The company I work in switched to a new building, and we have those stupid doors with RFID cards on them. I’d be damned if I’m going walk with that I’m-working-in-hightech-company-card dangling of my belt. I wonder if there is a way for me to use my phone for credentials. I tried searching for it, and all I could find is ways for me to use the phone in order to copy the info from one card to another.
So is it somehow possible?
Just put the card in your wallet and scan it like a metro pass card.
There may be phones that allow you to do this and there are also smart rings you may be able to use by cloning the card with a proxmark 3, a flipper 0 or other similar devices.
I see that my phone should support encoding NFC tags. I’ll order a cheep ring and see if it works. Thanks.
I’m still curious though, why cannot phones produce that signals on their own? Isn’t this what they do with payment apps?
True… I confused the term, but this makes my question even more relevant. Since I have to put the card on the reader, I guess that it is an NFC card, rather than RFID. Which means that I should be able to duplicate the signal with my phone. I think.
If you use a case for your phone, just put the card between the case and the phone
I am working on this for one of my customers. RFID, BLE and NFC are different technologies. If the company has a compatible reader, then they can purchase credentials for your smart phone. HID ands Schlage are the 2 large players in the market. There are other manufacturers, and some systems are already Bluetooth (BLE) only.
Some RFID cards can be cloned, but not all. Some readers push data to the cards, which are then pushed from the card to other readers.
I’ve looked into this before, and it really depends on the type of RFID they use. Older versions have been cracked, but newer ones can’t be copied over (easily or at all).
If your company is serious about security, you will not be able to put the content of the card on your phone. What newer, more secure versions of RFID do is receive a code from the reader system, replies to it internally, and then sends back the answer. Even if you try to copy this over, you will not be able to open the doors of your facility.
I think the first step should be to use one of these apps that can read RFID and see what protocol your card uses. If it’s an unsecure one (i.e., only pushes out a code and checks it in their database that it’s yours), you could probably try to copy it over. However, if it’s not, you could also just dissolve the card with some acetone and place the resulting wires in your phone’s case, near the bottom. Like that, it shouldn’t interfere with your phone’s NFC, as that one is usually next to the top area of your phone.
I’ll reply here also to @ratumoko@kbin.social - the building security is a joke. The company rents some offices in these share-space buildings. And there is no real security beyond that (OK, fine, also some cameras). I suspect that they use this system just to keep costumers happy, feeling like there is some security system in place. I’ll try the RFID ring and see if it works.
But my “real” question here is how come I didn’t find any app/instruction for making my phone itself an RFID keycard. As I type this I realize that this might be due to needing a specific frequency that the phone cannot produce(?)
That’s the technology they use: https://nfc-tools.github.io/resources/standards/iso14443A/