Privacy Threat in New RFID Travel Cards? 265
DemolitionX9 writes to tell us ZDNet has an interesting article rehashing the problems with privacy in future RFID-equipped travel documents and ID. The piece focuses on a recent speech given by Jim Williams, director of the Department of Homeland Security's US-VISIT program. From the article: "Many of the privacy worries center on whether RFID tags--typically minuscule chips with an antenna a few inches long that can transmit a unique ID number--can be read from afar. If the range is a few inches, the privacy concerns are reduced. But at ranges of 30 feet, the tags could theoretically be read by hidden sensors alongside the road, in the mall or in the hands of criminals hoping to identify someone on the street by his or her ID number."
yes, but.. (Score:5, Funny)
Cheap thrills posted by bat020 (Score:2, Funny)
I did this today and it made me insanely happy for about 15 seconds.
Find a BT landline phone. Send a text message to it reading "The time space continuum is about to collapse." Wait by the phone. A few seconds later it will ring - and Tom Baker will read your message out to you!
Re:yes, but.. (Score:2, Funny)
Isn't this the guy that got busted as a pedophile?
Ok, I know it isn't....but whenever I get the chance from now on, I'm going to do my part and belittle the Department of Homeland Security as much as I can. Hopefully distilling it into the joke that it is. I only wish I could get into press-conferences where they're speaking and ask that question. "Excuse me, were you the guy that was busted for being a pedophile"?
If you couldn't tell, I'm a disil
Re:yes, but.. (Score:3, Insightful)
practically speaking (Score:2)
Re:practically speaking (Score:5, Informative)
- Capture your data.
- Encode to my chip.
- Now I'm you, I can:
- Travel as you.
- Commit various offences as you
- Do whatever I want as you, and hell, the computer can't be wrong.
- (mandatory) PROFIT!
But I'm sure more devious plots will come to other people's minds...Re:practically speaking (Score:5, Informative)
RTFA.
The 96 digit number would be a key into a database, which would "automatically display the cardholder's picture and other biographic information on the border agent's computer screen."
The agent sees the person who is using the card doesn't match the stored information, and hauls you in.
Finally, according to the TFA, "They're also exploring using a card that would have to be activated by the user, through a fingerprint or some other biometric method, before any information could be read remotely."
Re:practically speaking (Score:2, Insightful)
That doesn't work too well in a passive setting, like along side of a road, or unmanned building entrances, etc...
On the back of my credit card, I have my endorsed name AND a note that says "please check ID". How often do you think they check my ID? Also, do you think EVERY place that is going to be using this cards has a nice pretty display to view the picture of the individuals? And if it's a simp
Re:practically speaking (Score:3, Interesting)
So, imho, it is different due to the perceived infallibility of computer
Re:practically speaking (Score:2)
They can do it without your knowledge.
They can do it N times a day, N = number of folks who are in range.
They can hold on to the stolen data indefinitely, until it is useful, again without your knowledge.
Your question is kile asking, "how is an MP3 file different from a physical CD?" I think the answer to that is obvious...
Re:practically speaking (Score:5, Insightful)
How is this any different from someone stealing your passport now?
Because it's not even necessary to steal your passport, it's not even necessary to touch it. You can walk past someone at 25 feet and copy it. If you have an ordinary passport and keep it in a safe place all the time you can be pretty sure no one takes it without you knowing and if they steal it, you might notice it's missing.
Besides, if the RFID card is designed to be readable at 25 feet, it's probably possible to do so at a much longer distance using special equipment.
Re:practically speaking (Score:2, Interesting)
If, however, your goal is not to provide a fool-proof form of Passport, but rather to normalize the use of a remotely (and cover
Informative? WTF? (Score:2)
All that is on that damned card is an index number. So, sure, you go right ahead and swipe that baby at customs and have a good time with SGT Ufia.
Honestly, do you people really think these things through? Cripes. The ID by itself is totally, 100%, COMPLETELY USELESS to anyone but the person associated with it unless you have madd haxx0r $|<i||z and can a
Re:Informative? WTF? (Score:2)
I like indignant people who yell that someone else hasn't thought it through, when they in fact havn't thought it through.... :)
So here goes: I'm a bad-guy (tm). I want to move through a busy border without being noticed.
