FreeCalypso > hg > fc-pcsc-tools
annotate doc/GrcardSIM2-security-model @ 221:e3059d58ec93
fc-simtool grcard2-set-ki command implemented
author | Mychaela Falconia <falcon@freecalypso.org> |
---|---|
date | Tue, 09 Mar 2021 02:23:00 +0000 |
parents | 810ea92d9f47 |
children |
rev | line source |
---|---|
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
1 GrcardSIM2 cards (previously sold as sysmoSIM-GR2 and now being reintroduced as |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
2 FCSIM1) have two different ADM access levels, each guarded by a separate secret |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
3 code. These two ADM access levels are referred to as ADM and SUPER ADM in the |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
4 Osmocom wiki page for GrcardSIM2, but they can also be called ADM5 and ADM11, |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
5 as the access level numbers appear in the actual APDUs. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
6 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
7 If you successfully authenticate with ADM5 secret code, you gain the following |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
8 abilities: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
9 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
10 * You can change the ADM5 secret code itself; |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
11 * You can reset PIN1, PIN2, PUK1 and PUK2 to new codes without having to know |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
12 any previous ones. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
13 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
14 If you successfully authenticate with ADM11 secret code, you gain the following |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
15 abilities: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
16 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
17 * You can change the ADM11 secret code itself; |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
18 * You can reset PIN1, PIN2, PUK1, PUK2 and ADM5 to new codes without having to |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
19 know any previous ones. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
20 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
21 Most admin-write-only files are writable after either ADM5 or ADM11 |
195
810ea92d9f47
doc/GrcardSIM2-security-model: grammar fix
Mychaela Falconia <falcon@freecalypso.org>
parents:
192
diff
changeset
|
22 authentication, but some files (particularly EF.WEKI that holds Ki) can only be |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
23 read and written with ADM11. More precisely, if a given access condition |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
24 (returned in response to SELECT) is listed as ADM11, then you need to |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
25 authenticate with ADM11, but if it is listed as ADM5, then either ADM5 or ADM11 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
26 is acceptable. Because of this permissive design whereby ADM11 alone is |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
27 sufficient, one can typically ignore ADM5 altogether for programming purposes. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
28 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
29 Both ADM5 and ADM11 can be set to any arbitrary string of 8 bytes, i.e., each |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
30 is effectively a 64-bit key. However, it is common for users to treat ADM5 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
31 and/or ADM11 as being a string of 8 ASCII-encoded decimal digits like standard |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
32 PUK1/PUK2 - the initial default ADM11 secret code from Grcard factory is set to |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
33 64-bit hex string 3838383838383838, which corresponds to PIN/PUK-style decimal |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
34 88888888. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
35 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
36 fc-simtool provides commands to set and verify ADM5 and ADM11 secret codes in |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
37 either full hex or ASCII-encoded decimal representation; the former allows any |
191
7c24ae2ca648
doc/GrcardSIM2-security-model: typo fix
Mychaela Falconia <falcon@freecalypso.org>
parents:
190
diff
changeset
|
38 arbitrary 64-bit key to be entered, whereas the latter is restricted to those |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
39 64-bit keys which correspond to 8 ASCII-encoded decimal digits. The commands |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
40 are: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
41 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
42 verify-ext 5 XXXXXXXX # authenticate as ADM5, decimal format |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
43 verify-hex 5 xxxxxxxxxxxxxxxx # authenticate as ADM5, arbitrary hex format |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
44 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
45 verify-ext 11 XXXXXXXX # authenticate as ADM11, decimal format |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
46 verify-hex 11 xxxxxxxxxxxxxxxx # authenticate as ADM11, arbitrary hex format |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
47 |
190
f756bafde7a9
doc/GrcardSIM2-security-model: new grcard2-set-adm5 command
Mychaela Falconia <falcon@freecalypso.org>
parents:
186
diff
changeset
|
48 grcard2-set-adm5 XXXXXXXX # set new ADM5, decimal format |
f756bafde7a9
doc/GrcardSIM2-security-model: new grcard2-set-adm5 command
Mychaela Falconia <falcon@freecalypso.org>
parents:
186
diff
changeset
|
49 grcard2-set-adm5-hex xxxxxxxxxxxxxxxx # set new ADM5, arbitrary hex format |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
50 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
51 grcard2-set-super XXXXXXXX # set new ADM11, decimal format |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
52 grcard2-set-super-hex xxxxxxxxxxxxxxxx # set new ADM11, arbitrary hex format |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
53 |
192
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
54 ADM11 MF quirk |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
55 ============== |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
56 |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
57 The operation of authenticating with ADM11 (verify-ext 11 or verify-hex 11) is |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
58 only allowed when the currently selected directory is MF - either as the very |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
59 first command in an fc-simtool session, or after an explicit 'select MF'. If |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
60 the current directory is DF_GSM or DF_TELECOM, the command to authenticate with |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
61 ADM11 (VERIFY CHV with P2=0x0B) fails with SW of 0x9802. |
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
62 |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
63 Setting PIN1/PIN2/PUK1/PUK2 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
64 =========================== |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
65 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
66 The following commands reset standard PIN and PUK secret codes after |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
67 authenticating with either ADM5 or ADM11: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
68 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
69 grcard2-set-pin1 XXXX |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
