Smartcards and flashlights

[Peter Tomlinson]

Not 'reading smart card cells', but disturbing the operation of the smart
card, which, when you have the appropriate skills and knowledge, Ross
Anderson has said can be used to deduce what is going on in some smart card
designs. As the article notes (I read the printed version), it is believed
that one type of card IC that is susceptible to this attack is still 'on the
market'. However, IC manufacturers have said (in a Smart Card Club meeting)
that their current products are shielded from this type of attack.
Deduction: there are probably still in use somewhere some chips that are
susceptible to this attack.

The technology problem is old news. Using low cost technology to demonstrate
it is a warning that you don't always have to spend millions to demonstrate
a flaw, but what will it cost you to make practical use of your knowledge
(i.e. is the gain worth the candle?). I have done the same (using low cost
technolgy to demonstrate) when working on the good side of the fence...

Peter
----- Original Message -----
From: "Paul Walker" <paul@black-sun.demon.co.uk>
To: <ukcrypto@chiark.greenend.org.uk>
Sent: Monday, September 09, 2002 11:10 AM
Subject: Smartcards and flashlights


> Hi,
>
> I was reading the "Big Brother" supplement with the Guardian this weekend
> (conclusion - a nice summary of stuff, but not much the people on here
> wouldn't already know). One thing that did catch my eye was this:
>
>
http://www.guardian.co.uk/bigbrother/privacy/yourlife/story/0,12384,785842,0
0.html
>
> Someone saying that they can read smartcard cells using a camera flash.
What
> I was hoping was that someone on here could explain how flashing a light
at
> the cell would help, exactly, since the article's very short on details
like
> that. :-)
>
> Thanks,
>
> --
> Paul
>
> "I have no idea what's going on here, but it's quite entertaining."
>                   -- Jason Willoughby, in rec.humor.oracle.d
>
>
>