Categories

Analyzing a modern cryptographic RFID system

Posted on Wednesday, January 12th, 2011 in encryption, hacks, RFID by the machinegeek

Henryk Plötz and Milosch Meriac gave a presentation at the recent 27C3 Chaos Communications Congress in Berlin, Germany, in which they demystified the HID iClass. One of the challenges of breaking iCLASS RFID readers was to extract the firmware and the security keys of RW400 readers without leaving visible traces like breaking the case open. This challenge can be solved by exploiting a vulnerability in PIC18FXX2/XX8 microcontrollers that allows dumping the firmware by only accessing the ICSP pins. Check out their docs exploring the HID iClass security system.

This entry was posted on Wednesday, January 12th, 2011 at 4:13 pm and is filed under encryption, hacks, RFID. You can follow any responses to this entry through the RSS 2.0 feed. You can skip to the end and leave a response. Pinging is currently not allowed.

Leave a Reply

Notify me of followup comments via e-mail. You can also subscribe without commenting.

Recent Comments

  • KH: IMHO PCA9685 is not a really good part for this application. It's a PWM LED driver for goodness' sake. NXP _does_not_ mention servos in the...
  • KH: So it's a servo library designed by a software guy, or a library targeted at embedded newbies, or a learner bike. Given the design of...
  • Max: A thing I wish I knew getting into Arduino-controlled servos is that the typical "180 degrees" servos DO NOT move 180 degrees for the standard...
  • Max: I have certainly noticed certain suppliers (like Adafruit, Pololu) being... "western-facing" - which is another way to say their prices definitely aren't Eastern Europe compatible,...
  • Shawn: Hello