Related
I'm not sure how many XDAers go to Defcon each year, but there were some interesting NFC-related talks. For those who don't know, Defcon is an annual computer security convention in Las Vegas.
Here's are the presentations from a couple of the talks. If the slides don't work on the site, just download the PDF on the top right of the frame... replace hxxp with http. "new" users can't post links ):
Charlie MIller: Don't Stand So Close To Me: Exploring the NFC Attack Surface:
http://korben.info/wp-content/uploa...iller/DEFCON-20-Miller-NFC-Attack-Surface.pdf
tldr; how phones can be attacked via NFC, why you should disable NFC if you don't use it, etc
Eddie Lee: NFC Hacking: The Easy Way
http://korben.info/wp-content/uploads/defcon/SpeakerPresentations/Lee/DEFCON-20-Lee-NFC-Hacking.pdf
tldr; NFC proxy using phones to relay tags over the internet. Interesting because it can even work with credit cards
There were some other NFC talks but I didn't see them so I can't comment on those.
Cool thanks for the info
Sent from my GT-I9300 using xda premium
Interesting.
Thanks for the info!
Sure. It's a bit off topic but I spent my time in line at the convention trying to get the serial driver on my skyrocket to interface with the Defcon badge's serial port. With a usb host adapter my phone would power the badge but I couldn't seem to make my ftdi kernel module work.
The Defcon badge was programmable over serial, had vga, ps/2, and 7 or so programmable leds, plus a short range ir for communication between badges. Would have been a cool hack to control it via android.
Defcon is a great place to learn, I'd recommend going if you ever get the chance
Sent from my SAMSUNG-SGH-I727 using xda app-developers app
Since all the links in this thread are TLDR i thinks its a good idea to post the youtube videos for this talks.
Charlie Miller:
http://www.youtube.com/watch?v=bpiuKEy0SkY
Eddie Lee:
http://www.youtube.com/watch?v=7ElZBI9PufY
About what Eddie Lee is talking here is a cool couple links
http://sourceforge.net/projects/nfcproxy/
http://www.youtube.com/watch?v=w_vYuLyfw3E
Have fun
Does anyone know about this issue ?
http://www.isk.kth.se/~rbbo/ussdvul.html
just info.
To be honest, the article does seem quite absurd to me. There are many points that are pretty ridiculous or don't seem right
1. There happen to be no cases of SIM cards being killed by such a simple code and method. If there were, wouldn't such case have been published by any reliable source such as a major mobile provider? As far as I know, the only mention of such exploitation is with this website (which honestly look quite dodgy to me ). The reference website provided by the author mentions no inferences or references to the 'killer codes', but merely states what dialer can do. Also, where are the killing codes? surely, if SIM cards have been around for 15 years, again, there must be some sort of publicity or acknowledgement from a reliable source.
2. Again, no case of Samsung phones being wiped in the last 2 years. Isn't the definition of 'exploitation', the act of employing to the greatest advantage? Then, how so, has there been no indication of any 'Samsung only' memory massacre, or anything close to mentioned scale, in the last 2 years if the
hidden USSD codes were no longer secret
from more than last 2 years.
Click to expand...
Click to collapse
? but Samsung sucks, so I'm not going to waste anymore time here
That's all I have to say regarding this article. I'm having a holiday right now, so I don't know why I'm going into english critical analysis mode
adoet_t said:
Does anyone know about this issue ?
http://www.isk.kth.se/~rbbo/ussdvul.html
just info.
Click to expand...
Click to collapse
It is present in most roms.
I have read to german articles about it.
use google translation:
http://www.heise.de/newsticker/meldung/Android-Smartphones-Bei-USSD-Anruf-SIM-Tod-1718789.html
http://www.heise.de/newsticker/meld...ode-Problem-in-Android-betroffen-1719965.html
the first link offers a test page for smartphones. QR-Code takes you to this site.
If your IME pops up, your rom is affected.
greetings
This was reported on the BBC web new site, but at the end of the report they did say that no cyber criminals would use this as they can not obtain any personal details, login,accounts,etc so no use to them... But still a worry.
Sent from my LT18i using xda premium
Arc S is NOT AFFECTED with Official ICS!
