XiaoMi-AI文件搜索系统
World File Search SystemMIFARE
MIFARE Classic:公开静态加密 nonce 变体
摘要 — 由 NXP 开发和授权的 MIFARE Classic 智能卡被广泛使用,但多年来遭受了无数攻击。尽管推出了新版本,但这些卡仍然存在漏洞,即使在仅限卡的情况下也是如此。2020 年,中国领先的未经授权的“MIFARE 兼容”芯片制造商发布了 MIFARE Classic 的新变体 FM11RF08S。此变体具有旨在阻止所有已知的仅限卡攻击的特定对策,并正在逐渐在全球获得市场份额。在本文中,我们介绍了有关 FM11RF08S 的几种攻击和意外发现。通过实证研究,我们发现了一个硬件后门并成功破解了其密钥。此后门可让任何知晓它的实体在无需事先知情的情况下,通过访问卡几分钟即可破解这些卡上的所有用户定义密钥。此外,我们对旧卡的调查发现了另一个硬件后门密钥,该密钥在多家制造商中很常见。
mifare duox
新引入了对椭圆曲线密码学(ECC)的支持,包括共同的,读取者单方面和非副本身份验证方法,允许在NFC阅读器末端基础结构中执行各种基于ECC的身份验证方案。取决于身份验证和后续交易所需的安全级别,读者终端的轻量级实现也是可能的。对于卡非方向的身份验证,不需要读取器对SmartCard进行身份验证,因此读取器终端的BOM仍然很低,因为不需要安全访问模块(SAM)或其他类型的安全键存储。
mifare duox非接触式智能卡IC
• Flexible application management on the IC – Flexible file system offering the user free definition of application and file structures on the PICC – Amount of applications is not limited: applications can be created as long as there is free user memory available on the PICC – Shared application management allows to access files from any two applications during a single transaction if access rights are configured accordingly • Flexible and dynamic file management inside the applications – Amount of files per application is set to 32: up to 32 files can be created in each application – Availability of 6 file types: Standard Data file, Backup Data file, Value file, Linear Record file, Cyclic Record file and Transaction MAC file – File size is determined during the file creation (exception for Transaction MAC file) • Delegated Application Management feature allows smart management of multiple applications per smartcard shared by different entities – Memory can be re-used in delegated applications (via formatting the complete delegated application) – Factory loaded NXP's Delegated Application Management (DAM)远程应用程序管理服务支持的键