MIFARE
Encyclopedia
MIFARE is the NXP Semiconductors-owned trademark of a series of chips widely used in contactless smart card
s and proximity card
s. According to the producers, billions of smart card chips and many millions of reader modules have been sold. The technology is owned by NXP Semiconductors (spin off from Philips Electronics in 2006) with its headquarters in Eindhoven, the Netherlands, and main business sites in Nijmegen, the Netherlands, and Hamburg, Germany.
The MIFARE name covers proprietary technologies based upon various level of the ISO/IEC 14443 Type A 13.56 MHz contactless smart card
standard.
The MIFARE name (derived from the term MIkron Fare Collection System) covers seven different kinds of contactless
cards:
MIFARE Classic : employ a proprietary protocol compliant to ISO/IEC 14443-3 Type A, with an NXP proprietary security protocol for authentication and ciphering.
MIFARE Ultralight: low-cost ICs that employ the same protocol as MIFARE Classic, but without the security part and slightly different commands
MIFARE Ultralight C: the first low-cost ICs for limited-use applications that offer the benefits of an open Triple DES
cryptography
MIFARE DESFire: are smart cards that comply to ISO/IEC 14443-4 Type A with a mask-ROM operating system from NXP.
MIFARE DESFire EV1: includes AES
encryption.
MIFARE Plus: drop-in replacement for MIFARE Classic with certified security level (AES
128 based)
MIFARE SAM AV2: secure access module that provides the secure storage of cryptographic keys and cryptographic functions
. They are ASIC
-based and have limited computational power. Thanks to their reliability and low cost, those cards are widely used for electronic wallet, access control, corporate ID cards, transportation or stadium ticketing.
The MIFARE Classic 1K offers 1024 bytes of data storage, split into 16 sectors; each sector is protected by two different keys, called A and B. They can be programmed for operations like reading, writing, increasing value blocks, etc.). MIFARE Classic 4K offers 4096 bytes split into forty sectors, of which 32 are same size as in the 1K with eight more that are quadruple size sectors. MIFARE Classic mini offers 320 bytes split into five sectors. For each of these card types, 16 bytes per sector are reserved for the keys and access conditions and can not normally be used for user data. Also, the very first 16 bytes contain the serial number of the card and certain other manufacturer data and are read only. That brings the net storage capacity of these cards down to 752 bytes for Classic 1k, 3440 bytes for Classic 4k, and 224 bytes for Mini. It uses an NXP proprietary security protocol for authentication and ciphering.
MIFARE Classic encryption has been compromised, see below for details.
This card is so inexpensive it is often used for disposable tickets for events such as the Football World Cup 2006.
Key features:
Key applications for MIFARE Ultralight C are Public Transportation, Event Ticketing, Loyalty and NFC Forum Tag Type 2.
. MIFARE DESFire uses a protocol compliant with ISO/IEC 14443-4. The card is based on an 8051 processor
with 3DES/AES crypto accelerator, making very fast transactions possible.
The maximal read/write distance between card and reader is 10 cm (4 inches), but actual distance depends on the field power generated by the reader and its antenna size.
In 2011 it was announced that the MIFARE DESFire security had been broken.
New evolution of MIFARE DESFire card, broadly backwards compatible.
Available with 2 KB, 4 KB and 8 KB NV-Memory.
Other features include:
MIFARE DESFire EV1 was publicly announced in November 2006.
It it less flexible than MIFARE DESFire EV1.
MIFARE Plus was publicly announced in March 2008 with first samples in Q1 2009.
MIFARE Plus, when used in older transportation systems that do not yet support AES on the reader side, still leaves an open door to attacks. Though it helps to mitigate threats from attacks that broke the Crypto-1
cipher through the weak random number generator, it does not help against brute force attacks and cryptoanalytic attacks.
During the transition period from MIFARE Classic to MIFARE Plus where only a few readers might support AES in the first place, it offers an optional AES authentication in Security Level 1 (which is in fact MIFARE Classic operation). This does not prevent the attacks mentioned above but enables a secure mutual authentication between the reader and the card to prove that the card belongs to the system and is not fake.
s designed to provide the secure storage of cryptographic keys and cryptographic functions for terminals to access the MIFARE products securely and to enable secure communication
between terminals
and host
(backend). MIFARE SAMs are available from NXP in the contact-only module (PCM 1.1) as defined in ISO/IEC 7816-2 and the HVQFN32 format.
Key features:
Integrating a MIFARE SAM AV2 in a contactless smart card
reader enables a design which integrates high-end cryptography features and the support of crypto authentication and data encryption/decryption. Like any SAM, it offers functionality to store keys securely, and perform authentication and encryption of data between the contactless card and the SAM and the SAM towards the backend. Next to a classical SAM architecture the MIFARE SAM AV2 supports the X-mode which allows a fast and convenient contactless terminal development by connecting the SAM to the microcontroller and reader IC simultaneously.
MIFARE SAM AV2 offers AV1 mode and AV2 mode where in comparison to the SAM AV1 the AV2 version includes Public Key Infrastructure
(PKI), Hash function
s like SHA-1, SHA-224, and SHA-256. It supports MIFARE Plus and a secure host communication. Both modes provide the same communication interfaces, cryptographic algorithms (Triple-DES 112-bit and 168-bit key, MIFARE Crypto1, AES-128 and AES-192, RSA with up to 2048-bit keys), and X-mode functionalities.
MIFARE was developed by Mikron; the name stands for MIkron FARE-collection System. It was acquired by Philips in 1998. Mikron sourced silicon from Atmel in the US, Philips in the Netherlands, and Siemens in Germany.
After the Philips acquisition, Hitachi licensed MIFARE for the development of the contactless smart card solution for NTT's
IC telephone card which started in 1999 and finished in 2006.
Motorola tried to develop MIFARE-like chip for wired-logic version but finally gave up. The project expected one million cards per month for start, but that fell to 100,000 per month just before they gave up the project.
In the NTT contactless IC telephone card project, three parties joined: Tokin-Tamura-Siemens, Hitachi
(Philips-contract for technical support), and Denso (Motorola-only production). NTT asked for two versions of chip, i.e. wired-logic chip (like MIFARE Classic) with small memory and big memory capacity. Hitachi developed only big memory version and cut part of the memory to fit for the small memory version.
In 2008 NXP licenced MIFARE Plus and MIFARE DESFire to Renesas Technology. In 2010 NXP licenced MIFARE to Gemalto
. In 2011 NXP licenced Oberthur
to use MIFARE on SIM cards. These licencees are developing Near Field Communication
products.
Infineon Technologies(formerly Siemens) licenced MIFARE from Mikron in 1994 and developed and today produces various dervatives based on MIFARE technology including 1K memory and various microcontrollers with MIFARE emulations, including devices for use in USIM with Near Field Communication
.
A presentation by Henryk Plötz and Karsten Nohl at the Chaos Communication Congress
in December 2007 described a partial reverse-engineering of the algorithm used in the MIFARE Classic chip. Abstract and slides are available online. A paper that describes the process of reverse engineering this chip was published at the August 2008 USENIX
security conference.
In March 2008 the Digital Security research group of the Radboud University Nijmegen
made public that they performed a complete reverse-engineering and were able to clone and manipulate the contents of a MIFARE Classic card. For demonstration they used the Proxmark device, a 125 kHz / 13.56 MHz research instrument. The schematics and software are released under the free GNU General Public License
by Jonathan Westhues
in 2007. They demonstrate it is even possible to perform card-only attacks using just an ordinary stock-commercial NFC reader in combination with the libnfc library.
