15
Hack for Fun with RFID Kevin2600

Meetup -- RFID

Tags:

Embed Size (px)

DESCRIPTION

Meetup -- RFID for http://www.meetup.com/IOToronto

Citation preview

Page 1: Meetup -- RFID

Hack for Fun with RFID

Kevin2600

Page 2: Meetup -- RFID

Agenda

● RFID overview && Security

● RFID Research devices (PM3; ACR112..)

● Real world scenarios analyze (LF,HF,NFC)

● Conclusion && Tips of how to protect our privacy

Page 3: Meetup -- RFID

RFID is everywhere

Page 4: Meetup -- RFID

RFID Overview

● Tag types: Various sizes and shapes e.g. Keyring; Credit-Card● Tag types: Active (Battery) and Passive (No internal Power Source)

Page 5: Meetup -- RFID

RFID Security

● HID Proxcard2 found mostly on Access control system. Come with no authentication, encryption, or any other real security mechanism. Just plain-text.

● The most popular RFID Card types (Mifare Ultralight; Mifare Classic; DESFire). Use ISO 14443A & operating on 13.56mhz. In the year 2007, Researchers found weakness of Mifare classic protocol. And managed to crack the Crypto1.

● NFC Credit cards support EMV-style contact-less payment. EMV stands for EuroPay, Master-card, Visa, which is a global standard for bank smart cards.

● The core of the EMV protocol is based on the transmission of Application Protocol Data Units (APDUs). Most of the APDUs sent between the two devices, are transmitted in plain-text. Cryptographic security is only employed in the authorization phases of a transaction.

Page 6: Meetup -- RFID

RFID toolkit: Swiss knife Proxmark3

The Proxmark III is the most powerful open source device available for performing RFID research.

Can be use for reading; Sniff and emulate High and low frequency tags, almost behind every RFID research projects.

Page 7: Meetup -- RFID

Live demo (PM3 Sniffing)

Page 8: Meetup -- RFID

RFID toolkit: ACR112

● Touchatag Reader (PN532 Chipset)● RFIDiot: python library for reading/writing/ RFID cards ● LIBNFC libnfc is a library for communicating with ISO14443

RFID tags. libnfc works with NXP PN53x series chipsets

Page 9: Meetup -- RFID

Live demo (Crack Mifare1)

Page 10: Meetup -- RFID

RAW DATA Analysis

Page 11: Meetup -- RFID

Video demo (College ID)

(http://youtu.be/E-nk4Jrm-gA)

Page 12: Meetup -- RFID

Video demo (Payment)

(http://youtu.be/5WvdebLIKL0)

Page 13: Meetup -- RFID

Live demo (CIBC Credit card)

Page 14: Meetup -- RFID

Conclusion

● HID Proxcard2 card – Not secure at all !!!

● NFC Credit cards – Be Paranoid when using them !!!

● MIFARE Classic – Use for public payment is a very bad idea !!!

Page 15: Meetup -- RFID

Hack for Fun with RFID

● www.libnfc.org

● www.proxmark.org

● chaos-lab.blogspot.ca

[email protected]

● Any Ideas; Projects; Job offers are welcome :)

http://www.libnfc.org/
mailto:[email protected]

Tamp bay word press meetup – npr feb-11_2015 meetup

Tamp bay word press meetup – npr feb-11_2015 meetup

Internet
RFID 131 - sigmatek-automation.com · RFID READER RFID 131 01.07.2020 Page 1 RFID Reader RFID 131 The RFID reader is an installable device for reading and writing to RFID card. Communica-tion

RFID 131 - sigmatek-automation.com · RFID READER RFID 131 01.07.2020 Page 1 RFID Reader RFID 131 The RFID reader is an installable device for reading and writing to RFID card. Communica-tion

Documents
SEOworkshop-Meetup-Mar272011 SEO Meetup Full Presentat… · SEO Workshop Mar 27, 2011 Internet Marketing Meetup @ Branding Personality Please Tweet: I am attending the Meetup “Using

