chip card sidelight on
play

Chip card sidelight on lightweight crypto Marc Girault CARDIS 2014 - PowerPoint PPT Presentation

Sep 07, 2023 •304 likes •786 views

Orange Labs Caen Chip card sidelight on lightweight crypto Marc Girault CARDIS 2014 5-7 November 2014 Contents 1. Back to 1985 Why 1985 ? Public phones Cryptology 2. Prepaid phone cards Background T1G T2G

  1. Orange Labs Caen Chip card sidelight on lightweight crypto Marc Girault CARDIS 2014 5-7 November 2014

  2. Contents 1. Back to 1985 • Why 1985 ? • Public phones • Cryptology 2. Prepaid phone cards • Background • T1G • T2G • FAC • Looking back 25 years later 3. Conclusion Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 2 CARDIS 2014 Paris - 5-7 November 2014

  3. Warning • Sorry but this talk mainly tells facts that occurred in France… • A similar story, with actors in Germany, could (should) also be told Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 3 CARDIS 2014 Paris - 5-7 November 2014

  4. 1. Back to 1985 Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 4 CARDIS 2014 Paris - 5-7 November 2014

  5. Why 1985 ? (1) • Because 1985 is a key year for massive deployment of chip cards in France • In two sectors (mainly): public telephony and banking • In two forms: memory card ( without microprocessor) and smart card ( with microprocessor) • More precisely… Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 5 CARDIS 2014 Paris - 5-7 November 2014

  6. Why 1985 ? (2) • This is the year when prepaid phone memory cards were massively deployed in France by (famous) pyjama-style Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 6 CARDIS 2014 Paris - 5-7 November 2014

  7. Why 1985 ? (3) • This is also the year when French banks decided to move to smart cards Massively deployed some years later Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 7 CARDIS 2014 Paris - 5-7 November 2014

  8. Why 1985 ? (4) • This talk is only about phone cards (memory cards) • Thanks to their microprocessor, bank cards did not need lightweight crypto – DES was on the point to be implemented in smart cards – In the mean- time, “medium - weight” proprietary algorithms were used (Telepass 1, Telepass2) Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 8 CARDIS 2014 Paris - 5-7 November 2014

  9. Public phones (1) • In 1985, telephone is (prominently) fixed and analogic • Mobile telephones exist but are not portable, are expensive and don’t work everywhere • In France, Radiocom 2000 program (first cellular network) will start in 1986 and the handsets are priced at more than 4 000 € Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 9 CARDIS 2014 Paris - 5-7 November 2014

  10. Public phones (2) • To call outdoor requires phones in streets (booths) and public places (airports, stations…) [ à compléter ] Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 10 CARDIS 2014 Paris - 5-7 November 2014

  11. Public phones (3) • In France public phones long worked with coins… • then specific tokens… • … then coins again! • Not practical (collecting money) and dangerous (vandalism, theft) • The idea of using cards instead of coins emerges in the late 70’s Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 11 CARDIS 2014 Paris - 5-7 November 2014

  12. Public phones (4) • Several card technologies are tested: magnetic, holographic, thermo- magnetic… • Finally PTT selects the “invented here” chip card Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 12 CARDIS 2014 Paris - 5-7 November 2014

  13. Public phones (5) • 1993 (France) – 173 000 public phones in the streets : 123 000 with “ télécartes ” – 100 millions “ télécartes ” sold this year • 1997 (France) – 1 billion of “ télécartes ” sold from the beginning but… – … first year the sales decrease • 2002 (world) – 1.3 billion of prepaid cards sold this year but… – … first year the sales decrease Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 13 CARDIS 2014 Paris - 5-7 November 2014

  14. Cryptology (1) • In 1985, DES and RSA undisputed crypto-stars – DES: the glory (widely deployed) – RSA: towards the glory (implemented in French bank cards a as a static signature for card authentication) Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 14 CARDIS 2014 Paris - 5-7 November 2014

  15. Cryptology (2) • Suitability for smart cards – DES: soon (1986) – RSA: later • Suitability for memory cards – DES: never – RSA: never never never Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 15 CARDIS 2014 Paris - 5-7 November 2014

  16. Cryptology (3) • Still (officially) unknown or uninvented – Differential cryptanalysis – Linear cryptanalysis – Attacks against modes of operation – Side-channel attacks – Alternatives to DES: FEAL, IDEA, RCx …. AES • Lightweight crypto starts (nearly) from scratch Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 16 CARDIS 2014 Paris - 5-7 November 2014

  17. 2. Prepaid phone cards Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 17 CARDIS 2014 Paris - 5-7 November 2014

  18. Background (1) • Goal: replace true money by virtual call units – A unit allows a local call during a little less than 1 minute • Dilemma: where is the balance ? Who updates it ? • Two main approaches – on-line approach – off-line approach Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 18 CARDIS 2014 Paris - 5-7 November 2014

