- NASA to save computers from swarming ants
- The real sticking point with Microsoft/Yahoo
- Inside Lockheed Martin's wireless security lab
- Six free security tools you shouldn't live without
- Businesses must adapt to 'thumb generation'
Rss FeedData analytics start-up lands MySpace; Sprint customer satisfaction keeps dropping. Listen now!
BlackBerry server to face stern tests; Cisco alums ready firewall killer. Listen now!
Discover Juniper's continued commitment to the enterprise with its new line of LAN switches and a series of partnerships with several IT vendors, including IBM, Microsoft and Oracle. Customers can expect a tighter integration between Juniper and its vendor partner's products. Get all of the details in this informative report from respected consulting firm IDC.
Get the latest on storage technologies that allow IT professionals to better cope with new IT demands. Learn how storage technologies can help you successfully tackle e-Discover, regulatory compliance, green data center initiatives and the data explosion. Get all the details now.
HP's Network Lifestyle Management can help you automate network processes and improve NOC efficiency. This webinar is part three of a four part series on Business Services Management (BSM) evolution to help you better align IT with business objectives. Register for this on-demand webcast now.
Vizioncore cost $600 per server license, and Lextron uses it for 26 critical servers. "Twenty-six times...- Anonymous
People are starting to wake up to the fact that some RFID-enabled smartcards now can be far more easily, and cheaply, cracked than ever before, as a trio of young computer experts recently showed.
These are a particular type of processor-embedded cards, and are different from credit cards. The actual decryption work by the researchers was done on the widely deployed Mifare Classic wireless smartcard, now manufactured by a Philips spinoff, NXP Semiconductors. It’s deployed for contactless payments, such as the nationwide public transit ticketing system in The Netherlands. If decrypted, the card could be rewritten to access additional services, certain limited personal data such as a birth date could be recovered, and the dollar value of the card’s electronic “purse” could be changed.
A recently de-classified study, by a nonprofit Dutch research group, of the claims by the decryption researchers concluded that it is likely they will succeed in recovering the entire encryption algorithm, and eventually build a key cracker. But that will take about six months, the study estimates, and concludes that there are no immediate risks to the Dutch system or its users, and that additional, existing security mechanisms may offer adequate protection.
The earlier version of this story said that the card can be used in debit/credit transactions with the user’s bank account. This is false. The earlier version also said a user’s bank data is exposed in this decryption. But according to NXP and the research group’s assessment, banking transactions and data are unaffected.
That MiFare Classic card is the basis of such new systems as the Dutch OV-Chipkaart, being rolled out in The Netherlands as part of a multibillion-dollar nationwide transportation ticketing system, and the so-called CharlieCard, used in the Boston, Mass., subway system. The decryption breach triggered a firestorm of controversy in The Netherlands.
The card uses a proprietary encryption scheme, known as the Crypto1 algorithm, to scramble the data exchanged between the card and the card reader, and to securely authenticate the card and reader to each other.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com The Industry Standard IDG List Services |
 |
Copyright © 1994-2008 Network World, Inc. All rights reserved. |
