[55533] in North American Network Operators' Group
Re: OT: Banc of America Article
daemon@ATHENA.MIT.EDU (Mike Hogsett)
Thu Jan 30 17:22:16 2003
To: Krzysztof Adamski <k@adamski.org>
Cc: "Temkin, David" <temkin@sig.com>, nanog@merit.edu
In-Reply-To: Message from Krzysztof Adamski <k@adamski.org>
of "Thu, 30 Jan 2003 16:21:39 EST." <Pine.LNX.4.21.0301301558250.6795-100000@carbon.netxsys.com>
Date: Thu, 30 Jan 2003 14:18:58 -0800
From: Mike Hogsett <hogsett@csl.sri.com>
Errors-To: owner-nanog-outgoing@merit.edu
> Before you jump to the conclusion that you could just steal the black
> box from the ATM and have access, but if you till it, it forgets all the
> keys. Also during normal operation two separate people have to enter
> two parts of the key. This way no single bank employee has access to
> both parts of the key.
The product Krzystof mentions is likely similar to :
http://gpsonsale.com/ibmcryptographiccards/products/IBM4758-002.htm
http://www-3.ibm.com/security/cryptocards/
An interesting read regarding breaking into one of these black boxes :
http://www.cl.cam.ac.uk/~rnc1/descrack/
- Mike
