Research, development and trades concerning the powerful Proxmark3 device.
Remember; sharing is caring. Bring something back to the community.
"Learn the tools of the trade the hard way." +Fravia
You are not logged in.
Time changes and with it the technology
Proxmark3 @ discord
Users of this forum, please be aware that information stored on this site is not private.
Is it possible that in recent Mifare Classic NXP Semiconductors fixed the security weakness ?
In general, what are the models which suffer this weakness ? Can you please put YES next to the ones that can be "breached" ?
Ultralight
Ultralight C
Mifare Mini
Mifare 1K
Mifare 4K
DesFire
Mifare ProX
I ask this because I have to buy a stock of contactless cards for work management (substituting magnetic badge) and I am evaluating costs/benefits to exclude some rfid cards insted of others.
Thank you very much for your interest !
Offline
The classic ones are broken. Desfire should work so far.
Offline
Thank you for your answer !
But logging a communication between a reader adn a card WHICH key (KEYA or KEYB) can be decrypted ? BOth of them or only one of them ?
Last edited by asper (2011-02-01 20:12:42)
Offline
Hello,
As far as I know:
Ultralight: no crypto involved
Ultralight C: robust (authentication only)
Mifare Mini/1K/4K: broken
Mifare Mini/1K/4K emulated by ProX/SmartMX/MifarePlus: implementation issues fixed (e.g. no more card-only attack)
Mifare Plus: robust
DESFire: robust
Mifare ProX: robust
Bye.
Offline
Thank you man !
Offline
i think the new answer would be yes.
Offline