Presentation is loading. Please wait.

Presentation is loading. Please wait.

Presented By: Arpit Jain 113050028 Guided By: Prof. D.B. Phatak.

Published byJonas Underwood Modified over 9 years ago

Similar presentations

Presentation on theme: "Presented By: Arpit Jain 113050028 Guided By: Prof. D.B. Phatak."— Presentation transcript:

1 Presented By: Arpit Jain 113050028 Guided By: Prof. D.B. Phatak

2 Components of NFC Attacks in NFC Relay attack Countermeasures References

3 Application Execution Environment (AEE)- General application area of the mobile phone providing data storage and processing capabilities. Trusted Execution Environment (TEE)- It is realized as use of a secure element (SE) and provides secure data storage. NFC Controller- NFC Controller handles the physical transmitting and receiving of data over the RF interface.

4

5 Eavesdropping- RF signal for the wireless data transfer can be picked up with antennas. Data modification- It is relatively easy to destroy data by using an RFID jammer. There is no way currently to prevent such an attack. However, if NFC devices check the RF field while they are sending, it is possible to detect attacks. Relay attack- Attack based on relay of messages between sender and receiver.

6 Chess Problem- Player forward the message from one grand master to other using some wireless or wired technology. Grandmaster thinks that they are playing against said person. Actually 2 grandmaster playing against each other.

7

8 No separate hardware required for relay attack, can be done using some application software. Attacker is able to circumvent any application layer security protocol, even if protocol is based on cryptographic principles.

9 Integrating Location into NFC Transactions. Determined by network operator or handset itself. Location information is incorporated to provide relay- resistant. Location information contains Cell-ID, Mobile country Code (MCC), Mobile Network Code (MNC) and Location Area Code (LAC) LC=‘‘23415431824422847’’, where MCC=234 | MNC=15 | LAC=43182 | Cell-ID=4422847

10

11 limitations depends upon how the location information is obtained and used within the application. Some operators may not be prepared to share this information nor to confirm its accuracy unless for legal or investigative reasons. GPS provide more independent solution, no need of network operator But device should support GPS functionality.

12 [1]. Lishoy Francis, Gerhard Hancke, Keith Mayes, Konstantinos Markantonakis Practical Relay Attack on Contactless Transactions by Using NFC Mobile Phones, In Information Security Group, Smart Card Centre Royal Holloway University of London [2]. Practical Experiences with NFC Security on mobile Phones Gauthier Van Damme and Karel Wouters Katholieke Universiteit Leuven Dept. Electrical Engineering-ESAT/SCD/IBBT-COSIC Kasteelpark Arenberg 10, 3001.

Download ppt "Presented By: Arpit Jain 113050028 Guided By: Prof. D.B. Phatak."

Similar presentations

Chris Karlof and David Wagner

Chris Karlof and David Wagner
Ecosystem Scenarios for Cloud-based NFC Payments

Ecosystem Scenarios for Cloud-based NFC Payments
Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.

Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.
1 Security in Wireless Protocols Bluetooth, 802.11, ZigBee.

1 Security in Wireless Protocols Bluetooth, , ZigBee.
NFC Security What is NFC? NFC Possible Security Attacks. NFC Security Attacks Countermeasures. Conclusion. References.

NFC Security What is NFC? NFC Possible Security Attacks. NFC Security Attacks Countermeasures. Conclusion. References.
NFC Devices: Security and Privacy

NFC Devices: Security and Privacy
CMP206 – Introduction to Data Communication & Networks Lecture 1 - Networking Fundamentals.

CMP206 – Introduction to Data Communication & Networks Lecture 1 - Networking Fundamentals.
1 Pascal URIEN, IETF 61th, Washington DC, 10th November 2004 “draft-urien-eap-smartcard-type-00.txt” EAP Smart Card Protocol (EAP-SC)

1 Pascal URIEN, IETF 61th, Washington DC, 10th November 2004 “draft-urien-eap-smartcard-type-00.txt” EAP Smart Card Protocol (EAP-SC)
Timo Kasper Crete, Greece May 10, 2007 An Embedded System for Practical Security Analysis of Contactless Smartcards Timo Kasper, Dario Carluccio and Christof.

Timo Kasper Crete, Greece May 10, 2007 An Embedded System for Practical Security Analysis of Contactless Smartcards Timo Kasper, Dario Carluccio and Christof.
Smart Grid Projects Andrew Bui.

Smart Grid Projects Andrew Bui.
Security for RFID Department of Information Management, ChaoYang University of Technology. Speaker : Che-Hao Chen ( 陳哲豪 ) Date:2006/01/18.

Security for RFID Department of Information Management, ChaoYang University of Technology. Speaker : Che-Hao Chen ( 陳哲豪 ) Date:2006/01/18.
Distance-decreasing attack in GPS Final Presentation Horacio Arze Prof. Jean-Pierre Hubaux Assistant: Marcin Poturalski January 2009 Security and Cooperation.

Distance-decreasing attack in GPS Final Presentation Horacio Arze Prof. Jean-Pierre Hubaux Assistant: Marcin Poturalski January 2009 Security and Cooperation.
Near Field Communication By Van Logan HTM 304. What is Near Field Communication Short range wireless communication technology between electronic devices.

Near Field Communication By Van Logan HTM 304. What is Near Field Communication Short range wireless communication technology between electronic devices.
802.11b Vulnerabilities, Ad-Hoc Mode, RF Jamming and Receiver Design Ritesh H Shukla Graduate Student ECE Dept Under the Guidance of Prof. William R Michalson.

802.11b Vulnerabilities, Ad-Hoc Mode, RF Jamming and Receiver Design Ritesh H Shukla Graduate Student ECE Dept Under the Guidance of Prof. William R Michalson.
Chapter 15 Emission Security. Introduction Emissions Security (Emsec) Tempest defenses Stray RF emitted by Electronics Power Analysis Set back Smart Card.

Chapter 15 Emission Security. Introduction Emissions Security (Emsec) Tempest defenses Stray RF emitted by Electronics Power Analysis Set back Smart Card.
Data Integrity and Security. Data integrity  data that has a complete or whole structure  a condition in which data has not been altered or destroyed.

Data Integrity and Security. Data integrity  data that has a complete or whole structure  a condition in which data has not been altered or destroyed.
Presented by: Arpit Jain 113050028 Guided by: Prof. D.B. Phatak.

Presented by: Arpit Jain Guided by: Prof. D.B. Phatak.
Chapter 4.  Understand network connectivity.  Peer-to-Peer network & Client-Server network  Understand network topology  Star, Bus & Ring topology.

Chapter 4.  Understand network connectivity.  Peer-to-Peer network & Client-Server network  Understand network topology  Star, Bus & Ring topology.
1 NETWORKS AND COMMUNICATIONS Chapter Four. Communications Computer communication describes a process in which two or more computers or devices transfer.

1 NETWORKS AND COMMUNICATIONS Chapter Four. Communications Computer communication describes a process in which two or more computers or devices transfer.
LEVERAGING UICC WITH OPEN MOBILE API FOR SECURE APPLICATIONS AND SERVICES Ran Zhou 1 9/3/2015.

LEVERAGING UICC WITH OPEN MOBILE API FOR SECURE APPLICATIONS AND SERVICES Ran Zhou 1 9/3/2015.

Similar presentations

Ads by Google