1. Gabatarwa
Haɗa ikon aiki maras lamba cikin katunan biya kamar "Bankomatkarte" na Austriya ya haifar da manyan matsalolin tsaro da sirri. Yayin da kafofin watsa labarai sukan wuce gona da iri a kan waɗannan haɗurran, mu'amalar maras lamba hakika ta gabatar da sabbin hanyoyin kai hari waɗanda ke buƙatar bincike mai kyau. Wannan rahoto yana ba da cikakken bincike na ginin smartcard, ƙirar antenna, da kuma ba da shawarwarin sabbin mafita don haɓaka ikon mai amfani akan aikin maras lamba.
2. Rarrabawar Smartcards
2.1 Ka'idar Gina Katin Smartcard na Filastik
Daidaitattun katunan smartcard na filastik sun ƙunshi yadudduka da yawa waɗanda aka haɗa su tare, galibi sun haɗa da kayan PVC, PET, ko polycarbonate. An saka antenna tsakanin waɗannan yadudduka, an haɗa shi da na'urar guntu ta hanyar ingantattun hanyoyin haɗin injina da na lantarki.
2.2 Narkar da Katin MIFARE Classic
Ta amfani da acetone ko wasu kaushi na sinadarai, za a iya narkar da yaduddukan filastik don fallasa tsarin antenna da aka saka. Tsarin yana bayyana antenna na igiyar jan ƙarfe wanda yake auna 80-120μm a diamita, an nada shi cikin tsari mai kusurwa huɗu a kewayen katin.
2.3 Cire Guntun daga cikin Smartcard Mai Mu'amala Biyu
Katunan mai mu'amala biyu suna buƙatar cirewa a hankali don adana duka aikin lamba da maras lamba. Ana amfani da hanyoyin zafi da na injiniya don raba yadudduka ba tare da lalata na'urar guntu mai laushi da haɗin antenna ba.
3. Binciken Antennas na Smartcard Mai Mu'amala Biyu
3.1 Bincike Maras Lalacewa
Hotunan X-ray da dabarun bincike na RF suna ba da damar bincika tsarin antenna ba tare da lalata katin a jiki ba. Waɗannan hanyoyin suna bayyana yanayin lissafi na antenna, wuraren haɗi, da bambance-bambancen masana'antu.
3.2 Binciken Antennas na Kati
3.2.1 Tsarin Masana'antu
Ana yin antennas ta amfani da hanyoyin zane, saka waya, ko fasahar bugawa. Kowane hanya tana shafar halayen lantarki na antenna da karko daban-daban.
3.2.2 Lissafin Lissafi na Antenna
Ƙirar antenna madauwari mai kusurwa huɗu tana inganta mitar aiki na 13.56 MHz yayin da take haɓaka yanki a cikin girman kati. Ƙimar inductance na yau da kullun ya kasance daga 1-4μH.
3.2.3 Mita Mai Sauƙi
Ana ƙayyade mitar mai sauƙi ta hanyar inductance na antenna da capacitor daidaitawa bisa ga dabarar: $f_r = \frac{1}{2\pi\sqrt{LC}}$ inda L shine inductance kuma C shine ƙarfin aiki.
4. Kashe Mu'amalar Maras Lamba na Katunan Mai Mu'amala Biyu
4.1 Yanka Wayar Antenna
Katsewar madauwari na antenna a jiki yana kashe aikin maras lamba yayin da ake adana ayyukan tushen lamba. Wuraren yanka na dabarun suna rage lalacewa ga ingancin tsarin kati.
4.2 Sabbin Ra'ayoyin Antenna da Sakamakonsu na Yiwuwa
Ingantattun dabarun masana'antu da suka haɗa da antennas na yadudduka da yawa da hanyoyin haɗi masu yawa suna gabatar da ƙalubale ga hanyoyin kashewa na al'ada, suna buƙatar mafi ingantaccen hanya.
5. Smartcards tare da Mu'amalar Maras Lamba Mai Sauyawa
5.1 Ra'ayi 1: Antenna da aka Yanke
5.1.1 MIFARE Classic
Aiwatar da maɓalli na injiniya waɗanda ke haɗa ko cire sassan antenna a jiki, suna ba masu amfani damar sarrafa aikin maras lamba.
5.1.2 Smartcard Mai Sarrafa Mu'amala Biyu
Mafi rikitarwar aiwatarwa yana buƙatar haɗin kai tsakanin mu'amalolin lamba da maras lamba yayin da ake kiyaye ka'idojin tsaro.
