Chip and Skim: Cloning EMV Cards with the Pre-play Attack

Bond, Mike; Choudary, Omar; Murdoch, Steven J.; Skorobogatov, Sergei; Anderson, Ross

doi:10.1109/sp.2014.11

Cited by 82 publications

(58 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…So, for PaySafe we must stop a single run of the protocol from accepting multiple GPO messages with different nonces. Clearly, our protocol only works if the nonces are actually unpredictable, unfortunately some EMV terminals have been shown to use predictable numbers [5].…”

Section: Implementing Paysafementioning

confidence: 99%

Relay Cost Bounding for Contactless EMV Payments

Chothia

Garcia

Ruiter

et al. 2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Abstract. This paper looks at relay attacks against contactless payment cards, which could be used to wirelessly pickpocket money from victims. We discuss the two leading contactless EMV payment protocols (Visa's payWave and MasterCard's PayPass). Stopping a relay attack against cards using these protocols is hard: either the overhead of the communication is low compared to the (cryptographic) computation by the card or the messages can be cached before they are requested by the terminal. We propose a solution that fits within the EMV Contactless specification to make a payment protocol that is resistant to relay attacks from commercial off-the-shelf devices, such as mobile phones. This solution does not require significant changes to the cards and can easily be added to existing terminals. To prove that our protocol really does stop relay attacks, we develop a new method of automatically checking defences against relay attacks using the applied pi-calculus and the tool ProVerif.

show abstract

Section: Implementing Paysafementioning

confidence: 99%

Relay Cost Bounding for Contactless EMV Payments

Chothia

Garcia

Ruiter

et al. 2015

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…The very recent "Chip and Skim" attack [1] is similar to our attack in that it could be operated on a large scale and it extracts money from the victim's account. It would be interesting to explore the possibility of using our mobile phone contactless-transactioncollecting app as the "skimming" platform for the Chip and Skim attack.…”

Section: While the Emv Protocol Requires Payment Cards To Authenticatmentioning

confidence: 94%

Harvesting High Value Foreign Currency Transactions from EMV Contactless Credit Cards Without the PIN

Emms

Arief

Freitas

et al. 2014

Proceedings of the 2014 ACM SIGSAC Conference on Computer and Communications Security

View full text Add to dashboard Cite

In this paper we present an attack, which allows fraudulent transactions to be collected from EMV contactless credit and debit cards without the knowledge of the cardholder. The attack exploits a previously unreported vulnerability in EMV protocol, which allows EMV contactless cards to approve unlimited value transactions without the cardholder's PIN when the transaction is carried out in a foreign currency. For example, we have found that Visa credit cards will approve foreign currency transactions for any amount up to €999,999.99 without the cardholder's PIN, this side-steps the £20 contactless transaction limit in the UK. This paper outlines our analysis methodology that identified the flaw in the EMV protocol, and presents a scenario in which fraudulent transaction details are transmitted over the Internet to a "rogue merchant" who then uses the transaction data to take money from the victim's account. In reality, the criminals would choose a value between €100 and €200, which is low enough to be within the victim's balance and not to raise suspicion, but high enough to make each attack worthwhile. The attack is novel in that it could be operated on a large scale with multiple attackers collecting fraudulent transactions for a central rogue merchant which can be located anywhere in the world where EMV payments are accepted.

show abstract

“…Hence, there has been a growing revelation and understanding of the vulnerabilities. EMV can be cracked [21], as can GSM [22]. Applications using these protocols should consider cellular and NFC attack surfaces in addition to the conventional higher-level, TCP/IP stack protocols.…”

Section: Communication Attack Surfacesmentioning

confidence: 99%

Attack surfaces for mobile devices

Sherman

2014

Proceedings of the 2nd International Workshop on Software Development Lifecycle for Mobile

View full text Add to dashboard Cite

Mobile platforms represent an increasing valuable target for adversaries. This paper discusses attack surfaces -points of attack -that mobile devices present. Several important mobile device capabilities in communication, computation and sensors enable attack surfaces not usually seen in desktop or server systems. These attack surfaces are not generally considered in recommendations from current secure software development lifecycles. Mitigation of the threats or reduction of the attack surfaces is needed when constructing secure mobile software.

show abstract

Chip and Skim: Cloning EMV Cards with the Pre-play Attack

Cited by 82 publications

References 12 publications

Relay Cost Bounding for Contactless EMV Payments

Relay Cost Bounding for Contactless EMV Payments

Harvesting High Value Foreign Currency Transactions from EMV Contactless Credit Cards Without the PIN

Attack surfaces for mobile devices

Contact Info

Product

Resources

About