So the latest news is that the RFID chips in electronically enabled passports are NOT encrypted, which bright spark came up with that idea?
Ok so you implement ‘more secure’ RFID passports, and leave all the data in plain text for anyone to tamper with – nice!
So what do you think they are gonna do about that? Probably nothing right?
A German computer security consultant has shown that he can clone the electronic passports that the United States and other countries are beginning to distribute this year.
The controversial e-passports contain radio frequency ID, or RFID, chips that the U.S. State Department and others say will help thwart document forgery. But Lukas Grunwald, a security consultant with DN-Systems in Germany and an RFID expert, says the data in the chips is easy to copy.
“The whole passport design is totally brain damaged,” Grunwald says. “From my point of view all of these RFID passports are a huge waste of money. They’re not increasing security at all.”
Complicated infrastructure stops people from doing something properly, that’s a pretty lame excuse.
Apparently these new super-duper RFID enabled passports are going to help cut down on forged documents…yeah when it’s not encrypted?
Although countries have talked about encrypting data that’s stored on passport chips, this would require that a complicated infrastructure be built first, so currently the data is not encrypted.
“And of course if you can read the data, you can clone the data and put it in a new tag,” Grunwald says.
The cloning news is confirmation for many e-passport critics that RFID chips won’t make the documents more secure.
“Either this guy is incredible or this technology is unbelievably stupid,” says Gus Hosein, a visiting fellow in information systems at the London School of Economics and Political Science and senior fellow at Privacy International, a U.K.-based group that opposes the use of RFID chips in passports.
Personally I’m on the side that that the technology is incredibly stupid.
Sometimes people amaze me, not in a good way.
Source: Wired and thanks to Daniel for the heads up on this one.
- Rowhammer – DDR3 Exploit – What You Need To Know
- SnoopyPro – Windows USB Sniffer Tool
- ATM Hacked Using Samsung Galaxy S4 & USB Port
- THC-ePassports – THC Clones Biometric ePassport – Elvis Presley Passport
- France Complaining of China Hacks Too
- German Police Creating Law Enforcement Trojan
Most Read in Hardware Hacking: