IRC log for #neo900 on 20131217

`03:16.13`	`*** join/#neo900 thrakcattack (~pi@194-118-205-73.adsl.highway.telekom.at)`
`03:55.47`	`*** join/#neo900 SAiF (~SAiF@117.196.134.108)`
`04:44.43`	`*** join/#neo900 Herbstbert_ (~Herbstber@drms-4d0df18e.pool.mediaWays.net)`
`08:28.30`	`*** join/#neo900 paranoik (6dbe6c16@gateway/web/freenode/ip.109.190.108.22)`
`08:36.00`	`paranoik`	`Hi guys. I have an old N900 with damaged mainboard(gsm, gps chips and usb port broken, vibrator damaged) and I would like to sacrifice its parts for Neo900`
`08:37.14`	`*** join/#neo900 unclouded (~neil@2001:4428:200:80fc:7e05:7ff:fe0d:d421)`
`08:55.57`	`chainsawbike`	`paranoik, there is a planned option to buy just the mainboard + installation parts, so ensure your preorder/donation is done then just keep it somewhere safe :)`
`08:59.27`	`paranoik`	`chainsawbike: I understood from last Neo900 newsletter that some parts are needed, like the display connector`
`09:02.09`	`chainsawbike`	`yes, they are looking for new parts - if using "used" connectors is even considered i think it will be an absolute last resort due to the low reliability and high labor costs`
`09:06.30`	`paranoik`	`okay, thank you`
`09:12.26`	`*** join/#neo900 archtimmy (~archtimmy@araneo.org)`
`10:10.24`	`*** join/#neo900 Neros_ (~quassel@24-55-190-109.dsl.ovh.fr)`
`10:55.44`	`*** join/#neo900 zemmy (~zammy@ppp-26-105.98-62.inwind.it)`
`11:12.48`	`*** join/#neo900 kolp (~quassel@212.255.255.58)`
`11:53.07`	`*** join/#neo900 sixwheeledbeast (~paul@cl-1547.lon-02.gb.sixxs.net)`
`12:03.24`	`*** join/#neo900 merlin1991 (~merlin@Maemo/community/cssu/merlin1991)`
`13:31.20`	`*** join/#neo900 DocScrutinizer05 (~saturn@openmoko/engineers/joerg)`
`14:24.24`	`*** join/#neo900 sequantz (~sequantz@194.11.24.44)`
`14:29.24`	`*** join/#neo900 NIN101 (~NIN@p5DD29502.dip0.t-ipconnect.de)`
`15:42.58`	`*** join/#neo900 Mistah_Darcy_ (~MistahDar@71-9-57-207.dhcp.gvrb.ca.charter.com)`
`15:52.49`	`*** join/#neo900 l4m3rx (~7350@195.24.90.254)`
`16:06.19`	`*** join/#neo900 Mistah_Darcy_ (~MistahDar@71-9-57-207.dhcp.gvrb.ca.charter.com)`
`16:19.14`	`*** join/#neo900 sixwheeledbeast (~paul@host-92-28-93-111.as13285.net)`
`16:27.11`	`*** join/#neo900 edgar2 (~edgar2@84-231-60-20.elisa-mobile.fi)`
`16:39.06`	`*** join/#neo900 freemangordon (~freemango@46.249.74.23)`
`16:42.56`	`*** join/#neo900 sixwheeledbeast (~paul@cl-1547.lon-02.gb.sixxs.net)`
`16:51.07`	`*** join/#neo900 Neros (~quassel@24-55-190-109.dsl.ovh.fr)`
`16:54.11`	`*** join/#neo900 sixwheeledbeast (~paul@cl-1547.lon-02.gb.sixxs.net)`
`17:15.57`	`*** join/#neo900 dos1 (~dos@unaffiliated/dos1)`
`17:38.06`	`*** join/#neo900 fw190 (3e154b43@gateway/web/freenode/ip.62.21.75.67)`
`17:38.24`	`fw190`	`DocScrutinizer05: hello`
`17:39.49`	`fw190`	`DocScrutinizer05: look sharp to the east - before Christmas a small present for Neo900 project will be at your door`
`17:40.12`	`fw190`	`DocScrutinizer05: will send you the tracking number when it will start to work`
`17:45.06`	`*** join/#neo900 robotanarchy (~robotanar@e179223033.adsl.alicedsl.de)`
`17:49.26`	`robotanarchy`	`hi there, I'm about to donate, but I have some questions (after reading FAQ): the final device will cost at least 500€ right now, and when more people donate, it will likely get less (by how much, is 200€ at some point realistic?)`
`17:50.46`	`robotanarchy`	`I misread the whole thing first and thought the final price would be about 100€ >_> so 500 is really a lot more`
`17:53.28`	`DocScrutinizer05`	`the range is 500..700EUR, with tendency to 500 for more devices`
`17:54.03`	`DocScrutinizer05`	`200EUR is outright impossible, we would have to find ways to produce cheaper than Samsung`
`17:57.05`	`robotanarchy`	`okay, thanks`
`18:02.24`	`robotanarchy`	`it asks for a delivery address. is this where the final device will be shipped to? because it might be that I move before it is ready`
`18:06.03`	`DocScrutinizer05`	`this is just a side effect of treating donations like normal orders. We don't need a shipping addr, we will get that from the final order once you place that`
`18:06.29`	`robotanarchy`	`what should I type there, because the fields are required`
`18:06.44`	`DocScrutinizer05`	`ideally your address`
`18:06.47`	`robotanarchy`	`ok xD`
`18:06.58`	`DocScrutinizer05`	`I dunno if you as well could leave it empty`
