[Gllug] Oyster cards vulnerable?
Christopher Hunter
chrisehunter at blueyonder.co.uk
Wed Jan 23 02:25:14 UTC 2008
On Wed, 2008-01-23 at 00:20 +0000, Richard Jones wrote:
> The Dutch OV card (similar to Oyster) uses a secret proprietary crypto
> algorithm and a 48 bit key. Rather predictably, it was broken by
> researchers this month:
>
> http://www.freedom-to-tinker.com/?p=1250
>
> According to the press release, Oyster cards are of the same type:
>
> http://www.cs.virginia.edu/~kn5f/OV-card_security.html
>
> Rich.
>
> --
> Richard Jones
> Red Hat
Oyster Cards were cracked a while ago. They are surprisingly crude
things. If TfL had spent another tuppence per card, they could have had
one with proper encryption. Instead, they chose the cheapest option...
Chris
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list