Secondary Screening

Archives
By Date
April 2006
March 2006
January 2006
December 2005
November 2005
October 2005
September 2005
August 2005
July 2005
June 2005
May 2005
April 2005
March 2005
February 2005
January 2005
December 2004
November 2004
October 2004
September 2004
August 2004
By Category
Airline Security Measures
Bicycles
Book Reviews
Congress
Data Mining
Department of Homeland Security
Freedom of Information
Government Secrecy
Miscellany
Other People's Writing
Privacy
Security Measures
The Courts
The New Web
Threat Level
Recent Entries
Change of Address
Privatized Registered Traveler On Track
Software Bug Shuts Down Nation's Busiest Airport
HostGator Rocks
But some butter is more butter than other butter
TSA Picks Privacy Player
AT&T Loses A Customer Over NSA Lawsuit
Jetsons Video Phone? Deaf Say Yes!
AT&T *69s EFF
Narus Not in the Know
Published articles
Wired News Articles
Links
Wired News
DefenseTech
Practical Nomad
BeSpacific
DHS Privacy Office
Memory Hole Blog
Electronic Privacy Information Center
Privacy Digest
Electronic Frontier Foundation
Homeland Security Institute
Secrecy News
Emergent Chaos
EPIC West's Chris Hoofnagle
Prawfs Blog with Daniel Solove
Ann Harrison
Reuter's Andy Sullivan
Schneier on Security
Talk Left
Reason's Hit & Run
W. David Stephenson
Phillip Carter's Intel Dump
Project on Government Oversight
Technology Liberation Front
Edward Felten's Freedom to Tinker
Contact
Email me
415.375.3150
Subscribe
Feed: Your Reader
Atom
RSS 1.0
RSS 2.0
RSD
About Ryan Singel
I'm a San Francisco-based freelance journalist who covers antiterrorism programs, civil liberties, the Internet and privacy.
« Secret Law News | Main | My Porn Has a Little Machine »
November 19, 2004 | Even the folks who make 'em hate 'em

The government's plan to issue passports with RFID chips in them has drawn the ire of privacy advocates (see my Wired News story here) for lax security and now even one of the companies involved admits the standards being used are woefully inadequate, according to this article by AP reporter, Ellen Simon.

On the latest passports, the agency has "taken a 'keep it simple' approach, which, unfortunately, really disregards a basic privacy approach and leaves out the basic security methods we would have expected to have been incorporated for the security of the documents," said Neville Pattinson, an executive at Axalto North America, which is working on a prototype U.S. electronic passport.

Can anyone with some smarts spy on your unencrypted passport? Pattinson says yes.

Under the standards, information on the chip could be picked up by someone who wires a briefcase with a reader, then swings it within inches of a passports, Pattinson said. Over a greater distance, an interloper could eavesdrop on border control devices reading the passports, he said.

"There's no security built into it," said Barry Steinhardt, director of the technology and liberty program, at the American Civil Liberties Union. "This will enable identity theft and put Americans at some risk when they travel internationally."

And of course, the funniest thing in the whole sad business is that those who are unlucky enough to get one of these passports but wants to protect their privacy would do well to take the tin-foil hat off their head and put it on their passport.

One rudimentary way to protect electronic passports from identity thieves is to wrap them in tinfoil, which blocks radio waves. A single size Doritos bag would do the trick. Protecting border control agents' readers with a metal shield would protect against eavesdropping.

The International Civil Aviation Organization and State Department say they're looking at more organized methods.

The State Department won't start issuing these to regular Joes and Janes until sometime next year. I for one plan to get a new passport before then and that sucker will remain valid for another ten years. And it doesn't need a tin-foil hat.

Posted by Ryan Singel at November 19, 2004 12:07 PM

 Trackback Pings

TrackBack URL for this entry:
http://www.secondaryscreening.net/cgi-bin/mt-tb.cgi/52

Listed below are links to weblogs that reference Even the folks who make 'em hate 'em:

» So who likes them? from Emergent Chaos
Ryan Singel catches an AP article on RFID passports: On the latest passports, the agency has "taken a 'keep it simple' approach, which, unfortunately, really disregards a basic privacy approach and leaves out the basic security methods we would... [Read More]

Tracked on November 20, 2004 09:29 AM

» Secondary Screening: Even the folks who make 'em hate 'em from Privacy Digest: Privacy News (Civil Rights, Encryption, Free Speech, Cryptography)
The government's plan to issue passports with RFID chips in them has drawn the ire of privacy advocates (see my Wired News story here) for lax security and now even one of the companies involved admits the standards being used are woefully inadequate, acc [Read More]

Tracked on November 27, 2004 05:02 PM

Post a comment

If everyone ends up having metal shielded passport holders to shield their RFID passports, guess how the knives, explosives and drugs are going to be smuggled onto aeroplanes, given that the same shielding will work on metal detectors or x-ray machines ?

How about all the false alarms and consequent delays and queues that such passport shields will cause to existing electromagnetic , currrent leading edge Passive Millimetre Wave imaging, Low Intensity Backscatter X-ray imaging and the future UltraWideBand imagers, which are now or will be soon deployed in airports etc. ?
c.f.
http://www.spy.org.uk/spyblog/archives/2004/11/heathrow_termin.html

Why didn't they make the passports with contacts like a Chip and PIN credit card ? This would be much more secure and no slower to process at passport control ?

Posted by: Watching them, Watching Us at November 19, 2004 09:17 PM
Powered by
Movable Type 3.2