in smart cards, everything is either pay-to-read or sign an NDA to read
Discussion
I know and screw that.
Unfortunately anything that is not is also trash 😬
There is pressure in the industry to open up these standards. The goal
is to show compelling alternatives that need to be more secure. The market will need to exert pressure to open up these standards or build
better ones.
"There is pressure in the industry to open up these standards."
unfortunately no, there is not, as someone that wants exactly this
I have encrypted data on the card. I’m not worried about that. I just need to know it’s being read from an authorized reader/app
Wait until i tell yall about SAE-ISO protocols. To use some of the more in depth protocols to talk with ECUs you're only options _through official SAE channels_ is to become a "partner" register for classes during a select time, and purchase class materials such as the protocol documentation, take the class (if there even is an online class) then, possibly you may know how to interact with a particular protocol without reverse engineering it. Hint, if you're smart enough, it's far cheaper to packet sniff and attempt to reconstruct. The issue is it's not repeatable across mfgs and vehicles. You also need to have a business TIN registered and I think becoming a partner required a donation of like $5k.
Finally, it's often against copyright protection to use this knowledge on a real vehicle, such as flashing firmware or entering boot-mode.
The smart card industry is mostly a bunch of banking and ID card companies.
The protocols are actually not shit (we don’t talk about T=0)