Mathew McBride's website

Frequently asked questions about NFC and myki cards

technologynfcmykiSun 17 Feb 2013 07:02:45No comments

Back in 2010, when I was first experimenting with NFC, I uploaded a file with information from a myki card to my website. According to the logs, it is one of (if not, the) most viewed pages on my site every month(!). More recently, after UltraReset appeared and some were asking if myki was vulnerable to it, I pulled out my NFC reader one lunchtime and found the answer (hint: nope!).

(The above article was mentioned on ZDnet, together with a response from the contractor of the myki system (KAMCO). I actually didn't notice it until someone reposted the link a few months later!)

These days one can find a similar information about any NFC card with an NFC smartphone and a suitable app - such as TagInfo by NXP. (Who are usually tight lipped about providing any useful technical information about their NFC products without an NDA)

The myki card

myki cards are powered by MIFARE DESFire series ICs - that contain an embedded 8051-type microcontroller, an embedded 3DES encryption engine and an operating system that allows one to maintain a filesystem on the card as well as handling authentication.

Read full post for more

Dumps of myki short term ticket cards

technologynfcmykiTue 25 Sep 2012 11:22:39No comments

In light of a recent demonstration of a 'replay' attack on MiFare Ultralight Cards, here is some further analysis.

Some years back I had posted on the (now-defunct) forum that myki used DESFire and the STT's Ultralight C (with 3DES encryption). The STT's are actually the plain Ultralight variety. (In fact, Ultralight C was only launched shortly before myki went live)

Also, at that time, libnfc did not contain the code to differentiate between a normal Ultralight card, and the 'C' variant

The following data was generated by using the libnfc and associated libfreefare toolkits

(Read below the fold)

    Welcome to my site

    Mathew McBride, telecoms hardware access engineer, programmer, gamer and all round nerd

    Warning: contents of blog may not make any sense whatsoever.

    ipv6 ready

    You are accessing this page over IPv6!

    (C) Mathew McBride, 2006-2017
    Creative Commons License
    Unless specified, the content on this website is licensed under a Creative Commons Attribution-ShareAlike 3.0 Australia License.