Payment card forensic analysis: From concepts to desktop and mobile analysis tools - Archive ouverte HAL Accéder directement au contenu
Article Dans Une Revue Digital Investigation Année : 2014

Payment card forensic analysis: From concepts to desktop and mobile analysis tools

Résumé

While one would not even consider them alike, payment cards are one of the most valuable and widely used embedded systems. Payment card systems are probably the most attacked and counterfeited. In fact, even though the use of smart cards have introduced high security capabilities, criminal activity has not been deterred and payment card fraud remains a lucrative activity. From low-tech (carding) to high-tech (man in the middle attack) fraud, all payment card based frauds require stealing or modifying card data and reusing it with a direct profit. Physical forms of fraud, such as Automated Teller Machine (ATM) withdrawals or in store payments, are mostly based on and associated with manipulated cards. Through their nefarious actions, that may include overwriting the magnetic strip data or injecting attacks on the embedded microcontroller, criminals are able to realise significant monetary gains. To effectively deal with these fraud cases, investigators have to quickly determine whether a card is authentic or a counterfeit. Currently no known easy forensic tool exists that provides a quick effective and accurate response. In this article, after having conceptualised payment cards as multi-interface embedded systems, we propose simple and fast forensic analysis methods to finally provide investigators with associated desktop and mobile forensic tools.
Fichier non déposé

Dates et versions

hal-01128888 , version 1 (10-03-2015)

Identifiants

Citer

Thomas Souvignet, Julien Hatin, Fabrice Maqua, Damien Tesnière, Pierre Léger, et al.. Payment card forensic analysis: From concepts to desktop and mobile analysis tools. Digital Investigation, 2014, 11 (3), pp.143-153. ⟨10.1016/j.diin.2014.06.006⟩. ⟨hal-01128888⟩
255 Consultations
0 Téléchargements

Altmetric

Partager

Gmail Facebook X LinkedIn More