Passport Chip Could Attract High-Tech Muggers

Orangez writes "Wired.com reports that 'business travel groups, security experts and privacy advocates are looking to derail a government plan to insert remotely readable chips in American passports, calling the chips homing devices for high-tech muggers, identity thieves and even terrorists.' and that 'The 64-KB chips will include the information from the photo page of the passport, including name, date of birth and a digitized form of the passport picture.'"

Tin foil wrapper

[Clay Pigeon -TPF-VS- (624050)]

Someone is going to need a faraday cage.

Actually that might be part of the plan

[overunderunderdone (521462)]

From the article:

State Department contractors are looking to include some shielding, such as metal fibers in the passport cover, to keep the chips from being read when the passport is closed.

They are also, supposedly "designed only to be readable from 8 centimeters (about 3 inches) away when the passport is open."

My question at that point is: why not use another technology? The whole point of RFID is that it is readable from a distance without jumping through any hoops. If TFA is correct they are negating the whole point of RFID and fighting it's inherent nature to do so. It seems that some kind of optical technology would be perfectly suited to do exactly what they want to do with RFID.

Re:Actually that might be part of the plan

[farzadb82 (735100)]

One very simple reason... cost.

RFID is and will be considerably cheaper than an equivalent optical solution or any other present technology.

Re:Actually that might be part of the plan

[dgatwood (11270)]

How is RFID cheaper than a mag stripe? Large RFID tags (with more than a few bytes of storage) are more expensive than the ones Wal-Mart blows in for a penny apiece. A mag stripe is almost free. Mag card readers are also almost free. A mag stripe can't (reasonably) be read surreptitiously from a distance, so it's safer, too.

I know, a mag stripe can have its data changed. But wait! So can an RFID tag! So you're going to end up doing public key crypto signing of the data anyway. Why not use technology that is proven to be cheap, safe, and reliable instead of something that is potentially expensive, dangerous, and has no real history of reliability that requires additional expensive hacks to prevent abuse?

Re:Actually that might be part of the plan

[Jherek Carnelian (831679)]

They are also, supposedly "designed only to be readable from 8 centimeters (about 3 inches) away when the passport is open."

My question at that point is: why not use another technology?

Because they want to be able to read them from more then 8cm. They know perfectly well that, with the right equipment, these 8cm devices can be read up to 10m away and they intend to use that feature themselves - they even talk about the ease of tracking people in airports and such as part of the justification for this implementation.

So, you have what basically amounts to spin control. Enough of the general public has latched onto the meme that RFID is a danger to their privacy. So instead of working to eliminate the entirely valid risks that RFID brings to this particular application, they are just trying to cover them up - literally and figuratively.

Your tax dollar at work...

When will people realise that remotely readable...

[tquinlan (868483)]

...means just that?

If they government can read it for legitimate purposes, other people can read it for illegitimate purposes.

Re:When will people realise that remotely readable

[temojen (678985)]

I don't see why they didn't just burn it (cryptographically signed) onto a business card sized CD inserted into a pocket of the passport folder. If they used a standardised format (XML+TIFF+GPG signed) then any country could read it without fancy equipment, and noone could make a counterfit.

Re:When will people realise that remotely readable

[EvilSporkMan (648878)]

Can you imagine debating with foreign officials whether your CD is fake or it's just scratched?

Re:When will people realise that remotely readable

[shaitand (626655)]

Because it would be illegal to export encryption of that strength. It does not matter if the other nation already has the technology.

Re:When will people realise that remotely readable

[HMA2000 (728266)]

It should be combined with a biometric measurement. I understand the privacy people don't like it but identity is becoming increasingly important and a "peice of paper" just isn't going to cut it for much longer.

Why biometrics are bad:

[Ironsides (739422)]

Posted today at the BBC [bbc.co.uk]

Re:When will people realise that remotely readable

[shaitand (626655)]

Keeping people from stealing your identity is important. The governments of the world being able to track you and being able to verify your identity is not as important as your right to not be tracked or identified.

There are plenty of legitimate reasons to not want people to be able to identify you. There are plenty of legitimate reasons to circumvent the system as well.

