±Forensic Focus Partners

Become an advertising partner

±Your Account


Username
Password

Forgotten password/username?

Site Members:

New Today: 0 Overall: 32893
New Yesterday: 9 Visitors: 177

±Follow Forensic Focus

Forensic Focus Facebook PageForensic Focus on TwitterForensic Focus LinkedIn GroupForensic Focus YouTube Channel

RSS feeds: News Forums Articles

±Latest Articles

RSS Feed Widget

±Latest Webinars

ICC Chip Reader

Computer forensics discussion. Please ensure that your post is not better suited to one of the forums below (if it is, please post it there instead!)
Reply to topicReply to topic Printer Friendly Page
Forum FAQSearchView unanswered posts
 
  

ICC Chip Reader

Post Posted: Mon Aug 18, 2014 6:58 pm

A slightly unusual request has come up, which involves attempting to extract data from an Integrated Circuit Card (ICC) retailer type 'Club Card'. Essentially, I would like to attempt to retrieve any account type information, if possible.

I am limited on information on the level of security for this type of ICC compared to the likes of Credit/Bank Cards, SIM Cards etc and also what software I could use for the data extraction. I have pulled out a card reader or two and found some software (http://pannetrat.com/Cardpeek), which has support for Credit Cards & various other types (tested some and recovered data), however the 'Club Card' is not seen by Windows OS or the software that I have at my disposal.

Any other recommendations or ideas?

Cheers!  

DCS1094
Senior Member
 
 
  

Re: ICC Chip Reader

Post Posted: Tue Aug 19, 2014 8:12 am

The Cardpeek software (nice BTW) seems like being only for ISO7816, but there are several different standards:
www.cardwerk.com/smart...dards.aspx
and possibly (particularly if the specific card is a "Club Card" issued by a "small" association) it can use non-standard protocols/whatever, on the other hand more sophisticated organizations may use "special" software or even "special" hardware to access the card contents.
Also the card may be *anything* among tens of "models", some "specialized" to a given task, just to have an idea, check how vast is the range of posiibilities:
www.smartcardfocus.com...ndex.shtml

No way to contact the manufacturer/issuer?

jaclaz
_________________
- In theory there is no difference between theory and practice, but in practice there is. - 

jaclaz
Senior Member
 
 
  

Re: ICC Chip Reader

Post Posted: Tue Aug 19, 2014 10:49 am

Cheers for the info, I shall have a read! Unfortunately, the card was issued by a small association, who we cannot contact as they are in fact the defendant/accused. At this stage the specific model is not known and as you have stated I suspect specialised software is needed. I'll do a bit more digging and see what I can find.

Photo of chip FYI: Chip.jpg  

DCS1094
Senior Member
 
 
  

Re: ICC Chip Reader

Post Posted: Tue Aug 19, 2014 11:45 am

You may want to attempt discriminate according to cost of the card vs. cost of fee for membership of the club (or whatever) and "intended use".

I mean the el-cheapo cards that are used (say) in hotels as room keys have a very low cost (and there is very little info inside them, like):
www.smartcardfocus.com...ndex.shtml

A "normal" club card is more like:
www.smartcardfocus.com...ndex.shtml

Something "special", let's say for both physical access and - say - ID/Secure transactions is more likely to be something *like*:
www.smartcardfocus.com...ndex.shtml

JFYI, that is not a photo of the chip, it is a photo of the card contacts, but it helps as those contacts shape seem to lead to a SLE5528 or a SLE5542 (or another one of the same "family":
www.datasheetdir.com/S...d-Security

If this is accurate, that card will contain very little (it is one of the el-cheapo ones mentioned):
www.smartcardfocus.com...ndex.shtml
and you may get away with reading it's contents with a correspondingly el-cheapo dev kit, like:
www.smartcardfocus.com...ndex.shtml
(the bad news Sad are that it has a 2 byte protection code and a mechanism to prevent brute-forcing it, the good news Smile are that for the reading should not need it, i.e. it is seemingly not a protected form of storage)



jaclaz
_________________
- In theory there is no difference between theory and practice, but in practice there is. - 

jaclaz
Senior Member
 
 
  

Re: ICC Chip Reader

Post Posted: Tue Aug 19, 2014 6:44 pm

The software which you have mentioned looks like it could be an option, among some others I'm looking into! I have also compared the shape of the contact pad and since obtained specification sheets for the models SLE5528 and SLE5542 from the 'SLE' contact interface cards.

From the data sheet:

SLE5528 - Data Memory Size: 1024 bytes EEPROM - Security PSC: 2 bytes
SLE5542 - Data Memory Size: 256 bytes EEPROM - Security PSC: 3 bytes

The card I believe was mainly utilised for when claiming points or/and financial reimbursement circumstances and I have since been advised that the matter may be sorted, but still, it would be good to get some sort of result. Seems like this could be an interesting project.  

DCS1094
Senior Member
 
 

Page 1 of 1