<< Re-uploaded Righthand.DataSet.Visualizer 0.9.8. | Microsoft® Visual Studio® .NET™ 2003 Service Pack 1 >>

Are new passports safe?

by Miha Markič 7. August 2006 10:22

There is an ongoing frenzy to implement new passports with biometric data and RFID capability. I won't even start discussing why this sucks big time. Recently there was a news in Slovenia that we are going manufacturing such passports, too. Hura for us. And involved ministers assured that such passwords can't be problematic even when dealing with hackers. Really? How can they be that sure?

http://www.itwire.com.au/content/view/5199/53/

fa1fd3bb-49f2-4d56-b9bc-3c7e563bcde8|0|.0

Tags:

Slovenia

Visual Source Safe 2005 over web problem 0x80072F19Did you ever try VSS 2005 Internet connection? I did once just for testing. I need it now for real, ...PDB files are sometimes added to Source Safe when doing asp.net 2.0 projectsThis is a very annoying VS2005 bug: PDB files residing in bin folder are sometimes added to source s...Dealing with iterations over null lists in LINQ to ObjectsProblem If you used LINQ to Objects you have certainly come across iterations over null values resu...

Comments (4) -

Mladen

8/7/2006 3:50:53 PM #

Let's go hack it... what do you say?

bojanv

8/8/2006 4:27:55 PM #

Hence cracking is illegal word, lets just say, we will make a point ;)

TomazF

8/25/2006 5:57:28 PM #

Miha, sorry I think this post was under your level, unworthy of MVP and techno expert.
Obviously Lukas Grunwald needs a HUGE publicity, otherwise nothing new for those who know technology behind e-pass.
This "passport hacking" was very interesting for news&sensation hungry press in summer holidays time. At the same time comes very useful for "privacy backers" and "afraid-of-everything" people, so together it was a big story.
see another view here
www.rfidupdate.com/.../index.php?id=1174&from=rss

Miha Markic

8/25/2006 7:14:24 PM #

Hi Tomaz,

Not sure why this post is so bad. ePassports might be problematic from many point of views.

1. They are new and untested

2. They might allow various (government and non) companies to track your movements (everybody can read RFID). Say goodbye to privacy (remember, you are supposed to carry passport with you when you are abroad).

3. As we saw in that article, it is possible to clone the data. And this is only one case reported to the public. So, what happens if someone actually copies your passport and then somehow use it as it were you? How will you defend yourself when police knocks on your door? Remember, e-passports are 100% reliable.

4. When the last generation of german currency bills came out they were publicised as "no-one-can-forge-them". So everybody was overconfident in their quality and didn't bother to check the bills at all. No need to mention that soon they had a mass amount of forged bills floating around.

5. I am not an expert here, but what if someone steals the "private key" that is used to create a passport?

6. Hey, cryptography is not 100% secure. Nobody ever prooved it. OTOH nobody ever prooved that it isn't secure. That's why is considered secure. However US is allowing IE to use 128 bit keys outside US. This might indicate that they are able to crack it in reasonable time.

I could go on...

Add comment

Name* Required Please choose another name

E-mail*

Country Country flag

b i u quote

Comment
Preview

Notify me when new comments are added

Miha Markic

INETA Country Leader for Slovenia

Miha currently works as a free lance consultant and software developer specialized in .net area.
He graduated in Computer and information science at the University of Ljubljana, Slovenia. He has accumulated experience in various programming languages such as Java, Visual Basic 3-6 (MCP), Visual C++, Delphi, C# and VB.Net through years.
He has experience in practically all (technical) stages of project development, including planning, framework development, user interface, business processes, as well as testing and documenting. He has worked on big and small projects in Slovenia and abroad (e.g. participated in completing level 3 IS for the Nucor steel plant, Hertford, USA).
Currently he enjoys programming in .net environment using C#. Since 2000 he has been active in Developer Express' DX Squad and has been ECDL trainer and tester. He also gives lectures on conferences and other events in Slovenia.

Month List

2012
- January (2)
2011
- December (3)
- October (1)
- September (4)
- August (5)
- July (7)
- June (3)
- May (2)
- April (2)
- March (1)
- January (4)
2010
- October (3)
- September (1)
- August (2)
- May (4)
- April (1)
- March (2)
- February (1)
- January (7)
2009
- December (2)
- November (5)
- October (7)
- September (4)
- August (2)
- July (1)
- June (6)
- May (5)
- April (5)
- March (10)
- February (9)
- January (9)
2008
- December (1)
- November (6)
- October (6)
- September (3)
- August (2)
- July (3)
- June (6)
- May (5)
- March (5)
- February (4)
- January (10)
2007
- December (6)
- November (10)
- October (10)
- September (4)
- August (14)
- July (7)
- June (12)
- May (7)
- April (9)
- March (6)
- February (8)
- January (12)
2006
- December (11)
- November (11)
- October (14)
- September (17)
- August (13)
- July (7)
- June (12)
- May (16)
- April (5)
- March (6)
- February (15)
- January (11)
2005
- December (18)
- November (18)
- October (10)
- September (11)
- August (10)
- July (9)
- June (8)
- May (10)

Most comments

	Paulius 1 comments United States
	Meh 1 comments United States
	bart dm 1 comments Netherlands

RecentComments

Fixing combination of NuGet and Team Foundation in workgroup configuration: 401 Unauthorized (12)
Bojan wrote: Looks like this helps. Thank you. [More]
Fixing combination of NuGet and Team Foundation in workgroup configuration: 401 Unauthorized (12)
Pawel wrote: Thanks a lot!!! It worked for me as well. [More]
Fixing combination of NuGet and Team Foundation in workgroup configuration: 401 Unauthorized (12)
Tim B wrote: Thank you your diligent effort, which I expect has... [More]
Bridging IPTV over wireless using two Linksys WRT54GL routers and DD-WRT firmware (7)
bart wrote: It worked for me with the latest stable ddwrt rele... [More]
Bridging IPTV over wireless using two Linksys WRT54GL routers and DD-WRT firmware (7)
Miha Markic wrote: Hi Bart, I did a quick file search on my disks an... [More]
Bridging IPTV over wireless using two Linksys WRT54GL routers and DD-WRT firmware (7)
bart dm wrote: hellow, nice reading your guidelines. Do you have ... [More]
Logging exceptions with NLog (2)
Paulius wrote: Why not to use ${exception:maxInnerExceptionLevel=... [More]
Building an Intel Core i7 based computer – Motherboard (2)
Julian wrote: I went with an i7-2600k and the asus sabertooth p6... [More]
Realtime graph for WPF (2)
Miha Markic wrote: Glad you like it. Well, yes, it is not a finished ... [More]
Realtime graph for WPF (2)
m0sa wrote: Wow, great! Beats the s**t out of DynamicDataDispl... [More]

Comment RSS

Are new passports safe?