`18:08.09`	`DocScrutinizer05`	`you probably shouldn't type in phantasy addr, since odds are it could accidentally get used as shipping addr nevertheless`
`18:08.52`	`DocScrutinizer05`	`also the addr (not shipping addr) is used by our credit card verification partner`
`18:10.09`	`DocScrutinizer05`	`afaik`
`18:10.39`	`robotanarchy`	`that's complicated :p can't you just write down somewhere, that you need to make sure that you don't accidentally send the final phone to a donation address?`
`18:11.00`	`robotanarchy`	`because the form has required fields n stuff (I don't want to type 1234 in the zip code, that is just as bad)`
`18:11.07`	`DocScrutinizer05`	`we won't do that`
`18:11.21`	`robotanarchy`	`okay, so it should be fine if i type in my real address`
`18:11.40`	`DocScrutinizer05`	`the shop usually uses shipping addr of the (final) order to ptint the addr stickers`
`18:12.24`	`DocScrutinizer05`	`this is no manual processing done, this is an automated webshop software`
`18:12.40`	`robotanarchy`	`I'm confused, is it a problem if I put a real adress in the shipping field (it's required there) or not?`
`18:12.55`	`DocScrutinizer05`	`no problem`
`18:13.10`	`robotanarchy`	`ok thanks`
`18:14.55`	`DocScrutinizer05`	`the webshop works exactly as you'd guess it should`
`18:15.28`	`DocScrutinizer05`	`it's just a tad unusual that it doesn't sell anything for the product "donation"`
`18:15.51`	`DocScrutinizer05`	`but the shop has no special handling for this "product"`
`18:16.05`	`DocScrutinizer05`	`you will receive a proper invoice and all`
`18:16.22`	`robotanarchy`	`ok :)`
`18:17.41`	`DocScrutinizer05`	`you even will receive an invoice that has german VAT on it, no matter if you're in EU or outside EU`
`18:18.57`	`DocScrutinizer05`	`this is because we're obliged to pay VAT for donations. Once we ship a device for that money you donated, we will revert that in case you're living at a location that doesn't require us to pay VAT when shipping goods to there`
`18:21.20`	`sixwheeledbeast`	`I want to ask about that. So if I donate 10x10 that still counts as a rebate for a device? even tho it is actually 84eur after 19% vat`
`18:22.00`	`DocScrutinizer05`	`no, you need to donate 1x100`
`18:22.51`	`DocScrutinizer05`	`and those will count as 100+x for the rebate on whatever the device will cost for you, after adding VAT as needed to that final price`
`18:23.36`	`DocScrutinizer05`	`we don't per default concatenate donations into one`
`18:24.46`	`DocScrutinizer05`	`we did this for customers who wanted to increase their donation to the 1500+ level`
`18:25.05`	`DocScrutinizer05`	`we can't do this for donors who donate 10 times 10 eur`
`18:25.21`	`sixwheeledbeast`	`eh? but there is no option for that only quantities of 10eur`
`18:25.45`	`robotanarchy`	`that is also confusing. I think when you donate 10x10€, it counts as 1x 100€`
`18:25.45`	`DocScrutinizer05`	`that's just the amount for ONE donation`
`18:26.52`	`robotanarchy`	`so I made my donation :) good luck with the project, can't wait to get a neo900 :>`
`18:26.52`	`DocScrutinizer05`	`10EUR is just the minimum we can accept to not pay for the donation`
`18:27.01`	`sixwheeledbeast`	`so how does one get 1x100 then?`
`18:27.10`	`DocScrutinizer05`	`robotanarchy: :-D many thanks!`
`18:27.40`	`DocScrutinizer05`	`sixwheeledbeast: you select 100EUR as ammount`
`18:28.20`	`DocScrutinizer05`	`since the unit is "10 EUR" you will type "10"`
`18:28.37`	`DocScrutinizer05`	`this is ONE donation of HUNDRED then`
`18:28.39`	`sixwheeledbeast`	`not possible from what I can tell.`
`18:28.48`	`DocScrutinizer05`	`uhuh`
`18:29.17`	`DocScrutinizer05`	`https://shop.goldelico.com/wiki.php?page=GTA04%3ADonation seems it's pretty easily possible`
`18:29.30`	`sixwheeledbeast`	`Oh so as I said if you donate 10x10eur this equals 1x100eur therefore 1 preorder.`
`18:30.05`	`DocScrutinizer05`	`when yiu 10 times donate 10 eur that is 10 donations of 10 eur`
`18:30.42`	`DocScrutinizer05`	`when you donate one time 100eur (in 10 units of 10EUR) then that's ONE donation of 100EUR`
`18:32.17`	`DocScrutinizer05`	`I never thought this could be so unclear`
`18:32.28`	`sixwheeledbeast`	`so if you donate 10x10eur here https://shop.goldelico.com/wiki.php?page=Neo900 this==rebate for Neo900?`
`18:34.31`	`DocScrutinizer05`	`http://wstaw.org/m/2013/12/17/plasma-desktopvY3389.png`
