Reverse engineering Glasgow’s subway tickets

<p>As a Glaswegian I use the subway almost every day for university and work. The subway is run by Strathclyde Partnership for Transport (SPT) and has two different lines: the inner circle and the outer circle. There are fifteen different stops with the most popular ones being&nbsp;<em>St. Enoch&rsquo;s, Buchanan Street, Hillhead,&nbsp;</em>and&nbsp;<em>Partick</em>. Each subway station has a set of gates which can be opened using one of three different types of tickets: a paper ticket, smartcard, or zonecard. Paper tickets are only valid for one day whereas smartcards and zonecards can be used many times. In this case study we will be focusing on reverse engineering paper tickets to gain a deeper understanding of how they work.</p> <p>This blog post contains information on how the SPT paper tickets work, how the data can be extracted from them, how we can understand this data, and how this data can be abused by a potential attacker.</p> <p><a href="https://blog.ry4n.org/reverse-engineering-glasgows-subway-tickets-5638b405a839"><strong>Website</strong></a></p>
Tags: subway tickets