[Simsec] Simsec Digest, Vol 6, Issue 1

nyoike thuo nyoikethuo at gmail.com
Mon Mar 2 12:19:03 CET 2015


this is awesome, going through the code. if anything this is a superb
project, wouldnt mind contributing to it.

-- 



*Regards=================================Nyoike Thuo*
*Information Security Consultant**Cell: **+254 701 888 445*
*WebSite: http://0x7678.com <http://0x7678.com>*
*Blog: ** http://blog.0x7678.com <http://blog.0x7678.com>*

*--------------------------------------------------------------------------------------------------------------------------------*
*Disclaimer : *
*The information contained in this e-mail may be confidential, proprietary,
and / or legally privileged. It is intended only for the person or entity
to which it is addressed. If you are not the intended recipient, you are
not allowed to distribute, copy, review, retransmit, disseminate or use
this e-mail or any part of it in any form whatsoever for any purpose. If
you have received this e-mail in error, please immediately notify the
sender and delete the original message. Please be aware that the contents
of this e-mail may not be secure and should not be seen as forming a
legally binding contract unless otherwise stated. Thank you. *

On Mon, Mar 2, 2015 at 2:00 PM, <simsec-request at lists.srlabs.de> wrote:

> Send Simsec mailing list submissions to
>         simsec at lists.srlabs.de
>
> To subscribe or unsubscribe via the World Wide Web, visit
>         https://lists.srlabs.de/cgi-bin/mailman/listinfo/simsec
> or, via email, send a message with subject or body 'help' to
>         simsec-request at lists.srlabs.de
>
> You can reach the person managing the list at
>         simsec-owner at lists.srlabs.de
>
> When replying, please edit your Subject line so it is more specific
> than "Re: Contents of Simsec digest..."
>
>
> Today's Topics:
>
>    1. SIMtester on Android (partial code included) (Joey Hewitt)
>
>
> ----------------------------------------------------------------------
>
> Message: 1
> Date: Mon, 02 Mar 2015 01:25:04 -0700
> From: Joey Hewitt <joey at joeyhewitt.com>
> To: simsec at lists.srlabs.de
> Subject: [Simsec] SIMtester on Android (partial code included)
> Message-ID: <54F41E60.1080600 at joeyhewitt.com>
> Content-Type: text/plain; charset=utf-8
>
> Hello all,
>
> Android 5 has an iccTransmitApduBasicChannel() API, and some earlier
> builds of Android have similar patches (SEEK).  I wondered if SIMtester
> could be ported to this.  I've made a first attempt, code is here:
> https://github.com/scintill/SIMtester
>
> This is only tested on my CyanogenMod 11 Sony phone, and it doesn't work
> very well.  The SEEK APIs used should be available on several commercial
> Android builds, but it's hard to find reliable information about which.
>
> It's able to read the first few SIM files, but fails at MANUAREA, with
> SW = 6f00.  If I hack that out, it goes on to probe TARs, but the
> results don't match what I see on my PC with PCSC.  Looking at the logs
> from my Qualcomm RIL, I think what is happening is that only certain
> types of commands are allowed.  The error message also points to a QMI
> error code, which leads me to believe the baseband is denying access, so
> it's not something that could be trivially bypassed.
>
> I'm not sure if I can or will pursue this further, but here are some
> ideas for discussion or further investigation:
>
> - Logical channel access might have less restrictions.  I don't know
> enough about SIMs/smartcards to know if SIMtester can be rewritten to
> use a logical channel rather than the basic channel.
>
> - The [Remote SIM Access for Android app](http://www.android-rsap.com/)
> proxies SIM requests in some way over Bluetooth on supported phones.
> Maybe it has another route to SIM card access that is less restricted.
> I tried the trial app on my phone (which is supposed to be supported),
> but I could not get it to work.  It seemed to be a fairly superficial
> problem with the installation of a RIL wrapper library, rather than
> something deeper, so maybe there is some hope yet.
>
> - Arbitrary SIM requests may be possible with proprietary RIL requests,
> AT commands, and/or Linux device ioctl's etc.  Personally, that's not
> very interesting to me, though -- full Android support would be much
> more useful.
>
> Some more information is in the README.md of the linked code repository.
>  If you're interested but are having trouble compiling or running, I'm
> happy to help where I can, but maybe it should be off-list.
>
> Thanks for reading and cheers,
> Joey Hewitt
>
>
> ------------------------------
>
> _______________________________________________
> Simsec mailing list
> Simsec at lists.srlabs.de
> https://lists.srlabs.de/cgi-bin/mailman/listinfo/simsec
>
>
> End of Simsec Digest, Vol 6, Issue 1
> ************************************
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.srlabs.de/pipermail/simsec/attachments/20150302/768bf70e/attachment.html>


More information about the Simsec mailing list