So, I wa
Lay off the Philip K Dick. (Score:2)
The amount of work you'd have to go through to make this ID useful as a "forgery" is so ridiculous as to make it possible only for those who have access to a government intelligence agency's resources...or a checking account large enough to simulate such.
Re:Lay off the Philip K Dick. (Score:2)
I'd say this will make them even less strict. Also, if someone stole your RFID info and came across in a car later lin
Re:Lay off the Philip K Dick. (Score:3, Funny)
I've always had the situation when going into the US, they ask if I have and fresh fruit/vegetables or meats to declare. However, when I go into Canada, I'm always asked if I have any firearms or weapons to declare.
Re:Lay off the Philip K Dick. (Score:3, Interesting)
You didn't RTFA. The whole point of this card is so that people don't have to open their car windows or slow down at border crossings because the current border crossings interfere with commerce.
When cars are moving past the checkpoint at 30-60mph, which of the machines there are going to check finger prints and iris geometry again?
Regards,
Ross
Re:Lay off the Philip K Dick. (Score:3, Funny)
I'm guessing it'll be like a toll booth change bucket; just toss your finger and your eyeball into the basket and you're off!
How you detach those components and grow them back later is your problem.
Mommy, he yelled at me first! (Score:2)
TFA says nothing about the database containing biometric data, nor does it say that any other biometric data will be checked*. And quite frankly, if the border does start getting iris and/or fingerprint scans for everyone
What would be the benefit compared with a carried paper passport with your picture and a bar code?
*
From TFA: (Score:2)
Again, total ignorance marked as "informative."
Re:practically speaking (Score:3, Interesting)
1. Capture your data.
2. Encode to my chip.
3. Now I'm you, I can:
4.
* Travel as you.
* Commit various offences as you
* Do whatever I want as you, and hell, the computer
Re:practically speaking (Score:2)
So there is nothing in today's reality that leads me to believe that this new ID number won't also be "stolen", and won't also be misused...
Anyone who thinks that "it will never happen" doesn't live on Planet Earth... or at least not in my reality.... or maybe they just have never written or maintained software before...
The phrase "it will never happen" is uttered right before the unhandled exp
Re:practically speaking (Score:2, Insightful)
Imagine that these ids can be read from a distance. Now suppose a chain of stores, say some clothing stores, installs sensors and begins reading these tags. You sign up for their "monthly mailing list", and now they know who you are and what your unique ID is.
After a trip, you get an email/letter saying, "Thanks for visiting our [exotic destination] location. We hope you enjoyed your trip". Okay, not terrible, but I don't really want clothing stores knowing where I take my vacations.
Now, substitute
Re:practically speaking (Score:5, Insightful)
There is off the shelf hardware that will allow you to read RFID tags (with varying levels of reliability) from ranges in excess of thirty feet. A collection of RFID tags produces a sort of constellation even if they are not unique. For instance, the guy who has the bottle of scope mouthwash, the bag of fritos flamin' hot, and the #2 philips screwdriver at this intersection is probably the same guy who has the same stuff at the next intersection. This allows you to positively track someone based on checkpoints, even without a unique RFID like your passport will be. Furthermore, even if some of the tags don't scan properly, the percentage similarity can be compared from point to point and you can get a fairly positive match anyway.
With Unique tags, then you don't need to go even that far, of course.
If you cannot imagine why this is a bad thing, then truly, you should read 1984.
Re:practically speaking (Score:2)
If the off-the-shelf stuff will do it most of the time, then just think about what the sooper sekrit beta test only released to military and federal law enforcement equipment can accomplish...
Re:practically speaking (Score:5, Insightful)
"Ground Beef a L'amerique".
Ingredients:
1 Terrorist.
1 RFID reader.
1 Pringles can.
1 Blasting cap.
1 Pound of boom-boom stuff.
Assemble recipe. Bake in broad daylight on side of road until American tour bus comes by.
