Note that this article is 2 years old, and therefore predates iOS 18.1, which allows applications to directly access the NFC hardware: https://developer.apple.com/support/nfc-se-platform/

This is cool, do love the hacking ingenuity. And not that I want to give Apple extra credit, but they are slowly opening up NFC: https://www.macrumors.com/guide/apple-nfc-chip-ios-18-1/ - Is is very restrictive (probably) and very late - most certainly. But at least it's slowly coming.

Oh and I only have to give my identity to Alipay and Chinese transit? And modify my phone so it consistently beacons out a trackable ID?

That information could come in handy, cool.

A complementary method is to attach a writable NFC sticker tag to the phone. Though it has to be placed far enough from the phone's NFC antenna in order for both/either to work.

The upside is that you get a second tag of your choice (physically) on your phone. There are even UID-writable sticker tags out there (even if they can be a tiny bit harder to find).

You also don't need to replace your default transit card, which could be inconvenient depending on where you live.

I’m curious what the security of these NFC lock systems looks like. (I’m talking about the commercial building systems mentioned like Brivo and Unifi, not home systems.)

In particular, I know unifi cards rotate keys. So you can’t simply clone them with a Flipper, and this also means third party cards don’t work. By default, this is true, but you can’t simply clone turn it off, as mentioned in the article.

Does this mean that the other systems’ cards are easily cloned? This seems very insecure, if so.

I wonder why the Chinese transit card uses an unsecure method. Sounds like that is a lone outlier case so presumably intentional for some reason?

this is cool but the limitations make it almost unusable

should have a (2023) tag based on commits

Does this work with ANY card set as the transit card in iOS? Or just this one type of transit card?

Love seeing the Xiamen City Metro card! Would recognize the scenery from anywhere

there's not technology problem, just because Apple grant NFC privilege to Alipay and local partner in China

> 1. Install the AliPay app

> 2. Register inside the AliPay app

How about no.

I was really excited about the new UniFi G3 access card reader claiming support for iPhone unlock until I realized it's $5/year/device. It just seems like a slow boil into subscriptions for a company whose entire value prop is prosumer networking without the contracts.

I don't know if it's Apple or UniFi to blame for this fee, but it turned me off entirely of what would have been a day 1 purchase. Other, cheaper junky IoT home locks support Apple HomeKit for unlocking for free, why can't UniFi figure it out?

Really glad to see hacking in this space.

Or ... maybe we should take a step back and stop trying to shove everything into phones - like drivers license or all forms of payment.

Would be cool to get into the office like this. We have RFID tags.