Sent from my LT18i using xda app-developers app
Hey all!
I love NFC, just as much as you - seeing as you're reading this in the NFC section, I assume you use NFC regularly. I think it'll be fantastic when it's main stream, however for it to become a truly mainstream it needs more data type. just like you get vCards, URL's, SMS's etc - I think we need more help from Google, Microsoft and all the hardware vendors - along with the NFC forum itself - to help extend NFC's capabilities.
Sure we on XDA know how to extend it's abilities - either by hacking it or knowing which app lets you do a certain additional function. Unfortunately normal members of the public won't know about the XDA way or about the apps. For example the problem is you can write an NFC tag to connect to a a device to a particular wifi network, however you need the app that wrote the tag or another app that understands what to do with the tag for it to work. Now the problem is that your guests probably won't have the app installed, so you'll have to connect them manually or download the app over 2G/3G/4G and depending on network strength - just like my area - could take a long time!
What came first, the chicken or the egg? What came first the wifi or the adoption of more standard / capabilities, across OS's / vendors ?
There are plenty more examples, but this is the most useful and self explanatory I can think of.
Please, please, please read my blog post about this and if you so wish, sign the petition, message the NFC Forum telling them to get their butt's into gear - message Google and the Android dev's do what you can to make NFC better and help it's adoption :good:
http://jaytongarnett.blogspot.co.uk/2012/09/is-nfc-over-rated-we-need-nfc-20.html
TheLegendaryJay said:
Hey all!
I love NFC, just as much as you - seeing as you're reading this in the NFC section, I assume you use NFC regularly. I think it'll be fantastic when it's main stream, however for it to become a truly mainstream it needs more data type. just like you get vCards, URL's, SMS's etc - I think we need more help from Google, Microsoft and all the hardware vendors - along with the NFC forum itself - to help extend NFC's capabilities.
Sure we on XDA know how to extend it's abilities - either by hacking it or knowing which app lets you do a certain additional function. Unfortunately normal members of the public won't know about the XDA way or about the apps. For example the problem is you can write an NFC tag to connect to a a device to a particular wifi network, however you need the app that wrote the tag or another app that understands what to do with the tag for it to work. Now the problem is that your guests probably won't have the app installed, so you'll have to connect them manually or download the app over 2G/3G/4G and depending on network strength - just like my area - could take a long time!
What came first, the chicken or the egg? What came first the wifi or the adoption of more standard / capabilities, across OS's / vendors ?
There are plenty more examples, but this is the most useful and self explanatory I can think of.
Please, please, please read my blog post about this and if you so wish, sign the petition, message the NFC Forum telling them to get their butt's into gear - message Google and the Android dev's do what you can to make NFC better and help it's adoption :good:
http://jaytongarnett.blogspot.co.uk/2012/09/is-nfc-over-rated-we-need-nfc-20.html
Click to expand...
Click to collapse
As much as it pains me to say it...we need Apple to implement native NFC support in iOS. I was really excited to see Passbook (or whatever its called) and was nearly positive this meant NFC support for the iPhone 5. Unfortunately, not this go round. It's ok though, wait a couple iterations of iOS/iPhone and NFC will finally be deemed acceptable for the public...magically...revolutionarily.
I know, and I think why the heck should we wait? Apple might only bring NFC with the iPhone 7. What's the harm in trying to change it now?
Sent from my GT-I9300 using xda app-developers app
I haven't used it much, but I am for interested. I guess I need a better understanding of its purpose and how I can use it in everyday situations. I already use wifi-direct for a bunch of transferring.
Sent from my SAMSUNG-SGH-I717 using xda app-developers app
booyakasha said:
As much as it pains me to say it...we need Apple to implement native NFC support in iOS. I was really excited to see Passbook (or whatever its called) and was nearly positive this meant NFC support for the iPhone 5. Unfortunately, not this go round. It's ok though, wait a couple iterations of iOS/iPhone and NFC will finally be deemed acceptable for the public...magically...revolutionarily.
Click to expand...
Click to collapse
The fanboys say that apple is afraid of NFC till they can develop a version of their own that is "Secure"...
