A Practical Attack on the MIFARE Classic

13 years 7 months ago

Download www.cs.ru.nl

The mifare Classic is the most widely used contactless smart card in the market. Its design and implementation details are kept secret by its manufacturer. This paper studies the architecture of the card and the communication protocol between card and reader. Then it gives a practical, low-cost, attack that recovers secret information from the memory of the card. Due to a weakness in the pseudo-random generator, we are able to recover the keystream generated by the CRYPTO1 stream cipher. We exploit the malleability of the stream cipher to read all memory blocks of the first sector of the card. Moreover, we are able to read any sector of the memory of the card, provided that we know one memory block within this sector. Finally, and perhaps more damaging, the same holds for modifying memory blocks.

Gerhard de Koning Gans, Jaap-Henk Hoepman, Flavio

Real-time Traffic

CARDIS 2008 | Contactless Smart Card | Hardware | Memory Blocks | Stream Cipher |

claim paper

» Dismantling MIFARE Classic

» Improved TraceDriven CacheCollision Attacks against Embedded AES Implementations

» Solving the Railway Traveling Salesman Problem via a Transformation into the Classical Tra...

» Security of DM Quantization Watermarking Schemes A Practical Study for Digital Images

» Unknown Plaintext Template Attacks

» A Stateless Traceback Technique for Identifying the Origin of Attacks from a Single Packet

» Generic Attacks on Misty Schemes

» Multichannel Attacks

Post Info
More Details (n/a)

Added	12 Oct 2010
Updated	12 Oct 2010
Type	Conference
Year	2008
Where	CARDIS
Authors	Gerhard de Koning Gans, Jaap-Henk Hoepman, Flavio D. Garcia

Comments (0)

Sciweavers

A Practical Attack on the MIFARE Classic

CARDIS 2008 | Contactless Smart Card | Hardware | Memory Blocks | Stream Cipher |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers