Vulnerability Analysis and Attacks on NFC-Enabled Mobile Phones

Mulliner, Collin

doi:10.1109/ares.2009.46

Cited by 98 publications

(65 citation statements)

References 2 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Again, Mulliner was one of the first to the scene in this case, performing extensive message fuzzing to identify NDEF messages that would trigger unexpected behavior on the Nokia 6131 cell phone [27]. In a similar vein, Verdult and Kooman explored the NDEF message format in [44].…”

Section: Nfc Securitymentioning

confidence: 99%

“…At least three published papers suggest the idea of implementing a DoS attack using NFC [27,22,42]. The authors of all three papers envision the attacker mounting the DoS attack using a specialized piece of hardware called a jammer rather than another NFC device.…”

Section: Nfc Securitymentioning

confidence: 99%

“…Mulliner in [27], the web browser presents an opening for attacks on on a mobile phone. Further research in this direction was presented several years later by Charlie…”

Section: Nfc Securitymentioning

confidence: 99%

“…For instance, researchers have demonstrated the potential for NFC-based misuse of real-world ticketing systems [27] and attacks against Google Wallet that leverage NFC [37]. Part of the trouble lies in the difficulty of testing NFC implementations prior to release, as discussed in [25].…”

Section: Introductionmentioning

confidence: 99%

See 3 more Smart Citations

Automating NFC message sending for good and evil

Brandt

Stamp

2014

J Comput Virol Hack Tech

View full text Add to dashboard Cite

Automating NFC Message Sending for Good and Evil by Nikki Benecke BrandtNear Field Communication (NFC) is an emerging proximity wireless technology used for triggering automatic interactions between mobile devices. In standard NFC usage, one message is sent per device contact, then the devices must be physically separated and brought together again. In this paper, we present a mechanism for automatically sending multiple messages without any need to physically decouple the devices. After an introduction to NFC and related security issues, we discuss the motivation for-and an implementation of-an automation framework for sending repeated NFC messages without any need for human interaction. Then we consider how such an automated mechanism can be used for both a denial of service attack and as a platform for fuzz testing. We present experimental evidence on the efficacy of automated NFC as a vector for achieving these goals. We conclude with suggestions for future work and provide some overall insights.

show abstract

Section: Nfc Securitymentioning

confidence: 99%

Section: Nfc Securitymentioning

confidence: 99%

“…Mulliner in [27], the web browser presents an opening for attacks on on a mobile phone. Further research in this direction was presented several years later by Charlie…”

Section: Nfc Securitymentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Automating NFC message sending for good and evil

Brandt

Stamp

2014

J Comput Virol Hack Tech

View full text Add to dashboard Cite

show abstract

“…Several attacks on NFC enabled mobile phones have been shown, yet most of them target the use of passive tags [36,28], while we make use of the card emulation mode whose security greatly depends on its implementation (in our case the Blackberry Java API). The main threats introduced by the NFC communication link include: eavesdropping, data corruption/modification or insertion, as well as denial-of-service attacks [22].…”

Section: Introductionmentioning

confidence: 99%

Efficient E-Cash in Practice: NFC-Based Payments for Public Transportation Systems

Hinterwälder

Zenger

Baldimtsi

et al. 2013

Privacy Enhancing Technologies

View full text Add to dashboard Cite

Abstract. Near field communication (NFC) is a recent popular technology that will facilitate many aspects of payments with mobile tokens. In the domain of public transportation payment systems electronic payments have many benefits, including improved throughput, new capabilities (congestion-based pricing etc.) and user convenience. A common concern when using electronic payments is that a user's privacy is sacrificed. However, cryptographic e-cash schemes provide provable guarantees for both security and user privacy. Even though e-cash protocols have been proposed three decades ago, there are relatively few actual implementations, since their computation complexity makes an execution on lightweight devices rather difficult. This paper presents an efficient implementation of Brands [11] and ACL [4] e-cash schemes on an NFC smartphone: the BlackBerry Bold 9900. Due to their efficiency during the spending phase, when compared to other schemes, and the fact that payments can be verified offline, these schemes are especially suited for, but not limited to, use in public transport. Additionally, the encoding of validated attributes (e.g. a user's age range, zip code etc.) is possible in the coins being withdrawn, which allows for additional features such as variable pricing (e.g. reduced fare for senior customers) and privacy-preserving data collection. We present a subtle technique to make use of the ECDHKeyAgreement class that is available in the BlackBerry API (and in the API of other systems) and show how the schemes can be implemented efficiently to satisfy the tight timing imposed by the transportation setting.

show abstract

Enforcing mobile security with location-aware role-based access control

Ulltveit-Moe

Oleshchuk

2013

Security Comm. Networks

View full text Add to dashboard Cite

This paper describes how location-aware role-based access control (RBAC) can be implemented on top of the Geospatial eXtensible Access Control Markup Language (GeoXACML). It furthermore sketches how spatial separation of duty constraints (both static and dynamic) can be implemented using GeoXACML on top of the XACML RBAC profile. The solution uses physical addressing of geographical locations, which facilitates easy deployment of authorisation profiles to the mobile device. Location-aware RBAC can be used to implement location-dependent access control and also other security enhancing solutions on mobile devices, such as location-dependent device locking, firewall, intrusion prevention or payment anti-fraud systems. The system has been implemented and tested, both to verify the server capacity and also the client capacity running on a mobile device.

show abstract

Vulnerability Analysis and Attacks on NFC-Enabled Mobile Phones

Cited by 98 publications

References 2 publications

Automating NFC message sending for good and evil

Automating NFC message sending for good and evil

Efficient E-Cash in Practice: NFC-Based Payments for Public Transportation Systems

Enforcing mobile security with location-aware role-based access control

Contact Info

Product

Resources

About