Souler19 said:
The fanboys say that apple is afraid of NFC till they can develop a version of their own that is "Secure"...
Click to expand...
Click to collapse
Yeah, they need something the can control - they need to devise a way to make money out of it otherwise it's not in their interest.
I know this is XDA Developers and we can make NFC do what we want, but we all have people in our lives who won't even use NFC because they don't know about it or know what it can do which is why I'd like us to make a change at the OS level on behalf of all of our non-technical friends and family. Let's get the big players like Google, Microsoft and anyone else that's already using NFC in their products to want to make a change - for Grandma
Lets be honest guys, the majority of people around us have iPhones, mainly 4s's. Imagine if all of them had NFC and we could all play nicely sharking playlists and sending phone numbers to eachother?
nfc
TheLegendaryJay said:
Yeah, they need something the can control - they need to devise a way to make money out of it otherwise it's not in their interest.
I know this is XDA Developers and we can make NFC do what we want, but we all have people in our lives who won't even use NFC because they don't know about it or know what it can do which is why I'd like us to make a change at the OS level on behalf of all of our non-technical friends and family. Let's get the big players like Google, Microsoft and anyone else that's already using NFC in their products to want to make a change - for Grandma
Click to expand...
Click to collapse
NFC is the next big thing just give it time. once it rolls out. more in new devices we shall see. it's development grow more and any phone worth it's salt will have to have it
I agree - a revolution. Right now, when I mention NFC to most people they give me that "HUH???" expression. Then I have to explain what it is and then I have to give them examples of what it can do. Seems like almost no one knows what it is or has any idea all the cool things you can do with it.
What we need is a Samsung or Google or HTC to run a commercial that features people using NFC - with tags to automate stuff at home/work, with Google Wallet to pay for stuff, other things. Then the average person would be like "oh I know what that is - I saw it on a commercial"
Unfortunately right now it seems like it's just us tech geeks who know about it...
hollywoodfrodo said:
I agree - a revolution. Right now, when I mention NFC to most people they give me that "HUH???" expression. Then I have to explain what it is and then I have to give them examples of what it can do. Seems like almost no one knows what it is or has any idea all the cool things you can do with it.
What we need is a Samsung or Google or HTC to run a commercial that features people using NFC - with tags to automate stuff at home/work, with Google Wallet to pay for stuff, other things. Then the average person would be like "oh I know what that is - I saw it on a commercial"
Unfortunately right now it seems like it's just us tech geeks who know about it...
Click to expand...
Click to collapse
Dont call us geeks;p j/k
Well, we've already got a very usefull feature for NFC like very fast files transfer, the only what we need is more phones that support it. It will be as famous as bluetooth i think hopefully
Sent from my LT26i using xda app-developers app
gallardo5 said:
Dont call us geeks;p j/k
Well, we've already got a very usefull feature for NFC like very fast files transfer, the only what we need is more phones that support it. It will be as famous as bluetooth i think hopefully
Sent from my LT26i using xda app-developers app
Click to expand...
Click to collapse
How much data can actually be transfered via NFC? I always thought the bandwidth for transfers was rather small, which is why most items transfered are under 144 bytes.
For larger transfers wouldn't using NFC for the handshake then Bluetooth for data transfers be better?
Sent from my EVO using Tapatalk 2
I have to admit I am one of those people who do not know about its capabilites. I know what it is and have it activated on my phone, but what can I do with it...I do not know besides I think you can tranfer pictures, phone numbers and stuff.
Can someone maybe explain it in more detail and tell us about its uses? Maybe I should have done a search about NFC (Near Field Communications) before I wrote this.
P.S. I wish more people would put the acronym meaning after the acronym, like I did above, in this forum...ooh that gives me an idea!! (light in head goes off!! lol)
Psichi said:
How much data can actually be transfered via NFC? I always thought the bandwidth for transfers was rather small, which is why most items transfered are under 144 bytes.
For larger transfers wouldn't using NFC for the handshake then Bluetooth for data transfers be better?
Sent from my EVO using Tapatalk 2
Click to expand...
