funsec mailing list archives
RE: Vulnerabilities in First-Generation RFID-Enabled Credit Cards
From: "Richard M. Smith" <rms () bsf-llc com>
Date: Mon, 23 Oct 2006 10:33:22 -0400
I guess the credit card companies figured it was too hard for people to put a card into a slot. OTOH, RFID credit cards are more flexible because they can be embedded inside of other devices like a cellphone. Richard -----Original Message----- From: Valdis.Kletnieks () vt edu [mailto:Valdis.Kletnieks () vt edu] Sent: Monday, October 23, 2006 10:29 AM To: rms () bsf-llc com Cc: funsec () linuxbox org Subject: Re: [funsec] Vulnerabilities in First-Generation RFID-Enabled Credit Cards On Mon, 23 Oct 2006 09:29:45 EDT, rms () bsf-llc com said:
Here are all of the technical details. I'm still scratching my head why a RFID credit card doesn't have a little momentary contact switch which must be pushed in order to activate the RFID chip. With this simple addition, cards can't be read on the sly.
At that point, do something sensible like use the already existing smart-card technology that requires physical contact - at that point, the reader can power the chipset so you can have a lot more on-board storage and computation. Kinda like some credit card vendors have done for *years*. ;) _______________________________________________ Fun and Misc security discussion for OT posts. https://linuxbox.org/cgi-bin/mailman/listinfo/funsec Note: funsec is a public and open mailing list.
Current thread:
- Vulnerabilities in First-Generation RFID-Enabled Credit Cards rms (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled CreditCards Larry Seltzer (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled CreditCards Richard M. Smith (Oct 23)
- Re: Vulnerabilities in First-Generation RFID-Enabled CreditCards Dude VanWinkle (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled CreditCards Richard M. Smith (Oct 23)
- Re: Vulnerabilities in First-Generation RFID-Enabled Credit Cards Valdis . Kletnieks (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled Credit Cards Richard M. Smith (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled CreditCards Larry Seltzer (Oct 23)
- Re: Vulnerabilities in First-Generation RFID-Enabled Credit Cards Valdis . Kletnieks (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled Credit Cards Richard M. Smith (Oct 23)
- RE: Vulnerabilities in First-Generation RFID-Enabled CreditCards Larry Seltzer (Oct 23)