Full Disclosure mailing list archives
Re: Sniffing RFID ID's ( Physical Security )
From: Valdis.Kletnieks () vt edu
Date: Tue, 27 Jun 2006 00:57:06 -0400
On Tue, 27 Jun 2006 14:24:35 +1000, mikeiscool said:
eh? surely a RFID would only communicate it's private token with a trusted (i.e. keyed) source. like a smartcard ...
Well.. Yeah. That *would* make sense. Unfortunately, some beancounter would likely realize they can shave $0.02 per card by doing it the easy way, or that they can save $40K by hiring a bonehead designer rather than a clued crypto geek. If all software was actually designed and implemented to the "Surely it would" standard, most of the people on this list, both black and white hats, would be unemployed. Fortunately for our collective ability to cover our rent checks, almost all software has "Surely they *didn't*" flaws in it....
Attachment:
_bin
Description:
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Current thread:
- Sniffing RFID ID's ( Physical Security ) Josh L. Perrymon (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) mikeiscool (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) Valdis . Kletnieks (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) mikeiscool (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) Josh L. Perrymon (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) mikeiscool (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) Josh L. Perrymon (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) Andre Gagne (Jun 27)
- Re: Sniffing RFID ID's ( Physical Security ) Hugo Fortier (Jun 27)
- Re: Sniffing RFID ID's ( Physical Security ) Valdis . Kletnieks (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) mikeiscool (Jun 26)
- Re: Sniffing RFID ID's ( Physical Security ) Josh L. Perrymon (Jun 27)
- Re: Sniffing RFID ID's ( Physical Security ) Meder Kydyraliev (Jun 27)