`18:34.38`	`DocScrutinizer05`	`o.O`
`18:37.31`	`DocScrutinizer05`	`see the "total: 100EUR" and the "Product: N900 development donation" (btw wtf "N900", this must be "Neo900" but I think that's not really too confusing)`
`18:40.58`	`sixwheeledbeast`	`Ok so yes I donated 10x10eur=100eur "development donation". It does seem confusing IMO, there are multiple pages to donate on, it would seem.`
`18:43.40`	`DocScrutinizer05`	`I forwarded it to Nikolaus, maybe he can inprove the page/site`
`18:50.30`	`sixwheeledbeast`	`k, thanks. I was just checking what I have done will count as a rebate, because that is what I assumed after being directed there from neo900.org`
`18:54.53`	`DocScrutinizer05`	`when you donated 100EUR in one transaction, then yes, that counts as one donation of 100EUR`
`18:55.45`	`DocScrutinizer05`	`and thus entitles you for the rebate`
`19:05.06`	`*** join/#neo900 Neros (~quassel@24-55-190-109.dsl.ovh.fr)`
`19:06.09`	`sixwheeledbeast`	`well the answer is no then :(`
`19:25.08`	`dos1`	`sixwheeledbeast: 90 EUR? is that you?`
`19:52.28`	`DocScrutinizer05`	`o.O`
`19:53.24`	`*** join/#neo900 fw190 (3e154b43@gateway/web/freenode/ip.62.21.75.67)`
`19:55.27`	`DocScrutinizer05`	`sixwheeledbeast: sorry, what's the problem? what means "the answer is no"?`
`19:55.37`	`*** join/#neo900 jake42 (~jake42@webcache.rommel.stw.uni-erlangen.de)`
`19:56.56`	`DocScrutinizer05`	`sigh`
`19:57.47`	`freemangordon`	`DocScrutinizer05: I need some help with alsa, could you recommend someone?`
`19:58.00`	`DocScrutinizer05`	`ugh`
`19:58.04`	`freemangordon`	`I am stuck at making the earpiece work :(`
`19:58.30`	`freemangordon`	`(on n900 and 3.13)`
`19:58.55`	`DocScrutinizer05`	`hmm`
`19:59.20`	`freemangordon`	`DocScrutinizer05: oh, re NFC - any chip will do the job, as long as it supports so-called "single wire protocol"`
`19:59.34`	`freemangordon`	`this is a connection between the chip and the SIM`
`19:59.39`	`DocScrutinizer05`	`you tried playback sound directly via alsa, without PA and ped, from e.g mp3 player?`
`20:00.05`	`sixwheeledbeast`	`dos1, DocScrutinizer05: 100EUR on the 14 Dec, "the answer is no" == no rebate`
`20:00.17`	`DocScrutinizer05`	`there's no such connection, since the only device that connects to SIM is the modem`
`20:00.21`	`sixwheeledbeast`	`I have order code if that helps`
`20:00.28`	`dos1`	`sixwheeledbeast: but 100EUR = rebate`
`20:00.55`	`freemangordon`	`DocScrutinizer05: no, but playback to headphone and speakers work, and volume buttons control the volume, I see stuff changing in alsamixer, etc`
`20:01.14`	`freemangordon`	`the same happens for the earphone, but there is no sound out of it`
`20:01.40`	`freemangordon`	`DocScrutinizer05: what stops you from doing that connection (between NFC chip and the SIM)?`
`20:01.46`	`dos1`	`sixwheeledbeast: if you typed "10" into amount field and paid 100 EUR, then you're entitled to 100 EUR rebate (and increasing 2% each month)`
`20:01.55`	`sixwheeledbeast`	`dos1: 100eur as 10x10EUR donations on this page https://shop.goldelico.com/wiki.php?page=Neo900`
`20:02.08`	`DocScrutinizer05`	`I never heard of such connection and I donno where and how to make it`
`20:02.26`	`dos1`	`sixwheeledbeast: if you actually clicked "order" ten times and typed all your data ten times, then yes, it's ten donations`
`20:02.34`	`freemangordon`	`DocScrutinizer05: http://en.wikipedia.org/wiki/Single_Wire_Protocol`
`20:02.47`	`dos1`	`sixwheeledbeast: otherwise it's 1 donation for 100 EUR and that "10" is only the unit used to choose the amount`
`20:03.31`	`DocScrutinizer05`	`freemangordon: I know single-wire protocol, but i need a pin to connect the single wire to`
`20:03.48`	`sixwheeledbeast`	`dos1: no I selected 10 x 10eur in one order.`
`20:03.49`	`freemangordon`	`it is that "unused" pin on the SIM holder`
`20:03.55`	`freemangordon`	`DocScrutinizer05: ^^^`
`20:03.56`	`dos1`	`sixwheeledbeast: then everything is fine`
`20:04.00`	`sixwheeledbeast`	`:)`
`20:04.07`	`DocScrutinizer05`	`sixwheeledbeast: so god gracious what's the problem?`
`20:04.16`	`sixwheeledbeast`	`thanks dos1`
`20:05.18`	`DocScrutinizer05`	`sighs desperate and heads off`
`20:05.27`	`freemangordon`	`DocScrutinizer05: wait :)`
`20:06.35`	`sixwheeledbeast`	`Well you said "when you donated 100EUR in one transaction, then yes, that counts as one donation of 100EUR". As I say there are two places to donate I was checking I had selected correctly`