The Radboud University published three scientific papers concerning the security of the MIFARE Classic:
In response to these attacks, the Dutch Minister of the Interior and Kingdom Relations stated that they would investigate whether the introduction of the Dutch Rijkspas could be brought forward from Q4 of 2008.
NXP tried to stop the publication of the second article by requesting a preliminary injunction. However, the injunction was denied, with the court noting that, "It should be considered that the publication of scientific studies carries a lot of weight in a democratic society, as does informing society about serious issues in the chip, because it allows for mitigating of the risks."
Both independent research results are confirmed by the manufacturer NXP.
The MIFARE Classic encryption Crypto-1
can be broken in about 200 seconds on a laptop, if approx. 50 bits of known (or chosen) key stream are available. This attack reveals the key from sniffed transactions under certain (common) circumstances and/or allows an attacker to learn the key by challenging the reader device.
The attack proposed in recovers the secret key in about 40 ms on a laptop. This attack requires just one (partial) authentication attempt with a legitimate reader.
Additionally there are a number of attacks that work directly on a card and without the help of a valid reader device. These attacks have been acknowledged by NXP.
In April 2009 new and better card-only attack on MIFARE Classic has been found.
It was first announced at the Rump session of Eurocrypt 2009.
This attack was presented at SECRYPT 2009.
The full description of this latest and fastest attack to date can also be found in the IACR preprint archive.
The new attack improves by a factor of more than 10 all previous card-only attacks on MIFARE Classic, has instant running time, and it does not require a costly precomputation. The new attack allows to recover the secret key of any sector of MIFARE Classic card via wireless interaction, within about 300 queries to the card. It can then be combined with the nested authentication attack in the Nijmegen Oakland paper to recover subsequent keys almost instantly. Both attacks combined and with the right hardware equipment such as Proxmark3, one should be able to clone any MIFARE Classic card in not more than 10 seconds. This is much faster than previously thought.
. Additional encryption
on the card, transaction counters, and other methods known in cryptography
are then employed to make cloned cards useless, or at least to enable the back office
to detect a fraudulent card, and put it on a blacklist. Systems that work with online readers only (i.e., readers with a permanent link to the back office) are easier to protect than systems that have offline readers as well, for which real-time checks are not possible and blacklists cannot be updated as frequently.
Institutions
Contactless smart card
A contactless smart card is any pocket-sized card with embedded integrated circuits that can process and store data, and communicate with a terminal via radio waves. There are two broad categories of contactless smart cards. Memory cards contain non-volatile memory storage components, and perhaps...
s and proximity card
Proximity card
Proximity card is a generic name for contactless integrated circuit devices used for security access or payment systems. The standard can refer to the older 125 kHz devices or the newer 13.56 MHz contactless RFID cards, most commonly known as contactless smartcards.Modern proximity cards...
s. According to the producers, billions of smart card chips and many millions of reader modules have been sold. The technology is owned by NXP Semiconductors (spin off from Philips Electronics in 2006) with its headquarters in Eindhoven, the Netherlands, and main business sites in Nijmegen, the Netherlands, and Hamburg, Germany.
The MIFARE name covers proprietary technologies based upon various level of the ISO/IEC 14443 Type A 13.56 MHz contactless smart card
Contactless smart card
A contactless smart card is any pocket-sized card with embedded integrated circuits that can process and store data, and communicate with a terminal via radio waves. There are two broad categories of contactless smart cards. Memory cards contain non-volatile memory storage components, and perhaps...
standard.
Variants
The technology is embodied in both cards and readers (also referred to as a Proximity Coupling Device which is suitable to use).The MIFARE name (derived from the term MIkron Fare Collection System) covers seven different kinds of contactless
Contactless smart card
A contactless smart card is any pocket-sized card with embedded integrated circuits that can process and store data, and communicate with a terminal via radio waves. There are two broad categories of contactless smart cards. Memory cards contain non-volatile memory storage components, and perhaps...
cards:
MIFARE Classic : employ a proprietary protocol compliant to ISO/IEC 14443-3 Type A, with an NXP proprietary security protocol for authentication and ciphering.
MIFARE Ultralight: low-cost ICs that employ the same protocol as MIFARE Classic, but without the security part and slightly different commands
MIFARE Ultralight C: the first low-cost ICs for limited-use applications that offer the benefits of an open Triple DES
Triple DES
In cryptography, Triple DES is the common name for the Triple Data Encryption Algorithm block cipher, which applies the Data Encryption Standard cipher algorithm three times to each data block....
cryptography
MIFARE DESFire: are smart cards that comply to ISO/IEC 14443-4 Type A with a mask-ROM operating system from NXP.
MIFARE DESFire EV1: includes AES
Advanced Encryption Standard
Advanced Encryption Standard is a specification for the encryption of electronic data. It has been adopted by the U.S. government and is now used worldwide. It supersedes DES...
encryption.
MIFARE Plus: drop-in replacement for MIFARE Classic with certified security level (AES
Advanced Encryption Standard
Advanced Encryption Standard is a specification for the encryption of electronic data. It has been adopted by the U.S. government and is now used worldwide. It supersedes DES...
128 based)
MIFARE SAM AV2: secure access module that provides the secure storage of cryptographic keys and cryptographic functions
MIFARE Classic
The MIFARE Classic card is fundamentally just a memory storage device, where the memory is divided into segments and blocks with simple security mechanisms for access controlAccess control
Access control refers to exerting control over who can interact with a resource. Often but not always, this involves an authority, who does the controlling. The resource can be a given building, group of buildings, or computer-based information system...
. They are ASIC
Application-specific integrated circuit
An application-specific integrated circuit is an integrated circuit customized for a particular use, rather than intended for general-purpose use. For example, a chip designed solely to run a cell phone is an ASIC...
-based and have limited computational power. Thanks to their reliability and low cost, those cards are widely used for electronic wallet, access control, corporate ID cards, transportation or stadium ticketing.
The MIFARE Classic 1K offers 1024 bytes of data storage, split into 16 sectors; each sector is protected by two different keys, called A and B. They can be programmed for operations like reading, writing, increasing value blocks, etc.). MIFARE Classic 4K offers 4096 bytes split into forty sectors, of which 32 are same size as in the 1K with eight more that are quadruple size sectors. MIFARE Classic mini offers 320 bytes split into five sectors. For each of these card types, 16 bytes per sector are reserved for the keys and access conditions and can not normally be used for user data. Also, the very first 16 bytes contain the serial number of the card and certain other manufacturer data and are read only. That brings the net storage capacity of these cards down to 752 bytes for Classic 1k, 3440 bytes for Classic 4k, and 224 bytes for Mini. It uses an NXP proprietary security protocol for authentication and ciphering.
MIFARE Classic encryption has been compromised, see below for details.
MIFARE Ultralight
The MIFARE Ultralight has only 512 bits of memory (i.e. 64 bytes), without cryptographic security. The memory is provided in 16 pages of 4 bytes.This card is so inexpensive it is often used for disposable tickets for events such as the Football World Cup 2006.