Click to collapse
I cannot tell you if there is a limit in filesize, but since the biggest NFC tags you can buy at the moment (afaik) are 8kb, anything beyond 1mb is most likely to take to long to be economic.
Greetings all
im currently looking for a thesis topic to graduate, and im interested in NFC
My supervisor asked me to prepare a proposal about the subject, he suggested that i choose an "application" or a certain aspect of NFC to study, i have an idea about maybe doing a comparing study about NFC Security techniques and methods, since one payment is probably the most famous application of NFC, however i cant really say that i know much about NFC, in fact i barely know anything about it, i'm a telecom student, and i'd appreciate if some of you can point me to some reading material or give me some pointers that wud help me preparing the proposal and eventually the thesis itself.
thanx in advance and best regards to all
Well since nobody else has replied to this, I'll help you out. NFC is short for near field communication. NFC builds on RFID systems that allows two way communication between end points. RFID was first patented in 1983. That's pretty general, I know a lot about NFC so if you have any specific questions I can help you there.
For more general information I'd recommend http://www.nearfieldcommunication.org
Good luck with your thesis my friend!
Just don't say you got help from a 15 year old...
Sent from my SPH-L710 using xda app-developers app
Thesis approach
Downloadaholik said:
Greetings all
im currently looking for a thesis topic to graduate, and im interested in NFC
My supervisor asked me to prepare a proposal about the subject, he suggested that i choose an "application" or a certain aspect of NFC to study, i have an idea about maybe doing a comparing study about NFC Security techniques and methods, since one payment is probably the most famous application of NFC, however i cant really say that i know much about NFC, in fact i barely know anything about it, i'm a telecom student, and i'd appreciate if some of you can point me to some reading material or give me some pointers that wud help me preparing the proposal and eventually the thesis itself.
thanx in advance and best regards to all
Click to expand...
Click to collapse
Security seems to be a main concern this days. NFC advantages are aplenty, however no one is really concerned about the security aspect of it. i.e. hacking NFC or being able to track a person by their NFC capable phone etc. etc.
I would show that NFC can be easily read for instance passports, credit cards etc... Show the techniques used to circumvent reading i.e. hashing, pin codes.
In the end describe a theoretical approach that it can make nfc's security better.
In the end you just need to be able to defend your approach against other professors so keep in mind you need to be well aware of the subject.
This is my idea and this is how i would approach the subject. Im sure there are hundreds of other applications out there that you can ellaborate on.
Sounds cool though good luck.
thank you all
@Truitt.Jack its not a problem for me to get help from a fifteen years old, if you are good at what you do
who cares how old are you
@ Sofitos : thanks for the advice, i'll look into it
Just thought I would share this with you guys. Got an email looking for Android Developers among many other things. Salaries are awesome. This is legit.
"Hi Damon,
I am conducting a search for our client in Portland, OR to fill their Android Developer position and am reaching out in case you know of anyone who would be a fit.
Please check out the link below and apply if you are interested in hearing more about the job.
The full job description is listed at the end of this email!
For more details on this job*or to*apply*simply visit CyberCoders:
http://www.CyberCoders.com/qb.aspx?posId=JW1-AtronAndroid&ad=CSNPMSJacob.Wolf
Not a fit for this job?* Search all of our*open jobs:
http://www.CyberCoders.com/qa.aspx?ad=CSNPMSJacob.Wolf&sterm=*
Happy where you are?* Great!* Know someone who isn't?**Refer a friend for this position and if*we place them you'll get an iPad!*
I will only email you when we find a new job that may be a good fit for your background.* You can also use the link below if you would like us to hold off on emails to you about new jobs.
Thank you,
Jacob
Jacob Wolf
Executive Recruiter | View My Bio »
949.861.2488 | [email protected]
If you are a Android Developer, please read on!
We are a growing mobile development company that is looking for talented mobile developer to add to our team in Portland, Oregon. Ideal candidates will be excited to create new Android applications and help us continue to grow as a company using the latest technology of today. This is a full time position and we would love to talk to anyone with GIS or Location based application experience using the Android platform.
This job is a great opportunity to work with some of the latest software & most cutting edge hardware.
