...The Smart Card Detective: a hand-held EMV interceptor Omar S. Choudary University of Cambridge Computer Laboratory Darwin College June 2010 This dissertation is submitted for the degree of Master of Philosophy in Advanced Computer Science Declaration I Omar Salim Choudary of Darwin College, being a candidate for the M.Phil in Advanced Computer Science, hereby declare that this report and the work described in it are my own work, unaided except as may be specified below, and that the report does not contain material that has already been used to any substantial extent for a comparable purpose. The word count, including footnotes, bibliography and appendices is 14 978. Signed: Date: The Smart Card Detective: a hand-held EMV interceptor Omar Choudary Abstract Several vulnerabilities have been found in the EMV system (also known as Chip and PIN). Saar Drimer and Steven Murdoch have successfully implemented a relay attack against EMV using a fake terminal. Recently the same authors have found a method to successfully complete PIN transactions without actually entering the correct PIN. The press has published this vulnerability but they reported such scenario as being hard to execute in practice because it requires specialized and complex hardware. As proposed by Ross Anderson and Mike Bond in 2006, I decided to create a miniature man-in-the-middle device to defend smartcard users against relay attacks. As a result of my MPhil project work I created a hand-held...
Words: 10985 - Pages: 44
...4 ) Should Alpen Bank launch a credit card? W hy? And how does the credit card opportunity tocore business operations? C onsidering the economic and market conditions as explained in the case, Alpenshould launch a credit card. Economy is growing rapidly with increasing incomesand making upper middle and middle class a substantial part of the society.Moreover disposable income is also increasing dramatically. The country has10%households who have 24% of the wealth so they have sufficient income permonth. They are conscious about their social image and are less sensitive toprices.The middle class is also a potential market for the credit card. This class includesyoung professionals who make price driven decisions so the bank might think about lowering the interest rates for them. Todays middle class may becomeaffluent tomorrow.The credit and debit card market of Romania is also seen to grow at a good paceof 35% in 2006 and about 9.5 million cards were being used in the market.Romania has ATMs and point of sales terminals for card transactions too.On the other hand, there are some problems in the credit card market too.Firstly, majority of the cards being used by customers are debit cards whichmeans Alpen has to convince and make special efforts to make use credit cardstoo. People use cards generally for withdrawing cash rather than for buyingproducts or services so there is less revenue driven from transactions. Evenmerchants are still ignorant in accepting credit cards...
Words: 353 - Pages: 2
...b/ Summary of the Export Project Mulann Ingénérie is a company which deals with the digital security industry. Providing and designing tests machines devices for their clients. Those clients are the manufacturers of smart cards, laboratories or even state and governmental agencies which are willing to control the production, the quality and the efficiency of digital means. Mulann Ingénérie provides too means to control tickets made with chipset, magnetic stripes or wireless devices. Their focus is to offer and assure controls with a real quality and to offer maintenance services and technical assistance. So the company can propose the best and trustworthy experience for their customers. At this moment Mulann Ingénérie is looking forward to expend on the US market and maybe later, if the experiment is successful, to the Asian market. But the will to develop is not always enough. This is why we will discuss in our Export Diagnosis about what are the possibilities, the downsides and the benefits of such a decision and how it is possible for the company to evolve and enter the US market. The Mulann Ingénérie Company is part of the Sadahé group, which includes five others companies sharing skills in electrical, mechanical and software engineering. Indeed a company of four employees alone does not attract so much potential customers. This is why the Sadahé group gives to Mulann Ingénérie an opportunity to have a bigger impact on the market place as this group is composed of 60...
Words: 2425 - Pages: 10
...My name is Jason and I am contesting a violation that I received on the 8th of July. Starting June 23rd, I had to take classes at the University of California-Los Angeles in order to be reinstated back into the University of California-Santa Barbara. Every Tuesdays and Thursdays of each week, I would have to wake up early around 6 o’clock in the morning for a two hour train/bus ride in order to get to class on time, which began around 8:30am. Each day I had class, I would always purchase Metro day passes to my metro Tap Card because I would have to take around six trains/busses every day I had class. There’s no way I could’ve tried to sneak on every transportation metro service without paying. I usually paid with my debit card because it was much quicker than adding bills one by one. One of the machines credit card service, at the Allen Station, has never worked. The green light that signals its availability for use is damaged and it never accepted my credit card whenever I would swipe it, so I would always use the other machine next to it in order to add money onto my Tap Card. On July 8th, the machine that I would normally use refused to operate correctly. The screen wouldn’t respond as I kept on repeatedly pressing buttons. It was frozen. Keep in mind that I had an important quiz that Tuesday, so I was in a rush to get to class. There was absolutely nothing I could have possibly done, but pay my fare at the union station, and that’s what I was planning to do. It wasn’t my...
