Federal rules adopted for electronic U.S. passports
RFID-equipped passports will be issued starting in December
Computerworld - The U.S. State Department has approved new rules that pave the way for the use of RFID-equipped electronic passports beginning in December -- despite concerns about privacy issues raised by the new technology.
The rules went into effect Tuesday and call for the inclusion of several security measures to protect passport holders from data theft, according to the agency. One method will prevent data on the built-in radio frequency identification tag from being "skimmed," or captured from afar by using a special material on the passport cover that blocks the data from being read by unauthorized equipment.
In August, the State Department announced that the electronic passport program will begin in December for government workers who have "official" or "diplomatic" passports, and will be fully rolled out by next October for all U.S. citizens (see "Electronic U.S. passports coming in December").
The use of electronic passports is designed to enhance document and border security and to make identification for international travel easier and more secure for U.S. citizens, the department said.
During a public comment period earlier this year, the agency received 2,335 messages, with more than 2,000 of them from critics concerned about data integrity, data theft and privacy.
Marc Rotenberg, executive director of the Washington-based Electronic Privacy Information Center, said the latest rules are an improvement over the State Department's original plans. Rotenberg said the main privacy worry centered around the possibility of RFID tag skimming. "This is improved. It's certainly better than it was earlier this year," he said.
He cautioned that the government could still one day use RFID-equipped passports to track passport holders in various locations -- even when they are not crossing national borders. "With RFID, you create the risk of remote identification, where people don't know their identification information is being collected," Rotenberg said.
The new rules reflect and incorporate those comments by building in safeguards to protect the passport information, according to the State Department. To combat data theft, the passport RFID chip must be held within about four inches of a special reader and the passport cover must be open.
The agency also noted that the RFID chips are not the same as those used for warehouse inventory tracking over larger distances and will not permit "tracking" of individuals. "It will only permit governmental authorities to know that an individual has arrived at a port of entry -- which governmental authorities already know from presentation of nonelectronic passports -- with greater assurance that the person who presents the passport is the legitimate holder of the passport," according to the
- 15 Non-Certified IT Skills Growing in Demand
- How 19 Tech Titans Target Healthcare
- Twitter Suffering From Growing Pains (and Facebook Comparisons)
- Agile Comes to Data Integration
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
- The Critical Role of Support in Your Enterprise Mobility Management Strategy Most business leaders underestimate the importance of tech support when they choose an EMM solution. Here's what to put on your checklist.
- Separating Work and Personal at the Platform Level: How BlackBerry Balance Works BlackBerry® Balance™ separates work from personal on the same mobile device, right at a platform level. Find out how it can work for...
- Protection for Every Enterprise: How BlackBerry Security Works Get an IT-level review of BlackBerry® Security, addressing data leakage protection, certified encryption, containerization and much more.
- Future Focus: What's Coming in Enterprise Mobility Management (EMM) Find out why Enterprise Mobility Management (EMM) solutions that are truly future-ready must be designed to enable Machine-to-Machine (M2M) capabilities and much more.
- Live Webcast On-demand webinar: "Mobility Mayhem: Balancing BYOD with Enterprise Security" Check out this on-demand webinar to hear Sophos senior security expert John Shier deep dive into how BYOD impacts your enterprise security strategy...
- Live Webcast Unmasking the Differences between Consumer and Enterprise File Sync & Share The consumerization of IT combined with the rapid pace of the modern mobile workplace is forcing enterprise IT teams to evaluate file sync...
- Live Webcast Workforce Mobilization for Improved Productivity A mobility research director from Aberdeen discusses reasons for extending legacy applications to mobile devices, and an integration strategist from Attachmate shows how...
- Getting Ready for BlackBerry Enterprise Service 10.2 Find out how BlackBerry® Enterprise Service 10 helps organizations address the full spectrum of EMM challenges, while balancing the needs of both the...
- Containerization Options: How to Choose the Best DLP Solution for Your Organization This webcast outlines a framework for making the right choice when it comes to containerization approaches, along with the pros and cons of... All Mobile/Wireless White Papers | Webcasts