  19. Background (2) • On-line approach: virtual units are at operator’s side • User buys a “number” – written on a plastic card or stored in a memory card – equivalent to n units – built with (cryptographic) redundancy • User provides this number to the phone and makes a call • Operator progressively updates the balance Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 19 CARDIS 2014 Paris - 5-7 November 2014

  20. Background (3) • Off-line approach: virtual units are at card’s side • User buys a card – “containing” n units – storing a (cryptographic) certificate • User inserts the card in the phone and makes a call • Public phone progressively updates the balance inside the card Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 20 CARDIS 2014 Paris - 5-7 November 2014

  21. Background (4) • On-line vs off-line approach • On-line – pro: fake units cannot be forged – con: many simultaneous connections • Off-line – pro: a few simultaneous connections – con: fake units could be forged • In the mid- 80’s, off-line solution is preferred • Nowadays, on-line solution is preferred Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 21 CARDIS 2014 Paris - 5-7 November 2014

  22. Background (5) • Forging vs cloning • Forging – the enemy can forge a fake cardsfrom scratch – he can choose any serial number  untraceable • Cloning – the enemy can only clone (= duplicate) a genuine card – he must choose the same serial number  traceable • Forging is easier to prevent Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 22 CARDIS 2014 Paris - 5-7 November 2014

  23. Background (6) • Emulating • Not emulating – the fake card is physically and functionally indistinguishable from a genuine card • Emulating – the fake “card” is functionally indistinguishable from a genuine card (not physically, it can be a bulky electronic device) • Emulating is less discreet but sufficient for a fraud (not for a mass fraud) Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 23 CARDIS 2014 Paris - 5-7 November 2014

  24. T1G (1) • T1G = “ Télécarte de première génération ” • Disposable  must be very cheap • Designed in the early 80’s • 1984: first T1G • 1985: deployment • 1998: end of production • Much later: end of acceptability Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 24 CARDIS 2014 Paris - 5-7 November 2014

  25. T1G (2) • Memory card – no PIN – no computation capabilities • N-MOS technology • EPROM memory (256 bits) – unary counting • Synchronous protocol • 50 or 120 units Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 25 CARDIS 2014 Paris - 5-7 November 2014

  26. T1G (3) • EPROM contents – I (permanent public data, including card identifier) – D (variable data, including balance) • To prevent from forging, the permanent data I are “signed” by a (static) 16-bit MAC, not computed by the card, called certificate • The certificate does not prevent from cloning Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 26 CARDIS 2014 Paris - 5-7 November 2014

  27. T1G (4) • Frauds on T1G are reported in the late 80’s • Some of them (not all) are clone-based  Need for a challenge-response protocol • T2G (“ Télécarte de seconde génération ”) will include a “ fonction anti-clone ” (FAC, roughly a MAC) • Works starts in 1989 – ends in 1994 for “ télécartes ” – continues for other applications Chip card sidelight on lightweight crypto Marc Girault (Orange Labs) 27 CARDIS 2014 Paris - 5-7 November 2014

Recommend

PCI/PII Awareness Training Ben Jordan Security Specialist Credit Card Security: Chip Cards

PCI/PII Awareness Training Ben Jordan Security Specialist Credit Card Security: Chip Cards

PCI/PII Awareness Training Ben Jordan Security Specialist Credit Card Security: Chip Cards The chip contains a cryptographic key for authentication Downfall Online transactions do not require any authentication from the chip Chip

772 views • 29 slides
Organ on a chip: A Commercialisation Report Card Trying to make an objective assessment on the

Organ on a chip: A Commercialisation Report Card Trying to make an objective assessment on the

Organ on a chip: A Commercialisation Report Card Trying to make an objective assessment on the status of a new technology (and avoid the hype) Dr JM Wilkinson, Dr K Davidge Kirkstall Ltd. 06/12/2016 Content Challenges facing new

505 views • 24 slides
Chip and Chip and PIN PIN is B is Brok oken en Steven J. Murdoch, Saar Drimer, Ross Anderson,

Chip and Chip and PIN PIN is B is Brok oken en Steven J. Murdoch, Saar Drimer, Ross Anderson,

Chip and Chip and PIN PIN is B is Brok oken en Steven J. Murdoch, Saar Drimer, Ross Anderson, Mike Bond University of Cambridge S&P 2010 Presented by: Yi Zhang September 1 2016 EMV Card As of early 2008, there were 730 million

142 views • 12 slides
Probe Card System for DHP Chip Testing VXD Workshop, Wetzlar, February 4-6, 2013 H. Krger, Bonn

Probe Card System for DHP Chip Testing VXD Workshop, Wetzlar, February 4-6, 2013 H. Krger, Bonn