Words: 465 - Pages: 2
...1- Describe the security vulnerabilities exploited by the hackers. “The 21st century bank heist” was one of the biggest bank robberies that demonstrated by a group of hackers, and a global network of cyber criminals operating more than 26 countries stole 45 million by hacking into a database of prepaid debit cards. Hackers got into bank databases, and eliminated withdrawal limits on all available pre-paid debit cards and created access codes then loaded that data into a plastic card (an old hotel's key card or expired credit card) with a magnetic stripe to that particular card now ready to work as long as the card carried the account data and correct access codes. Prepared a network of operatives then blown out to rapidly withdraw money in multiple cities. The cells would take a cut of the money, then launder it through expensive purchases or ship it wholesale to the global ringleaders. It appears no individuals lost money. The thieves plundered funds held by the banks that back up prepaid credit cards, not individual or business accounts affected. The hackers sought out prepaid debit cards issued by two Middle Eastern banks whose databases afforded another point of lax security: RAK Bank (National Bank of RAS AL-KHAIMAH) in the United Arab Emirates and the Bank of Muscat in Oman. 2- What people, organizational, and technology factors contributed to these problems? People factors are on many levels of the company. First is the security team that is in charge of keeping the...
Words: 560 - Pages: 3
...1) H ow should Alpen Bank position its card? Alpen bank should position its credit card as a high end premium product as itsexisting customers belong to the affluent class and it would be easier to establishitself in this segment. Furthermore this class represents the top 10 % of population which has about 24% of wealth. They are less price sensitive andmore conscious of their image so positioning the card on high end would bebeneficial for the bank. This segment includes professionals who would like topurchase products and services through credit card considering it a statussymbol.Moreover, for countries like Romania, it is seen that credit cards are somewhat stickier as compared to the developed countries. This shows that if Alpenpositions its card as a high end product, it will gain a share of market whichwould stick to its card.The middle class also has a huge potential especially in terms of the size of market however they are more price-focused and would only welcome this newcredit card if the interest rates are low. They also have a monthly income whichsupports them to have a credit card. Based on the attitudes of customers in otheremerging economies it can be said that customers in middle-income class have alower actual utilization rate when compared with affluent class. 2 ) W hat is the cost of acquisition of customer? C ustomer acquisition cost is the cost associated with convincing a consumer tobuy your product or service, including research, marketing...
Words: 931 - Pages: 4
...Wallaby Financial 100 N. 5th Ave Tampa, FL 33612 March 15, 2013 Tommy Smith, President The Card Company 18 Blueside Parkway Manahatten Beach, CA. 90266 Dear Mr Smith: When making a purchase, choosing the correct card can be difficult, especially when it comes to earning points or getting cash back. Many cards have special rules that change monthly, be it triple points on gas one month, then double points on car rentals the next. For this reason, I would like you to consider our company, Wallaby Financial, to do the remembering for you and earn you maximum points and cash back. At Wallaby Financial, we are dedicated to earning our customers the most possible points and cash back with every purchase. We hold and store all the details of our customers credit cards, and with each use of the Wallaby card, assess the best card on our database and apply it to the purchase. Through years of hard work, we’ve grown Wallaby into the leading company in its field. Your company, The Card Company is at the top of the credit card industry with regard to maximizing customer experience. It would be an honour and privilege if you would permit both our companies to work together. Please spend some time going through our business plan and how it can benefit your future business and clientele. I can be reached at any of the contacts below. Sincerely, Nicholas Carter ncarter@email.com 123-456-7890 Executive Summary Chances are you’re not making the most of your rewards...
Words: 999 - Pages: 4
...Aluma Wallet Designer is the aluminum, lightweight, indestructible and totally trendy wallet where fashion meets function! Aluma Wallet Designer replaces your messy, outdated wallet and gets your contents organized in style. It is perfect for men and women and fits in any pocket or purse! Its ultra slim outer case is die-cast from aluminum alloy to protect your contents and its high tech exterior is impact resistant! You'll be amazed at how much it holds... Credit cards, debit cards, club cards and more! The easy touch latch opens with just one hand and allows for quick access plus it's compact in size! SpecificationsIt's possible for someone beside you to steal your credit card information with a wireless credit card scanner.Now with the Aluma Wallet, your personal information is safe and secure. You will also never have to worry about damaging your cards, ID and cash when you put them in the Aluma Wallet - it is virtually indestructible - the fact has been proven under very serious conditions. It will be with you for a very long time to come!With individual slots for everything, keep your credit cards on one side, your driver's license and health insurance cards in another. Keep your cash handy by inserting it in the center slot allowing to be easily accessible when you open the Aluma Wallet This amazing aluminum alloy wallet is as close to being indestructible as we have ever seen, so you know it will be with you for a long time to...
