Previous Can Intel-Microsoft Money for Universities Make Up for Defense Department Shortfall? |
Next |
March 21, 2008, 04:38 PM ET
Computer-Science Researchers Expose Security Vulnerability of Some Electronic Key Cards
Access cards that students use to get into residence halls on some campuses may be vulnerable to hackers, according to computer-science researchers who say they’ve cracked the code on a high-tech key system that uses radio-frequency identification, or RFID.
An article in the latest issue of ComputerWorld outlines the research, led by Karsten Nohl, a graduate student at the University of Virginia. The article notes that two billion so-called smart cards — used in a variety of settings, including college campuses — could be at risk.
The researchers say that they were able to hack an RFID chip made by NXP Semiconductors that used a coding standard known as MiFare Classic. Some proximity cards used at colleges use the same coding standard.
In an interview with The Chronicle this week, Mr. Nohl said that a thief could copy the data on a person’s RFID card by walking close enough to the person to scan the card with a reader. The chip’s information could then be decoded.
A malicious hacker with that ability could essentially steal the key out of your pocket without your card’s ever leaving your wallet. “You think if you put it in your wallet and you never show it to anybody, it must be safe,” said Mr. Nohl.
A spokesman for NXP Semiconductors said the company already makes RFID card systems that are more secure. —Jeffrey R. Young
Categories: Security, Leadership
Add Your Comment
Commenting is closed.