SEARCH RESULTS
 
Showing 1-6 of 6 records
1
 
Expand article

Hacking Mifare Transport Cards

2008-08-07 06:07:02 by schneier in Schneier on Security
 
...NXP Semiconductors, the Philips spin-off that makes the system, lost a court battle to prevent the researchers from publishing. People might be able to use this information to ride for free, but the sky won't be falling. And the publication of this serious vulnerability actually makes us all safer in the long run Here's the story. Every...
 
Tags: mifare, design, design secrecy, mifare classic chip, secrecy, security, secrecy supports security, security properly, chip
 
 
 
 
Expand article

Sorry CharlieCard, Your Security Model Is Broken

2008-08-09 14:57:40 by Chris Wysopal in Zero in a bit
 
...NXP using this method of protection A: Security-through-obscurity hardly ever works. The lack of proper peer-review often even hurts the security of the system. Our Mifare work discovered several vulnerabilities that could be fixed without increasing the cost of the cards. NXP did for a long time rely on obscurity for the security of some of...
 
Tags: security, security researchers, valid security approach, system, encryption system, boston subway system, discuss security issues, court system, security systems
 
 
 
 
Expand article

RFID hack could crack open 2 billion smart cards

2008-03-14 13:00:00 by Editor in Computerworld Security News
 
A University of Virginia researcher has found a way to easily break into smart cards created by NXP Semiconductors
 
Tags: smart cards, nxp semiconductors, virginia researcher, university, easily
 
 
 
 
Expand article

RFID chipmaker loses suit, says users must take 'urgent' action

2008-07-23 13:00:00 by Editor in Computerworld Security News
 
A Dutch court has ruled that Radboud University Nijmegen researchers can publish a paper outlining flaws in an RFID chip manufactured by NXP Semiconductors
 
Tags: dutch court, nxp semiconductors, radboud university, rfid chip, ruled, researchers, flaws, publish, paper
 
 
 
 
Expand article

Boston Court's Meddling With 'Full Disclosure' Is Unwelcome

2008-08-21 04:00:00 by Bruce Schneier in Wired Security
 
...NXP is not the result of the publication of the article but of the production and sale of a chip that appears to have shortcomings In a world of forced secrecy, vendors make inflated claims about their products, vulnerabilities don't get fixed, and customers are no wiser. Security research is stifled, and security technology doesn't improve....
 
Tags: computer security improves, security improves, computer security, security, mit security researchers, security devices, security holes, disclosure, security properly
 
 
 
 
Expand article

Full Disclosure and the Boston Farecard Hack

2008-08-26 06:04:49 by schneier in Schneier on Security
 
...NXP is not the result of the publication of the article but of the production and sale of a chip that appears to have shortcomings In a world of forced secrecy, vendors make inflated claims about their products, vulnerabilities don't get fixed, and customers are no wiser. Security research is stifled, and security technology doesn't improve....
 
Tags: computer security improves, security improves, computer security, security, mit security researchers, security devices, security holes, disclosure, security properly
 
 
 
 
 
Showing 1-6 of 6 records
1
 
TOP SEARCH
Expand / MinimizeClose Widget
  •  
RECENT SEARCH
Expand / Minimize
  •  
RELATED VIDEO
Expand / Minimize
SecurityRatty FAQ
Sergey Zarubin, 31yo
CISSP, CCSP
Moscow, Russia