It brings rather vividly to mind that when we were first considering relay attacks in 2006 that a chap from a POS vendor contacted us and told us we were talking nonsense and technically wrong… that the timing constraints were so tight that a relay attack that might sound good in theory just would be near impossible to pull off in practice without a really expensive custom radio link etc.

At the time I just poo-pooed his private advice, and indeed a year or so later the demo was up and running and really did work. But maybe he knew something we didnt at the time… that some terminals were pretty sensitive to timing. His conclusion was still ultimately wrong, but this at least explains in my head why this chap so earnestly believed that it wouldnt work.

Anyhow, thanks for posting the synopsis.

Mike