MIFARE Ultralight C
Introduced at the Cartes industry trade show in 2008, MIFARE Ultralight C is part of NXP's low-cost MIFARE offering (disposable ticket). With Triple DES, MIFARE Ultralight C uses a widely adopted standard, enabling easy integration in existing infrastructures. The integrated Triple DES authentication provides an effective countermeasure against cloning.Key features:
- Fully compliant with ISO/IEC 14443 parts 1-3, Type A (including anti-collision)
- 1536 bits (192 bytes) EEPROM memory
- Protected data access via 3-pass Triple DES authentication
- Memory structure as in MIFARE Ultralight (pages of 4 byte)
- Backwards compatibility to MIFARE Ultralight due to compatible command set
- 16 bit one-way counter
- Unique 7 bytes serial number (UID)
Key applications for MIFARE Ultralight C are Public Transportation, Event Ticketing, Loyalty and NFC Forum Tag Type 2.
MIFARE DESFire
The MIFARE DESFire is based on a core similar to SmartMX, with more hardware and software security features than MIFARE Classic. It comes pre-programmed with the general purpose MIFARE DESFire operating system which offers a simple directory structure and files. They are sold in four variants: one with Triple-DES only & 4 Kbytes of storage and three with AES & 2, 4 or 8 KB (see MIFARE DESFire EV1). The AES variants have additional security features, i.e. CMACCMAC
In cryptography, CMAC is a block cipher-based message authentication code algorithm. It may be used to provide assurance of the authenticity and, hence, the integrity of binary data...
. MIFARE DESFire uses a protocol compliant with ISO/IEC 14443-4. The card is based on an 8051 processor
Intel MCS-51
The Intel MCS-51 is a Harvard architecture, single chip microcontroller series which was developed by Intel in 1980 for use in embedded systems. Intel's original versions were popular in the 1980s and early 1990s. While Intel no longer manufactures the MCS-51, binary compatible derivatives remain...
with 3DES/AES crypto accelerator, making very fast transactions possible.
The maximal read/write distance between card and reader is 10 cm (4 inches), but actual distance depends on the field power generated by the reader and its antenna size.
In 2011 it was announced that the MIFARE DESFire security had been broken.
MIFARE DESFire EV1
(previously called DESFire8)New evolution of MIFARE DESFire card, broadly backwards compatible.
Available with 2 KB, 4 KB and 8 KB NV-Memory.
Other features include:
- Support for random ID
- Support for 128-bit AESAdvanced Encryption StandardAdvanced Encryption Standard is a specification for the encryption of electronic data. It has been adopted by the U.S. government and is now used worldwide. It supersedes DES...
- Hardware and Operating System is Common CriteriaCommon CriteriaThe Common Criteria for Information Technology Security Evaluation is an international standard for computer security certification...
certified at level EALEvaluation Assurance LevelThe Evaluation Assurance Level of an IT product or system is a numerical grade assigned following the completion of a Common Criteria security evaluation, an international standard in effect since 1999. The increasing assurance levels reflect added assurance requirements that must be met to...
4+
MIFARE DESFire EV1 was publicly announced in November 2006.
MIFARE Plus
MIFARE Plus is a replacement card for the MIFARE Classic. It provides an easy upgrade of existing infrastructures toward high security. Data management is identical to the MIFARE Classic, however the security management requires the modification of the installed reader base. Other features include:- 2 Kbytes or 4 Kbytes of memory
- 7 or 4 bytes UID, with optional support for random UID
- Support for 128-bit AES
- Common Criteria certified at level EAL 4+
- MIFARE Plus S for simple migration or MIFARE Plus X with many eXpert commands
- Security upgrade with cards in the field.
It it less flexible than MIFARE DESFire EV1.
MIFARE Plus was publicly announced in March 2008 with first samples in Q1 2009.
MIFARE Plus, when used in older transportation systems that do not yet support AES on the reader side, still leaves an open door to attacks. Though it helps to mitigate threats from attacks that broke the Crypto-1
Crypto-1
Crypto-1 is a proprietary encryption algorithm created by NXP Semiconductors specifically for Mifare RFID tags, including Oyster card, CharlieCard and OV-chipkaart.Recent cryptographic research...
cipher through the weak random number generator, it does not help against brute force attacks and cryptoanalytic attacks.
During the transition period from MIFARE Classic to MIFARE Plus where only a few readers might support AES in the first place, it offers an optional AES authentication in Security Level 1 (which is in fact MIFARE Classic operation). This does not prevent the attacks mentioned above but enables a secure mutual authentication between the reader and the card to prove that the card belongs to the system and is not fake.
MIFARE SAM AV2
MIFARE SAMs are not contactless smartcards. They are Secure access moduleSecure Access Module
A Secure Access Module is based on SmartCard ICs and is used to enhance the security and cryptography performance in devices, commonly in devices needing to perform secure transactions, such as paying terminals....
s designed to provide the secure storage of cryptographic keys and cryptographic functions for terminals to access the MIFARE products securely and to enable secure communication
Secure communication
When two entities are communicating and do not want a third party to listen in, they need to communicate in a way not susceptible to eavesdropping or interception. This is known as communicating in a secure manner or secure communication...
between terminals
Terminal emulator
A terminal emulator, terminal application, term, or tty for short, is a program that emulates a video terminal within some other display architecture....
and host
Host (network)
A network host is a computer connected to a computer network. A network host may offer information resources, services, and applications to users or other nodes on the network. A network host is a network node that is assigned a network layer host address....
(backend). MIFARE SAMs are available from NXP in the contact-only module (PCM 1.1) as defined in ISO/IEC 7816-2 and the HVQFN32 format.
Key features:
- Compatible with MIFARE portfolio solutions
- Supports MIFARE, 3DES and AES cryptography
- Key diversification
- Secure download and storage of keys
- 128 key entries
- ISO 7816 baud rate up to 1.5 Mbit/s
- X-mode functionality
Integrating a MIFARE SAM AV2 in a contactless smart card
Smart card
A smart card, chip card, or integrated circuit card , is any pocket-sized card with embedded integrated circuits. A smart card or microprocessor cards contain volatile memory and microprocessor components. The card is made of plastic, generally polyvinyl chloride, but sometimes acrylonitrile...
reader enables a design which integrates high-end cryptography features and the support of crypto authentication and data encryption/decryption. Like any SAM, it offers functionality to store keys securely, and perform authentication and encryption of data between the contactless card and the SAM and the SAM towards the backend. Next to a classical SAM architecture the MIFARE SAM AV2 supports the X-mode which allows a fast and convenient contactless terminal development by connecting the SAM to the microcontroller and reader IC simultaneously.
MIFARE SAM AV2 offers AV1 mode and AV2 mode where in comparison to the SAM AV1 the AV2 version includes Public Key Infrastructure
Public key infrastructure
Public Key Infrastructure is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates. In cryptography, a PKI is an arrangement that binds public keys with respective user identities by means of a certificate...
(PKI), Hash function
Hash function
A hash function is any algorithm or subroutine that maps large data sets to smaller data sets, called keys. For example, a single integer can serve as an index to an array...
s like SHA-1, SHA-224, and SHA-256. It supports MIFARE Plus and a secure host communication. Both modes provide the same communication interfaces, cryptographic algorithms (Triple-DES 112-bit and 168-bit key, MIFARE Crypto1, AES-128 and AES-192, RSA with up to 2048-bit keys), and X-mode functionalities.
History
- 1994 — MIFARE Classic 1k contactless technology introduced.
