All the ski-passes we took home over the years are not readable for the 13.56 MHz RFID reader. According to EWcG AXESS in Ski Industry they are ISO 15693 tags which can be read at up to 50 cm, which suggests lower radio frequencies than 13.56 MHz. I checked tags from Portes du Soleil and Grand Massif. In Serfaus-Fiss-Ladis one returns the card at the end of the ski period to get the 5 euro deposit back.

Tags: , ,
2010-12-27 (#)
Time to play a bit with the rfid reader, and trying the RFID IO tools by Adam Laurie.

Sofar the touchatag tags give an error from the tools:

koos@machiavelli:~/src/RFIDIOt-1.0a$ ./cardselect.py
cardselect v0.1l (using RFIDIOt v1.0a)
  Reader: PCSC ACS ACR122U 00 00

    PCSC Communications Error
Exception AttributeError: AttributeError("'NoneType' object has no attribute 'disconnect'",) in <bound method PCSCCardConnection.__del__ of <smartcard.pcsc.PCSCCardConnection.PCSCCardConnection instance at 0x95bb92c>> ignored
Where nfc-list sees these correct:
$ nfc-list
nfc-list use libnfc 1.4.0 (r833)
Connected to NFC device: ACS ACR122U 00 00 / ACR122U102 - PN532 v1.4 (0x07)
2 ISO14443A passive target(s) was found:
    ATQA (SENS_RES): 00  44  
       UID (NFCID1): 04  b7  cc  19  3e  25  80  
      SAK (SEL_RES): 00  

    ATQA (SENS_RES): 00  44  
       UID (NFCID1): 04  d8  10  19  3e  25  84  
      SAK (SEL_RES): 00  

But the cardselect error is the same when there is no tag at all. Time to try it with a card which is a bit more than just a UID. No dice, looks like some problem with the setup.

The tool lsnfc (part of nfc-utils) from nfc-tools does work:

koos@machiavelli:~/src/nfcutils-0.3.0$ ./src/lsnfc 
device = ACS ACR122U 00 00 / ACR122U102 - PN532 v1.4 (0x07)
UID=04b7cc193e2580
* NXP MIFARE UltraLight
UID=04d810193e2584
* NXP MIFARE UltraLight
2 tag(s) on device.
Two touchatag tags, indeed.

Tags: ,
2010-12-02 Starting with the touchatag rfid reader
I received the touchatag rfid reader I ordered and started to play with it.

The touchatag is a ACS ACR122U.

First attempt: no go. I compiled libnfc and tried the test application:

$ ./nfc-list 
/home/koos/src/libnfc-1.3.9/examples/.libs/lt-nfc-list use libnfc 1.3.9 (r609)
lt-nfc-list: INFO: No device found.
A bit of searching found at last the problem in pcscd which does not like this particular reader:
00042283 ccid_usb.c:501:OpenUSBByName() Found Vendor/Product: 072F/2200 (ACS ACR122U PICC Interface)
00000009 ccid_usb.c:503:OpenUSBByName() Using USB bus/device: 005/022
00000006 ccid_usb.c:859:ccid_check_firmware() Firmware (1.00) is bogus! Upgrade the reader firmware or get a new reader.
I searched around and found the ACR122U drivers from the manufacturer ACS which include a linux pcsc driver. Compiled these and still got that same message. It took a bit of searching, but the file /usr/lib/pcsc/drivers/ifd-ccid.bundle/Contents/info.Plist lists the USB ids for which the ccid driver in libccid.so will be used, which includes 0x072F/0x2200. I removed this pair from the list, which is a bit of a hairy procedure as this is an xml file and the 'pair' is in two sets of strings. But then the ACS acsccid driver is used which works better:
nfc-list use libnfc 1.3.9 (r609)
Connected to NFC reader: ACS ACR122U 00 00 / ACR122U102 - PN532 v1.4 (0x07)
1 ISO14443A passive target(s) was found:
    ATQA (SENS_RES): 00  44  
       UID (NFCID1): 04  ac  12  91  21  25  80  
      SAK (SEL_RES): 00  

0 Felica (212 kbps) passive target(s) was found.

0 Felica (424 kbps) passive target(s) was found.

0 ISO14443B passive target(s) was found.
But this process is s-l-o-w with the ACS Linux 1.0.1 driver. With the 'beta' ACS 1.0.2 driver, this process is normal.

By the way: I indeed had tikitag/touchatag 04AC1291212580 on the reader.


Tags: ,
2010-11-19 (#)
I found out this week that the rfid card my employer uses to give out coffee is also a mifare classic card. Some searching on mifare related terms let me to Magna Carta and the name on the chipcard readers I see at work is also 'Magna Carta'. And another source told me that the touchatag reader can read mifare cards. I have played with touchatag tags before at the alcatel-lucent user conference.

I've been interested in rfid before, but the high cost of 'universal' (all rfid standards) readers were prohibitive. The touchatag is not a universal reader but gives me enough to begin with: For 30 euro I get a reader and some tags to play with, and the chance to read mifare cards such as the UU koffiekaart and the OV-chipkaart.

So I ordered the touchatag starter pack.
Update 2010-12-01: Nothing received other than a credit card statement, so I inquired about the state of the order.
Update 2010-12-02: On the same day a reply that the package was sent 2010-11-19.. and a package. Airmail wasn't was fast as expected...

Tags: , ,

IPv6 check

Running test...
, reachable as koos+website@idefix.net. PGP encrypted e-mail preferred. PGP key 5BA9 368B E6F3 34E4 local copy PGP key 5BA9 368B E6F3 34E4 via keyservers

RSS
Meningen zijn die van mezelf, wat ik schrijf is beschermd door auteursrecht. Sommige publicaties bevatten een expliciete vermelding dat ze ongevraagd gedeeld mogen worden.
My opinions are my own, what I write is protected by copyrights. Some publications contain an explicit license statement which allows sharing without asking permission.
Other webprojects: Camp Wireless, wireless Internet access at campsites, The Virtual Bookcase, book reviews
This page generated by $Id: newstag.cgi,v 1.37 2022/02/15 21:48:19 koos Exp $ in 0.026672 seconds.