crash and pay
play

CRASH AND PAY Cloning and Fuzzing the NFC world. PAYMENT SECURITY - PowerPoint PPT Presentation

Nov 24, 2023 •333 likes •867 views

CRASH AND PAY Cloning and Fuzzing the NFC world. PAYMENT SECURITY CONSULTING 1 WWW.PSCCO.COM.AU 15/09/2014 ABOUT ME Principle Consultant at Payment Security Consulting Banking, Payments, Certifications, breaking stuff; repairing

  1. CRASH AND PAY Cloning and Fuzzing the NFC world. PAYMENT SECURITY CONSULTING 1 WWW.PSCCO.COM.AU 15/09/2014

  2. ABOUT ME „ Principle Consultant at Payment Security Consulting „ Banking, Payments, Certifications, breaking stuff; repairing it; I do it all. „ Did some fun stuff last year – this year no music though. „ Enjoys buying stuff that shouldn’t be resold on ebay… PAYMENT SECURITY CONSULTING 2 WWW.PSCCO.COM.AU 15/09/2014

  3. NFC – THE NEW SOURCE FOR INTIMATE CELEBRITY MOMENTS? Source: Gartner Hype Cycle 2014 http://www.gartner.com/technology/research/hype-cycles/ PAYMENT SECURITY CONSULTING HTTP:// 3 WWW.PSCCO.COM.AU 15/09/2014

  4. INSPIRATIONS FOR THIS TALK „ “Don’t Stand So Close To Me, An analysis of the NFC attack surface” – Charlie Miller 2012 „ “PinPadPwn” – Nils & Rafael Dominguez Vega Pin Pads, 2012 „ “Credit Card Fraud - The Contactless Generation” Kristian Paget, 2012 „ “Mission Mpossible” –Nils and Jon Butler 2013 „ “Cloning Credit Cards: A combined pre-play and downgrade attack on EMV Contactless” - Michael Roland 2013 PAYMENT SECURITY CONSULTING HTTP:// 4 WWW.PSCCO.COM.AU 15/09/2014

  5. QUICK NFC/RFID PRIMER „ Looking at ISO14443 tags today. „ Going to skip over the basics – see better talks about that stuff. „ Focus is on the higher level stuff and it is handled. „ Application Data Units(APDUs) is how data is exchanged by cards after initialization. PAYMENT SECURITY CONSULTING HTTP:// 5 WWW.PSCCO.COM.AU 15/09/2014

  6. NFC CARDS „ Cards are little computers „ Contain a SoC, RAM, ROM and interfaces „ Mainly two OS’s, JavaCard and MULTOS „ JavaCard is a stripped down Java VM – with apps programmed in Java. „ MULTOS is a custom VM, apps programmed in C and then compliled into byte-code. „ Apps are signed and loaded by Issuers. „ Keys, Certs and other user data is put on cards using a process called “Personalization” PAYMENT SECURITY CONSULTING HTTP:// 6 WWW.PSCCO.COM.AU 15/09/2014

  7. NFC CARDS – ISO14443 Differ by how data is physically transferred, and the initialization process. Type A – Developed by Phillips/NXP Type B – Developed by Innovatron Type F/Felica – Developed by Sony (not in standard) PAYMENT SECURITY CONSULTING HTTP:// 7 WWW.PSCCO.COM.AU 15/09/2014

  8. TYPE A CARD INITIALISATION Rdr | 26 � Tag | 04 00! � Rdr | 93 20 � Tag | cf! 1f ab ae d5 Rdr | 93 70 cf 1f ab ae d5 f1 1b � Tag | 28! b4! fc! Rdr | e0 50 bc a5 Tag | 0b! 78 80 81 02! � 4b 4f! 4e 41! 14! � 11! 8a 76 � Rdr | b2 67 c7 � Tag | a3! 6f! c6! � PAYMENT SECURITY CONSULTING HTTP:// 8 WWW.PSCCO.COM.AU 15/09/2014

  9. ISO-14443 DATA FRAMES „ We use frames to cut data up into nice chunks. „ The card/terminal tell us how big a frame is „ The protocol then chunks your APDU into the frame size and sends it over the wire „ The receiver ACK/NACKs the frames. „ Very basic, not a routing protocol for example. PAYMENT SECURITY CONSULTING HTTP:// 9 WWW.PSCCO.COM.AU 15/09/2014

