Add to Google




http://www.wikio.com

BLN RSS



Twitter



Alternative News,
Information, and Analysis
Rogue Government
What Really Happened
 Cryptogon
Raw Story
Citizens for Legit Gov.
Information Clearing House
American Free Press
Global Research
The Peoples Voice
Tom Burghardt
Uncover The News
All Gov.
Media Monarchy
Information Liberation
TPM Muckraker
F. William Engdahl
Cryptome
Narco News
Media Matters
Uruknet
Corbett Report
Common Dreams
Alternet
Antiwar
Aftermath News
Steve Quayle
Wayne Madsen
Truth Out
Etherzone
Online Journal
Lew Rockwell
Dissident Voice
News With Views
Jeff Rense
Strike The Root
Peter Chamberlin
Dprogram
12160
Old Thinker News
Common Dreams
Empire Burlesque
American Exile
CNS News
IntelliBreifs
Electric Politics
Stop The Lie
Amy de Miceli
Crooks and Liars
Rumor Mill News
The Resident
Aangirfan
OpEDNews
The Brad Blog
Conspiracy Archive
Foreign Policy Journal
Counter Punch
August Review
Buzzflash
Truth Is Treason
NewsWires
News Now
My Way News
Reuters Alert Net
1st Headlines
Yahoo News
Ananova
Excite AP
Knight Ridder
Newsday AP
Google News
Swiss Info
ABC Wire
News Interactive
US Newswire
World News Network
United Press Int.
Associated Press
Excite News
MSN News
PR Newswire
Reuters
Scripps Howard
Xinhua
ZD Net
Community News Aggregators
Reddit
Digg
Online Only
Natural News
Real News Network
VOA News
Huffington Post
World Net Daily
Drudge Report
Newsmax
Boing Boing
Short News
Small Government Times
Capitol Hill Blue
Global Post
Business / Economics
Seeking Alpha
Market Watch
Bloomberg
Wall Street Journal
RTT News
CNN Money
Forbes
Business Week
Funny Money Report
Market Oracle
Money Morning
The Street
Shadow Stats
Economist
Financial Times
Fortune Magazine
Kitco
Gold Eagle
Max Keiser
321 Gold
Stock Charts
Zero Hedge
Washingtons's Blog
The Daily Reckoning
Energy Business Review
Milplex / Intel / Defense
Danger Room
Washington Technology
Defense Industry Daily
Global Security
Geopolitical Monitor
Defense Link
Stratfor
Space War
Jane's
Defense Tech
Strategy Page
Military Info Tech
Major US Newspapers
New York Times
New York Post
New York Daily News
Washington Post
Washington Times
L.A. Times
USA Today
Science / Tech News
Wired
Blast Magazine
PHYSorg
Science Daily
Popular Science
Engadget
New Scientist
Technovelgy
Singularity Hub
H+ Magazine
Science Magazine
Seed Magazine
CBR Online
Science News
SlashDot
Scientific American
Spectrum IEEE
Technology Review
io9
ZD Net
Technology News
The Register
Tech News World
VNU Net
Satire & Animation
Onion YouTube
Reptile God
Wahoos Mopar Grave Yard
Royal Canadian Air Farce
The Daily Show
The Colbert Report
Mark Fiore
All Hat No Cattle
Mack White
Propaganda Remix Project
Internet Weekly Report
Kontraband
Holy Lemon


oracle broadcasting

Kristos Trading





AddThis Feed Button
FKN NEWZ Texas Team Speak
Add to Technorati Favorites
Valid XHTML 1.0 Transitional






RFID-Biometrics
‘Fakeproof’ e-passport is cloned in minutes
Published on 08-05-2008Email To Friend    Print Version
AddThis Social Bookmark Button

Source: The Guardian

New microchipped passports designed to be foolproof against identity theft can be cloned and manipulated in minutes and accepted as genuine by the computer software recommended for use at international airports.

Tests for The Times exposed security flaws in the microchips introduced to protect against terrorism and organised crime. The flaws also undermine claims that 3,000 blank passports stolen last week were worthless because they could not be forged.