- 1996 — First transport scheme in SeoulSeoulSeoul , officially the Seoul Special City, is the capital and largest metropolis of South Korea. A megacity with a population of over 10 million, it is the largest city proper in the OECD developed world...
using MIFARE Classic 1k. - 1997 — MIFARE PRO with Triple DESTriple DESIn cryptography, Triple DES is the common name for the Triple Data Encryption Algorithm block cipher, which applies the Data Encryption Standard cipher algorithm three times to each data block....
coprocessorCoprocessorA coprocessor is a computer processor used to supplement the functions of the primary processor . Operations performed by the coprocessor may be floating point arithmetic, graphics, signal processing, string processing, or encryption. By offloading processor-intensive tasks from the main processor,...
introduced. - 1999 — MIFARE PROX with PKIPublic key infrastructurePublic Key Infrastructure is a set of hardware, software, people, policies, and procedures needed to create, manage, distribute, use, store, and revoke digital certificates. In cryptography, a PKI is an arrangement that binds public keys with respective user identities by means of a certificate...
coprocessor introduced. - 2001 — MIFARE UltraLight introduced.
- 2002 — MIFARE DESFire introduced, microprocessorMicroprocessorA microprocessor incorporates the functions of a computer's central processing unit on a single integrated circuit, or at most a few integrated circuits. It is a multipurpose, programmable device that accepts digital data as input, processes it according to instructions stored in its memory, and...
based product. - 2004 — MIFARE DESFire SAM introduced, secure infrastructure counterpart of MIFARE DESFire.
- 2006 — MIFARE DESFire EV1 is announced as the first product to support 128-bit AESAdvanced Encryption StandardAdvanced Encryption Standard is a specification for the encryption of electronic data. It has been adopted by the U.S. government and is now used worldwide. It supersedes DES...
- 2008 — MIFARE Plus is announced as a drop-in replacement for MIFARE Classic based on 128-bit AES
- 2008 — MIFARE Ultralight C is introduced as paperticket IC featuring Triple DES Authentication
- 2010 — MIFARE SAM AV2 is introduced as secure key storage for readers AES, Triple DES, PKI Authentication
MIFARE was developed by Mikron; the name stands for MIkron FARE-collection System. It was acquired by Philips in 1998. Mikron sourced silicon from Atmel in the US, Philips in the Netherlands, and Siemens in Germany.
After the Philips acquisition, Hitachi licensed MIFARE for the development of the contactless smart card solution for NTT's
Nippon Telegraph and Telephone
, commonly known as NTT, is a Japanese telecommunications company headquartered in Tokyo, Japan. Ranked the 31st in Fortune Global 500, NTT is the largest telecommunications company in Asia, and the second-largest in the world in terms of revenue....
IC telephone card which started in 1999 and finished in 2006.
Motorola tried to develop MIFARE-like chip for wired-logic version but finally gave up. The project expected one million cards per month for start, but that fell to 100,000 per month just before they gave up the project.
In the NTT contactless IC telephone card project, three parties joined: Tokin-Tamura-Siemens, Hitachi
Hitachi
Hitachi is a multinational corporation specializing in high-technology.Hitachi may also refer to:*Hitachi, Ibaraki, Japan*Hitachi province, former province of Japan*Prince Hitachi and Princess Hitachi, members of the Japanese imperial family...
(Philips-contract for technical support), and Denso (Motorola-only production). NTT asked for two versions of chip, i.e. wired-logic chip (like MIFARE Classic) with small memory and big memory capacity. Hitachi developed only big memory version and cut part of the memory to fit for the small memory version.
In 2008 NXP licenced MIFARE Plus and MIFARE DESFire to Renesas Technology. In 2010 NXP licenced MIFARE to Gemalto
Gemalto
Gemalto is an international digital security company, providing secure personal devices such as smart cards and tokens in addition to software applications and managed services. The company was formed in June 2006 by the combination of two companies Axalto and Gemplus International...
. In 2011 NXP licenced Oberthur
Oberthur Technologies
Oberthur Technologies is a French secure technology company, providing security services in smart cards, printing, identity, and cash protection...
to use MIFARE on SIM cards. These licencees are developing Near Field Communication
Near Field Communication
Near field communication, or NFC, allows for simplified transactions, data exchange, and wireless connections between two devices in proximity to each other, usually by no more than a few centimeters. It is expected to become a widely used system for making payments by smartphone in the United States...
products.
Infineon Technologies(formerly Siemens) licenced MIFARE from Mikron in 1994 and developed and today produces various dervatives based on MIFARE technology including 1K memory and various microcontrollers with MIFARE emulations, including devices for use in USIM with Near Field Communication
Near Field Communication
Near field communication, or NFC, allows for simplified transactions, data exchange, and wireless connections between two devices in proximity to each other, usually by no more than a few centimeters. It is expected to become a widely used system for making payments by smartphone in the United States...
.
Security of MIFARE Classic
The encryption used by the MIFARE Classic card uses a 48 bit key.A presentation by Henryk Plötz and Karsten Nohl at the Chaos Communication Congress
Chaos Communication Congress
The Chaos Communication Congress is an annual meeting of the international hacker scene, organized by the Chaos Computer Club. The congress features a variety of lectures and workshops on technical and political issues....
in December 2007 described a partial reverse-engineering of the algorithm used in the MIFARE Classic chip. Abstract and slides are available online. A paper that describes the process of reverse engineering this chip was published at the August 2008 USENIX
USENIX
-External links:* *...
security conference.
In March 2008 the Digital Security research group of the Radboud University Nijmegen
Radboud University Nijmegen
Radboud University Nijmegen is a public university with a strong focus on research in Nijmegen, the Netherlands...
made public that they performed a complete reverse-engineering and were able to clone and manipulate the contents of a MIFARE Classic card. For demonstration they used the Proxmark device, a 125 kHz / 13.56 MHz research instrument. The schematics and software are released under the free GNU General Public License
GNU General Public License
The GNU General Public License is the most widely used free software license, originally written by Richard Stallman for the GNU Project....
by Jonathan Westhues
Jonathan Westhues
Jonathan Westhues is a software, electronics, and security researcher known for his work exposing the security vulnerabilities of the VeriChip microchip implant and the proximity card...
in 2007. They demonstrate it is even possible to perform card-only attacks using just an ordinary stock-commercial NFC reader in combination with the libnfc library.
The Radboud University published three scientific papers concerning the security of the MIFARE Classic:
- A Practical Attack on the MIFARE Classic
- Dismantling MIFARE Classic
- Wirelessly Pickpocketing a Mifare Classic Card
In response to these attacks, the Dutch Minister of the Interior and Kingdom Relations stated that they would investigate whether the introduction of the Dutch Rijkspas could be brought forward from Q4 of 2008.
NXP tried to stop the publication of the second article by requesting a preliminary injunction. However, the injunction was denied, with the court noting that, "It should be considered that the publication of scientific studies carries a lot of weight in a democratic society, as does informing society about serious issues in the chip, because it allows for mitigating of the risks."
Both independent research results are confirmed by the manufacturer NXP.
The MIFARE Classic encryption Crypto-1
Crypto-1
Crypto-1 is a proprietary encryption algorithm created by NXP Semiconductors specifically for Mifare RFID tags, including Oyster card, CharlieCard and OV-chipkaart.Recent cryptographic research...
can be broken in about 200 seconds on a laptop, if approx. 50 bits of known (or chosen) key stream are available. This attack reveals the key from sniffed transactions under certain (common) circumstances and/or allows an attacker to learn the key by challenging the reader device.
The attack proposed in recovers the secret key in about 40 ms on a laptop. This attack requires just one (partial) authentication attempt with a legitimate reader.
