Did you know your SIM card probably relies on 56bit DES?

Subject: General Tech | July 22, 2013 - 02:28 PM |
Tagged: SIM card, security, encryption, black hat 2013

The revelation that SIM cards rely on outdated encryption method make it surprising that an exploit has not been revealed long before now, but there is one that has been discovered and will be featured at this years Black Hat security conference.  The proof of concept used was to send an improperly signed binary SMS to a device over the air which returns an error that contains the entire cryptographic signature for the SIM that received the signal, from there it is rather simple to crack the 56bit DES with modern hardware.  Once you have the key you can send out a variety of commands to the device up to an including an OS update with certain customizations.  Follow the links from The Inquirer for more information.

View Full Size

"A SIM CARD EXPLOIT that could leave millions of mobile phones vulnerable to hacking has been uncovered by German security firm Security Research Labs (SRL)."

Here is some more Tech News from around the web:

Tech Talk

Source: The Inquirer
July 22, 2013 | 02:40 PM - Posted by drbaltazar (not verified)

I own a nexus 4 .I'm secure right!I think all smartphone have those ,including my nexus 4!did you guys check with ..you know lol.

July 22, 2013 | 07:32 PM - Posted by Anonymous (not verified)

Was that in English?

July 23, 2013 | 05:57 PM - Posted by Jeremy Hellstrom

I'm not sure

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <blockquote><p><br>
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

By submitting this form, you accept the Mollom privacy policy.