An embedded system for practical security analysis of contactless smartcards

Authors:
Timo Kasper;Dario Carluccio;Christof Paar
Affiliations:
Communication Security Group, Ruhr-University Bochum, Germany;Communication Security Group, Ruhr-University Bochum, Germany;Communication Security Group, Ruhr-University Bochum, Germany
Venue:
WISTP'07 Proceedings of the 1st IFIP TC6 /WG8.8 /WG11.2 international conference on Information security theory and practices: smart cards, mobile and ubiquitous computing systems
Year:
2007

Citing 6
Cited 7

Differential Fault Analysis of Secret Key Cryptosystems

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
RFID Handbook: Fundamentals and Applications in Contactless Smart Cards and Identification

RFID Handbook: Fundamentals and Applications in Contactless Smart Cards and Identification
The Evolution of RFID Security

IEEE Pervasive Computing
An RFID Distance Bounding Protocol

SECURECOMM '05 Proceedings of the First International Conference on Security and Privacy for Emerging Areas in Communications Networks
Security and Privacy Issues in E-passports

SECURECOMM '05 Proceedings of the First International Conference on Security and Privacy for Emerging Areas in Communications Networks
Analysis of power constraints for cryptographic algorithms in mid-cost RFID tags

CARDIS'06 Proceedings of the 7th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications

EM Side-Channel Attacks on Commercial Contactless Smartcards Using Low-Cost Equipment

Information Security Applications
Dismantling SecureMemory, CryptoMemory and CryptoRF

Proceedings of the 17th ACM conference on Computer and communications security
A versatile framework for implementation attacks on cryptographic RFIDs and embedded devices

Transactions on computational science X
Chameleon: a versatile emulator for contactless smartcards

ICISC'10 Proceedings of the 13th international conference on Information security and cryptology
Breaking mifare DESFire MF3ICD40: power analysis and templates in the real world

CHES'11 Proceedings of the 13th international conference on Cryptographic hardware and embedded systems
All you can eat or breaking a real-world contactless payment system

FC'10 Proceedings of the 14th international conference on Financial Cryptography and Data Security
Side-channel analysis of cryptographic RFIDs with analog demodulation

RFIDSec'11 Proceedings of the 7th international conference on RFID Security and Privacy

Quantified Score

Hi-index	0.00

Visualization

Abstract

ISO 14443 compliant smartcards are widely-used in privacy and security sensitive applications. Due to the contactless interface, they can be activated and read out from a distance. Thus, relay and other attacks are feasible, even without the owner noticing it. Tools being able to perform these attacks and carry out security analyses need to be developed. In this contribution, an implementation of a cost-effective, freely programmable ISO 14443 compliant multi function RFID reader and fake transponder is presented that can be employed for several promising purposes.