Additionally there are a number of attacks that work directly on a card and without the help of a valid reader device. These attacks have been acknowledged by NXP.
In April 2009 new and better card-only attack on MIFARE Classic has been found.
It was first announced at the Rump session of Eurocrypt 2009.
This attack was presented at SECRYPT 2009.
The full description of this latest and fastest attack to date can also be found in the IACR preprint archive.
The new attack improves by a factor of more than 10 all previous card-only attacks on MIFARE Classic, has instant running time, and it does not require a costly precomputation. The new attack allows to recover the secret key of any sector of MIFARE Classic card via wireless interaction, within about 300 queries to the card. It can then be combined with the nested authentication attack in the Nijmegen Oakland paper to recover subsequent keys almost instantly. Both attacks combined and with the right hardware equipment such as Proxmark3, one should be able to clone any MIFARE Classic card in not more than 10 seconds. This is much faster than previously thought.
Considerations for systems integration
For systems based on contactless smartcards (e.g. public transportation), security against fraud relies on many components, of which the card is just one. Typically, to minimize costs, systems integrators will choose a relatively cheap card such as a MIFARE Classic and concentrate security efforts in the back officeBack office
A back office is a part of most corporations where tasks dedicated to running the company itself takes place. The term "Back office" comes from the building layout of early companies where the front office would contain the sales and other customer-facing staff and the back office would be those...
. Additional encryption
Encryption
In cryptography, encryption is the process of transforming information using an algorithm to make it unreadable to anyone except those possessing special knowledge, usually referred to as a key. The result of the process is encrypted information...
on the card, transaction counters, and other methods known in cryptography
Cryptography
Cryptography is the practice and study of techniques for secure communication in the presence of third parties...
are then employed to make cloned cards useless, or at least to enable the back office
Back office
A back office is a part of most corporations where tasks dedicated to running the company itself takes place. The term "Back office" comes from the building layout of early companies where the front office would contain the sales and other customer-facing staff and the back office would be those...
to detect a fraudulent card, and put it on a blacklist. Systems that work with online readers only (i.e., readers with a permanent link to the back office) are easier to protect than systems that have offline readers as well, for which real-time checks are not possible and blacklists cannot be updated as frequently.
Transportation
Card name | Locality | Details |
---|---|---|
Tarjeta Sin Contacto | Argentina Argentina Argentina , officially the Argentine Republic , is the second largest country in South America by land area, after Brazil. It is constituted as a federation of 23 provinces and an autonomous city, Buenos Aires... (Rosario Rosario Rosario is the largest city in the province of Santa Fe, Argentina. It is located northwest of Buenos Aires, on the western shore of the Paraná River and has 1,159,004 residents as of the .... ) |
Transporte Urbano de Pasajeros TUP http://www.etr.gov.ar/ |
EYCON e-Bus | Argentina Argentina Argentina , officially the Argentine Republic , is the second largest country in South America by land area, after Brazil. It is constituted as a federation of 23 provinces and an autonomous city, Buenos Aires... (Bahía Blanca) |
1K MIFARE, planned to be used on buses and taxis. |
Red Bus Red Bus (Mendoza) Red Bus was implemented in Mendoza, Argentina in August 2006, for the payment of the public transport . The system mixes payment by cash with a Mifare contactless smart card.... |
Argentina Argentina Argentina , officially the Argentine Republic , is the second largest country in South America by land area, after Brazil. It is constituted as a federation of 23 provinces and an autonomous city, Buenos Aires... (Córdoba Córdoba, Argentina Córdoba is a city located near the geographical center of Argentina, in the foothills of the Sierras Chicas on the Suquía River, about northwest of Buenos Aires. It is the capital of Córdoba Province. Córdoba is the second-largest city in Argentina after the federal capital Buenos Aires, with... , Mendoza Mendoza, Argentina Mendoza is the capital city of Mendoza Province, in Argentina. It is located in the northern-central part of the province, in a region of foothills and high plains, on the eastern side of the Andes. As of the , Mendoza's population was 110,993... , Salta Salta Salta is a city in northwestern Argentina and the capital city of the Salta Province. Along with its metropolitan area, it has a population of 464,678 inhabitants as of the , making it Argentina's eighth largest city.-Overview:... ) |
1K MIFARE. |
SUBE | Argentina Argentina Argentina , officially the Argentine Republic , is the second largest country in South America by land area, after Brazil. It is constituted as a federation of 23 provinces and an autonomous city, Buenos Aires... (Buenos Aires) |
Metro, trains and buses http://www.sube.gob.ar |
Tarjeta Bip! | Chile Chile Chile ,officially the Republic of Chile , is a country in South America occupying a long, narrow coastal strip between the Andes mountains to the east and the Pacific Ocean to the west. It borders Peru to the north, Bolivia to the northeast, Argentina to the east, and the Drake Passage in the far... (Santiago de Chile) |
Metro de Santiago, Transantiago, http://www.tarjetabip.cl |
Istanbulkart | Turkey Turkey Turkey , known officially as the Republic of Turkey , is a Eurasian country located in Western Asia and in East Thrace in Southeastern Europe... (Istanbul Istanbul Istanbul , historically known as Byzantium and Constantinople , is the largest city of Turkey. Istanbul metropolitan province had 13.26 million people living in it as of December, 2010, which is 18% of Turkey's population and the 3rd largest metropolitan area in Europe after London and... ) |
MIFARE DESFire EV1 - Buses, ferry boats, metro, light metro, trams and overground trains |
KentKart | Turkey Turkey Turkey , known officially as the Republic of Turkey , is a Eurasian country located in Western Asia and in East Thrace in Southeastern Europe... (Izmir Izmir Izmir is a large metropolis in the western extremity of Anatolia. The metropolitan area in the entire Izmir Province had a population of 3.35 million as of 2010, making the city third most populous in Turkey... ) |
Metro, bus, passenger ship |
KGS Card | Turkey Turkey Turkey , known officially as the Republic of Turkey , is a Eurasian country located in Western Asia and in East Thrace in Southeastern Europe... |
Toll Highways, KGS (acronym for Contactless Card Toll System), MIFARE Classic 1K, MIFARE Plus 2K (in Classic compatibility mode) |
Muzekart | Turkey Turkey Turkey , known officially as the Republic of Turkey , is a Eurasian country located in Western Asia and in East Thrace in Southeastern Europe... |
MIFARE Classic 1K, MIFARE Plus 2K |
Etalons | Latvia Latvia Latvia , officially the Republic of Latvia , is a country in the Baltic region of Northern Europe. It is bordered to the north by Estonia , to the south by Lithuania , to the east by the Russian Federation , to the southeast by Belarus and shares maritime borders to the west with Sweden... |
MIFARE Ultralight 512 bytes |
Moscow Metro Moscow Metro The Moscow Metro is a rapid transit system serving Moscow and the neighbouring town of Krasnogorsk. Opened in 1935 with one line and 13 stations, it was the first underground railway system in the Soviet Union. As of 2011, the Moscow Metro has 182 stations and its route length is . The system is... |
Russia Russia Russia or , officially known as both Russia and the Russian Federation , is a country in northern Eurasia. It is a federal semi-presidential republic, comprising 83 federal subjects... (Moscow Moscow Moscow is the capital, the most populous city, and the most populous federal subject of Russia. The city is a major political, economic, cultural, scientific, religious, financial, educational, and transportation centre of Russia and the continent... ) |
Ultralight disposable ticket |
