Learned models

Learned models of bank card protocols

We have learned models for several client implementations, i.e. real bank cards from different banks. Access to the smart cards was realised via a standard smart card reader. The models might be incorrect, but already showed reproducible bugs in some cases.

Benchmark Name	Model	Inputs/Outputs	States	Transitions	Publications
MAESTRO	dot-file	14 / 10	6	84	[ARP13]
MAESTRO (ASN)	dot-file	14 / 10	6	84	[ARP13]
MAESTRO (Rabo)	dot-file	14 / 10	6	84	[ARP13]
MAESTRO (Volksbank)	dot-file	14 / 11	7	98	[ARP13]
MasterCard	dot-file	14 / 9	6	84	[ARP13]
MasterCard	dot-file	15 / 9	5	75	[ARP13]
PIN	dot-file	14 / 10	6	84	[ARP13]
SecureCode	dot-file	14 / 9	4	56	[ARP13]
SecureCode (ASN)	dot-file	14 / 9	4	56	[ARP13]
SecureCode (Rabo)	dot-file	15 / 12	6	90	[ARP13]
VISA	dot-file	15 / 11	9	135	[ARP13]

Pictures of Learned Models

Some of the learned models listed in the table above are shown below :

Rabo_learnresult_MAESTRO_with_verifyPIN_stripped

Fig. 2: Automaton of Dutch Maestro application. Just to highlight one observation that can be made from this diagram: the VERIFY operation, i.e. the verification of the PIN code by the smartcard, is optional; this makes sense because the terminal may check the PIN code with the bank (so-called online PIN verification), or choose not to verify the PIN at all.

Fig. 3: Automaton of Dutch SecureCode Aut application. Note that here the VERIFY operation - i.e. verification of the PIN code - must be passed successfully before cryptograms can be generated, except for the AAC cryptogram to abort the session.

Fig. 4: Automaton of Maestro application on Volksbank bank card.

Fig. 5: Automaton of Visa Debit application on Barclays card. Note that the INTERNAL AUTHENTICATE can be performed at any stage of the protocol.

Automata Wiki

Learned models

Learned models of bank card protocols

Pictures of Learned Models