Modeling of Contactless Smart Card Protocols and Automated Vulnerability Finding

机译：非接触式智能卡协议建模和自动漏洞发现

获取原文

页面导航

摘要
著录项
相似文献
相关主题

摘要

We present a method of automated vulnerability finding in protocols that use contactless smart cards. We focus on smart cards with contactless interface because they are simpler than their counterparts with contact interface and provide less functionality, which can be modeled more easily. Our method uses model checking to find possible attacks in a model of the protocol implementation on particular smart card. There is a possibility to model arbitrary smart card, we demonstrate this method on one of the currently most widespread contactless smart cards - the Mifare DESFire. Using our method we were able to locate a couple of weaknesses of this smart card which may cause vulnerability if the protocol is not implemented properly. This method can be used by developers to evaluate security of their protocol implementation on particular smart card.

机译：我们提出了一种在使用非接触式智能卡的协议中自动发现漏洞的方法。我们专注于具有非接触式界面的智能卡，因为它们比具有接触式界面的智能卡更简单，并且提供的功能更少，可以更轻松地对其建模。我们的方法使用模型检查来发现特定智能卡上协议实施模型中的可能攻击。有可能对任意智能卡进行建模，我们在当前最广泛使用的非接触式智能卡之一Mifare DESFire上演示了此方法。使用我们的方法，我们能够找到该智能卡的几个弱点，如果协议实施不当，这些弱点可能会导致漏洞。开发人员可以使用此方法来评估其在特定智能卡上协议实施的安全性。

著录项

来源
《International Symposium on Biometrics and Security Technologies》|2013年|141-148|共8页
会议地点
作者
Henzl Martin; Hanacek Petr;
展开▼
作者单位

展开▼
会议组织
原文格式 PDF
正文语种
中图分类
关键词
Mifare DESFire; contactless smart card; model; security; vulnerability;

机译：Mifare DESFire;非接触式智能卡;模型;安全性;漏洞;

相似文献

外文文献
中文文献
专利

1. How contactless cards differ form EPC Gen 2 RFID tags, explains Smart Card Alliance [J] . Electronics Today . 2006,第3期

机译：智能卡联盟解释说，非接触式卡与EPC Gen 2 RFID标签有何不同
2. Italy goes smart: THREE AREAS IN ITALY ARE CURRENTLY MAKING USE OF THE COUNTRY'S FIRST CONTACTLESS SMARTCARD SYSTEM TO IMPROVE TICKETING ON LOCAL BUS, RAIL AND FUNICULAR NETWORKS [J] . BARRY CROSS ITS International: Advanced Technology for Traffic Management and Urban Mobility . 2004,第4期

机译：意大利变得聪明：意大利的三个地区正在使用该国的第一个无接触式智能卡系统来改善本地公交，铁路和公用网络的行驶
3. Challenge-response mutual authentication protocol for EMV contactless cards [J] . Ossama Al-Maliki, Hisham Al-Assam Computers & Security . 2021,第Apra期

机译：挑战 - 响应EMV非接触式卡的响应相互认证协议
4. Modeling of Contactless Smart Card Protocols and Automated Vulnerability Finding [C] . Henzl Martin, Hanacek Petr International Symposium on Biometrics and Security Technologies . 2013

机译：非接触式智能卡协议和自动漏洞发现的建模
5. Cardiac myocyte model parameter identification via dynamic electrophysiology protocols and automated search algorithms. [D] . Kherlopian, Armen R. 2013

机译：通过动态电生理方案和自动搜索算法识别心肌细胞模型参数。
6. Contactless cardiac arrest detection using smart devices [O] . Justin Chan, Thomas Rea, Shyamnath Gollakota, 2019

机译：使用智能设备进行非接触式心脏骤停检测
7. A Security Formal Verification Method for Protocols Using Cryptographic Contactless Smart Cards [O] . Henzl M., Hanacek P. 2016

机译：使用加密非接触式智能卡的协议的安全形式验证方法
8. Analysis of OPACITY and PLAID Protocols for Contactless Smart Cards. [R] . Kiat, K. H., Run, L. Y. 2012

机译：非接触式智能卡的OpaCITY和pLaID协议分析。

Modeling of Contactless Smart Card Protocols and Automated Vulnerability Finding

摘要

著录项

相似文献

相关主题

期刊订阅