Re:practically speaking (Score:2)
It's quite simple. If you're travelling abroad, it's possible that someone would want to target you based on your nationality from a discrete range. This was proven possible at the blackhat convention, (see the link below). I appreciate that TPTB are paying attention to this issu
Re:practically speaking (Score:2)
If you are an American, this has nothing to do with you, if you are visitor , someone MAY be able to read your travel entry visa number... what makes me curious is what exactly can you do with a entry visa id number? Its kinda like being able to read your vehicle VIN number, like havi
Re:practically speaking (Score:2)
Imagine what would happend if all those evil thiefs can steal your car's VIN number... Then they can.......they can.... I got nothing....
They can steal your VIN and they can go to a shady dealer and make some key blanks that fit your locks (often based on the VIN. If you've got a chipped key, they can either get a known good ecu and swap that as part of the theft or they can tow your car.
Re:practically speaking (Score:3, Insightful)
RFID is bad because it makes the job of criminals much easier, and there has bee
Targeted Americans in foreign lands (Score:2)
Even a RFID passport that emits only a few inches can be a danger if the criminals use more powerful amplifiers on their RFID
A minor nit.... (Score:2)
Transmitters are powerful, receivers and preamps are sensitive.
Re:A minor nit.... (Score:2)
has to be powerful enough to energize the RFID tag at the distance. If it can do that, since
the RFID chip uses inductive coupling (as opposed to being a transmitter itself), then the
reader is automatically sensitive enough to read it.
Re:A minor nit.... (Score:2)
Re:A minor nit.... (Score:2)
The activator works by creating a variable magnetic field in a general area. The RFID tag converts this to energy and rebroad casts it in a pattern that the reader picks up.
All that is needed to snoop is to have a reciver near where someone ELSE has set up a normal reader.
Could I point a parabolic antenna at the enterance to a retail stote and read every tag that gets energized by the doorway arch?
The RFID tag should on
Re:A minor nit.... (Score:2)
from the card to the reader. What this means is that the antenna coils in the RFID and the
reader create a loosely coupled transformer. When the RFID or smartcard wants to send
information to the reader, it switches on/off a load connected to the antenna which changes
the impedance of the whole system, including the impedance of the antenna on the reader. These
changes in measured impedance are detected by the reader a
Re:Targeted Americans in foreign lands (Score:2)
Re:Targeted Americans in foreign lands (Score:2)
Re:practically speaking (Score:2)
Muggers would be forced to employ a technical assistant who would scan prospective victims as they approached. Only those with lots of cash or a great credit score would be mugged.
Hmmm.. This might actually help you, depending on your financial situation.
Bet it would hurt the bigshots who pass the law, though. Wait! On second thought, they'll probably write themselves an exemption and not have to carry RFIDs.
How about this... (Score:2)
Re:practically speaking (Score:2)
RFID identification that could be read from afar would be every single hitmans and political terrorists wet dream.
The very idea that anyone the least concerned with security would fail to realize the ways such things could be exploited speaks volumes.
Re:practically speaking (Score:2)
2. Watch as families enter security to depart on trip to Disneyland or wherever
3. Use list of families now on vacation to compile a list of addresses so you can pilfer their houses
I am sure there are plenty of other ways to abuse this, but this is just the first one that popped into my head.
Even if it was a few inches... (Score:3, Insightful)
Perhaps... (Score:2)
I mean, how useful would it be to you to have a list of all the social security numbers of everyone in a baseball stadium if you didn't have any of the names? Hell, you might as well just randomly generate the numbers.
Wouldn't be to terribly risky for me to say that my SSN is 872-46-2392 (it's not) if there's no way for you to get any other identifying information with which to match it as by itself it is totally useless.
Re:Perhaps... (Score:2, Informative)
If RFID cards become pervasive, a gray market in matching serial numbers to real IDs will pop up just like there's currently a market among spammers for e-mail addresses. Any unscrupulous merchant with an RFID reader could harvest positive IDs from their customers at the checkout counter.
The key difference with SSNs is that you can't read them rem
You don't need to. (Score:2)
What's NOT easy to do is match the other _necessary_ information to make that number useful and that is no different for this or any other number, whether stored in an RFID chip, printed in a barcode or tatooed on your butt.