`20:08.21`	`DocScrutinizer05`	`there are even three ot maybe four places to donate, even on goldelico.com site`
`20:08.34`	`DocScrutinizer05`	`only one is related to neo900 though`
`20:10.02`	`DocScrutinizer05`	`honestly, what in http://wstaw.org/m/2013/12/17/plasma-desktopvY3389.png looks unclear?`
`20:12.34`	`DocScrutinizer05`	`freemangordon: how do you try to playback sound to earpiece?`
`20:12.56`	`freemangordon`	`DocScrutinizer05: I did a skype voice call`
`20:13.05`	`DocScrutinizer05`	`ugh`
`20:13.47`	`DocScrutinizer05`	`no idea, that can be PA as well`
`20:13.52`	`DocScrutinizer05`	`or skype itself`
`20:14.01`	`freemangordon`	`well, I have voice from speaker(if I push thebutton) or through headphone (if connected)`
`20:14.17`	`freemangordon`	`no, it is not PA`
`20:14.27`	`freemangordon`	`it is the asoc board config`
`20:14.43`	`freemangordon`	`but I need someone to give me a hand`
`20:14.44`	`DocScrutinizer05`	`then fix the asoc board config`
`20:14.49`	`freemangordon`	`heh`
`20:15.35`	`freemangordon`	`the problem is that documentation (of alsa in the kernel) is close to sero`
`20:15.35`	`freemangordon`	`*zero`
`20:16.17`	`DocScrutinizer05`	`what can I say`
`20:16.34`	`freemangordon`	`anyway`
`20:16.50`	`freemangordon`	`what about NFC?`
`20:19.19`	`DocScrutinizer05`	`>>C6 pin of UICC is connected to CLF<< maybe I can use this`
`20:19.23`	`DocScrutinizer05`	`dunno`
`20:19.55`	`DocScrutinizer05`	`single-wire protocol is not SIM or NFC specific, thus I not even looked at that wikipedia article`
`20:20.32`	`freemangordon`	`yes, that is the point, the pin on SIM that is usually not connected is used for NFC`
`20:20.34`	`DocScrutinizer05`	`if you want me to look at some info, then you need to tell me about what's the info I'm supposed to find there`
`20:21.01`	`freemangordon`	`ok, I'll do my homework :)`
`20:40.53`	`freemangordon`	`DocScrutinizer05: http://www.etsi.org/deliver/etsi_ts/102600_102699/102613/07.03.00_60/ts_102613v070300p.pdf`
`20:40.57`	`freemangordon`	`on page 11`
`20:57.36`	`DocScrutinizer05`	`what a mess`
`20:57.49`	`DocScrutinizer05`	`did you see anything about VCC?`
`20:58.57`	`DocScrutinizer05`	`they dodge away from this issue by simply connecting SIM to NFC's VCC, but in real life SIM is powered by modem, with different voltages`
`20:59.20`	`DocScrutinizer05`	`there are 5V and 3V3 and maybe even 1V8 SIMs and modem handles that`
`21:00.11`	`DocScrutinizer05`	`also, did you consider the privacy issues?`
`21:00.25`	`freemangordon`	`DocScrutinizer05: "For the low power mode, the electrical characteristics of contact C1 (Vcc) are extended by the present document."`
`21:00.51`	`DocScrutinizer05`	`yes, that's pretty thin eh?`
`21:01.13`	`freemangordon`	`I guess there is a follow-up explanation on that extension`
`21:01.49`	`freemangordon`	`DocScrutinizer05: re privacy - in card emulation mode no sensitive data is transmitted in clear form between terminal and card`
`21:02.14`	`DocScrutinizer05`	`says who?`
`21:02.21`	`freemangordon`	`where card is Neo900 and teminal is contactless card reader`
`21:02.24`	`freemangordon`	`says me`
`21:02.43`	`freemangordon`	`EMV/contactless cards is part of what I do in RL`
`21:03.14`	`freemangordon`	`also, there are specs if you want to dig deeper`
`21:03.21`	`DocScrutinizer05`	`I'm talking about a black box (SIM) having total control ofer a transceiver (NFC)`
`21:03.38`	`freemangordon`	`oh, no, it doesn't work like that`
`21:03.43`	`DocScrutinizer05`	`over*`
`21:04.00`	`freemangordon`	`NFC chip is just a "transport layer"`
`21:04.08`	`DocScrutinizer05`	`yes, exactly`
`21:04.11`	`freemangordon`	`it simply adds anthenna to the chip`
`21:04.17`	`DocScrutinizer05`	`yes, exactly`
`21:04.24`	`freemangordon`	`s/chip/SIM/`
`21:04.31`	`DocScrutinizer05`	`so you "add antenna" to a blackbox`
`21:05.04`	`DocScrutinizer05`	`it can do worse stuff than modem`
`21:05.18`	`DocScrutinizer05`	`since we have no means to control what it does`
`21:05.28`	`freemangordon`	`it can't, this is NFC, mind you`
`21:05.51`	`DocScrutinizer05`	`so what?`
`21:06.02`	`freemangordon`	`I don;t understand your concern`
`21:06.22`	`freemangordon`	`what privacy problem do you think might arise?`