Words: 254 - Pages: 2
...Measuring the Cost of Cybercrime Ross Anderson 1 Chris Barton 2 Rainer B¨hme 3 o Richard Clayton 4 Michel J.G. van Eeten 5 Michael Levi 6 Tyler Moore 7 Stefan Savage 8 Abstract In this paper we present what we believe to be the first systematic study of the costs of cybercrime. It was prepared in response to a request from the UK Ministry of Defence following scepticism that previous studies had hyped the problem. For each of the main categories of cybercrime we set out what is and is not known of the direct costs, indirect costs and defence costs – both to the UK and to the world as a whole. We distinguish carefully between traditional crimes that are now ‘cyber’ because they are conducted online (such as tax and welfare fraud); transitional crimes whose modus operandi has changed substantially as a result of the move online (such as credit card fraud); new crimes that owe their existence to the Internet; and what we might call platform crimes such as the provision of botnets which facilitate other crimes rather than being used to extract money from victims directly. As far as direct costs are concerned, we find that traditional offences such as tax and welfare fraud cost the typical citizen in the low hundreds of pounds/Euros/dollars a year; transitional frauds cost a few pounds/Euros/dollars; while the new computer crimes cost in the tens of pence/cents. However, the indirect costs and defence costs are much higher for transitional and new crimes. For the former they may be...
Words: 16972 - Pages: 68
...ANSWERS TO CASES Chapter 1 DiGiorno Pizza: Introducing a Frozen Pizza to Compete with Carry-Out In conducting research for the launching of a new product it is imperative that the target population be identified. In this case, who are the people most likely to be interested in purchasing and consuming frozen pizzas in lieu of carry-out pizzas? How are these people to be identified for sampling (Chapter 7 refers to this group as the “frame”)? Should a test market city or area be used? Why or why not? What mode of survey such as telephone, mail, or personal interview should be used? When should these people be surveyed? Does time of day, day of the week, or season of the year make any difference? What types of measurements should be taken? Some possible measurements might include dollar amounts spent per week of pizza per family, number of pizzas purchased per month, percentage of family pizza consumption that is frozen pizza, and total amount spent per month on take out food. 1. One population that was identified was “pizza lovers”. These people may have been previously identified by market researchers based on number of pizzas purchased per month, use of coupons, or from previous surveys. Another population mentioned in the case was women ages 25 to 54. The advertisements shown on national TV were likely aimed at the general population because Kraft was attempting to achieve broader goals such as brand name recognition and a dissemination...
Words: 11203 - Pages: 45
...Project Management Institute A GUIDE TO THE PROJECT MANAGEMENT BODY OF KNOWLEDGE (PMBOK® Guide)—Fourth Edition 30, 0HPEHU &RS\ ² 1RW IRU 5HSURGXFWLRQ RU 'LVWULEXWLRQ An American National Standard ANSI/PMI 99-001-2008 ISBN: 978-1-933890-51-7 Published by: Project Management Institute, Inc. 14 Campus Boulevard Newtown Square, Pennsylvania 19073-3299 USA. Phone: +610-356-4600 Fax: +610-356-4647 E-mail: customercare@pmi.org Internet: www.pmi.org ©2008 Project Management Institute, Inc. All rights reserved. “PMI”, the PMI logo, “PMP”, the PMP logo, “PMBOK”, “PgMP”, “Project Management Journal”, “PM Network”, and the PMI Today logo are registered marks of Project Management Institute, Inc. The Quarter Globe Design is a trademark of the Project Management Institute, Inc. For a comprehensive list of PMI marks, contact the PMI Legal Department. PMI Publications welcomes corrections and comments on its books. Please feel free to send comments on typographical, formatting, or other errors. Simply make a copy of the relevant page of the book, mark the error, and send it to: Book Editor, PMI Publications, 14 Campus Boulevard, Newtown Square, PA 19073-3299 USA. To inquire about discounts for resale or educational purposes, please contact the PMI Book Service Center. PMI Book Service Center P.O. Box 932683, Atlanta, GA 31193-2683 USA Phone: 1-866-276-4764 (within the U.S. or Canada) or +1-770-280-4129 (globally) Fax: +1-770-280-4113 E-mail: book.orders@pmi.org Printed in the...