  10. BLOCKS IN ISO14443-A Byte # 1 2-(FRAME SIZE-2) FRAME SIZE-2 FRAMESIZE-1 Description Block Coding Data CRC CRC Information Block (I-Block): used to transmit normal data Receive Ready Block(R-Block): indicates ready to receive data Supervisory Block (S-Block): used for protocol messaging - initialisation I-Block Coding: Bit# 8 7 6 5 4 3 2 1 Description 0 0 0 Chaining Card ID Node Address 1 Block Number |Rdr|e0 50 bca5 |Tag|a3 6fc6 |Rdr|02 00a4 [cut data] e042 |Tag|02 6f31[cut data] adde |Rdr|03 00a4 [cut data] bc41 |Tag|13 6f43[cut data] 5faf |Rdr|a2 e6d7 |Tag|02 2050 [cut data] cbe1 PAYMENT SECURITY CONSULTING 10 WWW.PSCCO.COM.AU 15/09/2014

  11. ISO 7816 – APDUS „ ISO 7816 – standard for ID cards with integrated circuits. „ Part 4 covers APDUs – Application Protocol Data Unit – how we format data Command APDU (sent from Terminal) Byte 1 2 3 4 5 <VAR> CLA INS P1 P2 Lc Data Le Description Class Instruction Parameter Parameter Data Expected Byte 1 Byte 2 Length Response Length Response APDU (sent from Terminal) Byte <VAR> <VAR>+1 <VAR>+2 Desc. Response Data SW1 SW2 PAYMENT SECURITY CONSULTING HTTP:// 11 WWW.PSCCO.COM.AU 15/09/2014

  12. HOW WE ENCODE DATA FOR EMV PAYMENTS. ASN.1 BER-TLV TAG LENGTH VALUE „ Tag = what does the data represent. Normally 1 or 2 bytes long – but no hard limit „ Length = the Length of the data. No hard limit to the length – usually you are limited by your hardware „ Value = data to send. Easy! PAYMENT SECURITY CONSULTING HTTP:// 12 WWW.PSCCO.COM.AU 15/09/2014

  13. TAG FORMATTING Bit 8 7 6 5 4 3 2 1 Class P/C Tag Number Class Bit 8 Bit Description 7 Universal 0 0 The type is native to ASN.1 Application 0 1 The type is only valid for one specific application Context- 1 0 Meaning of this type depends on the context (such as specific within a sequence, set or choice) Private 1 1 Defined in private specifications If a tag number is 31, then the tag number is stored in the subsequent bytes after. Bit 8 of these bytes tells us when to stop 1=keep going, 0=stop PAYMENT SECURITY CONSULTING HTTP:// 13 WWW.PSCCO.COM.AU 15/09/2014

  14. LENGTH FORMATTING • Short Form – 1 byte long • Bit 8 set to zero indicates that the remaining bits indicate length of data • Binary values, so max data length of 127 bytes • E.g 67(0x43) byte length is encoded as ‘0x43’, easy • Long Form – as many bytes as possible • First byte tells us number of length bytes to follow. Bit 8 is set to ‘1’ • E.g 8567(0x2177) byte length is encoded as ‘0x842177’ PAYMENT SECURITY CONSULTING HTTP:// 14 WWW.PSCCO.COM.AU 15/09/2014

  15. TEMPLATES „ TLV Tags that are used to hold many other TLV Tags „ Used to hold many TLV tags. „ Can be nested „ E.g SELECT PPSE Response: 6F FCI Template 84 DF Name A5 FCI Proprietary Template BF0C FCI Discretionary Data 61 Directory Entry 4F ADF Name (Application ID) 87 Application Priority Indicator (API) PAYMENT SECURITY CONSULTING HTTP:// 15 WWW.PSCCO.COM.AU 15/09/2014

  16. TOOLS OF THE TRADE PAYMENT SECURITY CONSULTING HTTP:// 16 WWW.PSCCO.COM.AU 15/09/2014

  17. ACR-122U Bout $60, reads lost of stuff. Fickle – loves to crash, crap error handling Can be made to support card emulation ( couldn’t be bothered myself) Good to get started understanding stuff Lots of limitations – like limited APDU length(~260 bytes), Stuck with what the interface chip gives you. No command chaining support (at least in RFIDIOT) Charlie Millers talk on fuzzing RFID used this. Read that, its pretty awesome: https://media.blackhat.com/bh-us-12/Briefings/C_Miller/ BH_US_12_Miller_NFC_attack_surface_Slides.pdf PAYMENT SECURITY CONSULTING HTTP:// 17 WWW.PSCCO.COM.AU 15/09/2014

