BEGIN:VCALENDAR
VERSION:2.0
PRODID:-//Talks.cam//talks.cam.ac.uk//
X-WR-CALNAME:Talks.cam
BEGIN:VEVENT
SUMMARY:On the (in)security of widely-used RFID access control systems - D
 r. Flavio D. Garcia\, University of Birmingham
DTSTART:20140211T150000Z
DTEND:20140211T160000Z
UID:TALK49426@talks.cam.ac.uk
CONTACT:Laurent Simon
DESCRIPTION:*Abstract:*\nOver the last few years much attention has been p
 aid to the (in)security\nof the cryptographic mechanisms used in RFID and 
 contactless smart\ncards. Experience has shown that the secrecy of proprie
 tary ciphers does\nnot contribute to their cryptographic strength. Most no
 tably the Mifare\nClassic\, which has widespread application in public tra
 nsport ticketing\n(e.g. Oyster) and access control systems\, has been thor
 oughly broken in\nthe last few years. Other prominent examples include Kee
 Loq and Hitag2\nused in car keys and CryptoRF used in access control and p
 ayment systems.\n\nThis talk summarizes our own contribution to this field
 . We will\nbriefly show some of the weaknesses we found in the Mifare clas
 sic. Then\nwe will show that the security of its higher-end competitors li
 ke\nAtmel's CryptoRF and HID's iClass – which were proposed as secure\ns
 uccessors of the Mifare Classic – is not (significantly) higher. We will
 \nalso cover security issues of the Hitag2 key fob to conclude with a\ndis
 cussion on responsible disclosure principles. \n\n*Bio:*\nGarcia is a facu
 lty member in the Birmingham's Security and Privacy\nGroup\, and is curren
 tly employed as a “Birmingham Fellow”. His work\nfocuses on the design
  and evaluation of cryptographic primitives and\nprotocols for small embed
 ded devices like RFID and smart cards. His\nresearch achievements include 
 breakthroughs such as the discovery of\nvulnerabilities in Mifare Classic\
 , iClass\, CryptoMemory and HiTag2. The\nfirst of these\, Mifare Classic\,
  was widely used for electronic payment\n(e.g. London Underground) and acc
 ess control (e.g. Amsterdam Airport).\nGarcia showed that the cryptography
  in the card was fatally flawed.\nHiTag2\, the most widely used key fob us
 ed in car keys was also found to\nbe insecure.\n\nGarcia’s work has been
  widely recognised as world leading including\n“Best Paper” awards fro
 m the leading IEEE Security & Privacy and Usenix\nWoot conferences and the
  2008 I/O Award from the Dutch research council\nfor the best paper bringi
 ng computer science research to the attention\nof the general public. Garc
 ia joined the security group at the\nUniversity of Birmingham in February 
 2013.
LOCATION:Lecture Theatre 2\, Computer Laboratory\, William Gates Building
END:VEVENT
END:VCALENDAR