Fox, Samus, Pit, Mega Man, Mario, Rosalina, Little Mac.. all these seem to be worth it. Except for Link, what the hell have they done to him?!
Nintendo, you should be ashamed of Link's Amiibo!
all i want to know is, can it be done, YES or NO? a 3 character or less response will suffice.
Yes, this can be done. Data is identical per each dump. It's just a raw NFC tag with a few rewritable sectors. Nothing special, very easy to capture/emulate. See my post on researching Pokemon Rumble NFC figures for Wii U: https://gbatemp.net/threads/pokemon-rumble-u-nfc-data.353837/#post-4763104
Also see my research on the NFC tag info and Data pages that I've posted on Wii U brew: http://wiiubrew.org/wiki/Wii_U_GamePad
On there I've also listed some NFC hardware info covering the module itself, along with data that I've dumped from the figures.
Can this be implemented easily in a phone app for backup/restore capabilities? Yes. Can someone make a phone app to emulate their whole figure collection from a phone? Yes, but it's very difficult because you need a custom build of Cyanogenmod on Android because the default implementation of NFC in Android disables access to the phone's secure element for transmitting NFC.
You'll have better luck getting an NFC debug kit for a microcontroller. There are plenty of arduino NFC shields that have secure element access for NFC card emulation. Cheap stuff, $50.
ALSO TO NOTE:
For those of you who think "omg you're going to get sued into the ground," making a "backup archival copy" of your own NFC figure collection is perfectly legal. Nintendo has implemented raw NFC protocols in their products. They COULD have chosen to encrypt the transmission of the figure data but chose NOT to, so we are free to backup/restore to our heart's content. If encryption were being reverse-engineered, then yes, you might have to worry about DMCA, but there's no encryption in the figure transmission whatsoever.
In America they are $13 each. Times that by 48 playable characters, and you have a grand total of $624. So they're no longer just 15 quid. (even if you get lucky and get them at $5 used each which would be a steal, that's still $250) And like everyone on these forums that likes to use gameboy flash carts and carry around 20+ games in a single cartridge instead of 20 individual games, it would be nice to have 50 amiibos in something the size of a phone versus 50 physical items you'd have to carry around.And this is the day that pirates are even pirating physical figurines.
Wow....
Come on, their 15 quid.
Prolly cheaper when buying them second hand later on...
In America they are $13 each. Times that by 48 playable characters, and you have a grand total of $624. So they're no longer just 15 quid. (even if you get lucky and get them at $5 used each which would be a steal, that's still $250) And like everyone on these forums that likes to use gameboy flash carts and carry around 20+ games in a single cartridge instead of 20 individual games, it would be nice to have 50 amiibos in something the size of a phone versus 50 physical items you'd have to carry around.
thats right, i dont mind buying the actual figures, but i dont want to be having to keep taking them from the shelf each time i want to use them, its more conveniant to just load up a file with the right figures data and plop my phone down which means my nice nintendo figures can stay on display on the shelves.
Disney infinity figures can be read through their boxesAaaaaaactually, this is not possible, and I'm certain its probably to prevent something like what you guys are talking about from happening. Anyway, the current security measures inside an Amiibo box is a small 1"x1" (ish) sheet of tin foil at the bottom inside the packaging that prevents communication with anything.
View attachment 12350
To everyone else, this would definitely be a good way to spoof an amiibo, but i'm not sure if you could exploit the system or something like that.
RFID can work from pretty big distances, sure, but these are specifically made to only work close by. Either way - being able to read them isn't really something that matters when you know the data format and can emulate them.
Yes, this is technically possible. The figures are Mifare Ultralight NFC tags, and the data is readable without any keys. Writing is locked, however. Most NFC enabled Android phones support Host-based Card Emulation, which could reproduce this information in a way readable for the gamepad. Theoretically.
Technically/theoretically possible doesn't mean it'll happen though.
If I have some free time I'll look into it. Reverse engineering stuff is a hobby of mine.
My point exactly. Scanning rfids is NOT the issue, i can do that all day long. I need someone to write a basic gui for android and the rest i can take care of.....Disney infinity figures can be read through their boxes
If you do get something working let me know and I can test as wellMy point exactly. Scanning rfids is NOT the issue, i can do that all day long. I need someone to write a basic gui for android and the rest i can take care of.....
Exactly, read previous post. My intent is less piratey, more convenience....The paint job in their new condition isn't that solid much less being used by someone who probably dropped and more.
Most online retailers sell it for about £10, but ain't sure about retail stores.
And this is the day that pirates are even pirating physical figurines.
Wow....
Come on, their 15 quid.
Prolly cheaper when buying them second hand later on...
