[Case Study] Access Card Cloning
Posted: August 22nd, 2018, 11:26 am
Article ID: GV4-18-06-21-al
Released Date: 06/21/2017
Applied to
GV-AS ID Cards
GV-AS ID Key Fobs
Issues
Hackers using MIFARE security flaws to sneak through access control systems has long been an unresolved issue. A customer reported that the mainstream card copiers can be exploited in minutes to clone any formatted access cards, including GV-AS ID Cards and GV-AS ID Key Fobs, due to the vulnerabilities inherent in MIFARE smart card chips.
Troubleshooting
To help minimize the threat of card cloning in your access control system, all cardholders must take necessary precautions to protect their cards from unauthorized access. If a card is lost or stolen, notify the issuing office immediately to deactivate the missing card. Moreover, multi-factor authentication adds a second layer of security by further validating the cardholder’s identity. When using a card together with another verification method, such as a password, fingerprint or facial recognition, the access will be denied despite presenting the forged card to the reader. Another best practice involves installing GV-IP cameras to record and monitor access events of card fraud occurring at doors.
For more information on GeoVision’s video surveillance and other end solutions to support identity management and personal authentication, please visit:
Released Date: 06/21/2017
Applied to
GV-AS ID Cards
GV-AS ID Key Fobs
Issues
Hackers using MIFARE security flaws to sneak through access control systems has long been an unresolved issue. A customer reported that the mainstream card copiers can be exploited in minutes to clone any formatted access cards, including GV-AS ID Cards and GV-AS ID Key Fobs, due to the vulnerabilities inherent in MIFARE smart card chips.
Troubleshooting
To help minimize the threat of card cloning in your access control system, all cardholders must take necessary precautions to protect their cards from unauthorized access. If a card is lost or stolen, notify the issuing office immediately to deactivate the missing card. Moreover, multi-factor authentication adds a second layer of security by further validating the cardholder’s identity. When using a card together with another verification method, such as a password, fingerprint or facial recognition, the access will be denied despite presenting the forged card to the reader. Another best practice involves installing GV-IP cameras to record and monitor access events of card fraud occurring at doors.
For more information on GeoVision’s video surveillance and other end solutions to support identity management and personal authentication, please visit:
- Products Models
GV-IP Cameras All
Face Detection Camera Readers GV-CR420, GV-CS1320
Fingerprint Readers GV-GF1921/1922, GV-GF1911/1912
Face Recognition Readers GV-FR2020
Face Recognition Camera GV-VD8700