Words: 148336 - Pages: 594
...gva¨wgK evsjv mvwnZ¨ 1 cÖZz¨cKvi Ck¦iP›`ª we`¨vmvMi [†jLK cwiwPwZ : Ck¦iP›`ª we`¨vmvMi cwðge‡½i †gw`bxcyi †Rjvi exiwmsn MÖv‡g 26 †k †m‡Þ¤^i 1820 mv‡j Rb¥MÖnY K‡ib| wZwb KjKvZv ms¯‹…Z K‡j‡Ri QvÎ| cÖ_‡g ms¯‹Z I c‡i Bs‡iwR fvlvq cvwÊZ¨ AR©b … K‡i wZwb eû m¤§vb I L¨vwZ jvf K‡ib| Dwbk eQi eq‡m we‡kl cix¶vq mvdj¨ AR©b K‡i wZwb Ôwe`¨vmvMiÕ Dcvwa jvf K‡ib| e`vb¨Zvi Rb¨ RbmvaviY Zuv‡K Ô`qvi mvMiÕ AvL¨v †`q| GKvav‡i gnvcwÊZ, wk¶vwe`, mgvR ms¯‹viK I L¨vZbvgv †jLKiƒ‡c cÖwZôv jvf mvaviYZ Kg e¨w³i †¶‡ÎB N‡U| 1841 mv‡j wZwb †dvU© DBwjqvg K‡j‡Ri cÖavb cwÊZ wbhy³ nb| wZwb 1851 mv‡j ms¯‹…Z K‡j‡Ri Aa¨¶ c‡` DbœxZ nb| wZwbB cÖ_g Ôevsjv M‡`¨i Af¨š—ixY k„•Ljv Avwe®‹vi K‡ib Ges M`¨ fvlvq hwZ wPývw` h_vh_fv‡e cÖ‡qvM K‡ib| d‡j Zuvi M`¨ n‡q I‡V ˆkjxm¤úbœ| GRb¨ Zvu‡K ejv nq evsjv M‡`¨i RbK|Õ evsjv eY©mg~n myk„•Ljfv‡e mvwR‡q wkï‡`i evsjv eY©gvjvi cÖ_g mv_©K MÖš’ 1855 mv‡j †jLv Zuvi ÔeY© cwiPqÕ| G MÖš’ AvRI evsjv fvlv wk¶vi †¶‡Î w`Kwb‡`©kK| Ô†eZvj cÂweskwZÕ, ÔkKzš—jvÕ, ÔmxZvi ebevmÕ Ôwe`¨vmvMi PwiZÕ, Ôåvwš—wejvmÕ cÖf…wZ MÖš’ Zvui cÖavb iPbv| Ck¦iP›`ª we`¨vmvMi 1891 mv‡j g„Zz¨eiY K‡ib|] Avjx Be‡b AveŸvm bv‡g GK e¨w³ gvgyb bvgK Lwjdvi wcÖqcvÎ wQ‡jb| wZwb ewjqv wMqv‡Qb, Avwg GKw`b Aciv‡nè Lwjdvi wbK‡U ewmqv AvwQ Ggb mg‡q, n¯—c`e× GK e¨w³ Zuvnvi m¤§y‡L bxZ nB‡jb| Lwjdv Avgvi cÖwZ GB AvÁv Kwi‡jb, Zzwg G e¨w³‡K Avcb Avj‡q jBqv wMqv i“× Kwiqv ivwL‡e Ges Kj¨ Avgvi wbKU Dcw¯’Z Kwi‡e| Z`xq fve `k©‡b ¯úó cÖZxZ nBj, wZwb H e¨w³i Dci AZ¨š— µz× nBqv‡Qb| Avwg Zuvnv‡K Avcb Avj‡q Avwbqv AwZ mveav‡b i“× Kwiqv ivwLjvg...
