Evaluating bypass vulnerabilities in the EMV Card

Assignment Task

Scenario:

1. The attacker initiates a legitimate transaction with the payment terminal, intending to make a payment above the cardholder verification limit .

2. During the legitimate transaction, the attacker intercepts the communication between the payment terminal and the contactless EMV payment card, using a modified NFC device or other means to capture the transaction data.

3. The attacker then modifies the intercepted transaction data, specifically altering the transaction amount to an amount below the cardholder verification limit.

4. The attacker sends the manipulated transaction data back to the victim's contactless EMV card, making it appear as if the transaction amount is now below the limit.

5. The victim's EMV card processes the manipulated transaction data and assumes that it should not prompt for PIN verification since the amount is now below the cardholder verification limit.

6. However, due to the manipulation, the card does not prompt the victim for a PIN, as it believes the transaction amount is legitimate and within the cardholder verification limits.

7. The transaction is approved without the need for a PIN, allowing the attacker to conduct fraudulent transactions above the set limit.

This IT Computer Science Assignment Help has been solved by our IT Computer Science Experts at My Uni Paper. Our Assignment Writing Experts are efficient to provide a fresh solution to this question. We are serving more than 10000+ Students in Australia, UK & US by helping them to score HD in their academics. Our Experts are well trained to follow all marking rubrics & referencing style.