The widely used ISO/IEC 14443 product standard of Radio Frequency Identification (RFID) technology is currently increasingly penetrating the government and public sector applications in South Africa (e.g. National e-ID and public transportation). The security of ISO/IEC 14443 proximity cards is covered widely in literature addressing different types of attacks, e.g. relay, skimming and eavesdropping attacks. These attacks are performed on certified compliant proximity smart cards illustrating vulnerable standardised parameters that the ISO/IEC 14443 standard left out for the user or designer security implementation. From literature it shows that most attacks (e.g. relay attacks) manage to overcome the implemented security measures.
Reference:
Lefophane, S. and Van der Merwe, J. 2015. A security review of proximity identification based smart cards. In: 10th International Conference on Cyber warfare and Security, Mpumalanga, Kruger National Park, South Africa, 24-25 March 2015
Lefophane, S., & Van der Merwe, J. J. (2015). A security review of proximity identification based smart cards. Academic Conferences International. http://hdl.handle.net/10204/8624
Lefophane, S, and Johannes J Van der Merwe. "A security review of proximity identification based smart cards." (2015): http://hdl.handle.net/10204/8624
Lefophane S, Van der Merwe JJ, A security review of proximity identification based smart cards; Academic Conferences International; 2015. http://hdl.handle.net/10204/8624 .
10th International Conference on Cyber warfare and Security, Mpumalanga, Kruger National Park, South Africa, 24-25 March 2015. Due to copyright restrictions, the attached PDF file only contains the abstract of the full text item. For access to the full text item, please consult the publisher's website.