Re:Perhaps... (Score:2)
The key difference with SSNs is that you can't read them remotely from everyone who walks by.
Until, for security reasons, SSN cards get rfid tags. Sometime after driver's licenses I'd wager
Re:Even if it was a few inches... (Score:2)
Re:Even if it was a few inches... (Score:2)
Imagine some crook trying to fake your identity to gain entrance into the US of A, showing up at customs with your eyes, one of your hands and your head!
Let me be the first to say (Score:2, Funny)
Give me a yagi and I'll read your tagy.
RFID triggered terrorist bombs (Score:5, Insightful)
Or RFID triggered goverment bombs (Score:2, Insightful)
How is this insightful?? (Score:2)
Terrorists typically don't target specific people, by this I mean target Fred Smith versus targeting any generic American. They target locations. They blow up the WTC, the Madrid train station, a Mosque, or a bar in Bali. Killers target specific people, and using RFID to kill a specific person is overkill (pun intended). There are many, far easier ways, to target specific person. Now if the original can be moderated funny, I would hav
Re:How is this insightful?? (Score:2)
Cellphone, anyone? (Score:2)
Re:RFID triggered terrorist bombs (Score:2)
I'm not scared!!!! (Score:2)
In other news ... (Score:3, Insightful)
(I choose such an odd analogy because rfid readers are about as hard to obtain as microscopes. Not everyone will have one on them but it's not exactly mil-spec hardware)
Re:In other news ... (Score:2)
Why would you think that someone who REALLY wants your ID has harder times getting it? We're not talking about Joe Shmoe Average and his cat, and not the highschool scriptkid next door. Yes, those babies cost a fortune (for Mr. J.S.Average, at least), but it's peanuts to someone organised to do something 'bad' with 'em.
Re:In other news ... (Score:2)
The argument "someone who wanted this information would get it anyway" is a flawed one, I just can't see the flaw.
Re:In other news ... (Score:2)
Seen Gattaca?
I don't want to be tagged! (Score:2, Funny)
Re:I don't want to be tagged! (Score:2)
Terrorism applications (Score:4, Interesting)
And yes, some terrorist groups do have the capability to build custom electronics. You can see examples of IRA custom circuit boards in the Imperial War Museum [iwm.org.uk], London.
No control (Score:5, Interesting)
Unless the Feds are going to come up with an air-tight encryption scheme, this is a recipe for disaster. This isn't like the EZPass I have on my car, which is only linked to my account and determines if I have enough to pay the toll. These chips will potentially carry a lot of personal and very useful information, especially if you're a crook looking to use somebody's id to get across the border or to create fake identity documents for sale.
Frankly, this whole idea is mainly a panacea. If it works, the bad guys will simply sneak across the thousands of miles of undefended and unmonitored border we have in the US. Others will start turning innocent people into mules by swiping their identities and using them to get things across. Instead of making the borders of this nation more secure, the government is creating even more insidious ways for someone to come into this country. I think it's time to go back to the drawing board.
Re:No control (Score:2)
Even within the fraud-free bubble the government imagines this technology
Re:No control (Score:2)
He's playing solitaire alright, but that PDA has an RFID scanner built in, and he's not syncing to keep his calendar up to date.
Take a batch of stolen identities and just fly around the country for a few days, using credit cards made out to the names of stolen identities to finance the trip.
You don't even have to take any international flights, just go through a few airports that have international terminals.
Oh, you got it wrong (Score:2)
What about more powerful scanners (Score:2, Interesting)
IANARFIDE (I Am Not An RFID Engineer)
Re:What about more powerful scanners (Score:2)
Devil's advocate - switch the antenna (Score:5, Insightful)
Why not put a switch in the antenna's path? To use the card, you have to push a contact button to turn it on? That would stop passive scanning, right?
Re:Devil's advocate - switch the antenna (Score:2)
Re:Devil's advocate - switch the antenna (Score:4, Informative)
One of the more interesting suggestions in the article is to make the document into a book-style (like passport) and make the cover from RF blocking material - meaning you have to open the "book" to be scanned.
