[92875] in Cypherpunks
Re: Schneier's metrocard cracked
daemon@ATHENA.MIT.EDU (Information Security)
Fri Jan 9 00:22:43 1998
Date: Thu, 8 Jan 1998 23:40:23 -0500 (EST)
From: Information Security <guy@panix.com>
To: cypherpunks@toad.com
Reply-To: Information Security <guy@panix.com>
Dr. Dim wrote:
>
> I heard on the radio that the security scheme used in New York City metrocards
> (designed with much input frm Bruce Schneier) has been cracked and that the
> "hackers" can now add fare to the cards.
>
> Does anyone know any details? What encryption did Schneier use?
It sounds like a procedural thing.
Something like there was a way to swipe cards and have the
system wrongly think it updated the card.
The city announced that every cardreader in the system
is going to be recalibrated, and this will cause problems
for "a few" existing cardholders.
---guy