`21:06.23`	`DocScrutinizer05`	`my concern is: this is passport with RFID ^ 10`
`21:07.02`	`DocScrutinizer05`	`everybody can pass by and talk to your SIM without you havning the faintest chance to even notice it`
`21:07.04`	`freemangordon`	`passport? no, this is the same as your debit/credit card`
`21:07.19`	`freemangordon`	`or your contactless card if you have one`
`21:07.59`	`DocScrutinizer05`	`I an put that one into a shielding sleeve and only pull it out to use it`
`21:08.09`	`freemangordon`	`oh,SIM is apart of that interface`
`21:08.20`	`DocScrutinizer05`	`and the contactless card has no battery to send with 100mW`
`21:09.01`	`freemangordon`	`power donw the NFC chip and you're just fine`
`21:09.37`	`DocScrutinizer05`	`AHA!! where from is NFC power? didn't we talk about VCC before?`
`21:10.08`	`DocScrutinizer05`	`didn't I tell you it can't work the way they sketched it in that silly ETSI paper?`
`21:10.22`	`freemangordon`	`that one powers SIM card, not the anthenna`
`21:10.23`	`freemangordon`	`ar transmitter`
`21:10.23`	`freemangordon`	`*or`
`21:10.23`	`freemangordon`	`see the schematics`
`21:10.39`	`DocScrutinizer05`	`no, look again`
`21:11.28`	`DocScrutinizer05`	`the levels of the pin at NFC and the pin at UICC/SIM are defined relative to the one and only VCC`
`21:11.33`	`freemangordon`	`DocScrutinizer05: CLF stands for "contactless frontend", the other name for our NFC chip`
`21:11.41`	`DocScrutinizer05`	`I know`
`21:12.02`	`DocScrutinizer05`	`so what?`
`21:12.29`	`DocScrutinizer05`	`the "schematics" clearly state that CLF and SIM use same VCC`
`21:12.32`	`freemangordon`	`DocScrutinizer05: depending on the implementation, you may have NFC active or not when power is switched off`
`21:12.37`	`DocScrutinizer05`	`and they have to`
`21:13.16`	`freemangordon`	`oh, you mean that modem powers that CLF?`
`21:13.28`	`DocScrutinizer05`	`since the signal levels on single-wire are defined as VCC*0.7 for example`
`21:13.43`	`DocScrutinizer05`	`no, the modem can't power CLF`
`21:14.03`	`DocScrutinizer05`	`it's not designed to do that`
`21:14.21`	`freemangordon`	`ok, I still fail to see what is the privacy issue as long as TX is disabled`
`21:14.48`	`DocScrutinizer05`	`HOW THE HECK do we even POWER the TX?`
`21:15.05`	`freemangordon`	`isn't TX part of that NFC chip?`
`21:15.07`	`DocScrutinizer05`	`when you answered that question, I can tell you if we can disable it`
`21:16.18`	`DocScrutinizer05`	`I told you VCC for SIM is from odem and may be 1V8, 3V3 or 5V and is not capable or suited to power CLF/NFC`
`21:16.50`	`DocScrutinizer05`	`OTOH NFC and SIM MUST use same VCC since levels on 1-wire are defined as % of VCC`
`21:17.11`	`DocScrutinizer05`	`so we have a terrible collision here`
`21:17.13`	`*** join/#neo900 kolp_ (~quassel@212.255.230.144)`
`21:17.23`	`freemangordon`	`I need to find some real nfc chip, I guess it will become clear how that works in practice`
`21:17.41`	`*** join/#neo900 hbib (~wurmel@pD9E3CA73.dip0.t-ipconnect.de)`
`21:17.59`	`DocScrutinizer05`	`that only modem with built-in special support for NFC and even the NFC itself built into modem can solve`
`21:18.51`	`DocScrutinizer05`	`or the NFC chip has an input "SIM-VCC" that's only for reference but not for powering the NFC`
`21:19.48`	`DocScrutinizer05`	`even then the modem needs to control the SIM VCC according to the requirements for NFC, it for example mustn't power down the SIM`
`21:20.21`	`DocScrutinizer05`	`it must support reading out the info about SIM supporting 1-wire or not`
`21:20.33`	`DocScrutinizer05`	`it must configure the SIM accordingly`
`21:20.47`	`DocScrutinizer05`	`I dunno if our modem knows how to do that`
`21:22.37`	`DocScrutinizer05`	`after all the modem module is M2M, not meant for mobile phones with NFC. Car-Navi rarely has NFC`
`21:23.27`	`DocScrutinizer05`	`Nokia easily can patch their BB5 modem software to handle that stuff. I dunno if cinterion even thought of 1-wire`
`21:23.57`	`DocScrutinizer05`	`most of the modems don't come with analog audio even`
`21:24.18`	`DocScrutinizer05`	`and digital audio is just a "nice to have" on those modems`
`21:24.25`	`DocScrutinizer05`	`not mandatory`
`21:25.14`	`DocScrutinizer05`	`this 1-wire stuff looks like ... one wire, but actually it's a damn lot more of a mess and trouble`
`21:26.03`	`freemangordon`	`"PMUVCC A8 Power SIM Power in from mobile PMU"`