A boon for terrorists (Score:3, Insightful)
Re:A boon for terrorists (Score:2)
Re:A boon for terrorists (Score:2)
I'm not sure if this applies But What About.. (Score:3, Interesting)
Blue sniper (Score:4, Informative)
Who says there won't be a RFID-Sniper in the future?
Recycle your Tinfoil Hat! (Score:2)
Seriously, if I get an RFID card, it's going inside a Faraday cage wallet. I don't mind RFID, but I'm going to control who I display to.
Bah, who needs 30' of range (Score:2)
Clear up some of the FUD (Score:5, Informative)
1. RDID tags come in a HUGE variety of types. You have to choose the right tag for the job. For example, is the item liquid? Is it metal? Is it a large crate? A small one? Etc. My guess is for a passport, the RFID tag would be a very short range (2-3" read type).
2. There are active (like those attached to your toll tags, or to large pallats & containers). These have batteries in them. A passport won't have a battery in it.
3. There are passive tags. These get charged by the antenna, that makes the circuit work. Think crystal radio here... same sort of concept. It charges the circuit, then the reader reads the tag.
4. The tags generally (although they can) carry only a serial or lookup number. NOT specific information. The more info, the more expensive the tag. Some newer tags CAN carry things (like product expiriation dates, inventory dates, etc.)
5. There are tags that can be both programmed and are read only. Depends on the type of tag. Both active and passive tags can do this. This means the reader can also program the tag.
6. Readers are NOT hard to get. It's a commerical device. However, in most cases, the reader is specific to the tag type. There are SOME standards coming out now with the gen2 tags, but they are not in wide deployment. The readers are NOT CHEAP.
So, here's my guess of what they would (or SHOULD) do:
--very short range passive tag (would require the passport to nearly touch the reader)
--Read only tag
--Tag would only contain some sort of authentication string that would be read, decrypted, and authenticated to see if passport is real.
--Tag would contain some sort of lookup string, which would be read, then queried on the backend systems to make sure the tag matches what's on the passport.
ALL this can be done with protection of privacy, IF DONE RIGHT! It's being done today, specifically in the pharma industry.
Re:Clear up some of the FUD (Score:3, Informative)
ALL this can be done with protection of privacy
True, if you mean by privacy that someone else can't read your data without access to the database. However, the problem is that someone can still copy your RFID tag and write new data about you in the database. For example with this passport someone could cross the border with a copy of your RFID, marking you as being out of the country.
You could make this harder by using active tags that use a private key to sign messages but don't reveal the private key
defcon 2005 (Score:5, Informative)
I don't get it! (Score:2)
I wouldn't have a bit of a problem if a contact patch were used instead of a broadcasted signal. Not like it would be hard
Re:I don't get it! (Score:3, Interesting)
I don't see the difference with long lasting...a chip is a chip. For that matter, why can't a magnetic strip be used since it's supposedly just holding a unique number that is used to contact a database anyway?
So you're going to tell me that a radio signal is more reliable than a direct connect? I want some of what you're smoking.
Re:I don't get it! (Score:2)
dumb (Score:2)
Now border guards just scan the barcode. What's wrong with that???
Sniffer (Score:3, Interesting)
I want my "papers" to stay paper, please. Bar code them or whatever, but don't delibrately make it prone to identity theft, hacking or IEDs.
Josh
New RFID Blocking Passport Holder (Score:2)
If you've done nothing wrong... (Score:2, Insightful)
Lead Wallet (Score:2)
That's Six Inches???!!! (Score:3, Interesting)
They seem to suggest that they only want it so that they can identify people stopped at border checkpoints.
Even the Homeland Security site says 100 feet... (Score:3, Informative)
Not only that, this is discussing doing that while the RFID equipped form is in the possession of the person in a moving car...
A couple of inches? Yeah, right.
--
Tomas
Re:Mark of the Beast! (Score:2)
Re:Mark of the Beast! (Score:2)
Re:Marketing Ideas (Score:2)
Re:Marketing Ideas (Score:2)
Re:My solution to completely solve this problem (Score:2)
Re:I want a RFID reader (Score:4, Funny)
This ability would make it well worth these RFID ids being mandated.
Or, as the pedophile official in DHS might say, "Think of the children, 'cause I sure do!"