Re: “A Practical Attack on the MIFARE Classic ”

2008-07-15 Thread Karsten Nohl
On Jul 15, 2008, at 5:06 PM, Perry E. Metzger wrote: Although the paper seems to be gone from Wikileaks, it is on cryptome: http://cryptome.org/mifare-classic.pdf This is a paper published on arXiv in March that does not contain the type of information NXP is suing over, which is why it

Re: more on malicious hardware

2008-04-27 Thread Karsten Nohl
Perry E. Metzger wrote: It turns out that the counterfeit chips business is booming: http://www.eetimes.com/rss/showArticle.jhtml?articleID=207401126 In combination with the news about what as few as 1500 extra gates can do, this is especially worrisome. Chip pirating is a huge problem. Part

Re: Designing and implementing malicious hardware

2008-04-26 Thread Karsten Nohl
might defend against it. Silicon has no secrets. I spent last weekend in Seattle and Bunnie (of XBox hacking fame/Chumby) gave a workshop with Karsten Nohl (who recently cracked MiFare). In a matter of an hour, all of the students were able to take a selection of a chip (from an OK photograph

Re: Dutch Transport Card Broken

2008-01-28 Thread Karsten Nohl
Not to defend the designers in any way or fashion, but I'd like to ask, How much security can you put into a plastic card, the size of a credit card, that has to perform its function in a secure manner, all in under 2 seconds (in under 1 second in parts of Asia)? And it has to do this while