[Simsec] SIMtester error message when trying to test eplus SIM Cards

Haaser mail at haaser-it.com
Thu Feb 6 21:32:40 CET 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Lukas,

thanks for your tips.

My last post was based on an already deactivated SIM card, so I tried
the ATR with an active one and that worked.
Well, the rest of the error message stayed the same, though.

But with your second tip I was able to get SIMtester to work.

The test is still running at this moment, but it already found
weaknesses. :-(

How / in what way can one contact his / her mobile communications
provider to remove those insecurities?

Do you already have example cases of customers contacting mobile
communication providers because of SIM card insecurities?

Thanks again for making me able to test my SIM cards, though I'm not so
happy with the result. ;-)

Regards
Haaser

Am 28.01.2014 11:21, schrieb Lukas Kuzmiak:
> Hey Haaser,
>
> the card seems to be weird, even ATR returned
(E79F95801F478031E073362113574A330E10314100B4) doesn’t seem valid, you
can check it online [1].
>
> We haven’t seen SW 6060 anywhere, the only thing I can think of is
trying to skip Terminal Profile initialization, that isn’t an option in
the released jar, however, you can checkout the sources from git [2] and
comment out lines that call "AutoTerminalProfile.autoTerminalProfile()”.
You can use any editor + Java to do that, using NetBeans IDE will make
it easier in a way that there’s already NetBeans project files in the git.
>
> I’d like to help more but without a possibility to replicate the issue
it seems hardly possible.
> Feel free to post the results without Terminal Profile initialization
and we can perhaps go from there.
>
> Cheers!
> Lukas
>
> [1] - http://smartcard-atr.appspot.com
> [2] - git clone https://opensource.srlabs.de/git/SIMtester.git
>
> --
> Lukas Kuzmiak
> Security Research Labs
>
>
> On 24 Jan 2014, at 09:53, Haaser <mail at haaser-it.com
<mailto:mail at haaser-it.com>> wrote:
>
>>
>> Signed PGP part
>> Hi,
>> I'm getting the following error output when trying to test some eplus /
>> blau.de <http://blau.de> SIM cards.
>>
>> For the output with -d (debug) option, look at the end of this mail.
>>
>> I did not try with strace yet.
>>
>> Any hint for solving this would be appreciated.
>>
>> Thanks in advance.
>> Haaser
>>
>>
>> $ java -jar SIMTester.jar -vp <censored-pin> -tf OsmocomBB -gsmmap
>>
>> ########################################
>>   SIMTester v1.5, 2014-01-03
>>   Lukas Kuzmiak (lukas at srlabs.de <mailto:lukas at srlabs.de>)
>>   Security Research Labs, Berlin, 2013
>> ########################################
>>
>> Using OsmocomBB mobile as SIM card reader
>> Terminals: [de.srlabs.simlib.osmocardprovider.OsmoCardTerminal at 6fc21535]
>> Using terminal: OsmoCardTerminal
>> Card connected: de.srlabs.simlib.osmocardprovider.OsmoCard at 5d325877
>> Verifying PIN1/CHV1..
>>
>> ATR: E79F95801F478031E073362113574A330E10314100B4
>> Exception in thread "main" javax.smartcardio.CardException: There was a
>> problem while doing automatic Terminal Profile; Unidentifiable response
>> was: 6060
>>     at
>>
de.srlabs.simlib.AutoTerminalProfile.handleResponse(AutoTerminalProfile.java:45)
>>     at
>>
de.srlabs.simlib.AutoTerminalProfile.autoTerminalProfile(AutoTerminalProfile.java:31)
>>     at de.srlabs.simtester.Main.readBasicInfo(Main.java:146)
