Analyzing RFID Security [25C3]

Analyzing RFID Security

Many RFID tags have weaknesses, but the security level of different tags varies widely. Using the Mifare Classic cards as an example, we illustrate the complexity of RFID systems and discuss different attack vectors. To empower further analysis of RFID cards, we release an open-source, software-controlled, and extensible RFID reader with support for most common standards.

RFID tags and contact-less smart cards are regularly criticized for their lack of security. While many RFID tags have weaknesses, the security level of different tags varies widely. Using the Mifare Classic cards as an example, we illustrate the complexity of RFID systems and discuss different attack vectors. To empower further analysis of RFID cards, we release an open-source, software-controlled, and extensible RFID reader with support for most common standards.

Speaker: Henryk Plötz, Karsten Nohl
EventID: 3032
Event: 25th Chaos Communication Congress (25C3) by the Chaos Computer Club [CCC]
Location: Berlin Congress Center [bcc]; Alexanderstr. 11; 10178 Berlin; Germany
Language: english
Start: 29.12.2008 16:00:00 +01:00
License: CC-by-nc-sa

Category:

Education

Tags:

• CCC
• Chaos Computer Club
• 25C3
• Talk
• Lecture
• 2008
• RFID
• Security
• Fail
• Hacking
• Hacker

License:

Creative Commons Attribution license (reuse allowed)