Contactless bank cards
Roland Perry
lists at internetpolicyagency.com
Thu Nov 18 17:33:41 GMT 2010
In article
<AANLkTi=p6hTpGuKBRUzMOpbGTXOBZvfLbETSE5dg6SxA at mail.gmail.com>,
Cybergibbons <cybergibbons at gmail.com> writes
>On 18 November 2010 10:19, Roland Perry <lists at internetpolicyagency.com> wrote:
>>> Using something far more simple and ditching USB keeps the latency low
>>> and predictable.
>>
>> If this is a proposal for an attack in random persons in the same shop as
>> the crooks [you need one behind the till, and another out scouting for
>> cards] (I think that's how it was supposed to play out) then you'd need
>> something a bit more physically elegant than a laptop to be pressing up
>> against the victims. So you'd suggest some sort of custom hardware built
>> around the chips you mention, and with a fairly high bandwidth RF connection
>> between them?
>
>No need for high bandwidth really, it's just when you put a PC and USB
>in the way, it's very unpredictable. I can set up a link with low
>enough latency between two ChipCon SoC systems, and they cost less
>than £10 each.
So we know how much bandwidth, the article quoted earlier simply said
"fast".
>There's no need for massive read distances either. The Touchatag
>reader I have hear can work with a Oyster card from about 45mm away.
That range isn't consistent with anything quoted so far. Is the Oyster
card special (not representative) or has your reader been tweaked?
>People can pickpocket wallets, they can easily get a small reader
>close enough.
So we should all equip ourselves with a pair of interfering cards?
--
Roland Perry
More information about the ukcrypto
mailing list