Probe Card System for DHP Chip Testing VXD Workshop, Wetzlar, February 4-6, 2013 H. Krger, Bonn University Motivation To/from DCD PXD modules are sensitive to single- (86 CMOS/HSTL) point-of-failure of the DHP 18x CMOS 64x HSTL 4x

298 views • 12 slides
Purchasing Card Program Training for Cardholders Introduction to the P-Card Program What is a

Purchasing Card Program Training for Cardholders Introduction to the P-Card Program What is a

Purchasing Card Program Training for Cardholders Introduction to the P-Card Program What is a P-Card? VISA credit card issued by Bank of America Used to make purchase of goods and some services of $2,500 or less P-Card Controls

480 views • 34 slides
Training for Cardholders Introduction to the P-Card Program What is a P-Card? VISA credit

Training for Cardholders Introduction to the P-Card Program What is a P-Card? VISA credit

Purchasing Card Program Training for Cardholders Introduction to the P-Card Program What is a P-Card? VISA credit card issued by Bank of America Used to make purchase of goods and some services of $2,500 or less P-Card Controls

933 views • 26 slides
Smart Card Operating Systems Overview and Trends Pierre.Paradinas@gemplus.com Gemplus Labs

Smart Card Operating Systems Overview and Trends Pierre.Paradinas@gemplus.com Gemplus Labs

Smart Card Operating Systems Overview and Trends Pierre.Paradinas@gemplus.com Gemplus Labs Smart card A piece of plastic with a chip that contains: CPU, memories and programs SC is your personal information system, your

598 views • 21 slides
Who are the Chip Doctors ? Since 1991 The Chip Doctors, LLC have been providing assistance to the

Who are the Chip Doctors ? Since 1991 The Chip Doctors, LLC have been providing assistance to the

M easure, A nalyze , C orrective action, and S ustainability In Search of Chip Quality & Financial Return for Biomass Products Confidential: Proprietary information that is Patented and Trade Marked by The Chip Doctors, LLC and Fiber-M, Inc.

1.2k views • 46 slides
TVM Upgrade Project Citizens Advisory Committee July 15, 2020 Agenda Item 8 Scope of Work 1.

TVM Upgrade Project Citizens Advisory Committee July 15, 2020 Agenda Item 8 Scope of Work 1.

TVM Upgrade Project Citizens Advisory Committee July 15, 2020 Agenda Item 8 Scope of Work 1. Upgrade the credit card readers to read chip 2. Install Clipper card reader and dispenser a. Add value or products to existing Clipper card b.

341 views • 6 slides
TRANServe Debit Card Overview 1 What is the TRANServe Debit Card? The TRANServe debit card

TRANServe Debit Card Overview 1 What is the TRANServe Debit Card? The TRANServe debit card

TRANServe Debit Card Overview 1 What is the TRANServe Debit Card? The TRANServe debit card is a Visa-branded debit card that provides your transit benefit electronically. TRANServes Counsel has been working closely with Counsel from

476 views • 14 slides
2017 Report Card Annual Report Cards The 2017 Report Card is our 6 th Report Card! 2 Sustainable

2017 Report Card Annual Report Cards The 2017 Report Card is our 6 th Report Card! 2 Sustainable

2017 Report Card Annual Report Cards The 2017 Report Card is our 6 th Report Card! 2 Sustainable Peterborough 2017 Overview 7 3 154 Working Staff Partners Groups Members Climate Change Action Plan updated baseline inventory for 2012-

506 views • 35 slides
Husky One Card Office Welcome! www.onecard.uconn.edu Topics Functions of the Husky One Card

Husky One Card Office Welcome! www.onecard.uconn.edu Topics Functions of the Husky One Card

Husky One Card Office Welcome! www.onecard.uconn.edu Topics Functions of the Husky One Card Husky One Card Replacements Husky Bucks One Card Website Questions & Answers Husky One Card: Key to Campus Functions of the

359 views • 11 slides
Exploring Chip to Chip Photonic Networks Philip Watts Computer Laboratory University of Cambridge

Exploring Chip to Chip Photonic Networks Philip Watts Computer Laboratory University of Cambridge

Exploring Chip to Chip Photonic Networks Philip Watts Computer Laboratory University of Cambridge Acknowledgement: Royal Commission for the Exhibition of 1851 Exploring Chip to Chip Photonics p g p p Bandwidth improvements in

90 views • 8 slides
Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva

Browser based approach for Smart Card Connectivity My Smart Card My Smart Card Kapil Sachdeva expiration: 09/10 Karen Lu Ksheerabdhi Krishna Challenges Installing crypto providers Breaks mobility Breaks ubiquity of web

425 views • 8 slides
MAXIMUM CARDS MAXIMUM CARDS What is a Maximum Card ? The Maximum Card is the one which contains a

