(project from 27th. Nov. 2012)

Vision

Our Nexus Android devices allow to scan NFC tags. So why not write an app that is able to read our Legic smartcard that is used to enter the office buildings. In "Reply" mode this app sends the recorded/scanned information to the installed Legic card readers. So the main purpose of this app is to emulate a personalized smartcard!

Brainstorming

It is well known that Legic smartcards have high security risks. Find tons of information at Google.

• First we should investigate the Android NFC technology stack and find out what hardware is built in the Nexus devices, what are the supported RFC and standards.
• Next we should have a closer look at the Legic smartcard data encryption and the options we have to sniff information.
• Probably we have to implement directly in C to read the data from the smartcard as a "stream" without the need to decrypt it. IMHO the higher-level Android NFC stack filters and cuts data we need to record in our app
• In a first version the app should really do a deep copy of the smartcard, without trying to translate the information

Further readings

http://developer.android.com/guide/topics/connectivity/nfc/nfc.html
http://events.ccc.de/congress/2009/Fahrplan/events/3709.en.html
Slides with details about how to hack Legic (Company in Wetzikon) devices from the CCC
http://events.ccc.de/congress/2009/Fahrplan/attachments/1506_legic-slides.pdf
OpenPICC_Development RFID Emulator and Sniffing tool

http://blog.spiderlabs.com/2012/12/proxmark-3-now-with-100-more-android.html

Fork this project https://github.com/nadam/nfc-reader/