  18. ANDROID PHONES WITH NFC Prior to 4.4.4 (KitKat) Card Emulation not officially supported. But Cynanogen mod lets you. NXP chip supports emulation but not in official AOSP L , watch out for pre 2013 android NFC phones Broadcom chip does, which was added in Nexus 4, Samsung Galaxy S4 etc Better then ACR-122U cos its less buggy – but limited to chip support stuff – can’t spoof UID – limited by internal buffer lengths (2472 in Nexus4). PAYMENT SECURITY CONSULTING HTTP:// 18 WWW.PSCCO.COM.AU 15/09/2014

  19. HYDRANFC+HYDRABUS Coming soon No FPGA, so cheaper then proxmark3. Sniffing, R/W and emulation using TI TRF7970A chip. This chip lets you spit out raw data. Probably be about US$120 all up – so half cost of proxmark3 No idea how good it is. hydrabus.com PAYMENT SECURITY CONSULTING HTTP:// 19 WWW.PSCCO.COM.AU 15/09/2014

  20. PROXMARK 3 – GITHUB.COM/PROXMARK/PROXMARK3 „ Grandaddy of RFID Research „ US$229 PCB only L „ Supports 125/134KHz, 13.56MHz. „ Heavily moddable „ FPGA handles raw signals, „ ARM higher protocol stuff „ Super powerful – Super painful as well. Basic command line. „ API is a bit hairy „ Needs an update – bugger all memory, limits amount of data you can send. „ Lots of bugs! But good development community. PAYMENT SECURITY CONSULTING HTTP:// 20 WWW.PSCCO.COM.AU 15/09/2014

  21. FUCKING NFC PAYMENTS, HOW DO THEY WORK? PAYMENT SECURITY CONSULTING HTTP:// 21 WWW.PSCCO.COM.AU 15/09/2014

  22. EMV CONTACTLESS STANDARD „ Integrates all major card brands implementation of NFC payments. „ Available on the EMVCO website „ Book C contains 7 “Kernel” options: „ Kernel 1 for some cards with JCB AIDs and some cards with Visa AIDs „ Kernel 2 for MasterCard AIDs „ Kernel 3 for Visa AIDs „ Kernel 4 for American Express AIDs „ Kernel 5 for JCB AIDs „ Kernel 6 for Discover AIDs „ Kernel 7 for UnionPay „ These documents provide you all you need to know on how a major card brand NFC payments system should work. „ I’m gonna focus on Mastercard and VISA in this talk. PAYMENT SECURITY CONSULTING HTTP:// 22 WWW.PSCCO.COM.AU 15/09/2014

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Arizona Crash Report Presentation by Glen Robison State Custodian of Crash Records Prepared

Arizona Crash Report Presentation by Glen Robison State Custodian of Crash Records Prepared

Arizona Crash Report Presentation by Glen Robison State Custodian of Crash Records Prepared 6/3/2020 1- Crash Identification Block The month, day and hour should be when the crash occurred Not when reported Not when you arrived 2- General

561 views • 15 slides
PUEBLO MS2 - CRASH http://pueblo.ms2soft.com/ By: Hannah Haunert TCDS Traffic Crash Location

PUEBLO MS2 - CRASH http://pueblo.ms2soft.com/ By: Hannah Haunert TCDS Traffic Crash Location

PUEBLO MS2 - CRASH http://pueblo.ms2soft.com/ By: Hannah Haunert TCDS Traffic Crash Location System Website Address: http://pueblo.ms2soft.com Quick Search By: Study Location Location Crash Data Crash ID Date Crash Type LOG

555 views • 31 slides
A Crash Course on A Crash Course on Temporal Specifications Temporal Specifications [Kansas

A Crash Course on A Crash Course on Temporal Specifications Temporal Specifications [Kansas

A Crash Course on A Crash Course on Temporal Specifications Temporal Specifications [Kansas State] John Hatcliff Work on specification patterns by Matthew Dwyer, Jay Corbett, and George Avrunin http://www.cis.ksu.edu/santos/bandera

303 views • 29 slides
A Crash Course in Genetics A Crash Course in Genetics General Overview: DNA Structure

A Crash Course in Genetics A Crash Course in Genetics General Overview: DNA Structure

A Crash Course in Genetics A Crash Course in Genetics General Overview: DNA Structure RNA DNA Replication Encoding Proteins Protein Folding Types of DNA Manipulating DNA PCR Biological Computation CPSC

378 views • 36 slides
Crash Course into the New Finnish Government and HQ Communication Crash Course into the New

Crash Course into the New Finnish Government and HQ Communication Crash Course into the New

@amchamwatch| @HofstedeInsight @RudPedersenFIN Country Manager Network Breakfast: Crash Course into the New Finnish Government and HQ Communication Crash Course into the New Finnish Government and HQ Communication Esa Suominen Managing