`21:26.05`	`DocScrutinizer05`	`I'd like to have it, but I'm not sure we can do it. Heck I dunno if we even can evaluate it`
`21:26.12`	`freemangordon`	`this is NXP PN544`
`21:26.48`	`freemangordon`	`"SIMVCC B8 Power SIM Power out to UICC"`
`21:27.16`	`freemangordon`	`DocScrutinizer05: http://www.alldatasheet.com.cn/download.php?id=1698663&pdfid=95F70B32A8CE7F4EDBE287FEA56A3511&file=0350\pn544_2767746.pdf`
`21:28.32`	`DocScrutinizer05`	`fine`
`21:28.47`	`DocScrutinizer05`	`now tell me who's going to power the NFC`
`21:29.17`	`freemangordon`	`check on page 20 "Supply of SIM with SWP interface"`
`21:29.36`	`DocScrutinizer05`	`I guess the chip has an additional power supply input and it can power the SIM when modem doesn't`
`21:29.44`	`freemangordon`	`yep`
`21:30.01`	`freemangordon`	`it doesn't need even a battery to operate`
`21:30.11`	`freemangordon`	`if configured so`
`21:31.34`	`DocScrutinizer05`	`then how do we ensure SIM isn't remove while powered?`
`21:31.49`	`*** join/#neo900 romashka (~romashka@91.210.101.14)`
`21:31.51`	`DocScrutinizer05`	`since that can destroy SIM`
`21:32.02`	`DocScrutinizer05`	`modem has a switch in simtray for that`
`21:32.03`	`freemangordon`	`no, it can't`
`21:32.10`	`DocScrutinizer05`	`yes it can`
`21:32.51`	`DocScrutinizer05`	`that's why that switch is mandatory when SIM can get removed while modem powered up`
`21:32.52`	`freemangordon`	`well, I guess that switch can be used to provide signal to both modem and NFC chip`
`21:33.15`	`DocScrutinizer05`	`well, I guess all this has to get evaluated`
`21:33.26`	`DocScrutinizer05`	`and I have no time to do that ad-hoc`
`21:33.33`	`freemangordon`	`DocScrutinizer05: sure`
`21:33.52`	`freemangordon`	`I was just feeding data through the pipeline :)`
`21:36.33`	`DocScrutinizer05`	`btw: the modem might not like getting reverse-fed with power from SIM pins when the modem is powered off`
`21:36.52`	`DocScrutinizer05`	`it needs to be prepared/designed for that`
`21:37.22`	`freemangordon`	`afaik SWP is independant of SIM interface`
`21:37.38`	`DocScrutinizer05`	`and you can't guarantee that the data/clk/reset pins of SIM do _not_ feed power to the modem when SIM is powered on VCC`
`21:38.06`	`freemangordon`	`NFC enabled SIMs are designed to operate like that`
`21:38.40`	`DocScrutinizer05`	`yeah, but what about those SIM that never heard of NFC?`
`21:38.59`	`freemangordon`	`they have their C6 pin NC ;)`
`21:39.19`	`freemangordon`	`specs say they MUST do`
`21:39.26`	`DocScrutinizer05`	`and - as I already said - you need the modem to check if a card is designed to do 1-wire/NFC or not`
`21:39.40`	`freemangordon`	`why?`
`21:39.48`	`freemangordon`	`modem shouldn;t care about that`
`21:39.50`	`DocScrutinizer05`	`to talk to the card`
`21:40.04`	`freemangordon`	`modem doesn't talk to SWP part`
`21:40.11`	`freemangordon`	`only NFC chip does`
`21:40.15`	`DocScrutinizer05`	`hah!`
`21:40.37`	`freemangordon`	`yes, this is different interface`
`21:40.39`	`DocScrutinizer05`	`NFC capability is in card's parameter storage`
`21:41.14`	`freemangordon`	`sure, but why should modem care about that?`
`21:41.27`	`DocScrutinizer05`	`the modem needs to read out that storage and also tell card to enable NFC since the terminal also can do it`
`21:41.55`	`DocScrutinizer05`	`the device, whatever`
`21:42.13`	`DocScrutinizer05`	`seen that in 5 min reading that ETSI shit`
`21:42.14`	`freemangordon`	`no, modem should not enable NFC. The whole thing (NFC) is designed to work in stand-alone mode, operated on anthenna power only`
`21:42.32`	`DocScrutinizer05`	`yes, after been enabled`
`21:42.48`	`freemangordon`	`no, even the "device" is powered off`
`21:42.57`	`freemangordon`	`*even when`
`21:42.59`	`DocScrutinizer05`	`meh!`
`21:43.24`	`freemangordon`	`yes, read that pn544 datasheet`
`21:44.08`	`DocScrutinizer05`	`what a mess`
`21:46.28`	`DocScrutinizer05`	`I guess I just learnt about the reason why Nokia "forgot" to implement single-wire on N9`
`21:46.41`	`freemangordon`	`hmm?`
`21:47.16`	`freemangordon`	`BTW is NFC on N9 FRID tags only?`
`21:47.21`	`freemangordon`	`*RFID`
`21:47.48`	`DocScrutinizer05`	`they either thought it's not worth the massive effort to evaluate, or they found a showstopper hidden somewhere during such evaluation`
