Research, development and trades concerning the powerful Proxmark3 device.
Remember; sharing is caring. Bring something back to the community.
"Learn the tools of the trade the hard way." +Fravia
You are not logged in.
Time changes and with it the technology
Proxmark3 @ discord
Users of this forum, please be aware that information stored on this site is not private.
Pages: 1
Is it possible to "convert" a standard/default iClass R40 or R90 reader into a iClass Elite reader ?
My understanding is that iClass Elite reader is basically a iClass reader with custom authentication key. But according to HID (http://www.hidglobal.com/services/secure-identity/credential-programs/iclass-elite-and-se-elite) it seems that iClass Elite "Cards and readers are programmed in the HID factory" and "that HID assigns the key to guarantee uniqueness, and programs the site-specific readers and credentials".
Yet HID also sell CP1000 iCLASS SE Desktop Encoder (http://www.hidglobal.com/sites/hidglobal.com/files/resource_files/iclass-se-encoder-cp1000-ds-en_9_0.pdf), which seems to indicate that end-user could manage their authentication keys on their own without having to rely on HID. Also other posts in this forum indicate that configuration cards allowing Key Management exists. Would these configuration cards be enough to convert a iClass reader into an iClass Elite Reader ?
Offline
Any standard security iclass reader can be converted to a high security reader (and back) using a special configuration card. If HID assigns and manages the high security key then it is termed an "Elite" key. If the end user defines and manages the key then it is simply a "Custom" high security key. There is absolutely no difference with regards to the operation of the reader.
The "Elite" keys assigned by HID are 64-bits and are not divulged to the end user. The user defined high security keys are also stored as a 64-bit keys in the reader memory but they are derived from a 128-bit "Seed" value that the user specifies when defining the key. The end user does not have knowledge of the actual 64-bit key value that is derived from the seed value, they only have knowledge of the 128-bit seed value itself.
Offline
can u tell me which memory block on the elite iclass contain the diversification key and how to update it please
Offline
The diversified key that controls access to Application area 1 is stored in Block 3.
The diversified key that controls access to Application area 2 is stored in Block 4.
To update the key you need to first authenticate with the credential using the existing key. After a successful authentication you simply write the XOR value of the old and new key to the applicable Block 3 or Block 4 location.
Standard security credentials and Elite credentials use different algorithms when calculating the diversified key that is stored on the card.
You need to be extremely careful when updating diversified keys since it is very easy to accidently render a card inoperative.
Offline
The diversified key that controls access to Application area 1 is stored in Block 3.
The diversified key that controls access to Application area 2 is stored in Block 4.To update the key you need to first authenticate with the credential using the existing key. After a successful authentication you simply write the XOR value of the old and new key to the applicable Block 3 or Block 4 location.
Standard security credentials and Elite credentials use different algorithms when calculating the diversified key that is stored on the card.You need to be extremely careful when updating diversified keys since it is very easy to accidently render a card inoperative.
Thank you carl55, so i cannot simply use the Istandard key that output from loclass, I need the global key any chance u can give, much appreciate gustothebun@gmail.com
Offline
Pages: 1