Oyster cracked in public, researcher claims

By Tom Espiner, ZDNet UK
Tuesday, October 28, 2008 11:41 AM

A researcher has claimed to have created exploit code to crack the cryptography on a chip used in travel smartcards, including in London's Oyster card.

The exploit code can supposedly be used to undermine the cryptography on smartcards which use NXP's Mifare Classic chip, such as the Oyster card and the Dutch OV-Chipkaart.

The researcher, known as "Bla", is developing the open source software on the Google Code platform. The exploit code, entitled "Crapto-1", attempts to exploit NXP's proprietary Crypto1 algorithm. The exploit code builds on work by Dutch researchers from Radboud University in Nijmegen, who published a mathematical explanation of the algorithm and possible attack methods earlier this month.

"This project provides an implementation of the Crypto1 cipher, as well as an implementation of the attack specified by the folks in Nijmegen," wrote Bla on the Crapto1 landing page. "I'm not aware of any other public implementations at this time, I decided to write my own."

The researcher claimed that the code implements the cryptography needed to decrypt captured communications between Crypto1-based RFID tags and card readers. Bla claimed the code can "even recover the shared secret" used to verify the cryptographic process. The researcher also claimed that the code does not interfere with the hardware layer of the card readers.

A spokesperson from Radboud University said that the university was aware of the exploit code, but declined to comment further until Wednesday, when there would be "an update".

Transport for London had not responded to a request for comment at the time of writing.

Dutch freelance security journalist Brenno de Winter, who broke the story for Webwereld in the Netherlands on Monday, told ZDNet Asia sister site ZDNet UK that he had "verified the code".

"The code does work; I verified it by reading the source," said de Winter.

Attack code against Mifare Classic chips was published earlier this month by German researcher Henryk Plötz, in his doctoral thesis.

0

0 votes

Save to My Library

Talkback 0 comments

There are currently no comments for this post.

Reply to story

Featured Whitepapers

Tech Jobs Now!

TechGuides

Specials
News and Interviews
Whiteboard

UOB banks on economic downturn
Singapore bank's IT chief Susan Hwee explains how financial crisis offers new opportunities to reengineer
Play video
Domino's Pizza keeps customers eating
CEO Don Meij discusses strategy to grow customer base
Play video

Salesforce CEO chatters about new social media platform
Facebook-type app hits the enterprise
Play video
Salesforce demos Service Cloud 2
New Web-based tools for customer service
Play video

Cost Effective, Secure and HA Server Infrastructure for SMBs
Alan Wan from Dell illustrates how small and medium businesses can build a high availability IT infrastructure without requiring heavy investments on skills and resources.
Play video
Enterprise 2.0
Vince Casarez, vice president of product management at Oracle, explains how Web 2.0 technologies, such as tags, wikis, and mash-ups, can be applied within an organization.
Play video