Well, if you have an android less than a year old, and a miibo, you may be a candidate for beta. Ill post if one becomes compiled.If you do get something working let me know and I can test as well
all i want to know is, can it be done, YES or NO? a 3 character or less response will suffice.
yep haha glad you remembered it, what would be better is if i could use a pi to spoof the nfc with a say probe that i just put on the amiibo spot would be much simpler than putting my phone on my gamepad
EDIT: i actually own the link one already because i have a small collection of legend of link stuff
but i plan on getting more figures as the amiibo feature develops and when more games and software are using it.
thats right, i dont mind buying the actual figures, but i dont want to be having to keep taking them from the shelf each time i want to use them, its more conveniant to just load up a file with the right figures data and plop my phone down which means my nice nintendo figures can stay on display on the shelves.
Yes, this can be done. Data is identical per each dump. It's just a raw NFC tag with a few rewritable sectors. Nothing special, very easy to capture/emulate. See my post on researching Pokemon Rumble NFC figures for Wii U: https://gbatemp.net/threads/pokemon-rumble-u-nfc-data.353837/#post-4763104
Also see my research on the NFC tag info and Data pages that I've posted on Wii U brew: http://wiiubrew.org/wiki/Wii_U_GamePad
On there I've also listed some NFC hardware info covering the module itself, along with data that I've dumped from the figures.
Can this be implemented easily in a phone app for backup/restore capabilities? Yes. Can someone make a phone app to emulate their whole figure collection from a phone? Yes, but it's very difficult because you need a custom build of Cyanogenmod on Android because the default implementation of NFC in Android disables access to the phone's secure element for transmitting NFC.
You'll have better luck getting an NFC debug kit for a microcontroller. There are plenty of arduino NFC shields that have secure element access for NFC card emulation. Cheap stuff, $50.
ALSO TO NOTE:
For those of you who think "omg you're going to get sued into the ground," making a "backup archival copy" of your own NFC figure collection is perfectly legal. Nintendo has implemented raw NFC protocols in their products. They COULD have chosen to encrypt the transmission of the figure data but chose NOT to, so we are free to backup/restore to our heart's content. If encryption were being reverse-engineered, then yes, you might have to worry about DMCA, but there's no encryption in the figure transmission whatsoever.
Well, if you have an android less than a year old, and a miibo, you may be a candidate for beta. Ill post if one becomes compiled.
I'm really surprised they haven't encrypted their amiibos, if what Master0fBlunt says is true. Basically, if Ninty wanted to make amiibos "unhackable", they could.
This was discussed in a recent thread (http://gbatemp.net/threads/possible-to-hack-amiibo.373149)
Long answer: NFC isn't a simple wireless barcode. The best way to imagine the amiibo is as a very weak, low-powered computer. When it comes close to an NFC reader, the reader transmits enough electricity to it, wirelessly, to turn it on. Then, they start talking to each other. Since they are both computers, the information can be encrypted (very well). The only way to decrypt it, is to know the keys. The encryption can be done via hardware (SAM modules - though I'm sure Ninty hasn't done this), or via software.
Basically what happens in layman's terms, is that, when an NFC/RFID card comes close to an NFC/RFID reader, the card is activated, through a weak wireless electrical signal. The card has some publically accessible data (ID, type of wireless technology, etc), and some private data. To access the private data, it is decrypted with specific keys. Different keys can give you different levels of access to the private data (ie, one key might let you read-only, another might let you write). Simply intercepting the packets or spoofing the public data of an NFC card, wouldn't let you actually spoof the card itself. If that were the case, with a simple reader you could get free bus/train rides in whatever city used RFID cards (Hong Kong, London, etc).
This isn't entirely accurate, but it's close enough that you get an idea of how hard it will be to hack, and also why you shouldn't expect to just scan it with your phone, then use your phone instead of an amiibo. Also I'm not sure if they use commonly accepted standards, or have any propriety ones. If they have propriety ones, then in all likelihood your phone wouldn't be able to emulate them, without a never-to-come firmware upgrade to your phone's NFC driver. To put this simply - the NFC language Nintendo uses, might not be the commonly-accepted language. It's like your phone speaks the international language of English, but the amiibo is programmed to only speak Klingon - and this is at the hardware-firmware level, so you can't download an app to translate for you.
Finally, I'd be surprised (and disappointed), if Ninty didn't bother using any decent encryption. RFID encryption has been around long enough that getting the know-how to do it, would be easy enough for them.
If someone feels I'm wrong about anything, please feel free to correct me.
i dont think nintendo would bother wasting time to encrypt these since they're designed for kids to use and most savvy parents wouldnt let their kids take their games consoles/accessories outside to play with them, the amiibo gimik is supposed to be a inside the home toy. its not like they expect kids age 7 to take their £200 handheld and £15 figures out just to play ssb.
EDIT: my point being is that the product is designed for kids, kids dont even know how to use a computer propperly, nintendo doesnt expect kids to back up their amiibo figures, which is why there is no encryption. and now i think about it, i dont want to use my phone as an amiibo because that takes the fun away from using the amiibo feature in the first place.
What I do with my hardware, that I purchased, is mine to whatever I like with. My attorney and the DMCA seem to disagree sometimes, but who cares? You only live once, get some knowledge, and use it.