Attacking stamps for fun and profit?

The French Post Office now offers a new online Web service for end-users to print their own stamps, on their own printers.* Although I hate lining up for stamps at the post office, I just wonder if they really have thought it through.

The stamps are issued for a 60-day period, and they contain a small 2D barcode on the right proving their authenticity. This code probably contains a signature of the expiration date (of course) and the stamp’s value (otherwise a given authenticity code could be re-used on a stamp with a greater value). By the way, I hope the authenticity code’s signature does not use the MD5 hash function ;-). In addition, when you send your mail, the
code is scanned by the post office and memorized so it can only be used once (actually, this probably explains why the stamp is only valid for a period of 60 days). Ok, so the replay attack is detected. But what about other attacks ?

Fault Injection: what happens if an attacker intentionally prints the stamp on a poor-quality printer, ink dripping all over the 2D code ? The automatic scan process probably fails and it falls back to manual check. But how on earth
can we expect a human eye to tell the difference between an intentionally badly printed stamp and an end-user’s whose printer is just slightly dusty or old ? The French Post Office can’t expect users to own high quality laser
printers at home. As long as the fraud isn’t obvious, I bet the French Post Office will decide it costs less to accept a few cents stamp than work for hours on it trying to prove or not its validity.

Privacy: the French Post Office does not provide any detail on the content of the corresponding database. It is however likely to include private data: credit card information, account holder information… Is Big Brother watching
you and storing the names of all recipients you send mail to?

Infection: is it possible to get infected by a stamp ? 2D codes may be tied to additional information, such as URLs. The marketing idea behind this feature is to have the user read a 2D code with his/her mobile phone and automatically open the attached URL. I hope it is impossible to link 2D codes to malware or to URLs that contain malware, otherwise Fortinet is going to need to work on Forti…stamps very soon ;-)

– The Crypto Girl

* Side note: some employees of the French Post Office seem unaware of this service… and actually refused a perfectly authentic stamp, threatening to sue the sender.

by Axelle Apvrille  |  April 13, 2009 at 8:35 am
1 Comment »
Tags: , , ,

One Response to “Attacking stamps for fun and profit?”

  1. 2D Codes: Lowering the “bar” for mobile threats? | Fortinet FortiGuard Blog says:
    April 21, 2009 at 9:49 am

    [...] my last post, I mentioned the use of 2D codes on on-line ready-to-print stamps for the French Post Office. In [...]

    Reply

Leave a Reply

Go to FortiGuard Security Blog

How to Buy

Purchase Fortinet Products


Polls

Are you currently using application control as part of your security strategy?

View Results

Loading ... Loading ...

Subscribe

All Posts
Threat Research Posts

Fortinet on the Web

Categories

Search Archive

Popular Topics

adobe android Anti-Spam Antivirus apple botnet bredolab conference Cryptography derek manky exploit facebook Firewall FortiGate Fortinet google hacking challenge iphone koobface Mac OS X Malware microsoft mobile mobile malware mobile phone mobile phones Mobile Security privacy Research reverse engineering reversing Security sms symbian symbianos symbos/album symbos/yxes Threat Landscape trojan UTM virus bulletin virut Windows Zeus zitmo

Archives