Re: [Full-disclosure] RFID Attack theory
- From: Michael Holstein <michael.holstein@xxxxxxxxxxx>
- Date: Fri, 30 Jun 2006 10:12:29 -0400
So most of the research has been done here already.. Which brings me to the work done by www.rfidvirus.org <http://www.rfidvirus.org>
They have some really good ideas about attacking the middleware using SQL injections, SSL includes, and buffer overflows on the reader to middle ware interface. Some really good stuff.
As small as the actual chips are, imagine how much fun you could have if you scattered handfuls of malicious chips around your favorite high-security place (airport, office, whatever...).
You could render these high-tech authentication schemes completely useless .. just like the military does with their carbon-fiber bombs designed to defeat electrical gear.
/mike.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- References:
- [Full-disclosure] RFID Attack theory
- From: Josh L. Perrymon
- [Full-disclosure] RFID Attack theory
- Prev by Date: Re: [Full-disclosure] FBI Says Data on VA Laptop Not Accessed
- Next by Date: Re: [Full-disclosure] FBI Says Data on VA Laptop Not Accessed
- Previous by thread: [Full-disclosure] RFID Attack theory
- Next by thread: [Full-disclosure] [SECURITY] [DSA 1104-1] New OpenOffice.org packages fix several vulnerabilities
- Index(es):