>>     at de.srlabs.simtester.Main.main(Main.java:133)
>>
>> Graceful shutdown initiated. Trying to close all open channels. Please
>> wait... !
>>
>>
>>
>> WITH DEBUG OPTION:
>>
>> $ java -jar SIMTester.jar -vp <censored-pin> -tf OsmocomBB -gsmmap
>>
>> ########################################
>>   SIMTester v1.5, 2014-01-03
>>   Lukas Kuzmiak (lukas at srlabs.de <mailto:lukas at srlabs.de>)
>>   Security Research Labs, Berlin, 2013
>> ########################################
>>
>> Using OsmocomBB mobile as SIM card reader
>> Terminals: [de.srlabs.simlib.osmocardprovider.OsmoCardTerminal at 6fc21535]
>> Using terminal: OsmoCardTerminal
>> Card connected: de.srlabs.simlib.osmocardprovider.OsmoCard at 5d325877
>> Verifying PIN1/CHV1..
>>
>> ATR: E79F95801F478031E073362113574A330E10314100B4
>> Exception in thread "main" javax.smartcardio.CardException: There was a
>> problem while doing automatic Terminal Profile; Unidentifiable response
>> was: 6060
>>     at
>>
de.srlabs.simlib.AutoTerminalProfile.handleResponse(AutoTerminalProfile.java:45)
>>     at
>>
de.srlabs.simlib.AutoTerminalProfile.autoTerminalProfile(AutoTerminalProfile.java:31)
>>     at de.srlabs.simtester.Main.readBasicInfo(Main.java:146)
>>     at de.srlabs.simtester.Main.main(Main.java:133)
>>
>> Graceful shutdown initiated. Trying to close all open channels. Please
>> wait... !
>> $ java -jar SIMTester.jar -vp <censored-pin>-d -tf OsmocomBB -gsmmap
>>
>> ########################################
>>   SIMTester v1.5, 2014-01-03
>>   Lukas Kuzmiak (lukas at srlabs.de <mailto:lukas at srlabs.de>)
>>   Security Research Labs, Berlin, 2013
>> ########################################
>>
>> Using OsmocomBB mobile as SIM card reader
>> Terminals: [de.srlabs.simlib.osmocardprovider.OsmoCardTerminal at 6fc21535]
>> Using terminal: OsmoCardTerminal
>> <000c> ../common/l1l2_interface.c:162 Sending: '18 00 00 00 '
>> <000c> ../common/l1ctl.c:717 SIM ATR (len=22) : e7 9f 95 80 1f 47 80 31
>> e0 73 36 21 13 57 4a 33 0e 10 31 41 00 b4
>> <000f> libosmosim.c:82 SIM ATR (len=22) : e7 9f 95 80 1f 47 80 31 e0 73
>> 36 21 13 57 4a 33 0e 10 31 41 00 b4
>> Card connected: de.srlabs.simlib.osmocardprovider.OsmoCard at 5d325877
>> Verifying PIN1/CHV1..
>>
>> [de.srlabs.simlib.Auth, verifyCHV] verifyCHV: Verifying PIN/CHV; offset
>> = 1; key/pin = <censored-pin>
>> <000f> libosmosim.c:219 sending APDU (class 0xffffffa0, ins 0x20)
>> <000c> ../common/l1l2_interface.c:162 Sending: '16 00 00 00 a0 20 00 01
>> 08 35 37 32 31 ff ff ff ff '
>> <000c> ../common/l1ctl.c:701 SIM 90 00
>> <000f> libosmosim.c:103 received APDU (len=2 sw1=0x90 sw2=0x00)
>> [de.srlabs.simlib.Auth, verifyCHV] verifyCHV: verification successful
>>
>> ATR: E79F95801F478031E073362113574A330E10314100B4
>>
>> [de.srlabs.simlib.AutoTerminalProfile, autoTerminalProfile] Starting
>> automatic Terminal Profile initialization
>>
>> [de.srlabs.simlib.AutoTerminalProfile, autoTerminalProfile] Sending
>> TERMINAL PROFILE APDU: A010000011FF9FFFFFFF0F1FFF7F0300002008200000
>>
>> <000f> libosmosim.c:219 sending APDU (class 0xffffffa0, ins 0x10)
>> <000c> ../common/l1l2_interface.c:162 Sending: '16 00 00 00 a0 10 00 00
>> 11 ff 9f ff ff ff 0f 1f ff 7f 03 00 00 20 08 20 00 00 '
>> <000c> ../common/l1ctl.c:701 SIM 60 60
>> <000f> libosmosim.c:103 received APDU (len=2 sw1=0x60 sw2=0x60)
>> Exception in thread "main" javax.smartcardio.CardException: There was a
