NFC标签的认证工具 [英] NFC Tag as authentication tool

问题描述

我可以使用NFC标签的认证工具，例如，当标签被窃听，它会打开一个URL，连接到远程数据库，并检查是否是原来的标签，并返回true或false。

Can I use NFC tag as authentication tool, for example when the tag is tapped, it opens a url, connects to a remote database and checks if that is the original Tag and returns true or false.

信息和URL将被公开让任何人都可以点击标签，但如果有人将其内容复制到另一个标签，然后将其连接到它会返回false数据库。所以实际上这将是一个公共标签，但有一个独特的识别器无法被复制。希望这是有道理的，即时通讯新的NFC标签，但我觉得他们很兴奋。

The information and the url will be public so anyone can tap the tag, but if someone copy its content to another tag, then it connects to the database it will return false. So actually that would be a public tag but with an unique identificator that can't be copied. Hope it makes sense, im new to the NFC tags but i find them quite exciting.

推荐答案

这是NFC标签（由NFC论坛的标签操作规范中定义）是没有任何安全机制简单的内存。因此，你不能保护它不被读取并克隆到另一个标记*。

An NFC tag (as defined by the NFC Forum's Tag Operation specifications) is simple memory without any security mechanisms. Therefore, you cannot protect it from being read and cloned to another tag*.

*）作为corvairjo写道，标签通常具有包含（或多或少）唯一标识符只读部分。然而，相对于什么corvairjo状态，这并不能真正prevent克隆。对于大多数标签技术，你可以得到允许甚至是独一无二的标识符覆盖/自定义标签。即使当前还没有这样的标签，它是相当容易地创建一个卡模拟器，模拟包含原始标签的序列号（如硬件存在，例如ProxMark）。

*) As corvairjo wrote, tags typically have a read-only part that contains a (more or less) unique identifier. However, as opposed to what corvairjo states, this does not really prevent cloning. For most tag technologies, you can get tags that permit overwriting/customization of even that "unique" identifier. Even if no such tags exist yet, it is fairly easy to create a card emulator that emulates such a tag containing the original tag's serial number (such hardware exists, e.g. ProxMark).

除了纯粹的NFC标签，标签的一些厂商提供克隆保护标签。然而，在成本低段（如新NTAG系列的标志性特征）往往标签真的不提供克隆保护（NTAG签名只有prevents创建任意UID的标签，但没有prevent克隆包括静态的（！）签字）。不过，确实存在有可用克隆保护标签。

Beyond pure NFC tags, some tag manufacturers provide tags with cloning protection. However, in the low cost segment (e.g. the signature feature of the new NTAG series) tags often do not really provide cloning protection (NTAG signature only prevents creation of tags with arbitrary UIDs but does not prevent cloning including the static(!) signature). Still, tags with usable cloning protection do exist.

这篇关于NFC标签的认证工具的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！