5.2 Ra'ayi 2: Antenna da aka Gajarta
Yin amfani da maɓalli don ƙirƙirar gajeriyar kewaya a kan tashoshin antenna, yana rage daidaitawar da'irar mai sauƙi kuma yana hana girbin makamashi da sadarwa.
5.3 Ra'ayi 3: Sauya Mu'amalar Maras Lamba akan Guntu
5.3.1 Yin Amfani da Katunan Nuni
Haɗa kai tare da nuni na kati don ba da ra'ayi na gani akan matsayin mu'amala da sarrafa mai amfani.
5.3.2 Yin Amfani da Na'urorin Wayoyi masu ikon NFC
Yin amfani da aikace-aikacen wayar hannu don sarrafa saitunan mu'amalar smartcard ta hanyoyin sadarwa masu tsaro.
5.3.3 Abubuwan Da Ake Bukata na Tsaro don Applet na Gudanar da Mu'amala
Muhimman buƙatun tsaro da suka haɗa da tantancewa, izini, da kariya daga sarrafa mu'amala mara izini.
5.3.4 Guntun Smartcard tare da Shigarwar Sauya Musamman
Aiwatar da matakin kayan aiki ta amfani da fil musamman don sarrafa mu'amala, yana ba da mafi girman tsaro da aminci.
6. Taƙaitawa
Binciken ya nuna cewa katunan smartcard na yau da kullun maras lamba ba su da isassun hanyoyin sarrafa mai amfani. Ra'ayoyin mu'amala mai sauyawa da aka ba da shawara suna ba da mafita masu amfani don haɓaka sirri da tsaro yayin da ake kiyaye dacewa ga halaltattun amfani.
7. Bincike na Asali
Gaskiya Bayyananne: Wannan rahoton ya fallasa a fili gazawar tsaro na asali a cikin ƙirar smartcard maras lamba na yau - rashin ikon mai amfani akan bayanansa. Wannan ba kawai matsala ta fasaha ba ce, har ma babban kuskure ne a falsafar ƙira na samfur.
Sarkar Hankali: Daga binciken tsarin jiki na kati → ka'idar ƙirar antenna → hanyoyin hana mu'amala → tsare-tsaren sarrafa mai amfani, duk hanyar fasaha a fili tana nuna cewa: katunan biya na yau da kullun maras lamba suna da daidaito mai muni na tsaro da sauƙi, suna sadaukar da haƙƙoƙin sirri na asali na mai amfani. Kamar yadda ma'aunin EMVCo ya jaddada, tsaron biya maras lamba ya kamata ya dogara ne akan kariya mai yadudduka, ba kawai dogaro da iyakar ciniki ba.
Abubuwan Haske da Ragewa: Abin da ya fi haskaka rahoton shi ne tsarin hanyoyin bincike na juyawa da ƙirar mafita masu amfani, musamman shirin "yanka antenna" wanda ko da yake mai sauƙi amma yana da tasiri, yana tunatar da ka'idar tsaro ta Kerkhoff - tsaron tsarin bai kamata ya dogara da sirrin ƙira ba. Abin ragewa shi ne, waɗannan mafita suna buƙatar mai amfani ya gyara katin da kansa, yana nuna gazawar masana'antu a ba da ayyukan sarrafa tsaro na asali. Idan aka kwatanta da binciken da ke kan Google Scholar, an tattauna irin wannan tsarin haɓaka tsaro na ɓangaren mai amfani a cikin masana kimiyya shekaru da yawa, amma saukowa masana'antu yana jinkiri.
Wayar da Kai don Aiki: Dole ne cibiyoyin kuɗi da masu sayar da katuna su sake duba tsarin tsaro na katunan maras lamba, su yi amfani da ra'ayin tantancewar mai amfani na ƙungiyar FIDO, su mayar da ikon gaskiya ga mai amfani. Dole ne hukumomin sarrafawa su yi la'akari da tilasta katunan biya maras lamba su samar da ayyukan kashewa na jiki ko na hankali, kamar yadda PCI DSS ke buƙata ga tsaron biya na asali.
Daga mahangar ci gaban fasaha, wannan rahoton na 2015 ya hango yawancin ƙalubalen sirri da ake fuskanta a yau. Yayin da ma'aunin ISO/IEC 14443 ya yaɗu kuma fasahar NFC ta balaga, matsalar rashin sarrafa mai amfani ta ƙara zama ta musamman. Dole ne ƙirar smartcard na gaba ta yi amfani da ka'idojin tsarin sifili na amincewa, ta aiwatar da sarrafa shiga mai laushi, maimakon yanayin tsaro na "duka ko babu" na yanzu.