At what point did the unwilling martyrs at the twin towers win the balance against the millions of lives willing sacrificed so that we could taste freedom? It wouldn't matter if planes were crashed into building every day, it is no reason to take away freedom.

I hate you

[Safety Cap (253500)]

It wouldn't matter if planes were crashed into building every day, it is no reason to take away freedom.

Why do you hate America?

If you really loved America, you would know that only terrorists fear having their freedoms taken away. Real, law-abiding, god-fearing, red state Americans have nothing to hide!!!!!!!!one one

Re:When will people realise that remotely readable

[legojenn (462946)]

Don't you mean:

If the government can read it for legitimate purposes, then the government and other people can read it for illegitimate purposes.

why are travellers worried?

[drunken dash (804404)]

If they're not terrorists, and have nothing to hide, why are they so worried about being tracked? If anything, if your passport is stolen, wouldn't you rather have the chip in there to track it?

Re:why are travellers worried?

[Kineticabstract (814395)]

You've missed the point. The concern isn't that "big brother" is going to be watching our every move (after all, that's inevitable, and why worry about the inevitable?) the concern is that a terrorist could get your passport information simply by walking close to you with an RFID reader. It's a security nightmare to have your information freely available to anyone with the hardware to read it.

Re:why are travellers worried?

[cosmo7 (325616)]

I had thought this was alarmist, that the information would be a set of MD5s or in the case of client-side data, public-key encrypted, but that turns out to not be the case [wired.com]. It's all naked data.

Re:why are travellers worried?

[1u3hr (530656)]

a terrorist could get your passport information simply by walking close to you

Why would a terrorist want your passport information? They have perfectly reliable ways to get entirely legitimate papers of their own. If they want to kill you, they will, and pick up your passport from your body later as a souvenir, whether it has RFID or not. On the other hand, thieves, swindlers, identity thieves could very well take an interest in your vital statistics. Why do TERRORISTS!!!! have to be part of every security discussion?

Re:why are travellers worried?

[Ironsides (739422)]

If they're not terrorists, and have nothing to hide, why are they so worried about being tracked? If anything, if your passport is stolen, wouldn't you rather have the chip in there to track it?

Because terrorists/kidnappers can set up a remote reader to look specifically for people carrying this type or passport. Kidnapers can use it to find people from specific other contries that they think are richer than they are and ransom them off for big bucks. Terrorists can use it to find people from specific nationalities. Bin Laden said to kill all americans everywhere, not just americans in the US. This gives them a leg up in finding people carrying around their passports when overseas.

That said, if they go through with this, they definitely need to build in a faraday cage into the passport case.

Re:why are travellers worried?

[by Anonymous Coward]

Human beings are funny like that. We're members of the animal kingdom and animals, for whatever natural reason, just don't like being followed or tracked unless it's by their children and/or mate or they're traveling in a coordinated herd. Attempting to rationalize a violation of basic natural psychology by invoking security isn't going to invalidate primal instincts. If mother nature has instilled us with an instinct that dislikes being tracked or followed there's probably a very good reason for it. It's probably because, whatever the rationalization is, the truth is that animals track and follow prey. Very rarely is the stranger following you interested solely in your welfare for no selfish reason of their own.

Stalking is illegal for a reason. Even if no physical contact is ever made it constitutes harassment. Harassment leads to a degradation of the quality of life, poor performance at work, and after extended periods of time can lead to a psychological breakdown. Creating a population of paranoid schizophrenics isn't all bad. Once they come apart at the seams we can lock them in a cell with a bicycle and use them to produce energy, thus breaking our dependence on oil and negating the need for nuclear fuel. It'll also solve the overpopulation problem if we keep the sexes separated. In the end it'll allow some members of the population, who aren't being harassed or seem to be immune to natural instincts (are they even human then?), to live a life of leisure using the energy of those we have harassed and then locked up.

Re:why are travellers worried?

[tomcio.s (455520)]

The government would be forcing me to do what they want with my private property.

Any passport issued in any country is not your property. It's the property of the issueing government.

In Canada, even our health cards carry that infomation on the back. It says 'card is property of Minitsty of Health, issued to be used by:' and your name + address.

Sorry no 'property rights violations' here. Whatever those are.

security

[zerkon (838861)]

the article states having a barcode or some other form of security that must actually be read, how about encrypting the data on the rfid and putting the key on the barcode?

just a thought

hmm...

