1998-01-09 - Re: Schneier’s metrocard cracked

Header Data

From: Information Security <guy@panix.com>
To: cypherpunks@toad.com
Message Hash: b01085a5bfb6650b28a39ea7f130700d8fa3ea04a49a00596ad6e7049c77879f
Message ID: <199801090440.XAA09818@panix2.panix.com>
Reply To: N/A
UTC Datetime: 1998-01-09 05:02:03 UTC
Raw Date: Fri, 9 Jan 1998 13:02:03 +0800

Raw message

From: Information Security <guy@panix.com>
Date: Fri, 9 Jan 1998 13:02:03 +0800
To: cypherpunks@toad.com
Subject: Re:  Schneier's metrocard cracked
Message-ID: <199801090440.XAA09818@panix2.panix.com>
MIME-Version: 1.0
Content-Type: text/plain



   Dr. Dim wrote:
   >   
   >   I heard on the radio that the security scheme used in New York City metrocards
   >   (designed with much input frm Bruce Schneier) has been cracked and that the
   >   "hackers" can now add fare to the cards.
   >   
   >   Does anyone know any details?  What encryption did Schneier use?

It sounds like a procedural thing.

Something like there was a way to swipe cards and have the
system wrongly think it updated the card.

The city announced that every cardreader in the system
is going to be recalibrated, and this will cause problems
for "a few" existing cardholders.

---guy






Thread