Chip and PIN is broken,vulnerabilities in the EMV Protocol

Does anyone know what the chip could contain i read somewere that has an algorithm or something and is encrypted but what it contains that is important.

the banks tried to quash info about the device used for this attack instead of fixing it, shows you how much of a shit they actually give about protecting their customers.

ha ha ha, they don't understand how it works! anybody can edit the message, but that does not make it unsecure... go read the specification again.

zzzzzzz another lie by the goverment to get us to take the rfid chip for a new world order. they think were stupid.

Banks are kicking my ass all the time charging stupid commissions and robbing honest people everyday. I won't cheat people but I'll check out all options to obtain money for my basics if available. Do you know how or have an idea? Okay, lets build up a net of individuals and kick their ass from here, there and everywhere. I'm sick of banks!

Chips , thats things are very insecures, ¿UK don't use magnetic band?, the chips are insecures since phone credit card based on chips.

@Tabrisius LOL It's just the other way around, magnetic stripes can be easily skimmed and offer NO security at all! Chips on the other hand are extremely secure, nobody ever managed to clone one for example. The flaw presented here lies NOT in the chip, but in the protocol implementation.

5 pound for a fuckin bottle of water, what the fuck?!?!

cambridge branded water for the 800-year anniversary. makes you smart enough to hack chip&pin, so i say it's a price worth paying for! lol

Banks can set up their card system to authorize purchase via PIN only. So it can not be done by signature. This kind of apporach can be done when all merchants have PINpad POS terminals. It is still more efficent than to rewrite the whole Chip&PIN system.

DANG

No system is ever secure.

Wow. I just read the technical white paper on the Cambridge CS site about this.

The hack is incredibly simple. An undergraduate CS student studying security would spot the flaw in this system in 5 minutes if they were shown the conversation that happens between the terminal and the card.

Of course, the only real impact to consumers is that banks can no longer claim that Chip and PIN transactions are never fraudulent. One less excuse for the banks to pay out in the case of fraud!

so whats going to replace it - biometric purchase here we come - get ready to give your finger print and/or eye and/or face scan for your loaf of bread - truly what I have said for years is coming to pass. BIOMETRICS = 666, no im not no relegious freak but its just to close to what is happening.

Chip and PIN would be *very* secure, if only it had been implemented correctly. Most card fraud now is something called CNP (Card Not Present) fraud (CNP is the system used for paying by reading your card details out over the phone for example).

Unfortunately, the particular way the banks have chosen to implement Chip and PIN means that the PIN part is now completely ineffective. The Cambridge research demonstrates that all you need to have to validate a fraudulent transaction is a stolen card.

What I'm getting at is that the banks should be able to re-implement Chip and PIN without replacing huge amounts of infrastructure. They will most likely have to replace cards, but the card readers should be reprogrammable.

£5.00 for water?!?!?!

Joy, we don't need this in the USA. I don't want it! I don't even like the RFID based cards.

Aren't you still using Mag-stripe and Signature in the US?

Mag-stripe cards are breakable with a $30 piece of equipment and it don't even necessarily need your original card, just a card receipt will do.

Ya we still use that. Then their are RFID chiped credit cards to that are easy to crack. Only place I see the cards like above is government id cards.

L P your channel is the bomb, I share as much as I can, can I ask why some of your vids cant be embeded & others can?

1,000000 kudos for all your effort & dedication in bringing the truth to the masses!

Namaste