SEOworkshop-Meetup-Mar272011 SEO Meetup Full Presentat… · SEO Workshop Mar 27, 2011 Internet Marketing Meetup @ Branding Personality Please Tweet: I am attending the Meetup “Using

Documents
Opera & Ballet in Cinemas - Find Meetup groups near you - Meetup

Opera & Ballet in Cinemas - Find Meetup groups near you - Meetup

Documents
GREEN SMOOTHIES - Find Meetup groups near you - Meetup

GREEN SMOOTHIES - Find Meetup groups near you - Meetup

Documents
RFID and Positioning. Outline RFID Introduction Indoor Localization RFID positioning Algorithm – LANDMARC – RFID-Based 3-D Positioning Schemes RFID application

RFID and Positioning. Outline RFID Introduction Indoor Localization RFID positioning Algorithm – LANDMARC – RFID-Based 3-D Positioning Schemes RFID application

Documents
Wireless Access Systemcs3992/archive/2008/RFID-final-pres.pdf · L-RX201 RFID Reader. T501 RFID Tag. Implementation RFID ... RFID Reader Interfaces: – Interface Serial RS232 or

Wireless Access Systemcs3992/archive/2008/RFID-final-pres.pdf · L-RX201 RFID Reader. T501 RFID Tag. Implementation RFID ... RFID Reader Interfaces: – Interface Serial RS232 or

Documents
IBM Bluemix Paris Meetup #22-20170315 Meetup @VillagebyCA - Serverless & OpenWhisk

IBM Bluemix Paris Meetup #22-20170315 Meetup @VillagebyCA - Serverless & OpenWhisk

Technology
IBD Meetup Pikes Peak Meetup Group Colorado Springs, CO

IBD Meetup Pikes Peak Meetup Group Colorado Springs, CO

Documents
Mozambique Tyre Tracking - RFID tags, RFID readers, RFID

Mozambique Tyre Tracking - RFID tags, RFID readers, RFID

Documents
LETTORE RFID LECTEUR RFID RFID READER LECTOR RFID … · ITALIANO pag. 02 / FRANÇAISpag. 05 / ENGLISH page 08 / ESPAÑOL pag. 11 LETTORE RFID LECTEUR RFID RFID READER LECTOR RFID

LETTORE RFID LECTEUR RFID RFID READER LECTOR RFID … · ITALIANO pag. 02 / FRANÇAISpag. 05 / ENGLISH page 08 / ESPAÑOL pag. 11 LETTORE RFID LECTEUR RFID RFID READER LECTOR RFID

Documents
RFID PERSONNEL TRACKING - GAO RFID Inc.gaorfid.com/RFID-presentations/GAO-RFID-PEOPLE-TRACKING-DEC… · The GAO RFID Personnel Tracking System is an ... add RFID readers to the system

RFID PERSONNEL TRACKING - GAO RFID Inc.gaorfid.com/RFID-presentations/GAO-RFID-PEOPLE-TRACKING-DEC… · The GAO RFID Personnel Tracking System is an ... add RFID readers to the system

Documents
Rfid 184259 Rfid Catalog

Rfid 184259 Rfid Catalog

Documents
Application Programming Interface - RFID-läsare, RFID

Application Programming Interface - RFID-läsare, RFID

Documents
RFID Technology Roadmap Wireless Smart Systems … Contribution... · RFID Technology Roadmap Wireless Smart Systems and RFID ... NEC NFC RFID Mobile Phone Source: ... RFID-Radio

RFID Technology Roadmap Wireless Smart Systems … Contribution... · RFID Technology Roadmap Wireless Smart Systems and RFID ... NEC NFC RFID Mobile Phone Source: ... RFID-Radio

Documents
Internet of Things Cebu meetup : 1st meetup

Internet of Things Cebu meetup : 1st meetup

Technology
Altruism - Find Meetup groups near you - Meetup

Altruism - Find Meetup groups near you - Meetup

Documents
Our Lessons Learned - Berlin Meetup organizer´s Meetup

Our Lessons Learned - Berlin Meetup organizer´s Meetup

Government & Nonprofit
Fort Worth IBD Meetup Investor’s Business Daily Meetup …armchairinvestor.com/wp-content/uploads/2016/12/IBD-Meetup-Fort... · Fort Worth IBD Meetup Investor’s Business Daily