MAXIMUM CARDS MAXIMUM CARDS What is a Maximum Card ? The Maximum Card is the one which contains a

MAXIMUM CARDS MAXIMUM CARDS What is a Maximum Card ? The Maximum Card is the one which contains a Picture Postcard, a Postage Stamp affixed on the picture side of the card and a Cancellation on it and should confirm maximum possible concordance

385 views • 23 slides
7 On-Chip Interconnection Networks Chip Multiprocessors (ACS MPhil) Robert Mullins

7 On-Chip Interconnection Networks Chip Multiprocessors (ACS MPhil) Robert Mullins

7 On-Chip Interconnection Networks Chip Multiprocessors (ACS MPhil) Robert Mullins Introduction Vast transistor budgets, but .... Poor interconnect scaling Pressure to decentralise designs Need to manage complexity and power

960 views • 63 slides
Methods for Analyzing ChIP-Seq data Introduction to the ChIP-Seq server at SIB Lausanne Public

Methods for Analyzing ChIP-Seq data Introduction to the ChIP-Seq server at SIB Lausanne Public

Methods for Analyzing ChIP-Seq data Introduction to the ChIP-Seq server at SIB Lausanne Public ChIP-seq data: the bioinformatics event of the year 2007: Large data sets have become available: Barski et al. (2007): human CD4+ cell lines histone

396 views • 8 slides
Columbia University Chip-Scale Interconnection Networks Chip multi-processors create need

Columbia University Chip-Scale Interconnection Networks Chip multi-processors create need

Hybrid On-chip Data Networks Gilbert Hendry Keren Bergman Lightwave Research Lab Columbia University Chip-Scale Interconnection Networks Chip multi-processors create need for high performance interconnects Performance bottleneck of

742 views • 46 slides
Payment Card Training Angelina Linnett Plan Administrator Shawna Soliz Plan Administrator US

Payment Card Training Angelina Linnett Plan Administrator Shawna Soliz Plan Administrator US

Payment Card Training Angelina Linnett Plan Administrator Shawna Soliz Plan Administrator US Bank 1.800.344.5696 Payment Card Training : Overview What is a P-Card? How to Use Your Card Maintaining Your Card Protecting Your Card Online

432 views • 16 slides
SIM card technology from A(PDU) to X(RES) Harald Welte osmocom.org Chaos Communication Congress

SIM card technology from A(PDU) to X(RES) Harald Welte osmocom.org Chaos Communication Congress

SIM card technology from A(PDU) to X(RES) Harald Welte osmocom.org Chaos Communication Congress 2019 Harald Welte SIM card technology from A(PDU) to X(RES) Outline Relevant Specs + Spec Bodies Card Interfaces, Protocols Card File System

389 views • 36 slides
Calibration des Microroc (II) Alex, Cyril, Giom, Jean, Max 09 Mai 2011, Annecy 1 Reminder 2

Calibration des Microroc (II) Alex, Cyril, Giom, Jean, Max 09 Mai 2011, Annecy 1 Reminder 2

Reminder Comparison single chip & ASU chip Chip to chip variations Outlook Calibration des Microroc (II) Alex, Cyril, Giom, Jean, Max 09 Mai 2011, Annecy 1 Reminder 2 Comparison single chip & ASU chip 3 Chip to chip variations 4

454 views • 7 slides
CCARD Colorado Purchasing Card, OneCard and Travel Card Where We Are and How We Got Here CCARD

CCARD Colorado Purchasing Card, OneCard and Travel Card Where We Are and How We Got Here CCARD

CCARD Colorado Purchasing Card, OneCard and Travel Card Where We Are and How We Got Here CCARD Colorado Purchasing Card, OneCard and Travel Card Pre CORE: Prior to CORE, each agency processed their payments to Citibank differently 1 mapper

583 views • 34 slides
Differences-in-Differences Estimator: Example Card and Krueger (1994) Example : Card D. and

Differences-in-Differences Estimator: Example Card and Krueger (1994) Example : Card D. and

Differences-in-Differences Estimator: Example Card and Krueger (1994) Example : Card D. and Krueger A. (1994) Minimum Wages and Employment: A Case Study of the Fast-Food Industry in New Jersey and Pennsylvania, American Economic Review,

1.71k views • 78 slides
SoC Design Lecture 10: On-Chip Interconnection Networks Lecture 10: On Chip Interconnection

SoC Design Lecture 10: On-Chip Interconnection Networks Lecture 10: On Chip Interconnection

SoC Design Lecture 10: On-Chip Interconnection Networks Lecture 10: On Chip Interconnection Networks Shaahin Hessabi Department of Computer Engineering g g Sharif University of Technology Signal Transmission on SoC We focus on global wires

800 views • 66 slides

More recommend