Storm building over RFID-enabled passports
With just months before full U.S. adoption, a raging debate
Network World - As the U.S. government prepares to complete a conversion to the controversial RFID-based electronic passports, traditional paper-only IDs are still available for a few months to those listening to the raging debate over security and privacy concerns swirling around the electronic documents.
Many security experts are still questioning whether e- passports, which have a 10-year life span, have enough security built in to survive a decade of hackers and technology advancements while protecting e-passports users from data theft, identity theft and other security and privacy intrusions.
"If the government is right, this will be the first time in the history of mankind that a perfectly secure application will be produced. Of course it will be hacked," says Bruce Schneier, the noted security guru, author and CTO of Counterpane Internet Security.
The government thinks otherwise and has already started to issue the cards from two of its regional offices in Colorado and Washington, D.C.
"Let me be blunt," says Frank Moss, deputy assistant secretary for passport services at the Department of State. "We have obviously gone through an elaborate process here, and, I think, with the exception of a relatively small number of people, have addressed most people's security concerns."
Moss, along with other government and military officials, has been using an RFID-enabled passport since last year.
The e-passport is a contact-less smartcard with a secure microprocessor that employs a passive radio frequency to transmit data over an encrypted wireless link to a reader. The passive technology requires a reader to power the chip and is different from an RFID vicinity chip used for tracking items from a distance.
A technology called Basic Access Control (BAC) uses an electronic key, derived from machine-readable data printed on the passport's page, to unlocked the data on the chip, and a digital signature protects the integrity of the digital data.
The chip, which is embedded inside the cover of the passport, contains only a duplicate copy of the passport photograph and the printed data. The digital data is intended to prevent forgeries by allowing inspectors to compare the printed and digital data.
"This is not a security device for you, it is a security device for the government," says Schneier. "As long as you don't benefit from this why should you be a guinea pig?" Schneier recommends people get new passports, which are valid for 10 years, without RFID technology while they are still available. The government does not plan on recalling passports before their expiration date.
But once regional passport offices convert to e-passports, the traditional paper-only versions will not be available. The Colorado office converted on Aug. 4, while the Special Issuance Agency in Washington is completing a conversion. The other 15 offices will convert during the next five to six months.
- Best iPhone, iPad Business Apps for 2014
- 14 Tech Conventions You Should Attend in 2014
- 10 Desktop Apps to Power Your Windows PC
- How to Add New Job Skills Without Going Back to School
- Slideshow: 7 security mistakes people make with their mobile device
- iOS vs. Android: Which is more secure?
- 11 sure signs you've been hacked
Red Hat Enterprise Linux - The Original Cloud Operating System
Linux adoption is growing against a number of measures, such as the
number of supercomputers that run Linux and the size of the contributing...
- OpenStack Hype vs. Reality: CIO Quick Pulse Open-source architecture can enable IT departments to build infrastructure-as-a-service (IaaS) clouds running on standard hardware.
- Building a Bridge to the Next Generation Data Center Selecting a widely adopted operating system is a foundational component of a standardization strategy.
- OpenStack and Red Hat: IDC White paper Most OpenStack deployments are by public cloud providers that are early adopters of technology and use OpenStack in a do-it-yourself deployment and support...
- Data Protection and Disaster Recovery with iSCSI and VMware Get this on demand webcast now
- Webinar: Building a Big Data solution that's production-ready Big data solutions are no longer just a nice-to-have. All Privacy White Papers | Webcasts