Touch 'n Go Touch 'n Go The Touch 'n Go or smart card is used by Malaysian toll expressway and highway operators as the sole electronic payment system . The credit card sized smartcard made of plastic with Philips' MIFARE microchip technology embedded in it.... |
Malaysia | |
Mybi Mybi The Mybi card is a kind of contactless smartcard used in South Korea. This system was introduced in 2000 as a new fare collection system for the Busan area.-Areas:Mybi is now used in many areas.... , T-money T-Money T-money is a rechargeable series of cards and other "smart" devices used for paying transportation fares in and around Seoul and other areas of South Korea. T-money can also be used in lieu of cash or credit cards in some convenience stores and other businesses... , Upass |
South Korea South Korea The Republic of Korea , , is a sovereign state in East Asia, located on the southern portion of the Korean Peninsula. It is neighbored by the People's Republic of China to the west, Japan to the east, North Korea to the north, and the East China Sea and Republic of China to the south... |
|
Cívica Civica Civica Group Ltd is a market leader in specialist systems and outsourcing services that help organisations improve service delivery and efficiency. Civica is headquartered in London in the United Kingdom... |
Colombia Colombia Colombia, officially the Republic of Colombia , is a unitary constitutional republic comprising thirty-two departments. The country is located in northwestern South America, bordered to the east by Venezuela and Brazil; to the south by Ecuador and Peru; to the north by the Caribbean Sea; to the... (Medellin Medellín Medellín , officially the Municipio de Medellín or Municipality of Medellín, is the second largest city in Colombia. It is in the Aburrá Valley, one of the more northerly of the Andes in South America. It has a population of 2.3 million... ) |
|
ETS Blue | Canada Canada Canada is a North American country consisting of ten provinces and three territories. Located in the northern part of the continent, it extends from the Atlantic Ocean in the east to the Pacific Ocean in the west, and northward into the Arctic Ocean... (Edmonton, Alberta) |
|
EMcard | Slovakia Slovakia The Slovak Republic is a landlocked state in Central Europe. It has a population of over five million and an area of about . Slovakia is bordered by the Czech Republic and Austria to the west, Poland to the north, Ukraine to the east and Hungary to the south... |
Used by almost every public transport system in Slovakia and some in Czech Republic. In most cases only referred to as BCK - Bezkontaktná cipová karta (contactless smart card) |
RATB Activ | Romania Romania Romania is a country located at the crossroads of Central and Southeastern Europe, on the Lower Danube, within and outside the Carpathian arch, bordering on the Black Sea... (Bucharest) |
|
ORCA Card Orca Card The ORCA ' Card is a contactless, stored value smart card used for payment of public transport fares in the Puget Sound region... |
USA (Seattle, Washington) | |
In Karta | Czech republic Czech Republic The Czech Republic is a landlocked country in Central Europe. The country is bordered by Poland to the northeast, Slovakia to the east, Austria to the south, and Germany to the west and northwest.... (Prag) |
(www.cd.cz) |
opencard | Czech republic Czech Republic The Czech Republic is a landlocked country in Central Europe. The country is bordered by Poland to the northeast, Slovakia to the east, Austria to the south, and Germany to the west and northwest.... (Prag) |
|
Go-To Card Go-To card The Go-To card is a contactless smart card used to pay fares for bus, light rail, and commuter rail lines operated by Metro Transit and other transit agencies in the Twin Cities area of Minnesota... |
USA (Minneapolis, Minnesota) | |
Clipper card | USA (San Francisco Bay Area San Francisco Bay Area The San Francisco Bay Area, commonly known as the Bay Area, is a populated region that surrounds the San Francisco and San Pablo estuaries in Northern California. The region encompasses metropolitan areas of San Francisco, Oakland, and San Jose, along with smaller urban and rural areas... , California California California is a state located on the West Coast of the United States. It is by far the most populous U.S. state, and the third-largest by land area... ) |
MIFARE DESFire; replacing TransLink, which used a Motorola Card. http://clippercard.com |
Breeze card Breeze Card The Breeze Card is a stored value smart card that passengers use as part of an automated fare collection system which the Metropolitan Atlanta Rapid Transit Authority introduced to the general public in early October 2006. The card automatically debits the cost of the passenger’s ride when placed... |
USA (Atlanta MARTA, Georgia Georgia (U.S. state) Georgia is a state located in the southeastern United States. It was established in 1732, the last of the original Thirteen Colonies. The state is named after King George II of Great Britain. Georgia was the fourth state to ratify the United States Constitution, on January 2, 1788... ) |
MIFARE Ultralight and Classic. http://www.breezecard.com/ |
Oyster card Oyster card The Oyster card is a form of electronic ticketing used on public transport services within the Greater London area of the United Kingdom. It is promoted by Transport for London and is valid on a number of different travel systems across London including London Underground, buses, the Docklands... |
England England England is a country that is part of the United Kingdom. It shares land borders with Scotland to the north and Wales to the west; the Irish Sea is to the north west, the Celtic Sea to the south west, with the North Sea to the east and the English Channel to the south separating it from continental... (London London London is the capital city of :England and the :United Kingdom, the largest metropolitan area in the United Kingdom, and the largest urban zone in the European Union by most measures. Located on the River Thames, London has been a major settlement for two millennia, its history going back to its... ) |
migrating from MIFARE Classic to MIFARE DESFire EV1 |
ACTION MyWay | Australia Australia Australia , officially the Commonwealth of Australia, is a country in the Southern Hemisphere comprising the mainland of the Australian continent, the island of Tasmania, and numerous smaller islands in the Indian and Pacific Oceans. It is the world's sixth-largest country by total area... (Canberra) |
|
SmartRider SmartRider SmartRider is Transperth's contactless electronic ticketing system using smartcard technology for the process of charging patrons for public transport in Western Australia.... |
Australia Australia Australia , officially the Commonwealth of Australia, is a country in the Southern Hemisphere comprising the mainland of the Australian continent, the island of Tasmania, and numerous smaller islands in the Indian and Pacific Oceans. It is the world's sixth-largest country by total area... (Perth Perth, Western Australia Perth is the capital and largest city of the Australian state of Western Australia and the fourth most populous city in Australia. The Perth metropolitan area has an estimated population of almost 1,700,000.... ) |
MIFARE Classic 1k |
Myki Myki myki is the contactless smartcard ticketing system being introduced on public transport in Victoria, Australia. myki is designed to replace a number of ticket systems in Victoria, primarily the Metcard and V/Line ticketing systems... |
Australia Australia Australia , officially the Commonwealth of Australia, is a country in the Southern Hemisphere comprising the mainland of the Australian continent, the island of Tasmania, and numerous smaller islands in the Indian and Pacific Oceans. It is the world's sixth-largest country by total area... (Victoria) |
MIFARE DESFire card |
TransLink Go card TransLink Go card The go card is an electronic smartcard ticketing system developed by Cubic Corporation and currently used on the TransLink public transport network in South East Queensland. To use the go card users hold the card less than 10 cm away from the reader to "touch on" before starting a journey, and... |
Australia Australia Australia , officially the Commonwealth of Australia, is a country in the Southern Hemisphere comprising the mainland of the Australian continent, the island of Tasmania, and numerous smaller islands in the Indian and Pacific Oceans. It is the world's sixth-largest country by total area... (Brisbane Brisbane Brisbane is the capital and most populous city in the Australian state of Queensland and the third most populous city in Australia. Brisbane's metropolitan area has a population of over 2 million, and the South East Queensland urban conurbation, centred around Brisbane, encompasses a population of... ) |
