@inproceedings{12fb9cc94c5f47209b06fe09b07a66b2,
title = "A practical experience with RFID security",
abstract = "Radio-frequency identification (RFID) technologies allow remote identification as well as generic data access using radio waves. It is also commonly used in transportation and other payment systems, e.g., the MIFARE of NXP Semiconductors [5], one of the most widely deployed contactless smart card standards. Recently, the interest in using RFID for micro payment grows rapidly as users get used to the convenience brought by RFID, and corporations discover that RFID can significantly lower the cost of operation. However, there are security concerns, as many passive RFID technologies do not have adequate cryptographic protection. Furthermore, the communication can be eavesdropped by a third party, making RFID particularly vulnerable to all sorts of attacks. In this work, we examine the EasyCard of the Taipei Metro Rapid Transit (MRT) Corporation, a transportation ticketing system based on the MIFARE Classic technology [10]. We capture and analyze the communication between a legitimate reader and an EasyCard using GNURadio [2], an open-source software-defined radio running on PC. We will share our experiences with EasyCard security and hopefully provide some insights into RFID security in practice.",
keywords = "Algebra attack, Cryptographic, ISO14443, MIFARE classic, RFID, Radio frequency, Security",
author = "Chen, \{Chun Chieh\} and Chen, \{Inn Tung\} and Cheng, \{Chen Mou\} and Chih, \{Ming Yang\} and Shih, \{Jie Ren\}",
year = "2009",
doi = "10.1109/MDM.2009.71",
language = "英语",
isbn = "9780769536507",
series = "Proceedings - IEEE International Conference on Mobile Data Management",
pages = "395--396",
booktitle = "Proceedings - 2009 10th International Conference on Mobile Data Management",
note = "2009 10th International Conference on Mobile Data Management: Systems, Services and Middleware, MDM 2009 ; Conference date: 18-05-2009 Through 20-05-2009",
}