Newsletter:

Skip Navigation LinksHome > News > Security > Researchers crack London tube card security

Site Map |

Researchers crack London tube card security

By Andrew Charlesworth
26 June 2008 10:30AM
Tags: researchers | crack | london | tube | card | security

Researchers from Radboud University in the Netherlands have successfully cracked the security of the Oyster card used for fare payments on buses and tubes in London..

The researchers travelled on the tube on a cloned card, reset its credit level from a laptop and caused gates to jam closed.

Transport for London (TfL) said that its Oyster cards are secure, that personal information is kept separate from journey information and that anyone caught using a cloned card would be prosecuted.

The system is checked every 24 hours and the best any Oyster criminal could get is a day's free travel, the company claimed.

Radboud researcher Wouter Teepe presented evidence on the crack to the Dutch parliament, which has already delayed installation of a €1bn automated payment transport system based on the same core technology.

At the heart of an Oyster card is the Mifare chip, made by Philips spin-off NXP.

Designed in the 1990s before processors of that size could handle strong encryption, Mifare has suffered at least three published cracks, according to security experts who have urged TfL to upgrade the system.

Copyright © 2008 vnunet.com

   


Ads by Google


Thoughts on this article? Add a comment below.
Be the first to comment on this article.

Report this comment as offensive:

   * Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.  
Name:
*
 
Email:
(will not be displayed)
*
 
Comment:
(HTML not permitted)
*
 
Validation
*

Enter the code you see below:

 

 
 
 
 
 


 
Tripwire - Click here to win an iTouch



Tags

apple card computer crack data email google government information london management mcafee microsoft network online privacy researchers security spam web


Product Reviews

AdventNet ManageEngine
Star Rating
The AdventNet Manage-Engine Password Manager Pro provides a complete system for password management in one...
Cyber-Ark Software Enterprise Password Vault
Star Rating
The Cyber-Ark Enterprise Password Vault, or EPV, is a high-end password management powerhouse.
Hitachi ID Systems ID-Archive
Star Rating
The Hitachi ID-Archive sets its focus on password randomisation.
Lieberman Software Enterprise Random PM
Star Rating
The Lieberman Software Enterprise Random Pass­word Manager is a full-on password manager and randomiser for...
Proginet Corporation SecurForce
Star Rating
Proginet SecurForce is a little bit of a horse of a different color for this month's Group Test.
Unified Communications Podcast Centre

TopTopics
(6653) -  internet
(6420) -  iinet
(6395) -  copyright
(6395) -  afact
(5993) -  servers
(5993) -  mipi
(4817) -  telstra
(4505) -  broadband
(4447) -  nbn
(2954) -  internode
(2497) -  microsoft
(1885) -  network
(1474) -  data
(1427) -  software
(1369) -  google