>> problem while doing automatic Terminal Profile; Unidentifiable response
>> was: 6060
>>     at
>>
de.srlabs.simlib.AutoTerminalProfile.handleResponse(AutoTerminalProfile.java:45)
>>     at
>>
de.srlabs.simlib.AutoTerminalProfile.autoTerminalProfile(AutoTerminalProfile.java:31)
>>     at de.srlabs.simtester.Main.readBasicInfo(Main.java:146)
>>     at de.srlabs.simtester.Main.main(Main.java:133)
>>
>> Graceful shutdown initiated. Trying to close all open channels. Please
>> wait... !
>> <000c> ../common/l1l2_interface.c:162 Sending: '19 00 00 00 '
>>
>>
>> --
>> Haaser
>> Haaser-IT.com <http://Haaser-IT.com>
>> IT-Dienstleister
>> ------------------------------------
>> http://www.haaser-it.com
>> ------------------------------------
>> Unser Spezialgebiet:
>> Systemintegration
>>
>> Bitte verwenden Sie PGP/GPG Verschlüsselung bei Emails, um die
>> Privatsphäre zu schützen.
>>
>> Anleitungen hierzu finden Sie unter http://www.haaser-it.com
>>
>> Gerne helfen wir Ihnen beim Einrichten der Email-Verschlüsselung.
>>
>> -----BEGIN PGP PUBLIC KEY BLOCK-----
>> Version: GnuPG v1.4.11 (GNU/Linux)
>>
>> mQGiBEzifwURBAChZLl+aeYKp0U5m/zHdxtN5K7bDqIETCyvfHJeZupyMxxks7w+
>> 994WsKXa7tJHS9vvRLqnywH4bKgFUeKXilXkLAgBDg/lsuOPOyfLdVFha9gmyNsg
>> 9FaUdGw2hbDq3HwZpMu2+Mllh8fgVCnAgDXa4zMKz8h5j9L++hMXO3OoOwCg+tQS
>> dQNzlkxkk10B6mwUODdQVd0D/0qP0pNmssNmiIzPomZYC167uWn0cUuIxJp5T5lI
>> AF6keMZUJMAJqh7rm34aSH06lYXhbAy9xnDvOev7Te491paUmrmDrjKO0rIzSe1Z
>> quxPd41GPOhNm2e1gfe2fbJZ8aQwf3m8+LX/8aCEeK2dxYBQYWCLhDY0Tpufmr8Y
>> /zoDA/0QZKZNP9o0yf9KGTELWH2EQFkrlHyE5oBgbmJ5m02S85BZk4SFxYlMtuqF
>> pZOFV8gcDYLoyr4PBqDswLS+gVzPfIWXDoewT+v1LNfucUELWZQ3O8gdAPk0ncIb
>> Pq0JHi2qqnmLg5eTXHX2ET23QDvT39+ifgVai2cWpnfpIQGoabQiRGFuaWVsIEhh
>> YXNlciA8bWFpbEBoYWFzZXItaXQuY29tPohgBBMRAgAgBQJM4n8FAhsjBgsJCAcD
>> AgQVAggDBBYCAwECHgECF4AACgkQLZI0cYP+HdBQBACg6w5vM0Rvv3/Ruos7QSBu
>> ONUG0HsAn1xAyY//4MPuo+zANP+BFQQfutuVuQINBEzifwUQCACjprBs+YktuGyJ
>> l3zQT4hETdSeO6offvUCzrOjVs6lW84enXNed8Fp9Q/4Y5rThkLdTDkKwJpbQoiM
>> w/7Vseu2R8eY0fjrfNSAIOVZFnKAwP8PGvfBg94LHWVQMW1/CVuqf6mDp7Vn7xq8
>> AFrxwKoOzQdYXGxTViyk/N/LE0GQfIJQ5gw/vgblxMYFoETlQW6uuT2+t943bfRR
>> OA3M96sjMlm8NX2kirGpahU/J4EcEKHbtej1ABeKpBm3xwydQqngiO/QiJKZ8Yrg
>> P7v1lfwnxdTf/54n6xvCNrHE87DizdiF2FktXaf82gHR0ztOfq7qbUAcvdNCWa5+
>> GbvK8dD7AAMFB/4oTql8nS0n/eCmp6/104Hkw2ArmJMmnw0tnhJXiENJ4pdJZSCQ
>> 4rc+ZG8ubRXhJKIHjyYkkgW4/TQDgSwT/aUus241NEZwIpoRy2OVGAM03cWCUnuC
>> ZLXE8rPADKyaQ4dCQSM8IVc6in4LiA8fyALkC0kJ6CKr83bpFXkcgvtpqyUnqh2l
>> cFXt4FeITcwSinXx2dsalPMSgtOA2WuWt964bbEVce8kr7okpHE+/40Ouh/LRtmD
>> 0dPTMzesxVF+xYKVh5xtZpbksypVXeEvG4ZgeXiDVv3g3sOvBt540gvew9LSWjjB
>> u9LAew8k8bAn7o2Elm7cCeJd2Lz2yYvVaet+iEkEGBECAAkFAkzifwUCGwwACgkQ
>> LZI0cYP+HdBBvACePL7YSoBMIs3pvFs5VkZZIrP+NWwAnRtDwO2e3KQ6IlSXHfY5
>> LA02Bj0n
>> =D1h/
>> -----END PGP PUBLIC KEY BLOCK-----
>>
>>
>>
>> _______________________________________________
>> Simsec mailing list
>> Simsec at lists.srlabs.de <mailto:Simsec at lists.srlabs.de>
>> https://lists.srlabs.de/cgi-bin/mailman/listinfo/simsec
>


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iEYEARECAAYFAlLz8WcACgkQLZI0cYP+HdAq4wCfT3yZTZA+eQ5TVjq6YM5KmWd0
AaIAn1v9aO153MdZQa+Jj4U4cghSZOmh
=RWwT
-----END PGP SIGNATURE-----

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.srlabs.de/pipermail/simsec/attachments/20140206/7e1d86f5/attachment.html>


More information about the Simsec mailing list