Eric Butler's Android app FareBot uses the RFID reader built into the Nexus S Android phone to sniff RFID-enabled transit cards, some of which carry unencrypted ride histories, making them vulnerable to reading by anyone who brushes past you (Butler dryly notes, "Transit agencies across the board should do a better job explaining to riders how the cards work and what the privacy implications are."). Butler's app is just the first step in building software-based transit-card cloners/replacements that allow you to download transit credit to your mobile phone and swipe your phone to pay for fares. Presumably, putting the RFID emitter into a programmable PC will allow for a higher degree of privacy and security for card-users.
Because many of these systems are new, there is often a limited number of places to buy a card and/or add value, especially outside the city center. This presents a great opportunity for NFC-equipped smart phones which, in addition to being able to read cards, also have the capability to emulate a card. No matter how far to the edge of an agency's service area you are, it should be possible to download the ORCA or Clipper app and hop the next bus, streetcar, train, or boat. Apps could link with existing payment infrastructure such as Google Checkout for quick payments without additional setup, and for international travelers looking to get around, apps could support multiple languages and automatic currency conversion.
FareBot: Read data from public transit cards with your NFC-equipped Android phone
Typically there is a tradeoff between a transit fare system's level of security and the cost of a card, as the cards with better security are more expensive. Smart phones on the other hand already have the capability to do real cryptography, so there's potential to build a much more secure system while not requiring substantial changes to existing reader infrastructure.
FareBot itself may not appear very useful, but I hope it will seen as a demonstration of what's possible for the future as NFC becomes pervasive. It can be downloaded now from the Android Market, just keep in mind that the current version is not at all complete. If you're a developer and interested in exploring what's stored on cards around the world, I hope you'll check out the source code and contribute. For everyone else - never worry about if you have enough bus fare again!
(via O'Reilly Radar
I suffer from mild RSI: a warning to stop, but one that goes away when I do stop. The trigger is using a mouse for extended periods. The alternatives for general everyday computer use aren’t great for my work habits, which center on precise pointing and clicking, so I’m in the bad habit of mousing […]
I got one of those bug-zapping LED lightbulbs, in hopes of murdering the flies drifting into my office during the increasingly warm and muggy Pennsylvania summer. I got mine from Home Depot, but the bulbs at Lowes, Wal-Mart and Amazon are all obviously identical. There are two lights in each bulb: an ultraviolet one inside […]
Did you buy a useless $400 “smart” juicer and now feel the need to accessorize it with more extrusions from the Internet of Shit timeline? Then The Leaf from Teaforia is just the thing: it’s a tea-maker that uses DRM-locked tea-pods to brew tea in your kitchen so you don’t have to endure the hassle […]
If you struggle to get a good night’s rest, consider replacing your pillows before dropping hundreds on a new mattress. You can give your tired neck a break with a 2-pack of memory foam pillows, available now in the Boing Boing Store.Each of these pillows is stuffed with cooling polyurethane foam that molds to your […]
Although flagship smartphones are unlikely to adopt heavy-duty outer casing anytime soon, you can always prepare your device for the outdoors with a beefy case and and an external battery like this Nomad Tile Trackable PowerPack, available in the Boing Boing Store for $119.95.The Nomad Tile can fully recharge an iPhone 7 over three times […]
Even though credit cards now feature an EMV chip for securing transactions, they still have to include the magnetic strip for compatibility with older point of sale systems. Because of this, there’s no way for the chip’s new security capabilities to protect against card skimmers in the wild.How do you protect yourself from legacy-technology-induced fraud? […]