In the tests, a computer researcher cloned the chips on two British passports and implanted digital images of Osama bin Laden and a suicide bomber. The altered chips were then passed as genuine by passport reader software used by the UN agency that sets standards for e-passports.

The Home Office has always argued that faked chips would be spotted at border checkpoints because they would not match key codes when checked against an international data-base. But only ten of the forty-five countries with e-passports have signed up to the Public Key Directory (PKD) code system, and only five are using it. Britain is a member but will not use the directory before next year. Even then, the system will be fully secure only if every e-passport country has joined.

Some of the 45 countries, including Britain, swap codes manually, but criminals could use fake e-passports from countries that do not share key codes, which would then go undetected at passport control.

The tests suggest that if the microchips are vulnerable to cloning then bogus biometrics could be inserted in fake or blank passports.

Tens of millions of microchipped passports have been issued by the 45 countries in the belief that they will make international travel safer. They contain a tiny radio frequency chip and antenna attached to the inside back page. A special electronic reader sends out an encrypted signal and the chip responds by sending back the holder’s ID and biometric details.

Britain introduced e-passports in March 2006. In the wake of the September 11 attacks, the United States demanded that other countries adopt biometric passports. Many of the 9/11 bombers had travelled on fake passports.

The tests for The Times were conducted by Jeroen van Beek, a security researcher at the University of Amsterdam. Building on research from the UK, Germany and New Zealand, Mr van Beek has developed a method of reading, cloning and altering microchips so that they are accepted as genuine by Golden Reader, the standard software used by the International Civil Aviation Organisation to test them. It is also the software recommended for use at airports.

Using his own software, a publicly available programming code, a £40 card reader and two £10 RFID chips, Mr van Beek took less than an hour to clone and manipulate two passport chips to a level at which they were ready to be planted inside fake or stolen paper passports.

A baby boy’s passport chip was altered to contain an image of Osama bin Laden, and the passport of a 36-year-old woman was changed to feature a picture of Hiba Darghmeh, a Palestinian suicide bomber who killed three people in 2003. The unlikely identities were chosen so that there could be no suggestion that either Mr van Beek or The Times was faking viable travel documents.

“We’re not claiming that terrorists are able to do this to all passports today or that they will be able to do it tomorrow,” Mr van Beek said. “But it does raise concerns over security that need to be addressed in a more public and open way.”

The tests also raise serious questions about the Government’s £4 billion identity card scheme, which relies on the same biometric technology. ID cards are expected to contain similar microchips that will store up to 50 pieces of personal and biometric information about their holders. Last night Dominic Grieve, the Shadow Home Secretary, called on ministers to take urgent action to remedy the security flaws discovered by The Times. “It is of deep concern that the technology underpinning a key part of the UK’s security can be compromised so easily,” he said.

The ability to clone chips leaves travellers vulnerable to identity theft when they surrender their passports at hotels or car rental companies. Criminals in the back office could read the chips and clone them. The original passport holder’s name and date of birth could be left on the fake chip, with the picture, fingerprints and other biometric data of a criminal client added. The criminal could then travel the world using the stolen identity and the original passport holder would be none the wiser.

The Home Office said last night that it had yet to see evidence of someone being able to manipulate data in an e-passport. A spokesman said: “No one has yet been able to demonstrate that they are able to modify, change or alter data within the chip. If any data were to be changed, modified or altered it would be immediately obvious to the electronic reader.”

The International Civil Aviation Organisation said: “The PKD ensures that e-passports used at border control points . . . are genuine and unaltered. In effect it renders the passport fool-proof. However, all states issuing e-passports must join the PKD, otherwise that assurance cannot be given.”

Going biometric

1999 International Civil Aviation Organisation begins study into possibility of worldwide use of travel documents carrying biometric data

2002 After 9/11 US announces all passports issued from 2006 and used to enter the country must contain biometric information or holder will require a visa

2006 Britain and many EU countries introduce biometric passports

2008 45 countries have introduced biometric passports. 100 million have been issued globally

Sources: Identity and Passport Service, US Government