8. Cikakkun Bayanai na Fasaha
Ƙirar antenna tana bin ka'idojin tsarin RFID waɗanda ke aiki a 13.56 MHz. Ana ƙididdige ma'auni Q kamar haka: $Q = \frac{f_r}{\Delta f}$ inda $\Delta f$ shine faɗin band a maki -3dB. Antennas na smartcard na yau da kullun suna da ma'auni Q tsakanin 20-40 don daidaita kewarin karantawa da buƙatun bandwidth.
An ba da inductance na juna tsakanin mai karatu da antennas na kati kamar haka: $M = \frac{N_c N_r \mu_0 A}{2\pi d^3}$ inda $N_c$ da $N_r$ su ne juzu'in nada, $\mu_0$ shine permeability na sararin samaniya, A yanki ne, kuma d nisa ne.
9. Sakamakon Gwaji
Ma'aunin Aikin Antenna: Gwaji ya bayyana cewa antennas na katin biya na yau da kullun yawanci suna kai nisan karatu na 3-5 cm a cikin mafi kyawun yanayi. Bayan aiwatar da ƙirar antenna da aka yanke, ana iya kashe mu'amalar maras lamba da aminci tare da ƙaramin tasiri akan karko na kati.
Binciken Mita Mai Sauƙi: Ma'aunin dakin gwaje-gwaje ya nuna cewa katunan kasuwanci masu mu'amala biyu suna nuna mitoci masu sauƙi tsakanin 13.2-14.1 MHz, tare da bambance-bambance saboda la'akari da masana'antu da bambance-bambancen kayan.
Gwajin Amincin Sauya: Hanyoyin sauya injina sun jure sama da zagayawa 10,000 ba tare da gazawa ba, suna nuna karko mai amfani don amfani na yau da kullun.
10. Aiwatar da Code
Applet na Gudanar da Mu'amala Pseudocode:
class InterfaceManager extends Applet {
boolean contactlessEnabled = true;
void process(APDU apdu) {
if (apdu.getBuffer()[ISO7816.OFFSET_INS] == ENABLE_CLA) {
if (authenticateUser()) {
contactlessEnabled = true;
setInterfaceState();
}
} else if (apdu.getBuffer()[ISO7816.OFFSET_INS] == DISABLE_CLA) {
if (authenticateUser()) {
contactlessEnabled = false;
setInterfaceState();
}
}
}
void setInterfaceState() {
// Sarrafa mu'amala a matakin kayan aiki
if (contactlessEnabled) {
enableRFInterface();
} else {
disableRFInterface();
}
}
}11. Aikace-aikacen Gaba
Ra'ayoyin da aka haɓaka a cikin wannan binciken suna da fa'ida mai faɗi fiye da katunan biya. Ci gaban gaba na iya haɗawa da:
- Gudanar da Mu'amala Mai Ƙarfi: Katunan masu fahimtar yanayi waɗanda ke kunna/kashe mu'amala ta atomatik bisa ga wuri da kimanta haɗari
- Haɗa Bamba: Tabbatar da alamar yatsa ko bugun zuciya don sarrafa mu'amala
- Rajistan Shiga na Tushen Blockchain: Rubuce-rubucen da ba za a iya canzawa na canje-canjen yanayin mu'amala
- Tsaro mai Jurewa Quantum: Haɗa kai tare da ɓoyayyen sirri na bayan-quantum don tsaro na dogon lokaci
- Haɗa Na'urar IoT: Tsarin da za a iya faɗaɗawa don sarrafa mu'amaloli maras lamba da yawa a cikin na'urori masu haɗi
12. Nassoshi
- Roland, M., & Hölzl, M. (2015). Evaluation of Contactless Smartcard Antennas. Technical Report, Josef Ressel Center u'smile.
- EMVCo. (2020). EMV Contactless Specifications. EMVCo LLC.
- Hancke, G. P. (2008). Eavesdropping Attacks on High-Frequency RFID Tokens. Journal of Computer Security.
- ISO/IEC 14443. (2018). Identification cards - Contactless integrated circuit cards - Proximity cards.
- FIDO Alliance. (2021). FIDO Authentication Specifications. FIDO Alliance.
- PCI Security Standards Council. (2019). PCI DSS v3.2.1.
- NXP Semiconductors. (2020). MIFARE DESFire EV2 Feature Set. NXP Technical Documentation.