About Comp128V2 or a way to overtake the Ki - GSM-Forum

Trek · 10-11-2006, 15:18

ok,I know that I don't post often, but correct me somewhere if I'm wrong.
As far as I know the inicialisation of the SIM over-the-air is in this way:
We have our phone(PH) and Our Current Operator(MS). The PH read the SIM and send the IMSI to the MS, if it is an existing IMSI, the net send to the PH a random 128bit number,which is received by the PH and send to SIM by terminal command. Then SIM send to PH by terminal command the SRes and Kc. The net had allready calculated these two numbers and expect to receive them from the PH.
My idea is to overtake the Ki, which is inside the sim and with Comp128v2 is almost impossible (with the info which we have uptill now). and to concentrate in creating algorithm to calculate the SRes and Kc. I know I know. for each SIM it'll be different algorithm, but it should've something similar in all SIM's. A pattern maybe.So we put our algo inside a different SIM, or if we don't have enough fast processor on smart card we redirect Terminal commands to the memory of the PH. Like that we can have a phone number without a sim card. Or better.. many phone numbers. It depends from the database (DB) with the algo for cripting the SRes and Kc.

10-11-2006, 15:18	#1 (permalink)
Trek Junior Member Join Date: Dec 2004 Age: 39 Posts: 30 Member: 95401 Status: Offline Thanks Meter: 0	About Comp128V2 or a way to overtake the Ki ok,I know that I don't post often, but correct me somewhere if I'm wrong. As far as I know the inicialisation of the SIM over-the-air is in this way: We have our phone(PH) and Our Current Operator(MS). The PH read the SIM and send the IMSI to the MS, if it is an existing IMSI, the net send to the PH a random 128bit number,which is received by the PH and send to SIM by terminal command. Then SIM send to PH by terminal command the SRes and Kc. The net had allready calculated these two numbers and expect to receive them from the PH. My idea is to overtake the Ki, which is inside the sim and with Comp128v2 is almost impossible (with the info which we have uptill now). and to concentrate in creating algorithm to calculate the SRes and Kc. I know I know. for each SIM it'll be different algorithm, but it should've something similar in all SIM's. A pattern maybe.So we put our algo inside a different SIM, or if we don't have enough fast processor on smart card we redirect Terminal commands to the memory of the PH. Like that we can have a phone number without a sim card. Or better.. many phone numbers. It depends from the database (DB) with the algo for cripting the SRes and Kc.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
What is the correct way to connect the mobile phone in the box?	marcopolod	Z3X-Team Products	1	01-26-2010 09:34
Here--> The best way to downgrad the new version of the BB5s (With Video Files)	aha1alfa	Nokia Base Band 5 ( BB-5 )	41	04-14-2009 00:45
Is there a way to flash the FUBU to the phone fo rSE J200i	hooi76	UFS2 + UFS3-Tornadoflasher	0	10-01-2005 11:20
what is the best way to clean the gsm	jasim	Nokia Legacy Phones ( DCT-1 ,2 ,3 ,L )	3	07-06-2002 06:04