Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Security implications of multiple tags in close proximity #548

Open
flaki opened this issue Mar 9, 2020 · 1 comment
Open

Security implications of multiple tags in close proximity #548

flaki opened this issue Mar 9, 2020 · 1 comment

Comments

@flaki
Copy link

flaki commented Mar 9, 2020

The Mozilla Standards Position discussion on Web NFC has raised the possibility of exploits based on multiple NFC tags in close proximity. Browsing the spec's threats section I couldn't see these scenarios being explored in depth but it might be worthwhile considering doing so.

One such scenario which could exploit close-proximity multiple tags I'd imagine would be when the attacker created concealed NFC tags (e.g. transparent stickers) applied over legitimate NFC devices, such as smart posters, in a way that would make these "tag-in-the-middle" malicious NFC tags hardly noticeable. Differentiating between the tags in this scenario (or, at a bare minimum, notifying the user of the presence of multiple tags) would be a desirable feature of user agent implementations.

According to my short chat with @zolkis, detecting and differentiating between multiple "concurrent" NFC reads should be generally possible using data exposed by the underlying NFC stack, but implementations need to be aware of this and in certain cases mitigations may need to be deployed.

My understanding is, that since we are talking about physics & radio technology (and due to how the NFC protocol is constructed) there is always some inherent "uncertainty" in such concurrent cases (as they are not truly concurrent, in most hardware implementations, and are exposed as separate sessions in the software stack).
@zolkis
Copy link
Contributor

zolkis commented Mar 9, 2020

Thanks! We will update the security section with this threat and mitigation.

Usually NFC readers can detect multiple tags, but have to create a separate communication session with each of them. However, the way it's exposed to application may depend on the HW/SW and tag tech. Some of the readers may be able to read multiple tags concurrently but then AFAIK they have to implement (low level) anti-collision.

Anyway, even if they appear as concurrent reads to the end user, they must be done in different sessions.

Therefore I expect that Web NFC implementations will get separate NDEF messages in the reading algorithm.

We can track the relevant experiences in this issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@zolkis @flaki