University of Birmingham > Talks@bham > Computer Security Seminars > Robbing the bank using formal methods

Robbing the bank using formal methods

Add to your list(s) Download to your calendar using vCal

If you have a question about this talk, please contact Vincent Cheval.

EMV is a standard for electronic payments using smart cards. It is widely used and in The Netherlands introduced as ‘het nieuwe pinnen’. The specification is over 700 pages and includes a lot of options. Attacks have been published on We used formal methods to analyse the security of the standard. To analyse actual implementations, active learning techniques are used to discover the internal state machines of bank cards. These techniques can also be applied on a handheld reader that is used for internet banking. Previously, a vulnerability in this reader was discovered. In the models that are learned we can see this problem and see that it is fixed in a new version of the device.

This talk is part of the Computer Security Seminars series.

Tell a friend about this talk:

This talk is included in these lists:

Note that ex-directory lists are not shown.

 

Talks@bham, University of Birmingham. Contact Us | Help and Documentation | Privacy and Publicity.
talks@bham is based on talks.cam from the University of Cambridge.