Security guru Bruce Schneier examines some of the security flaws, concluding that RFID should be the last technology to be considered:
The State Department downplayed these risks by insisting that the RFID chips only work at short distances. In fact, last week’s publication claims: “The proximity chip technology utilized in the electronic passport is designed to be read with chip readers at ports of entry only when the document is placed within inches of such readers.” The issue is that they’re confusing three things: the designed range at which the chip is specified to be read, the maximum range at which the chip could be read and the eavesdropping range or the maximum range the chip could be read with specialized equipment. The first is indeed inches, but the second was demonstrated earlier this year to be 69 feet. The third is significantly longer.
…But the State Department’s contention that they need an RFID chip, that smartcard-like contact chips won’t work, is much less convincing. Even with all this security, RFID should be the design choice of last resort.
Technorati Tags: RFID
0 Responses to “Fatal Flaw Weakens RFID Passports”