[114006] in cryptography@c2.net mail archive
Re: Dutch Transport Card Broken
daemon@ATHENA.MIT.EDU (Aram Perez)
Fri Jan 25 10:16:21 2008
From: Aram Perez <aramperez@mac.com>
To: Cryptography <cryptography@metzdowd.com>
In-Reply-To: <877ihy93j1.fsf@snark.cb.piermont.com>
Date: Thu, 24 Jan 2008 20:58:38 -0800
Hi Folks,
> Ed Felten has an interesting post on his blog about a Dutch smartcard
> based transportation payment system that has been broken. Among other
> foolishness, the designers used a custom cryptosystem and 48 bit keys.
Not to defend the designers in any way or fashion, but I'd like to
ask, How much security can you put into a plastic card, the size of a
credit card, that has to perform its function in a secure manner, all
in under 2 seconds (in under 1 second in parts of Asia)? And it has to
do this while receiving its power via the electromagnetic field being
generated by the reader.
Regards,
Aram Perez
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
