backtop


Print 27 comment(s) - last by Zoomer.. on Jan 7 at 12:12 AM

Critics decry the design's increased range

With the original incarnation slammed over security concerns, a new breed of RFID-enabled passports received the U.S. State Department’s stamp of approval last Monday. The new passports are set to launch this spring for U.S. citizens entering the United States through land and sea checkpoints.

Readable at up to 20 feet, the next-generation design is supposed to help increase passports’ security and reduce the omnipresent lines found at entry points around the country.

Compared to the previous generation of RFID passport – dubbed “e-Passports” – the new generation of RFID passports contain security features that are far more protected, with many of its developments based on the 4,000+ responses received by the State Department on a public request for comment in December 2006. New security features include:

  • A “randomized unique identification” system that produces a different ID each time the chip is accessed
  • A digital signature that can help identify when the passport’s data has been altered
  • A metallic insert in the passport’s spine and front cover that blocks radio signals when the cover is closed.

While many critics continue to express privacy concerns, the new security features are sufficient to pacify at least some of the passport’s vocal critics. “At the moment, the security protections in U.S. passports are pretty good,” said Ari Juels, Chief Scientist and Director of Massachusetts-based RSA Laboratories, in a December 14 statement to the Los Angeles Times.

The new passport design will use “vicinity read” RFID technology, as opposed to the previous generation “proximity read” technology, which need to be swiped at a scanner and were only readable from a few inches.

However, while the new passports are a definite improvement, critics stress that they are far from perfect. Critics have particularly attacked the new passports’ increased range, which many claim will help facilitate identity theft. In one example, mobile security company Flexilis found the passport’s metallic shielding inadequate, allowing for the passport’s transmitter to be read even when it is closed.

To demonstrate this, Flexilis posted a YouTube video demonstrating a proof of concept where a trashcan armed with an explosive charge detonates as a dummy equipped with the “shielded” passport passes by. The threat, it says, is that terrorists could use the passports’ increased range to selectively identify Americans in foreign lands, possibly taking action against them that may include bodily harm.

Despite the new passports’ flaws – which the Los Angeles Times says are nothing to lose sleep over – most everyone agrees that the changes are a much-needed improvement over the current RFID passport, which gained pariah status among security circles for notoriously weak security features.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: My only question
By tdawg on 1/4/2008 11:07:37 AM , Rating: 2
I can't see why they'd increase the range so drastically either. If you have to open them up to have them read by the RFID machine, then they can't just be relying on some sort of area grid covering an entryway to scan all people coming down a hallway. Imagine the software trying to track everybody at once, when one or more international flights come in and hundreds of people are going through the system at once. Not to mention trying to physically find the one passport holder in the crowd that raised a red flag?

Why couldn't they just leave the range as small as it was, setup more reader stations and have people flow through the queues? We have to do it for security checkpoints and this doesn't require TSA x-ray techs to monitor it all. If it's so seamless, people won't really have to stop, they'll just pass by the machine and swipe their passport.


RE: My only question
By Alexstarfire on 1/4/2008 11:51:16 AM , Rating: 2
Because that'd help the passenger. I thought everyone figured out that they were trying to find ways to slow us down and make it more of a hassle. 20-ft is way too big an area. All it takes is 1 person with a 3rd party/hacked reader in an airport to get the personal information of hundreds, potentially thousands of people in a matter of minutes.


"Well, there may be a reason why they call them 'Mac' trucks! Windows machines will not be trucks." -- Microsoft CEO Steve Ballmer

Related Articles
US Launches RFID Passports
August 14, 2006, 9:53 AM
RFID US Passports Coming in August
July 14, 2006, 11:49 AM













botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki