e-passports

Security breakdown: E-passport chip easily hacked, cloned

Friday, August 04, 2006 by: NaturalNews
Tags: airport security, e-passports, RFID

eTrust Pro Certified

Most Viewed Articles
Popular on Facebook
The five biggest lies about Ebola being pushed by government and mass media
Why does the CDC own a patent on Ebola 'invention?'
White House admits staging fake vaccination operation to gather DNA from the public
Ultraviolet light robot kills Ebola in two minutes; why doesn't every hospital have one of these?
EXCLUSIVE: Natural News tests flu vaccine for heavy metals, finds 25,000 times higher mercury level than EPA limit for water
Truvia sweetener a powerful pesticide; scientists shocked as fruit flies die in less than a week from eating GMO-derived erythritol
Irrefutable proof we are all being sprayed with poison: 571 tons of toxic lead 'chemtrailed' into America's skies every year
Tetanus vaccines found spiked with sterilization chemical to carry out race-based genocide against Africans
Russia taking McDonald's to court, threatens countrywide shutdown
Oregon man serving prison sentence for collecting rainwater on his own property
The best way to help your body protect itself against Ebola (or any virus or bacteria)
Global warming data FAKED by government to fit climate change fictions
Senator who attacked Doctor Oz over dietary supplements received over $146,000 in campaign contributions from Big Pharma mega-retailer and Monsanto
Healthy 12-year-old girl dies shortly after receiving HPV vaccine
Ebola outbreak may already be uncontrollable; Monsanto invests in Ebola treatment drug company as pandemic spreads
HOAX confirmed: Michelle Obama 'GMOs for children' campaign a parody of modern agricultural politics
Ben & Jerry's switches to non-GMO, Fair Trade ice cream ingredients
W.H.O. contradicts CDC, admits Ebola can spread via coughing, sneezing and by touching contaminated surfaces

Delicious
(NaturalNews) The United States and other countries are going to begin distributing electronic passports this year, but a computer security consultant says he can clone the passports easily.

"The whole passport design is totally brain damaged," said Lukas Grunwald. "From my point of view all of these RFID passports are a huge waste of money. They're not increasing security at all."

Because encrypting the data on the e-passport's RFID chip would involve building a complicated infrastructure, countries have opted not to do so, but "if you can read the data, you can clone the data and put it in a new tag," Grunwald said.

Grunwald's ability to clone the e-passports has added to controversy already stirred up by their potential to invade privacy and their similarity to the methods of Big Brother of "1984" fame.

"Either this guy is incredible or this technology is unbelievably stupid," said Gus Hosein, a senior fellow at Privacy International, which officially stands in opposition of the e-passport technology. "I think it's a combination of the two."

"Is this what the best and the brightest of the world could come up with? Or is this what happens when you do policy laundering and you get a bunch of bureaucrats making decisions about technologies they don't understand?"

By spending time reading e-passport standards posted on the U.N.'s International Civil Aviation Organization website, Grunwald said he figured out how to clone the chips in about two weeks. Since all countries' e-passports would be designed using the same ICAO standard, Grunwald says his cloning method would work regardless of country of origin, although he admits the cryptographic hashes used to authenticate data mean people cannot inconspicuously change things like birth date or names on the chips.

Even so, through the cloning process, a known terrorist could carry a passport with his real name and photo, equipped with a cloned RFID chip that identifies someone else. This means that while any human screening the passports would be able to identify the person from his physical passport, a fully electronic system would check the wrong name. Grunwald said that, luckily, the machine-readable OCR at the bottom of the passport would still fail to match the RFID data.

Frank Moss, deputy assistant secretary of state for passport services at the State Department, said that the United States does not intend to use a totally electronic passport-inspection system. However, other countries such as Australia are considering completely automating the process.

According to Moss, Grunwald's accomplishment is no surprise. He said that the e-passport's designers have known about the issue for some time, and added that things like the digital photograph of the passport holder -- embedded in the data page -- could still prevent someone from entering countries through use of a forged or modified e-passport.

"What (Grunwald) has done is neither unexpected nor really all that remarkable," Moss said. "The chip is not in and of itself a silver bullet ... It's an additional means of verifying that the person who is carrying the passport is the person to whom that passport was issued by the relevant government."

Grunwald noted, however, that false identification was not the only danger from cloning e-passports. Someone could introduce malicious code to border-screening computers through the RFID tag or write corrupt data to it, which could crash an electronic inspection system not pre-protected from such an attack.

"I want to say to people that if you're using RFID passports, then please make it secure," Grunwald said. "This is in your own interest and it's also in my interest. If you think about cyberterrorists and nasty, black-hat type of guys, it's a high risk ... From my point of view, it should not be possible to clone the passport at all."

###

Join over four million monthly readers. Your privacy is protected. Unsubscribe at any time.
comments powered by Disqus
Take Action: Support NaturalNews.com by linking back to this article from your website

Permalink to this article:

Embed article link: (copy HTML code below):

Reprinting this article:
Non-commercial use OK, cite NaturalNews.com with clickable link.

Follow Natural News on Facebook, Twitter, Google Plus, and Pinterest

Colloidal Silver

Advertise with NaturalNews...

Support NaturalNews Sponsors:

Advertise with NaturalNews...

GET SHOW DETAILS
+ a FREE GIFT

Sign up for the FREE Natural News Email Newsletter

Receive breaking news on GMOs, vaccines, fluoride, radiation protection, natural cures, food safety alerts and interviews with the world's top experts on natural health and more.

Join over 7 million monthly readers of NaturalNews.com, the internet's No. 1 natural health news site. (Source: Alexa.com)

Your email address *

Please enter the code you see above*

No Thanks

Already have it and love it!

Natural News supports and helps fund these organizations:

* Required. Once you click submit, we will send you an email asking you to confirm your free registration. Your privacy is assured and your information is kept confidential. You may unsubscribe at anytime.