What you need for this position:
- Android development experience
- Java development experience is a plus
- Location based mobile application development experience
What's in it for you:
- Flexible work hours and a
- Relaxed work environment.
- Stability of a full time position
- Paid-benefits position, complete with
- Paid Vacation
- Health Insurance
So, if you are a Android Developer please apply today!
JobID: JW1-AtronAndroid"
So if anyone is gonna apply, I'd appreciate the iPad lol. If more than one person applies and gets accepted, I'll run a raffle for the additional iPads on this thread. You can find my full name and email on my Xda profile.
Sent from my SPH-L900 using xda premium
Um, doesn't it seem kinda odd that they are promoting a competitor for a job opening?? I don't see legit written anywhere on this.. I work for Pepsi, and don't see anyone giving a coke away for referring an employee.. Just my 2¢
From my rat infested note ii
Im a janitor and you get free **** if you apply at my job.
Sent from my SPH-L900 using xda premium
sparytrainor said:
Um, doesn't it seem kinda odd that they are promoting a competitor for a job opening?? I don't see legit written anywhere on this.. I work for Pepsi, and don't see anyone giving a coke away for referring an employee.. Just my 2¢
From my rat infested note ii
Click to expand...
Click to collapse
Uhhhhh, how exactly are they promoting a competitor again? I checked out the openings, and the company Web page. The company is grounded and established dude.
So ur saying android and apple aren't competitors?? Again, just my 2¢
From my rat infested note ii
Oh that. The iPad thing. It's probably a 1st gen piece of crap anyways. Which is why they don't mind giving them away. They could be refurbished after cracking them open to get some Apple secrets. I mean a million explanations! We dunno.
I didn't really see that as promoting competition because the company is definitely benefiting more from getting the developer than care about an iPad.
Sent from my SPH-L900 using xda premium
this is a phishing scam. they really just want your personal info.
---------- Post added at 11:54 AM ---------- Previous post was at 11:52 AM ----------
you have to create an account. they are banking that your contact email address will have the same password you use for your account on that site. they probably also try your name at various bank sites with the password you used.
austin420 said:
this is a phishing scam. they really just want your personal info.
Click to expand...
Click to collapse
Aside from speculation, how did you come to this conclusion?
austin420 said:
this is a phishing scam. they really just want your personal info.
---------- Post added at 11:54 AM ---------- Previous post was at 11:52 AM ----------
you have to create an account. they are banking that your contact email address will have the same password you use for your account on that site. they probably also try your name at various bank sites with the password you used.
Click to expand...
Click to collapse
So what? You have to create an account for alot of employers. Fred Meyer, McDonalds, a bunch of places. They use it to keep your user profile and sometimes to keep past applications. By the way, the way I know you don't know for sure is your use of the word "probably".
This is shady as shady gets. They're CLEARLY going above and beyond to sell you on why you should do this. They sound way to desperate. To each there own, but I wouldn't risk it...#SCAM.
Sent from my SPH-L900 using xda premium
ArchangelRenzoku said:
So what? You have to create an account for alot of employers. Fred Meyer, McDonalds, a bunch of places. They use it to keep your user profile and sometimes to keep past applications. By the way, the way I know you don't know for sure is your use of the word "probably".
Click to expand...
Click to collapse
okay sir. everybody else is wrong and you are right. this is totally legit. we should all give our personal info to some random site because every body knows that everything on the net is totally trustworthy.
not.
Check it. I'm not trying to prove anyone right or wrong. I just want people to cite what they say. Have some proof and all that. If it's a scam, then someone should report it to the browsers (IE, Mozilla, Google, etc.) so they can stop people from going to it. Let them check it out. Don't just burn on it to burn on it no matter how many "leading" points there are. The only way to know for sure is to go and do it. Someone use a fake email and name and see what happens to it once they "steal" it and whatnot. Feel me?
Sent from my SPH-L900 using xda premium
Good jobs are never advertised. #scam
Sent from my SPH-L900 using Tapatalk 4 Beta
I do know that name - and for you with paranoia... Google is your friend.
Cybercoders has been around for a while - seen them on Dice and I think Monster.
Probably just looking for new coders - sure there's plenty of interest.
Looks legit to me.