In response to the TNO research, Nedap has reduced the delay times of its card readers even further, without having to make concessions to user-friendliness
By applying stricter delay times in all of its card readers, Nedap significantly reduces chances of possible relay attacks

NFC-enabled credit cards have received much attention because of their vulnerability to relay attacks. Widely used NXP DESFire EV1 cards use the same technology, and are vulnerable to relay attacks, which raised concern in the access control market. A relay attack fraudulently extends the distance between smart card and card reader enabling, for example, unauthorised access to buildings. Research carried out by the Dutch knowledge institute TNO has proved that Nedap’s security platform AEOS maximises resistance to relay attacks.

Applied stricter delay times

It has been known for some time that so-called proximity communication - as described in the ISO/IEC 14443 protocol - is vulnerable to relay attacks. It only requires two smartphones with built-in NFC technology to extend the distance between card and reader without restrictions. Extending this communication distance, however, creates a delay. By applying much stricter delay times in all of its card readers than is prescribed by the ISO/IEC 14443 protocol, Nedap significantly reduces the chances of possible relay attacks.

As in 2009, when Nedap was the first manufacturer to respond to the possible security risks of the Mifare Classic chip, Nedap has moved quickly to give its clients the best protection. In response to the TNO research, Nedap has reduced the delay times of its card readers even further, without having to make concessions to user-friendliness. Because AEOS can provide card readers with new firmware remotely, clients can now get better protection against relay attacks at the press of a button.

Proximity check

To prevent the chance of relay attacks, NXP applies a check between card and reader in its Mifare Plus X technology to determine whether the card is actually in the proximity of the reader. The successor of the much-used DESFire EV1-chip, the DESFire EV2-chip, is also expected to have this built-in proximity check. Until this card is launched, however, it is the responsibility of users to map out the security risks together with their suppliers. Manufacturers therefore face the task of developing solutions to minimise the risks.

Share with LinkedIn Share with Twitter Share with Facebook Share with Facebook
Download PDF version

Nedap Security Management news

Proxyclick unveils ‘Touchless Check-in’ to enable enterprises to create a safe and secure workplace environment in COVID-19 period

Proxyclick, the globally renowned provider of enterprise visitor management software, has launched ‘Touchless Check-in’ to provide enterprises with a contactless check-in solution at the front desk for every step of the visitor journey. "Visibility into who is entering or leaving your premises has become more critical than ever during this global crisis," said Gregory Blondeau, Founder and CEO of Proxyclick. ‘Touchless Check-in’ contactless solution Gregory adds, "Comp...

Nedap adds NVITE reader to enhance contactless driver identification solution

Nedap adds the multiple technology reader NVITE to their long-range identification product portfolio, for contactless driver identification. As a specialist in systems for long-range identification, Nedap is offering a wide range of solutions to identify vehicles and drivers, without delaying them. NVITE supports reading a wide range of credential technologies, such as Smartcards, Proximity cards and QR codes. The built-in Bluetooth Low Energy (BLE) and Near Field Communication (NFC) modules en...

Nedap follows guidelines issued by the Dutch government to stop the spread of COVID-19

Recently, measures are applied in the Netherlands to stop the spread of Coronavirus (Covid-19). Nedap is following the guidance issued by the Dutch government. People’s health is their first priority.  All measures were extended since 31st March 2020. They apply until the 28th of April 2020 (inclusive) or if otherwise announced (updates will be communicated at the company website).  COVID-19 prevention measures  They maintain the measures they have already taken: ...

Nedap Security Management case studies

ROCKWOOL chooses Nedap’s Global Client Programme to secure its offices and factories worldwide

Manufacturer ROCKWOOL International A.S. has chosen Nedap’s Global Client Programme to secure its offices and factories worldwide. AEOS, the physical security platform by Nedap, installed during the programme, enables ROCKWOOL to establish a truly global security policy and unified work processes. An advanced project rollout, the Global Client Programme is developed for large multinationals and offers several benefits, including standardisation across sites, shorter implementation times a...

Nedap’s AEOS installed at ING’s branch offices in Belgium

Security management in banking is a discipline unlike any other. Rather than integrating all security into one centralised system, some banks choose decentralised security for their branch offices. AEOS, a leading platform in integrated security, turns out to be just as effective when deployed decentrally. ”We were already using Nedap AEOS in our headquarters, as well as various regional offices. Then, in 2011, the security system used by our 800 branch offices in Belgium needed to be ext...

Spanish fashion brand, Álvaro Moreno selects Nedap’s ID Cloud RFID-based inventory visibility platform

Fast-growing Spanish menswear brand Álvaro Moreno has selected ID Cloud, Nedap’s renowned RFID-based inventory visibility platform. The deployment of the RFID solution at source of production, in the distribution center and throughout the 50 stores across Spain started in June 2019 and was completed in September 2019. RFID inventory visibility platform Álvaro Moreno leverages RFID for complete traceability within the supply chain. “We believe RFID is a main pillar in...