[LINK] RFI: PayWave/PayPass Contactless Chip Cards
Tom Worthington
tom.worthington at tomw.net.au
Fri Apr 13 08:35:48 AEST 2012
On 11/04/12 15:11, Roger Clarke wrote:
> ... contactless chip ... bank customers have been wrapping
> their cards in foil to stop info from being available ...
The Australian ePassports require an optical "Machine Readable Zone"
(MRZ) code inside the passport to be scanned to decode the wireless
data. So someone wishing to skim the passport has to get a photo of the
inside of the passport, as well as being close enough to read the radio
signal: http://www.dfat.gov.au/dept/passports/
Perhaps an optical code could be used to make contact-less credit cards
more secure. Most cards already have a security number printed on the
reverse side. This number is not embossed and is entered for online
transactions as an added security measure. An optical code on the back
of the card could be scanned and used to decode the wireless data.
ps: Some years ago I half jokingly suggested using a wallet with a
Faraday cage built in, to prevent wireless card skimming and smart bombs
(which would select "high value targets" by scanning the owner's credit
card).
It turns out that wallets and passport holders with a Faraday cage built
in are offered for sale, generally called "RFID Wallets". I have added a
selection to my emergency management Amazon store:
http://astore.amazon.com/emergency-management-20?node=70
--
Tom Worthington FACS CP, TomW Communications Pty Ltd. t: 0419496150
PO Box 13, Belconnen ACT 2617, Australia http://www.tomw.net.au
Liability limited by a scheme approved under Professional Standards
Legislation
Adjunct Senior Lecturer, Research School of Computer Science,
Australian National University http://cs.anu.edu.au/courses/COMP7310/
More information about the Link
mailing list