Extract Kc from Phone?
Mad
mad at auth.se
Thu Feb 17 15:31:34 CET 2011
On Wed, 16 Feb 2011 21:19:44 +0000 (GMT), MATTHEW EVANS wrote:
> Does anyone have any suggestions with regard to models of phone in
> which it is
> easy to view the current Kc? I have a Motorola C115, Nokia 3310/6630,
> Android
> Desire, iPhone etc. I can get every everything from the in built
> field test
> modes, however I really want to get the current session key so that I
> can
> verify/analyse my captured bursts.
>
If you have a phone with access to the AT command interface via cable
or
bluetooth you can use the +crsm command to read the kc file from the
sim
while the phone is operating.
Try at+crsm=? to check if your phone supports this command, if it
returns an
error, it doesn't.
at+crsm=176,28448,0,0,8
reads the Kc file from sim and returns a 9 octet hex string of which
the first
8 ones are the actual Kc.
I'm not sure which of your phones supports this, c115 and 3310 surely
don't,
iphone maybe depending on version, not sure, just test your phone zoo.
BTW, most old Siemens phones support this.
Regards,
Mad
More information about the baseband-devel
mailing list