Fort Worth IBD Meetup Investor’s Business Daily Meetup …armchairinvestor.com/wp-content/uploads/2016/12/IBD-Meetup-Fort... · Fort Worth IBD Meetup Investor’s Business Daily

Documents
Sydney IoE Meetup Community - 1st Meetup Presentation

Sydney IoE Meetup Community - 1st Meetup Presentation

Technology
MAFIA MEETUP KIT - zyngablog.typepad.com · MAFIA MEETUP KIT Mafia Meetup Checklist (Short Version) Mafia Meetup Checklist (Long/Detailed Version with Images) Meetup Tips from the

MAFIA MEETUP KIT - zyngablog.typepad.com · MAFIA MEETUP KIT Mafia Meetup Checklist (Short Version) Mafia Meetup Checklist (Long/Detailed Version with Images) Meetup Tips from the

Documents
CODE LOCK, RFID LOCK - lista.com · 1 × Beep 3 × Beep. 11 PROGRAMMIERUNG RFID LOCK PROGRAMMATION RFID LOCK PROGRAMMAZIONE RFID LOCK PROGRAMACIÓN RFID LOCK PROGRAMMING RFID LOCK

CODE LOCK, RFID LOCK - lista.com · 1 × Beep 3 × Beep. 11 PROGRAMMIERUNG RFID LOCK PROGRAMMATION RFID LOCK PROGRAMMAZIONE RFID LOCK PROGRAMACIÓN RFID LOCK PROGRAMMING RFID LOCK

Documents
12.30 RFID · PDF fileThe physics behind RFID RFID Journal University: ... – Automatically applies self-adhesive RFID tags to cases etc ... 12.30 RFID physics.ppt

12.30 RFID · PDF fileThe physics behind RFID RFID Journal University: ... – Automatically applies self-adhesive RFID tags to cases etc ... 12.30 RFID physics.ppt

Documents
Location, RFID,VoWiFi Commercial Mexico WEBINARPassive RFID vs. Active RFID Passive RFID Visibility: Chokepoint Low-cost tags (

Location, RFID,VoWiFi Commercial Mexico WEBINARPassive RFID vs. Active RFID Passive RFID Visibility: Chokepoint Low-cost tags (

Documents
RFID Robert Cook Alpha Systems Agenda How RFID Works? Tags RFID Standards Interrogators The “truth” about RFID today Myth vs. Reality RFID Implementation

RFID Robert Cook Alpha Systems Agenda How RFID Works? Tags RFID Standards Interrogators The “truth” about RFID today Myth vs. Reality RFID Implementation

Documents
Web Design Principles - Find Meetup groups near you - Meetup

Web Design Principles - Find Meetup groups near you - Meetup

Documents
IDRO RFID - SRD Infotech, RFID Hardware, RFID Software, RFID …srdinfotech.com/RFID/pdf/IDRO/IDRO-Catalogue.pdf · 2014. 6. 17. · components required to integrate UHF RFID technology

IDRO RFID - SRD Infotech, RFID Hardware, RFID Software, RFID …srdinfotech.com/RFID/pdf/IDRO/IDRO-Catalogue.pdf · 2014. 6. 17. · components required to integrate UHF RFID technology

Documents
Trading Strategies using R - Find Meetup groups near you - Meetup

Trading Strategies using R - Find Meetup groups near you - Meetup

Documents
Fresh produce RFID - tenacious-systems.com€¦ · Fresh produce RFID inventory & traceability RFID pallet control fruit & vegetable wholesaler RFID perishable affordable RFID Page

Fresh produce RFID - tenacious-systems.com€¦ · Fresh produce RFID inventory & traceability RFID pallet control fruit & vegetable wholesaler RFID perishable affordable RFID Page

Documents
RFID TECHNOLOGIES - RFID 101

RFID TECHNOLOGIES - RFID 101

Documents