CuVoodoo

the sorcery of copper

User Tools

Site Tools


printer_cartridge

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
printer_cartridge [2019/04/15 08:17]
kingkevin [identifying cartridge chip] update link
printer_cartridge [2019/04/15 08:32] (current)
kingkevin [implementing DS2432] typo
Line 60: Line 60:
   * since the printer tries 4 times reading out the authenticated page using the same challenge there is plenty of time to forward the request and use an original chip as oracle   * since the printer tries 4 times reading out the authenticated page using the same challenge there is plenty of time to forward the request and use an original chip as oracle
   * the print is done before updating the toner level, thus you could completely ignore the corresponding write commands   * the print is done before updating the toner level, thus you could completely ignore the corresponding write commands
-  * even if you use an original chip oracle, the write success is not authenticated,​ thus you can fake that the write succeeded when you are MitM, if the printer doesn'​t read the authenticated value afterwards to ensure the write took place+  * even if you use an original chip as oracle, the write success is not authenticated,​ thus you can fake that the write succeeded when you are MitM, if the printer doesn'​t read the authenticated value afterwards to ensure the write took place
   * the printer starts by reading memory page 1 without authentication. Maybe there is some field in there allowing to switch to god mode (e.g. developer mode), which does not require authentication   * the printer starts by reading memory page 1 without authentication. Maybe there is some field in there allowing to switch to god mode (e.g. developer mode), which does not require authentication
  
printer_cartridge.txt ยท Last modified: 2019/04/15 08:32 by kingkevin