`21:48.51`	`freemangordon`	`DocScrutinizer05: that SWP enables you to use your mobile as a contactless card. And there is massive effort in europe to migrate to CC for the last 2-3 years`
`21:49.19`	`freemangordon`	`usually those are used as wallet, for amounts < 50 euro`
`21:50.24`	`DocScrutinizer05`	`yeah, with zilch control`
`21:50.38`	`DocScrutinizer05`	`all the "control2 is n the terminal`
`21:51.00`	`DocScrutinizer05`	`and you ask where#s the privacy issue?`
`21:51.45`	`freemangordon`	`DocScrutinizer05: allow me to know a bit about card payments and SW in those teminals :)`
`21:51.56`	`DocScrutinizer05`	`but I guess we can squash that easily, by cutting the single-wire`
`21:52.01`	`freemangordon`	`no, the control is in the card issuer`
`21:52.14`	`DocScrutinizer05`	`huh?`
`21:52.15`	`freemangordon`	`terminal is just that -a terminal`
`21:52.36`	`DocScrutinizer05`	`does the card issuer press a button to allow transaction with my CC?`
`21:52.45`	`freemangordon`	`actually yes`
`21:53.00`	`DocScrutinizer05`	`fine. I'd prefer when I would do that`
`21:53.05`	`DocScrutinizer05`	`I`
`21:53.15`	`freemangordon`	`the issuer is the one that decides whether to approve the "transaction request or not`
`21:53.22`	`DocScrutinizer05`	`Ideally even enter a PIN`
`21:53.38`	`DocScrutinizer05`	`to my CC`
`21:53.50`	`freemangordon`	`nothing stops you to enter the PIN, it depends on how the card was issued. it is not a technology limitation`
`21:53.56`	`DocScrutinizer05`	`NOT to a terminal blackbox that's possibly rogue`
`21:54.25`	`freemangordon`	`no, it is not. I've done 3 certifications with FIME so fat (ATM EMV kernels)`
`21:54.28`	`DocScrutinizer05`	`since a rogue terminal won't ask for my pin`
`21:54.30`	`freemangordon`	`*far`
`21:54.35`	`*** join/#neo900 virman (~virman@91.210.100.70)`
`21:54.53`	`freemangordon`	`good, and why then your bank would approve that transaction?`
`21:55.11`	`DocScrutinizer05`	`why wouldn't it?`
`21:56.00`	`freemangordon`	`if your card is set up in the host system to require online pin on every transaction, a transaction request that comes without PIN MUST be declined`
`21:56.38`	`freemangordon`	`because that is how the stuff works. Trust me, I know more than a bit about authorization systems`
`21:57.22`	`DocScrutinizer05`	`scenario: one guy spies my pin while I pay in wallmart, then follows me and stands near me with a NFC<->UMTS transponder. A second guy uses a second such transponder coupled with first one via UMTS to buy a rolls royce and pay with the remote-virtual CC and my pin`
`21:57.48`	`DocScrutinizer05`	`trust me, I can do this`
`21:57.57`	`freemangordon`	`DocScrutinizer05: your PIN is not transmitted to the card ;)`
`21:57.57`	`DocScrutinizer05`	`easy-peasy`
`21:58.15`	`DocScrutinizer05`	`not necessary`
`21:58.36`	`freemangordon`	`it is send encrypted with 3DES to your issuer for verification, along with the other transaction data`
`21:58.37`	`DocScrutinizer05`	`PIN can get spied in very traditional way, lurking over my shoulder`
`21:59.49`	`freemangordon`	`not to say that every transaction has a "hash" - so called ARC (Authorisation Request Cryptogram), which is based on 3DES keys shared between the card and the issuer`
`21:59.58`	`freemangordon`	`sorry, ARQC`
`22:00.13`	`freemangordon`	`ARC is the response cryptogram`
`22:00.32`	`DocScrutinizer05`	`even simpler: the taxi driver has a really fsckng CC terminal in his car that needs 3 minutes to conect to the bank. You type your PIN and it says "transaction aborted, no connection to network, please repeat"`
`22:01.02`	`DocScrutinizer05`	`actually the thing is rogue and transfers my virtual CC to the 3rd man at rolls royce shop`
`22:01.17`	`DocScrutinizer05`	`he got all, access to the card +and* the pn`
`22:01.46`	`freemangordon`	`DocScrutinizer05: do you read what I wrote?`
`22:01.52`	`DocScrutinizer05`	`yes`
`22:01.55`	`DocScrutinizer05`	`so what?`
`22:01.59`	`freemangordon`	`your taxi driver cannot produce that ARQC`
`22:02.09`	`DocScrutinizer05`	`why would he need to?`
`22:02.20`	`freemangordon`	`and the bank will decline the transaction because the card verification will fail`
`22:02.26`	`DocScrutinizer05`	`no`
`22:02.29`	`freemangordon`	`yes`
`22:02.34`	`DocScrutinizer05`	`aha`
`22:02.50`	`freemangordon`	`avary transaction has its own ARQC`
`22:02.57`	`DocScrutinizer05`	`what makes you think the virtual card at rolls royce is not good for the bank?`