|
MIFARE4Mobile Mifare4mobile MIFARE4Mobile is a published by NXP Semiconductors in December 2008 to manage MIFARE-based applications in mobile devices. The specification provides mobile network operators and service providers with a single, interoperable programming interface, easing the use of the contactless MIFARE... |
? | MIFARE in the NFC mobile services context |
OV-chipkaart OV-chipkaart The OV-chipkaart is a contactless smart card system which is in the process of being introduced on all public transport in the Netherlands, including train, metro, tram and bus... |
Netherlands Netherlands The Netherlands is a constituent country of the Kingdom of the Netherlands, located mainly in North-West Europe and with several islands in the Caribbean. Mainland Netherlands borders the North Sea to the north and west, Belgium to the south, and Germany to the east, and shares maritime borders... |
Currently being introduced as a single payment system for public transportation in the Netherlands, using a MIFARE Classic card. |
Charlie Card | USA (Boston, Massachusetts) | MBTA v. Anderson - Civil case related to the responsible disclosure Responsible disclosure Responsible disclosure is a computer security term describing a vulnerability disclosure model. It is like full disclosure, with the addition that all stakeholders agree to allow a period of time for the vulnerability to be patched before publishing the details. Developers of hardware and software... of flaws in the system |
Yang Cheng Tong Yang Cheng Tong Yang Cheng Tong, is a contactless rechargeable stored value smartcard designed for paying the travel fares in the metro, buses, taxis and ferries in Guangzhou, China and surrounding cities, namely Foshan, Huadu, Zengcheng and Panyu... |
China China Chinese civilization may refer to:* China for more general discussion of the country.* Chinese culture* Greater China, the transnational community of ethnic Chinese.* History of China* Sinosphere, the area historically affected by Chinese culture... (Guangzhou) |
|
Yikatong | China China Chinese civilization may refer to:* China for more general discussion of the country.* Chinese culture* Greater China, the transnational community of ethnic Chinese.* History of China* Sinosphere, the area historically affected by Chinese culture... (Beijing) |
|
EasyCard EasyCard The EasyCard is a contactless smartcard system operated by the Taipei Smart Card Corporation for payment on the Taipei MRT, buses, and other public transport services in Taipei since June 2002. Its use has since been expanded to include convenience stores, department stores, supermarkets, and... |
Taiwan Taiwan Taiwan , also known, especially in the past, as Formosa , is the largest island of the same-named island group of East Asia in the western Pacific Ocean and located off the southeastern coast of mainland China. The island forms over 99% of the current territory of the Republic of China following... |
|
IndianRailways | India India India , officially the Republic of India , is a country in South Asia. It is the seventh-largest country by geographical area, the second-most populous country with over 1.2 billion people, and the most populous democracy in the world... |
MIFARE DESFire cards, Indian railways (five major cities) |
Cardz Me | India India India , officially the Republic of India , is a country in South Asia. It is the seventh-largest country by geographical area, the second-most populous country with over 1.2 billion people, and the most populous democracy in the world... (Karnataka) |
Issued to students in the Indian state of Karnataka by Cardz Middle East |
Warszawska Karta Miejska | Poland Poland Poland , officially the Republic of Poland , is a country in Central Europe bordered by Germany to the west; the Czech Republic and Slovakia to the south; Ukraine, Belarus and Lithuania to the east; and the Baltic Sea and Kaliningrad Oblast, a Russian exclave, to the north... (Warsaw Warsaw Warsaw is the capital and largest city of Poland. It is located on the Vistula River, roughly from the Baltic Sea and from the Carpathian Mountains. Its population in 2010 was estimated at 1,716,855 residents with a greater metropolitan area of 2,631,902 residents, making Warsaw the 10th most... ) |
1K MIFARE Classic cards used on buses, trams, subway and railroad |
Białostocka Karta Miejska | Poland Poland Poland , officially the Republic of Poland , is a country in Central Europe bordered by Germany to the west; the Czech Republic and Slovakia to the south; Ukraine, Belarus and Lithuania to the east; and the Baltic Sea and Kaliningrad Oblast, a Russian exclave, to the north... (Białystok) |
1K MIFARE Classic cards used on buses |
EasyRider EasyRider The easyrider Citycard, , is a contactless smartcard introduced in 2000 in Nottingham, England, for use on Nottingham City Transport Services. It was originally named 'BusCard'. The name EasyRider was first used by NCT in 1981 for a pre-paid, paper-based system that was carried and used with a... |
England England England is a country that is part of the United Kingdom. It shares land borders with Scotland to the north and Wales to the west; the Irish Sea is to the north west, the Celtic Sea to the south west, with the North Sea to the east and the English Channel to the south separating it from continental... (Nottingham) |
Nottingham City Transport Nottingham City Transport Nottingham City Transport is the major bus operator of the English city of Nottingham, running a comprehensive network of services in the Greater Nottingham area, with some services continuing to Southwell, Loughborough, and East Midlands Airport. There are over 80 routes across the City, giving... |
OPUS card | Canada Canada Canada is a North American country consisting of ten provinces and three territories. Located in the northern part of the continent, it extends from the Atlantic Ocean in the east to the Pacific Ocean in the west, and northward into the Arctic Ocean... (Montreal) |
Société de transport de Montréal Société de transport de Montréal The Société de transport de Montréal is a public transport agency that operates transit bus, and rapid transit services in Montreal, Quebec, Canada... |
Green Card | Australia Australia Australia , officially the Commonwealth of Australia, is a country in the Southern Hemisphere comprising the mainland of the Australian continent, the island of Tasmania, and numerous smaller islands in the Indian and Pacific Oceans. It is the world's sixth-largest country by total area... (Hobart) |
|
RioCard RioCard The RioCard is a smartcard system used in the transport system of Rio de Janeiro state, Brazil.... |
Brazil Brazil Brazil , officially the Federative Republic of Brazil , is the largest country in South America. It is the world's fifth largest country, both by geographical area and by population with over 192 million people... (Rio de Janeiro) |
|
Orovale | Brazil Brazil Brazil , officially the Federative Republic of Brazil , is the largest country in South America. It is the world's fifth largest country, both by geographical area and by population with over 192 million people... (Teresopolis Teresópolis Teresópolis is a Brazilian municipality located in the state of Rio de Janeiro, in a mountainous region known as Região Serrana. The Serra dos Órgãos National Park lies partly within the city limits.-History:... ) |
Viação Dedo de Deus (buses) |
Bilhete Único Bilhete Único Bilhete Único is the name of the São Paulo transportation contactless smart card system for fare control.Using Philips Mifare technology, the solution is managed by , the city bus transportation authority, which is controlled by municipal government... |
Brazil Brazil Brazil , officially the Federative Republic of Brazil , is the largest country in South America. It is the world's fifth largest country, both by geographical area and by population with over 192 million people... (São Paulo São Paulo São Paulo is the largest city in Brazil, the largest city in the southern hemisphere and South America, and the world's seventh largest city by population. The metropolis is anchor to the São Paulo metropolitan area, ranked as the second-most populous metropolitan area in the Americas and among... ) |
|
