Sports Calendar

Claim your free 2010 double sided wall chart

Navigation - link to other main sections from here

Skip Navigation

From Times Online
July 21, 2008

Details of Oyster card hack to be made public

Dutch researchers can explain how they cloned identity cards to get free travel and access to government buildings

Jonathan Richards

Details of a computer hack which allowed researchers to clone identity cards that are used by million of people to access buildings and travel on public transport are to be published.

The company which makes the Mifare smartcard, which is used to gain access to thousands of British schools as well to ride on the London Underground and buses, had sought to prevent Dutch researchers from publishing details of the hack.

But a court in Holland has overturned an injunction that would have prevented the publication of the research, paving the way for academics from Radboud University to explain how they were able to ride the Tube free for a day with a cloned Oyster card - and sneak into Dutch government buildings.

After learning of the breach in April, the Dutch government posted armed guards outside all its buildings, and postponed the introduction of a new €1 billion transport payment system similar to the Oyster card until the security issues had been addressed.

Oyster card cloning with a laptop

Mifare smartcard is hacked into by Dutch university scientists, highlighting security flaw on identity and swipe cards

Professor Bart Jacobs, who led the research team, said he would hold off publishing his findings until the Dutch Government and NXP, which makes the technology used in Mifare cards, had had a chance to make their systems more resilient.

But NXP sought an injunction to ensure the details of the hack would never be made public. A court in Arnhem has now overturned the injunction, citing freedom of expression laws. "(The) damage to NXP is not the result of the publication of the article, but of the production and sale of a chip that appears to have shortcomings," the court said.

Radboud University welcomed the ruling, saying that "in a democratic society it is of great importance that the results of scientific research can be published".

A spokesman for NXP, which was formerly a division of Philips, the electronics manufacturer, said: "We don't mind them publishing the effects of what they have discovered to inform society. I think this is absolutely fine. But disclosing things in detail including the algorithm ... is not going to benefit society, it will create damage to society."

Transport for London said it remained confident that the Oyster card system, used by millions of people on London's Tube and bus network, was secure, but added that it was "constantly reviewing" its security procedures.

The Dutch Interior Ministry said at the time the hack was made public that it was replacing 120,000 cards used by civil servants to access Government buildings. About ten million Mifare smartcards are sold in Britain each year, and are used to access public buildings as well as in contactless payment systems.

Bookmark and Share

Also in Tech & Web

Also in News

Tech Central

Latest posts on the blog

Twitter

Twitter logo

Follow Tech & Web

Lady geek

When choice drives women crazy

Our new columnist tries to choose a new camera

free download

Nintendo game Mario & Sonic

Your message from the voice of Mario

50 top games

50 console classics

Got a new console? Looking for reliable games buying advice? You just found it

business gadgets

Toshiba TG01, exclusively on Orange in the UK

Smartphones, netbooks and more

All the latest gadgets for business rated and reviewed

Best of Google Streetview

Banksy’s artwork captured on the side of a building situated in London’s West End on Google Streetview

Weird and wonderful images from Google Street View

Slide Show

TECHNOLOGY

ATD logo

Articles from our sister site:

Most Read

Skip Most Read

Today

MOST COMMENTED

Skip Editor's Pick

Today

MOST CURIOUS

Skip Most Curious

Today

Focus Zone

accenture

Need to Know:

Industry sectors news at a glance. Interactive heatmap, video and podcast

ba business travel clouds

Business Travel:

Everything the Business Traveller needs to know to make a better trip

Winter Sports

Winter Sports:

Get ready for the winter sports season, with our resort guides and snow reports

lloyds

Mapping Business:

We are backing British business, what is the confidence of the nation and what businesses are succeeding?

Shell

The Future of Energy:

Growing demand for energy, oil that is harder to reach and the rise of carbon dioxide emissions. We examine the energy challenge

Dinner party

My Dinner Party:

In this special section we explore new food trends to help improve your dinner party and impress guests

More Reports

More reports:

Enjoy further reading from Travel to Fashion, Business to Sport, discover more

previous next
Times Mobile

Times Mobile

Get Times news, business and sport on your mobile. Text Times to 87700

Times Health Club

Save £8 per month on British Military Fitness

Laptop computer showig a picture of a telephone on screen

Compare broadband deals

Save on broadband, TV & phone deals

A lawyer with gown and wig

Find a Lawyer

Cut your legal costs

crossword with Cross fountain pen.

Crossword Club

Sign up today or try one of our free demo crosswords

Generic photo of a job interview.

Free CV Review

Sell yourself! Have your CV reviewed by experts

Popular Searches on Times Online

2010 movies | books | copenhagen 2009 | crosswords | fashion | formula 1 | mortgages | obituaries | pensions | property | recipes | redundancy calculator | savings | sudoku | twitter | university guide | wine

Shortcuts to help you find sections and articles

Classifieds 

Cars

Skip Cars of the Week

Ferrari F355 F1

1998
£47,955

Lamborghini Gallardo

2004
£56,950
Essex

Apply for car finance?

Check your free Experian credit report before applying


Jobs

Skip Jobs of the Week
Commercial Director

c. £70,000
The Duke of Edinburgh’s Award
Windsor

CRIME SOLICITOR

Competitive
Hickman and Rose
London

General Finance Roles


Southwark County Council

Chief Executive

£100,000
Home Office
Liverpool

Properties

Eager to get on the property ladder?

Find out about shared ownership.

Looking for a Mortgage?

See your free Experian credit report beforehand

Holidays

Skip Travel of the Week

2010 Early Booking Offers on Celebrity Cruises.

Book now for Free Stateroom Upgrades, Free parking at Southampton & Free Onboard Spend!


Great Travel Insurance

Get covered on your travels with a superb range of policies at great prices. Visit InsureandGo.com


Warm white sands, clear blue sea.

Wintersun - inspiration for your winter holiday


Place your advert now