[catbertscousin (770186)]

Now they don't even have to steal my passport before they can use all my info. That's an improvement. If I get a new passport, I think I'll carry it in an aluminum foil pouch.

Re:hmm...

[cosmo7 (325616)]

Here's the schema they're using:

255 bytes: First name
1 byte: Middle initial
255 bytes: Surname
1 bit: Boolean true if user checked the 'Member of Terrorist Group' checkbox
7 bits: CIA National Boxcutter Purchase Monitoring flags
16KB: ASCII-art depiction of tubgirl courtesy of frustrated intern
16KB: Excerpts from Book of Revelation
1 byte: Flags for previous visits to Iran / Cuba / North Korea / Syria / Lebanon / Pakistan / Libya / Yavin
30KB: XML representation of above flags

Aus Passe

[ackthpt (218170)]

Opponents also argue that the lack of encryption, which Moss said would slow down the processing of passports, adds another vulnerability.

I don't get it. I mean, they State Dept. could easily have a reader connected to a network which passes along some hash which is stored on the card, to a server which would verify what passport they should be looking at. Slow? Wtf kind of technology are they using where 64K of stuff would take any time?

"Only contractors who sign up to our foreign policy will be allowed to bid -- We welcome your bid, Halliburton Vacuum Tube Company!"

Re:Aus Passe

[pixelpusher220 (529617)]

"Because 64K of memory should be enough for anybody"

Thank you...I'm here all week! (mostly due to pesky bosses)

Okay, I might as well post it...

[feloneous cat (564318)]

I don't get it. I mean, they State Dept. could easily have a reader connected to a network which passes along some hash which is stored on the card, to a server which would verify what passport they should be looking at. Slow? Wtf kind of technology are they using where 64K of stuff would take any time?

Think "Windows ME".

Remember, this is the U.S. Gov.

When will the learn

[metoc (224422)]

When will these people learn that independent sober second opinions are valuable.

Years from know they will probably say "We made the best decision with the information we had at the time".

Another problem

[nizo (81281)]

Burglar goes down to airport and watches family get on a plane to Europe. He grabs your name, and from that gets your home address. Then he can go rob your house while you and family are out of town. Certainly makes scoping out houses much easier; your house could be cleaned out before you even reach your destination.

Re:Another problem

[Xzzy (111297)]

Except for the fact that, at least in the US, no one without a plane ticket is allowed to pass through the security gates.

They could run their scanners in the ticketing area but they couldn't do it for long periods without looking suspicious. Guys standing around in bulky coats to hide the equipment will probably draw some notice.

Since these passport chips are claimed to have a very short range (inches) to be read, guys in bulky coats dry humping tourists trying to get a scan would draw even more notice. ;)

Re:Another problem - don't be simple

[victim (30647)]

The passport sniffer needn't hide the gear under a bulky coat. Any shoulder strap carry on type bag will do. They will blend in perfectly in the air port. They can then stand next to you in line, or perhaps brush past you walking in the hallways.

In 60 minutes of sniffing they could easily collect a dozen or more candidate "known gone" families, then use that as a short list of houses to check.

Maybe the regular readers will have a range in inches, and 802.11 has a range of 100ft. With the right antenna 802.11 can be extended by a factor of 50. I would not count on tags being unreadable from 24", a nice polite personal space distance.

I'm not saying this will ever happen, but it certainly is a lot easier than your deliberately ridiculous example.

What it really comes down to is...
If the passport issuing officials want a system that keeps a secondary reference copy of your information in a difficult to forge format, that is only readable with a special reader and is encrypted to prevent unauthorized use, then there is no reason to use a remotely readable device. A high resolution two dimensional barcode of encrypted data will do a nice job of it without exposing people's data to risk additional risk.

Sounds like the next big thing...

[Uptown Joe (819388)]

From the folks that brought us the hacked SideKicks of Fred Durst and Paris Hilton...

Not that I have any naked pictures on my passport chip... yet.

Blame the terrorists.

[Mr2cents (323101)]

How comes that everyone trying to make a point has to include terrorist threat? Am I the only one who thinks it's a bit cheap?