262 views • 25 slides
CRASH COURSE OR COURSE CRASH: Gaming, VR and a Pedagogical Approach Dr. Brent Chamberlain

CRASH COURSE OR COURSE CRASH: Gaming, VR and a Pedagogical Approach Dr. Brent Chamberlain

CRASH COURSE OR COURSE CRASH: Gaming, VR and a Pedagogical Approach Dr. Brent Chamberlain Landscape Architecture &amp; Regional and Community Planning Kansas State University DLA Conference 2015 June 6, 2015 BACKGROUND AND CONTEXT

702 views • 31 slides
Crash and Burn: Learning from Failure SOA 2020 June 17, 2020 Crash and Burn Collette N.

Crash and Burn: Learning from Failure SOA 2020 June 17, 2020 Crash and Burn Collette N.

Crash and Burn: Learning from Failure SOA 2020 June 17, 2020 Crash and Burn Collette N. McDonough Archivist and Library Manager at the Kettering Foundation Owned by one cat Crash and Burn One fails toward success.

434 views • 7 slides
Taint Nobody Got Time for Crash Analysis Crash Analysis Triage Goals Execution Path What

Taint Nobody Got Time for Crash Analysis Crash Analysis Triage Goals Execution Path What

Taint Nobody Got Time for Crash Analysis Crash Analysis Triage Goals Execution Path What code paths were executed What parts of the execution interacted with external data Input Determination Which input bytes influence the crash

583 views • 45 slides
Crash Course Entrepreneurship Crash Course Escape from Corporate [Case Study] Who wants

Crash Course Entrepreneurship Crash Course Escape from Corporate [Case Study] Who wants

Entrepreneurship Crash Course Entrepreneurship Crash Course Escape from Corporate [Case Study] Who wants to become your own boss, set your own schedule, work from anywhere in the world, make a lot of money, love what you do, AND

1.06k views • 79 slides
MATLAB crash course Cesar E. Tamayo Economics - Rutgers September 27th, 2013 1/27 MATLAB crash

MATLAB crash course Cesar E. Tamayo Economics - Rutgers September 27th, 2013 1/27 MATLAB crash

MATLAB crash course 1 / 27 MATLAB crash course Cesar E. Tamayo Economics - Rutgers September 27th, 2013 1/27 MATLAB crash course 2 / 27 Program Program I Interface: layout, menus, help, etc.. I Vectors and matrices I Graphics: I Plots,

2k views • 27 slides
Previous Studies Crash Reports Reviewed 2005-2013 crash reports 91% of crashes were

Previous Studies Crash Reports Reviewed 2005-2013 crash reports 91% of crashes were

Previous Studies Crash Reports Reviewed 2005-2013 crash reports 91% of crashes were motor vehicles vs. bikes resulting in injury to at least one person Mostly St. Augustine residents, not tourists Most people involved in

193 views • 6 slides
PAHOKEE ELEMENTARY CRASH SCENE INVESTIGATION TUES., MAY 15, 2018 The Crash--Kikis Silver Car

PAHOKEE ELEMENTARY CRASH SCENE INVESTIGATION TUES., MAY 15, 2018 The Crash--Kikis Silver Car

PAHOKEE ELEMENTARY CRASH SCENE INVESTIGATION TUES., MAY 15, 2018 The Crash--Kikis Silver Car 1. Silver Mazda License Plate: 879RYZ Car hit by front right bumper near headlight 2. Driver KIKI 3. Passengers BRITTNEY

530 views • 15 slides
Carleton University Crash Dummy Crash-Test Dummy Mainly used to improve automotive safety

Carleton University Crash Dummy Crash-Test Dummy Mainly used to improve automotive safety

Carleton University Crash Dummy Crash-Test Dummy Mainly used to improve automotive safety No dummies available for cycling accidents Load Cell Accelerometer http://blog.al.com/living-

236 views • 7 slides
You Only Live Multiple Times Black box re-use of Crash-Stop Algorithms In Realistic Crash-Recovery

You Only Live Multiple Times Black box re-use of Crash-Stop Algorithms In Realistic Crash-Recovery

You Only Live Multiple Times Black box re-use of Crash-Stop Algorithms In Realistic Crash-Recovery Settings DAVID KOZHAYA 1 , OGNJEN MARIC 2 , AND YVONNE-ANNE PIGNOLET 1 1 ABB CORPORATE RESEARCH SWITZERLAND , 2 DIGITAL ASSET SWITZERLAND A

555 views • 19 slides
TxFS: Leveraging File-System Crash Consistency to Provide ACID Transactions Yige Hu, Zhiting

