android - UID of a NFC/SWP-accessed SIM card -


sim card used secure element in project. accessed through nfc-swp contactless interface terminal device.

i need identify sim card somehow unique , permanent identifier , need able read identifier through nfc. iccid seems best choice, have expose ef iccid file through contactless interface, might dangerous. moreover, ef iccid file out of scope on sim card - access dedicated security domain have.

i tried use 4-byte long uid specified in iso/iec 14443 type a, different uid each time read sim card through nfc. why?

another solution accessing card serial number through global platform data command (card production life cycle data (cplc)), have able select card manager through contactless interface, forbidden default , not recommended because of security.

is there typical way solve issue?

the 4 byte uid type (same pupi type b) allowed random (iso 14443-3, chap. 6.4.4 "fixed unique number or random number"). purpose only, select 1 of several cards in field of reader. therefore description of uid in anticollision chapter.

getting serial number of card surely solution, since allows card tracking (i not know, is, present 10 minutes ago already) in privacy-aware context allowed after kind of authentication (and possibly establishing secure channel, eavesdroppers don't benefit). ideas, how handle this, take @ icao specifications under bac or eac. not expect find privacy-aware solution card without being able place specific information onto it.


Comments

Post a Comment

Popular posts from this blog

angularjs - ADAL JS Angular- WebAPI add a new role claim to the token -

i have created angular spa webapi backend using adal js authentication.as there no roles in ad, need manually add role claims in order give users access different api controllers. the roles stored in database. expecting inject claim through call webapi after authentication ad. webapi code might this. identity.addclaim(new claim("role", "user")); var ticket = new authenticationticket(identity, props); var accesstoken = startup.oauthbeareroptions.accesstokenformat.protect(ticket); is possible replace adal idtoken new token? is viable solution or there other better way handle this? as initial token generated azuread, possible edit token add new claim? appreciated. graph api supporting group claims. see here: http://justazure.com/azure-active-directory-part-4-group-claims/ if @ examples on page, users assigned groups , app can check group in claims. in current version of portal, need app manifest , modify it.
Read more

php - CakePHP HttpSockets send array of paramms -

i problem when make request (i can request). $link = 'http://uri/path/?param1=1&sid=2&sid=3&sid=4' $http = $httpsocket = new httpsocket(); $res = $httpsocket->get($link); if check request pr($http); i see : [line] => /url/path/?param1=1&sid%5b0%5d=2&sid%5b1%5d=3&sid%5b2%5d=4 http/1.1 and i'm getting empty response because server doesn't know parameters sid%5b0%5d=2 when try send parameters array : $data = array('param1' => '1', 'sid' => array('2','3', '4')); i see same changes %5b0%5d - additional indexes. how fix it? unfortunately , can not change server side, if send request in browser, i'll normal response in json format. when make request, can parameters this: $param1 = $_get['param1']; $sid= $_get['sid']; tip: use diferente names parameters. have multiples sid. use sid1, sid2, sid3... update: can parameters this:
Read more

node.js - Using Node without global install -

i'm working on few node & electron (atom shell) projects , i'm curious how them work without user having install node globally. i've seen few applications including node directory in project contains node.exe binary. how go setting node project use binary? edit: thought should add, i've searched everywhere answer this, unrelated results.
Read more