Re:Blame the terrorists.

[__int64 (811345)]

YES! Because terrorist are everywhere! They are outside your house, they are in the mall, they are living next door to you, and their going to GET You. Unless you give your mind and soul to the only one who can help, Big Government. Big Government can help you; He'll save you from all these nasty nasty terrorists. You just have to unquestionably follow him, do as he says blindly, and never fall out of line, because then you'll be one.

Because remember, they're everywhere. They're anyone, anyone who doesn't

Re:Blame the terrorists.

[Metapsyborg (754855)]

Because fear has become an excellent tool that can be used to control the populace. Just look at the PATRIOT act, Iraq war, New McCarthyism etc all supported by fear.

While I'm not a big Michael Moore fan, one thing Bowling for Columbine drove home was the "media of fear" idea. He certainly beat it to death, but there's no denying the prevalence of vague fear in todays (U.S.) media and government.

That word

[chris_eineke (634570)]

homing devices for high-tech muggers, identity thieves and even terrorists.

There is that word again. I'm getting tired of it. :(

that word that cannot be named

[tuxette (731067)]

Terrorists are the new Communists. And black is the new black. Get over it already!

Identity

[netrage_is_bad (734782)]

like someone would benefit from stealing my Identity. They would just inherit my debt.

I guess that's one more reason to get a passport

The Gov should slow down...

[Mrs. Grundy (680212)]

...and look at this for a while. They understand that who you are and where you come from can make you a target. After all, the armed forces (whose upper ranks never lose a chance to make their soldiers dress up) tell their personnel not to wear their uniforms when traveling on civilian airlines, for the very reason that people don't want RDIF tags in their passport. And it's not just nationality. Airports all have wireless connections these days so you can get a name, do a quick Google search and stand a good chance of knowing enough about the person walking by to not only pick good targets but be able to imply uncanny knowledge about them. a corp. There must be a better solution that address both the governments concerns and the privacy concerns of our citizens. It seems that somebody has just made a decision and isn't willing to back off. We should isn't they try harder.

This is a dupe - no, wait ...

[Redshift (7411)]

Well folks, it's a dupe.

http://yro.slashdot.org/article.pl?sid=05/02/28/11 28248&tid=158&tid=17 [slashdot.org]

Or is it a trip?

http://yro.slashdot.org/article.pl?sid=04/12/23/23 25238&tid=158&tid=126&tid=17 [slashdot.org]

A quad? (Quap?)

http://yro.slashdot.org/article.pl?sid=04/11/27/00 26222&tid=103&tid=158&tid=172 [slashdot.org]

Quint? Penta?

http://yro.slashdot.org/article.pl?sid=04/10/22/02 29221&tid=158&tid=103&tid=1 [slashdot.org]

So .. can anyone find Sex for me?

Re:This is a dupe - no, wait ...

[ALeavitt (636946)]

Well, if you're the average /.er, it's sitting right there in your right hand.

RFID for passports - succumbing to a fad!

[syrinje (781614)]

There's really no earthly reason for using RFID chips in passports. RFID has a number of legitimate uses - and the use of this technology in those applications makes life easier for many. Nearly all legitimate applications of RFID benefit from the automation of collecting small bits of data from large numbers of entities using non-human readers.
However, all of the legitimate uses of the passport involve a human being handling the passport anyway - and using a non-RFID smart chip will suffice.

Tinfoil hats aside, the primary response of the RFID proponents to the question of why RFID tags are needed is "Why not?". This is a preposterous approach to implementing a system that handles sensitive personal data that could cause severe distress to the owners of that data, if compromised. Sensitive data belonging to thousands or even millions of people! Assuming the government still considers an individual as the rightful owner of their own personal data.

Some of the conspiracy theories regarding RFID in passports are a little over the top. But there is no denying the fact that the potential for abuse is definitely enhanced by using this technology in this way. Today the scope is for Americans to be targeted using this - either by their own government, or by criminals, or by other governments, or by terrorists. Tomorrow, when more countries follow suit, that scope expands, giving birth to a rich and varied mix of uses - all of which with the legitimate exception of border control are extra-legal or downright criminal. I hate to sound like a troll but the RFID chip in your little blue book could well become the new star of david sewn into your shirt.

disabling chip?