TxFS: Leveraging File-System Crash Consistency to Provide ACID Transactions Yige Hu, Zhiting

TxFS: Leveraging File-System Crash Consistency to Provide ACID Transactions Yige Hu, Zhiting Zhu, Ian Neal, Youngjin Kwon, Tianyu Chen, Vijay Chidambaram, Emmett Witchel The University of Texas at Austin 1 Crash Applications need crash

819 views • 30 slides
Cool Cisco IOS Commands: test crash test crash test crash is an undocumented Cisco IOS command

Cool Cisco IOS Commands: test crash test crash test crash is an undocumented Cisco IOS command

Cool Cisco IOS Commands: test crash test crash test crash is an undocumented Cisco IOS command that will simulate a router crash. An undocumented IOS command is exactly that: one that does not appear in Cisco documentation or in IOS help. test

308 views • 5 slides
Investor Call SECOND QUARTER 2019 JULY 17, 2019 Time: 8:30 AM CDT Webcast: www.pnfp.com

Investor Call SECOND QUARTER 2019 JULY 17, 2019 Time: 8:30 AM CDT Webcast: www.pnfp.com

Investor Call SECOND QUARTER 2019 JULY 17, 2019 Time: 8:30 AM CDT Webcast: www.pnfp.com (investor relations) Audio only: 877-602-7944 M. TERRY TURNER, PRESIDENT AND CEO HAROLD R. CARPENTER, EVP AND CFO Safe Harbor Statements Forward

712 views • 47 slides
Can the Financial Sector Promote Growth and Stability? Presentation to the Brookings Institution

Can the Financial Sector Promote Growth and Stability? Presentation to the Brookings Institution

Can the Financial Sector Promote Growth and Stability? Presentation to the Brookings Institution June 8, 2015 CONFIDENTIAL AND PROPRIETARY Any use of this material without specific permission of McKinsey &amp; Company is strictly prohibited

352 views • 17 slides
Perusion Payment Server Mike Heins Perusion &lt;mike@perusion.com&gt; PCI and Interchange

Perusion Payment Server Mike Heins Perusion &lt;mike@perusion.com&gt; PCI and Interchange

Perusion Payment Server Mike Heins Perusion &lt;mike@perusion.com&gt; PCI and Interchange Problems with PCI Interchange and Credit Cards History Lightening the compliance load Perusion Payment Server (PPS) Configuration

562 views • 17 slides
Wrap-up: Intended and Unintended Consequences CS 278 | Stanford University | Michael Bernstein

Wrap-up: Intended and Unintended Consequences CS 278 | Stanford University | Michael Bernstein

Wrap-up: Intended and Unintended Consequences CS 278 | Stanford University | Michael Bernstein 1936 We often fail to foresee the consequences of our social computing designs. 2 One explanation: it cant be foreseen. 3 Another explanation:

572 views • 8 slides
Rule Interchange on the Web Harold Boley (NRC Canada) Michael Kifer (State Univ. of NY at Stony

Rule Interchange on the Web Harold Boley (NRC Canada) Michael Kifer (State Univ. of NY at Stony

Rules W3C RIF WG Under Construction Conclusion Rule Interchange on the Web Harold Boley (NRC Canada) Michael Kifer (State Univ. of NY at Stony Brook) Paula-Lavinia P atrnjan (REWERSE) Axel Polleres (DERI Galway) Reasoning Web 2007 -

1.79k views • 149 slides
A Meta-Level Ontology for Specialized Communication Dagmar Gromann Vienna University of

A Meta-Level Ontology for Specialized Communication Dagmar Gromann Vienna University of

A Meta-Level Ontology for Specialized Communication Dagmar Gromann Vienna University of Economics and Business dgromann@wu.ac.at Workshop on Logics and Ontologies for Natural Language (LogOnto) September 22, 2014 Dagmar Gromann

1.02k views • 15 slides
Enterprise The New Business Proposition E n t r I e n p n r Means-Ends New Value o

Enterprise The New Business Proposition E n t r I e n p n r Means-Ends New Value o

From Opportunity to Enterprise The New Business Proposition E n t r I e n p n r Means-Ends New Value o Resources and Customers e Framework Equation v Organization Benefits n a e t u I r o s n h i p How the

846 views • 35 slides
Security Overview New Relic Application Performance Management June 2014 This paper serves as an

Security Overview New Relic Application Performance Management June 2014 This paper serves as an

Security Overview New Relic Application Performance Management June 2014 This paper serves as an overview of the security and privacy considerations for New Relics Application Performance Management service. It addresses the most common

484 views • 9 slides

More recommend