StrongLink | China China Chinese civilization may refer to:* China for more general discussion of the country.* Chinese culture* Greater China, the transnational community of ethnic Chinese.* History of China* Sinosphere, the area historically affected by Chinese culture... (Beijing) |
|
BuTra | Croatia Croatia Croatia , officially the Republic of Croatia , is a unitary democratic parliamentary republic in Europe at the crossroads of the Mitteleuropa, the Balkans, and the Mediterranean. Its capital and largest city is Zagreb. The country is divided into 20 counties and the city of Zagreb. Croatia covers ... (Osijek Osijek Osijek is the fourth largest city in Croatia with a population of 83,496 in 2011. It is the largest city and the economic and cultural centre of the eastern Croatian region of Slavonia, as well as the administrative centre of Osijek-Baranja county... ) |
|
Resekortet | Sweden Sweden Sweden , officially the Kingdom of Sweden , is a Nordic country on the Scandinavian Peninsula in Northern Europe. Sweden borders with Norway and Finland and is connected to Denmark by a bridge-tunnel across the Öresund.... |
MIFARE Classic 1K |
SL Storstockholms Lokaltrafik Storstockholms Lokaltrafik AB, , commonly referred to as SL, is the organisation running all of the land based public transport systems in Stockholm County.... |
Sweden Sweden Sweden , officially the Kingdom of Sweden , is a Nordic country on the Scandinavian Peninsula in Northern Europe. Sweden borders with Norway and Finland and is connected to Denmark by a bridge-tunnel across the Öresund.... |
MIFARE Classic 4K. Stockholms lokaltrafik (Stockholm public transit card) |
Rejsekort Rejsekort Rejsekort is a, electronic ticket system for public transport in Denmark. The system is a collaborative work between DSB, HUR, Ørestadsselskabet, and various regional bus companies, and work on it started on August 18, 2003... |
Denmark Denmark Denmark is a Scandinavian country in Northern Europe. The countries of Denmark and Greenland, as well as the Faroe Islands, constitute the Kingdom of Denmark . It is the southernmost of the Nordic countries, southwest of Sweden and south of Norway, and bordered to the south by Germany. Denmark... |
MIFARE Classic 4k |
Baku metrocard | Azerbaijan Azerbaijan Azerbaijan , officially the Republic of Azerbaijan is the largest country in the Caucasus region of Eurasia. Located at the crossroads of Western Asia and Eastern Europe, it is bounded by the Caspian Sea to the east, Russia to the north, Georgia to the northwest, Armenia to the west, and Iran to... (Baku) |
1K MIFARE Classic, 1K MIFARE Plus S |
SmartCard | Ireland Ireland Ireland is an island to the northwest of continental Europe. It is the third-largest island in Europe and the twentieth-largest island on Earth... (Dublin) |
Iarnród Éireann Iarnród Éireann Iarnród Éireann is the national railway system operator of Ireland. Established on 2 February 1987, it is a subsidiary of Córas Iompair Éireann . It operates all internal intercity, commuter and freight railway services in the Republic of Ireland, and, jointly with Northern Ireland Railways, the... , MIFARE 1K (According to FareBot). |
Institutions
- New College SchoolNew College SchoolNew College School is an independent preparatory school for boys in Oxford. It was founded in 1379 by William of Wykeham to provide for the education of 16 choristers for the chapel of New College, Oxford....
in OxfordOxfordThe city of Oxford is the county town of Oxfordshire, England. The city, made prominent by its medieval university, has a population of just under 165,000, with 153,900 living within the district boundary. It lies about 50 miles north-west of London. The rivers Cherwell and Thames run through...
- Building access. - Imperial College LondonImperial College LondonImperial College London is a public research university located in London, United Kingdom, specialising in science, engineering, business and medicine...
- Staff and student ID access card in London, UK. - Cambridge University - Student/Staff ID and access card, library card, canteen payments in some colleges
- University of WarwickUniversity of WarwickThe University of Warwick is a public research university located in Coventry, United Kingdom...
- Staff and student ID card and separate Eating at Warwick stored value card in Coventry, UK. - Regent's CollegeRegent's CollegeRegent's College is located in Regent's Park, London, England. It is one of the two largest groups of buildings in the park, along with the London Zoo, and was built on the site of South Villa, one of the original eight Regent's Park villas....
, London - Staff and student ID access card in London, UK. - Bucknell UniversityBucknell UniversityBucknell University is a private liberal arts university located alongside the West Branch Susquehanna River in the rolling countryside of Central Pennsylvania in the town of Lewisburg, 30 miles southeast of Williamsport and 60 miles north of Harrisburg. The university consists of the College of...
- Student ID access card in Lewisburg, Pennsylvania. - University of AlbertaUniversity of AlbertaThe University of Alberta is a public research university located in Edmonton, Alberta, Canada. Founded in 1908 by Alexander Cameron Rutherford, the first premier of Alberta and Henry Marshall Tory, its first president, it is widely recognized as one of the best universities in Canada...
- Staff OneCardOneCardOneCard is the an e-shopping company based in Saudi Arabia, which offers online payment and shopping services primarily in the Arab world and North Africa....
trial currently underway. - Northumbria UniversityNorthumbria UniversityNorthumbria University is an academic institution located in Newcastle upon Tyne in the North East of England. It is a member of the University Alliance.- History :...
- Student/Staff building and printer access. - City University of Hong KongCity University of Hong KongCity University of Hong Kong is a comprehensive research university in Hong Kong. It was founded in 1984 as City Polytechnic of Hong Kong and became a fully accredited university in 1994. It has achieved fast growth in recent years and received international recognition for its academic achievements...
- Student/Staff building, Library, Amenities Building. - University of BayreuthUniversity of BayreuthThe University of Bayreuth is a public research university situated in Bayreuth, Germany. It was founded in 1975 as a campus university focusing on international collaboration and interdisciplinarity...
- Student ID card and canteen card for paying. - University of IbadanUniversity of IbadanThe University of Ibadan is the oldest Nigerian university, and is located five miles from the centre of the major city of Ibadan in Western Nigeria...
, NigeriaNigeriaNigeria , officially the Federal Republic of Nigeria, is a federal constitutional republic comprising 36 states and its Federal Capital Territory, Abuja. The country is located in West Africa and shares land borders with the Republic of Benin in the west, Chad and Cameroon in the east, and Niger in...
- Student ID card and Examination Verification and Attendance. - Convenant University, Nigeria - Student ID card and Examination Verification and Attendance.
- Lead City UniversityLead City University- External Links :**...
, Nigeria - Student ID card and Examination Verification and Attendance. - Hogeschool-Universiteit Brussel, BelgiumBelgiumBelgium , officially the Kingdom of Belgium, is a federal state in Western Europe. It is a founding member of the European Union and hosts the EU's headquarters, and those of several other major international organisations such as NATO.Belgium is also a member of, or affiliated to, many...
- Student ID card, canteen card for paying, library and building access.
Further reading
- Dayal, Geeta, "How they hacked it: The MiFare RFID crack explained; A look at the research behind the chip compromise, ComputerworldComputerworldComputerworld is an IT magazine that provides information for senior IT leaders. It is published in many countries around the world under the same or similar names. Its publisher is International Data Group. Computerworld serves the needs of IT management via print and online...
, March 19, 2008.
External links
- MIFARE official website.
- 24C3 Talk about MIFARE Classic Video of the 24C3 Talk presenting the results of reverse engineering the MIFARE Classic family, raising serious security concerns
- Presentation of 24th Chaos Computer Congress in Berlin Claiming that the MIFARE classic chip is possibly not safe
- Demonstration of an actual attack on MIFARE Classic (a building access control system) by the Radboud University Nijmegen.