[LM741N (258038)]

What are the implications of disabling the chip? A huge dose of ESD would probably do the job without harming paper and ink. You could just claim ignorance.

Re:disabling chip?

[chrispl (189217)]

This would probably be considered "tampering with an official document" and be against the law, or at least make it more difficult to travel when they notice your suspiciously "defective" passport.

I will just keep mine wrapped in a few layers of aluminium foil until I am standing in line at immigrations thank you.

I can also see, after the media catches on about identity theft via RFID passports some enterprising company will begin selling lead lined passport covers or something similar. This also begs the

Re:disabling chip?

[chrispl (189217)]

Well I should have RTFA about the RFID. They DID suggest RF blocking fibers in the cover.

Here's a link to the standard

[Muad'Dave (255648)]

Document 9303 at the ICAO [icao.int]. Note that it's the international Civil Aviation organization that defined the standard and is pushing it. Note that they intentionally do not encrypt the data so that it's simpler and easier for third world governments to read.

the system is secure, stop the FUD

[lordholm (649770)]

According to the ICAO standard states can chose to add an authentication scheme to the RFID-tag. This is what Sweden is dong, this is probably what the US is doing.

The authentication is based on the MRZ (Machine Readable Zone) in the passport (this is text that is read through OCR and not visible unless you open the passports photo page). The MRZ-data is hashed by SHA-1 and the high 32 bits of the hash is taken (this reduce the risk of someone computing the MRZ-data backwards (actually guessing) which MIGHT be possible if you have the hash and the basic structure of the MRZ-data). The hash is sent as an authentication code to the RFID-chip in the passport, if the hash is wrong the RFID responds with a "no valid authentication" message and refuse to send any data.

A state may decide to ignore such measures in their passports (but this is unlikely for the EU and the US). And such states have the option to include metallic jackets for the passport.

The range of the RFID transmission will be around 10 cm. IIRC it weakens with the power of 6 to the distance.

Further, it is not practical to have contact chips in a book-formed passport. It is more practical in ID-cards.

While I dislike this in general and would prefer a passport free world, try to avoid spreading untrue FUD about the technology being used, the data is secure and no person is going to get within 10 cm from your passport, and try an average of 2^31 different hashes without you noticing it. Of course, if the person manage to "borrow" your passport, he will use the MRZ to obtain the key, but in that case, he can take the passport to a photocopier as well (and that is probably cheaper).

Re:the system is secure, stop the FUD

[RichMan (8097)]

> The range of the RFID transmission will be around 10 cm. IIRC it weakens with the power of 6 to the distance.

We can see the remains of the big bang and could detect the light of a firefly beyond pluto.

Range means nothing to directional high-gain antennas. Sure no one is going to retarget Jordell Bank or the deep space network to snoop for pasport id's but that does not mean someone could not get 10m or more gain from an antenna hidden on the back of truck driven through the airport arrivals zone.

Why include the info on the chip at all?

[gurps_npc (621217)]

Wouldn't it make FAR more sense to just include a Number on the chip.

Authorized custom agents could then pass a reader over that chip, which would take the number, connect to a US government's computer, input the number which would return photo, fingerprints, etc. etc.

There seems NO need to put all the sensitive information on a chip, when all you need is a number. Keep the sensitive information on more secure computers, accesible only by valid custom agents.

The nazi's tried the same thing with the jews

[DM9290 (797337)]

In WWII, Nazi's required jews to wear armbands distinctly identifying themselves as jewish at a distance.

This system worked very well. It insured that second class citizens could properly receive the proper treatment as such. i.e.: forced to walk in the gutter, rather than a side walk etc. Attend at labour and death camps etc.

Now the american government wants americans to only travel abroad on the condition that they effectively wear electronic armbands identifying them as "AMERICAN" to anyone with a simple detector.

America is at war, and the American government wants its citizens to be required to advertize their status to all possible enemies.

At least the NAZI's were fairly transparent about their desire to oppress and harm jews.

How is electronically broadcasting american citizenship for all to see, going to help americans be safer.

Why not just make a law requiring all american citizens to wear armbands with the Star of David.

Would that be obvious enough for the morons in the whitehouse to wake the fuck up!