70 grcard2-set-pin2 XXXX |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
71 grcard2-set-puk1 XXXXXXXX |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
72 grcard2-set-puk2 XXXXXXXX |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
73 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
74 These 4 commands take decimal string arguments and send them to the card in |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
75 ASCII encoding per standard SIM spec definition of PIN1/PIN2/PUK1/PUK2. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
76 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
77 The underlying command APDUs sent by fc-simtool grcard2-set-* commands are |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
78 proprietary to Grcard. If you craft the right APDUs manually in hex (which our |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
79 low-level apdu command allows), you can set PIN1/PIN2/PUK1/PUK2 to arbitrary |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
80 64-bit hex strings which do not correspond to ASCII-encoded decimal - however, |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
81 doing so would produce a SIM that violates the public interface definition for |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
82 standard PIN1/PIN2/PUK1/PUK2, hence we do not provide such ability in our |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
83 high-level grcard2-set-* command set. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
84 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
85 FCSIM1 default PINs |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
86 =================== |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
87 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
88 The initial default ADM11 secret code from Grcard factory is decimal 88888888, |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
89 meaning that you need to authenticate as follows: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
90 |
192
edaccdbac95b
doc/GrcardSIM2-security-model: document ADM11 MF quirk
Mychaela Falconia <falcon@freecalypso.org>
parents:
191
diff
changeset
|
91 select MF |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
92 verify-ext 11 88888888 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
93 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
94 If your card is unprogrammed (if you haven't programmed it yourself with |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
95 fc-simtool), all other secret codes should be regarded as unknown - you need to |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
96 reset them yourself in your own card programming or provisioning operation. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
97 Our fcsim1-default-pins command script sets the following FCSIM1 official |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
98 defaults: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
99 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
100 grcard2-set-pin1 1234 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
101 grcard2-set-pin2 6666 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
102 grcard2-set-puk1 00099933 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
103 grcard2-set-puk2 00099944 |
190
f756bafde7a9
doc/GrcardSIM2-security-model: new grcard2-set-adm5 command
Mychaela Falconia <falcon@freecalypso.org>
parents:
186
diff
changeset
|
104 grcard2-set-adm5 55501234 |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
105 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
106 For as long as you keep the ADM11 secret code at its default of 88888888, there |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
107 is no PIN security - even if you set PIN1/PIN2/PUK1/PUK2 to your own secrets, |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
108 anyone can authenticate with the unchanged default ADM11 and then freely reset |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
109 all lower PINs. However, in the Mother's opinion there is very little need for |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
110 PIN security in actual operational usage in this day and age - almost no one |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
111 enables their PIN1, making it moot, and no one ever uses SIM "parental control" |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
112 features controlled by PIN2. In the present circumstances, the only real use |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
113 for knowing SIM PINs is to exercise and test phone firmware code paths dealing |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
114 with these PINs - and for this purpose having known fixed "secret" codes is |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
115 very convenient. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
116 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
117 However, if someone does desire real PIN security, it *is* possible on FCSIM1 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
118 cards - but then you have to not only set PIN1/PIN2/PUK1/PUK2 to your own |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
119 secrets, but also set both ADM5 and ADM11 to your own truly-secret codes as |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
120 well. But be careful - if you set your own ADM11 secret code and then forget |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
121 it, there is no recovery! Maintaining a database of per-card secret codes is a |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
122 development job which the Mother gladly leaves to other programmers, to be |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
123 undertaken if and when someone actually needs such added complexity. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
124 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
125 How to (not) brick your card |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
126 ============================ |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
127 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
128 The following actions will brick your card beyond recovery: |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
129 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
130 * If you enter ADM11 incorrectly 3 times in a row, ADM11 access is lost with no |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
131 possibility of recovery - this bricking mode is generally expected, there can |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
132 be no other way. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
133 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
134 * If you enter ADM5 incorrectly 3 times in a row, you unrecoverably lose the |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
135 ability to use ADM5 ever again - even if you successfully authenticate with |
190
f756bafde7a9
doc/GrcardSIM2-security-model: new grcard2-set-adm5 command
Mychaela Falconia <falcon@freecalypso.org>
parents:
186
diff
changeset
|
136 ADM11 and reset ADM5 with grcard2-set-adm5, the attempt counter does not get |
186
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
137 reset, and ADM5 remains blocked. |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
138 |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
139 * If you enter standard PUK1 or PUK2 incorrectly 10 times in a row, it is |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
140 similarly blocked beyond recovery, with no help from ADM5 or ADM11 - |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
141 grcard2-set-puk[12] commands reset the secret code, but not the associated |
c925f7808285
doc/GrcardSIM2-security-model article written
Mychaela Falconia <falcon@freecalypso.org>
parents:
diff
changeset
|
142 attempt counter. |