`22:03.05`	`freemangordon`	`and the bank knows how to check if it is genuine`
`22:03.38`	`DocScrutinizer05`	`please tell me in detail where and when in the procedure the fake card will fail`
`22:04.03`	`freemangordon`	`because even the bank cannot generate that ARQC as noone knows the keys, but HSMs in the bank and the card itself`
`22:04.14`	`freemangordon`	`(HSM - security module)`
`22:04.32`	`DocScrutinizer05`	`the gangster holds transponder to the terminal at RR and that transponder talks to your CC at taxi`
`22:04.33`	`freemangordon`	`and BTW the bank don't know your PIN either`
`22:04.48`	`freemangordon`	`so?`
`22:05.09`	`DocScrutinizer05`	`damn, the taxi driver knows the pin,. since you typed it to a fake keyboard in his car`
`22:05.25`	`freemangordon`	`the worst he can do is to pay your taxi once again, if the first request didn;t make it to the bank`
`22:05.36`	`freemangordon`	`yes, he knows the pin, but that is not enough`
`22:05.48`	`DocScrutinizer05`	`go take all your ARQC and whatnot - they won't help here`
`22:05.58`	`freemangordon`	`oh, yes, it will`
`22:06.09`	`DocScrutinizer05`	`tell me why!`
`22:06.14`	`freemangordon`	`again - the transaction amount is present in that arqc`
`22:06.26`	`freemangordon`	`ENCRYPTED`
`22:06.26`	`DocScrutinizer05`	`I don't talk your gibberish`
`22:06.37`	`DocScrutinizer05`	`I don't care what's encrypted`
`22:06.52`	`freemangordon`	`those 20 euro you're supposed to pay to the taxidriver`
`22:07.01`	`DocScrutinizer05`	`I tell you the gangester hold the transponder to RR POS`
`22:07.07`	`freemangordon`	`RR?`
`22:07.26`	`DocScrutinizer05`	`communication starts with +your+ card, via UMTS and a secondd transponder`
`22:07.33`	`DocScrutinizer05`	`RollsRoyce`
`22:08.00`	`DocScrutinizer05`	`until this pint I can't see where your encryption kicks in`
`22:08.06`	`DocScrutinizer05`	`point*`
`22:08.10`	`freemangordon`	`oh, so the card does not communicate with taxi's terminal, but with some fake one?`
`22:08.25`	`DocScrutinizer05`	`the taxi terminal is both`
`22:08.35`	`DocScrutinizer05`	`or maybe only a fake one yeah`
`22:08.43`	`freemangordon`	`card cannot communicate with two terminals at once`
`22:09.19`	`DocScrutinizer05`	`iot doen't need to communicate with two terminals at once`
`22:09.25`	`freemangordon`	`yeah, got it`
`22:09.29`	`DocScrutinizer05`	`it doesn't*`
`22:09.44`	`DocScrutinizer05`	`you can do ZILCH to stop me pulling that off`
`22:10.15`	`freemangordon`	`no, it doesn't work like that, card verifies the terminal too`
`22:10.23`	`DocScrutinizer05`	`unless user needs to enter PIN to CARD, not _terminal_`
`22:10.47`	`DocScrutinizer05`	`so what, it will verify the RR POS just fine`
`22:11.44`	`freemangordon`	`well, you'll get a receipt, ain't?`
`22:11.54`	`DocScrutinizer05`	`and it won't tell you that it thinks it's at RR`
`22:12.06`	`DocScrutinizer05`	`HAH, the receipt, yeah`
`22:12.41`	`freemangordon`	`DocScrutinizer05: see, if we think that way, lets forget about POS and ATM devices altogether`
`22:12.45`	`DocScrutinizer05`	`but since the taxi terminal is fake anyway, the driver is nice and offers you a free ride since his POS terminal is defect`
`22:13.01`	`DocScrutinizer05`	`finaly you got my point`
`22:13.40`	`freemangordon`	`DocScrutinizer05: well, I am not saying this is impossible, but highy improbable`
`22:13.47`	`freemangordon`	`*highly`
`22:14.10`	`freemangordon`	`oh, wait`
`22:14.32`	`freemangordon`	`where is that gangsta's POS terminal connected to?`
`22:15.00`	`freemangordon`	`and what does the bad guy buys actually?`
`22:15.17`	`freemangordon`	`it is YOU that buys RR, ain't?`
`22:15.35`	`freemangordon`	`so he goets nothing in the end?`
`22:15.36`	`freemangordon`	`*gets`
`22:17.40`	`*** join/#neo900 skuratovskiy (~skuratovs@91.210.100.70)`
`22:17.45`	`freemangordon`	`DocScrutinizer05: think about ^^^ :).`
`22:18.04`	`DocScrutinizer05`	`sorry, busy with council handover`
`22:18.10`	`freemangordon`	`however, please consider discussing this NFC stuff with the other guys`
`22:18.17`	`freemangordon`	`sure, np`
`22:19.34`	`freemangordon`	`If I weren't so tired, I'd have explained that cards stuff way clearer. But as I obviously need some sleep, I'm off to bed`
`22:19.36`	`freemangordon`	`Night`

Generated by irclog2html.pl Modified by Tim Riker to work with infobot.