Words: 129173 - Pages: 517
...[pic] Remerciement et Dédicace Introduction 2 PARTIE N°1 : PRESENTATION GENERALE DE LA BMCI 1) Le secteur bancaire…..................................04 2) La crise financière mondiale et ses effets sur les banque.............05 3) Historique de la BMCI 09 4) La fiche technique de la BMCI 14 5) Organigramme de la BMCI en septembre 2008 15 6) Organigramme de l'agence BMCI TIZNIT 16 7) L'organisation des tâches 16 8) Les principaux produits commercialisés par la BMCI 17 PARTIE N°2 : DESCRIPTION DES DIFFERENTS TRAVAUX EFFECTUES 1) Service Caisse 26 2) Service Remises des chèques et LCN 29 3) Service Back Office 29 4) Service Clientèle 30 5) Les travaux de fin de journée 31 6) La gestion des chéquiers et des cartes 31 7) Autres travaux effectués 32 Conclusion 33 Index et bibliothèque 34 Annexes [pic] Tout d'abord, je tiens à remercier toute personne qui m'aidée de prés ou de loin, à réaliser ce modeste travail. Mes remerciements s'adressent spécialement à Mr. ARAJ Hassan, Directeur de l'agence BMCI TIZNIT, d'avoir accepter ma demande de stage, et à son soutien qui a contribué au bon déroulement de mon stage. J'aime également remercier à cette occasion, le personnel de l'agence qui m'a éclairés tout au long de la période de stage, à nommer en particulier : Ä Ä Mr. El Houssine BENDAHMOU Ä Mr. Mohamed Faissal IMARIREN Ä Mr. Khalid ARBANI Ä Mr. Abdellah ELMERABT Ä Mr. Mohamed ESSABIR Et mes profonds remerciements à mes chers formateurs : Ä Mme. Wafaa...
Words: 9933 - Pages: 40
...Project Management Institute A Guide to the Project Management Body of Knowledge (PMBOK® Guide) – Fifth Edition Licensed To: Jorge Diego Fuentes Sanchez PMI MemberID: 2399412 This copy is a PMI Member benefit, not for distribution, sale, or reproduction. Library of Congress Cataloging-in-Publication Data A guide to the project management body of knowledge (PMBOK® guide). -- Fifth edition. pages cm Includes bibliographical references and index. ISBN 978-1-935589-67-9 (pbk. : alk. paper) 1. Project management. I. Project Management Institute. II. Title: PMBOK guide. HD69.P75G845 2013 658.4’04--dc23 2012046112 ISBN: 978-1-935589-67-9 Published by: Project Management Institute, Inc. 14 Campus Boulevard Newtown Square, Pennsylvania 19073-3299 USA Phone: +610-356-4600 Fax: +610-356-4647 Email: customercare@pmi.org Internet: www.PMI.org ©2013 Project Management Institute, Inc. All rights reserved. “PMI”, the PMI logo, “PMP”, the PMP logo, “PMBOK”, “PgMP”, “Project Management Journal”, “PM Network”, and the PMI Today logo are registered marks of Project Management Institute, Inc. The Quarter Globe Design is a trademark of the Project Management Institute, Inc. For a comprehensive list of PMI marks, contact the PMI Legal Department. PMI Publications welcomes corrections and comments on its books. Please feel free to send comments on typographical, formatting, or other errors. Simply make a copy of the relevant page of the book, mark the error, and...
Words: 162869 - Pages: 652
...Handbook of Management Accounting Research Volume 3 Edited by CHRISTOPHER S. CHAPMAN Imperial College London, UK ANTHONY G. HOPWOOD University of Oxford, UK MICHAEL D. SHIELDS Michigan State University, USA AMSTERDAM – BOSTON – HEIDELBERG – LONDON – NEW YORK – OXFORD PARIS – SAN DIEGO – SAN FRANCISCO – SINGAPORE – SYDNEY – TOKYO Elsevier The Boulevard, Langford Lane, Kidlington, Oxford OX5 1GB, UK First edition 2009 Copyright © 2009 Elsevier Ltd. All rights reserved No part of this publication may be reproduced, stored in a retrieval system or transmitted in any form or by any means electronic, mechanical, photocopying, recording or otherwise without the prior written permission of the publisher Permissions may be sought directly from Elsevier’s Science & Technology Rights Department in Oxford, UK: phone ( 44) (0) 1865 843830; fax ( 44) (0) 1865 853333; email: permissions@elsevier.com. Alternatively visit the Science and Technology Books website at www.elsevierdirect.com/rights for further information Notice No responsibility is assumed by the publisher for any injury and/or damage to persons or property as a matter of products liability, negligence or otherwise, or from any use or operation of any methods, products, instructions or ideas contained in the material herein. British Library Cataloguing in Publication Data A catalogue record for this book is available from the British Library Library of Congress Cataloging-in-Publication Data A catalog record for...
Words: 187223 - Pages: 749