Transpondern på kreditkort skickar info i klartext till vem som helst

published Oct 24, 2006 11:09 by admin ( last modified Oct 24, 2006 11:09 )

Vi går ju nu mer och er över från att använda magnetremsan på kreditkortet till att använda det där guldiga chippet som sitter mitt på till höger. Och efter det kommer RFID, dvs en transponder som mha radiovågar kan avläsas på avstånd. Men enligt University of Massachusetts kan detta avläsas på avstånd, och man kan då kan man få ut både namn och kreditkortssiffror i klartext från RFID som det används idag!

The card companies have implied through their marketing that the data is encrypted to make sure that a digital eavesdropper cannot get any intelligible information. American Express has said its cards incorporate “128-bit encryption,” and J. P. Morgan Chase has said that its cards, which it calls Blink, use “the highest level of encryption allowed by the U.S. government.”
But in tests on 20 cards from Visa, MasterCard and American Express, the researchers here found that the cardholder’s name and other data was being transmitted without encryption and in plain text. They could skim and store the information from a card with a device the size of a couple of paperback books, which they cobbled together from readily available computer and radio components for $150.
They say they could probably make another one even smaller and cheaper: about the size of a pack of gum for less than $50.

Läs mer i New York Times.