Home > News > Security > Hackers clone passports in drive-by RFID heist

Hackers clone passports in drive-by RFID heist

A British hacker has shown how easy it is to clone US passport cards that use RFID by conducting a drive-by test on the streets of San Francisco.

Chris Paget, director of research and development at Seattle-based IOActive, used a US$250 Motorola RFID reader and an antenna mounted in a car’s side window and drove for 20 minutes around San Francisco, with a colleague videoing the demonstration.

During the demonstration he picked up the details of two US passport cards, which are fitted with RFID chips and can be used instead of traditional passports for travel to Canada, Mexico and the Caribbean.

“I personally believe that RFID is very unsuitable for tagging people,” he said.

“I don’t believe we should have any kind of identity document with RFID tags in them. My ultimate goal here would be, my dream for this research, would be to see the entire Western Hemisphere Travel Initiative be scrapped.”

Using the data gleaned it would be relatively simple to make cloned passport cards he said. Real passport cards also support a ‘kill code’ (which can wipe the card’s data) and a ‘lock code’ that prevents the tag’s data being changed.

However he believes these are not currently being used and even if they were the radio interrogation is done in plain text so is relatively easy for a hacker to collect and analyse.

The ease with which the passport cards were picked up is even more worrying considering that less than a million have been issued to date.

Paget is a renowned ‘white hat’ ethical hacker and has made the study of the security failings of RFID something of a speciality.

In 2007 he was due to present a paper on the security failings of RFID at the Black Hat security conference in Washington but was forced to abandon the plans after an RFID company threatened him with legal action.

He points out that RFID tags are increasingly being used in physical security systems such as building access cards and the technology needs significant security adding before it could be considered safe for commercial use.

Ads by Google

Thoughts on this article? Add a comment below.

Comments: 6

well, reading RFID codes was and it is an issue, can they just put a lock on the card like the ones existing on the SD cards to stop the signal from going out and just to activate-it manual when there is a need to use-them ? this way no shield need-it, no extra hustle, just a little tiny switch to initiate or stop contact on card

Posted by simon, Feb 5, 2009 3:09 AM

Report

So this means that I make more money that Einstein and Galleleo put together!

Posted by rigbly, Feb 5, 2009 8:27 AM

Report

Okay lets see here we have rfid chips,flat screen tv, no more analog tv just digitial, feeds in and can also feeds out, continuly at war in another country,patriot act 2. And last but not least the sheeple in this land of amerika that are to ignorant to see what is happening, gotta watch those reality shows. Is this a book or what? Someone should write a book. What, you say someone has and it was called 1984. We are there.

Posted by Sammy Suitcase, Feb 6, 2009 2:21 AM

Report

That's right! I can't say it better than Sammy Suitcase! Thank you God I am not in Amerika, and never plan to be there.

Posted by Vasilisa, Feb 6, 2009 2:35 AM

Report

This is why I use one of these: http://www.thinkgeek.com/gadgets/security/910f/

Posted by Heron, Feb 6, 2009 7:45 AM

Report

Didn't Australia recently propose censoring its internet nationally? The UK has passport chips/ID card chips as well (they were first). You Aussies really think you're this far outside the scope? Just blame America and laugh while you're fleeced in the meantime.

Posted by Christopher, Feb 6, 2009 1:20 PM

Report

Report this comment as offensive:

* Indicates information we require to process your submission.

Name: *
Email: *
Reason for offense: *
Your report will not be displayed.

Name:

Email:

(will not be displayed)

Comment:

(HTML not permitted)

Validation

Enter the code you see below:

Your Say

"You are confusing the use of white space channels with the reallocation of spectrum above 700 MHz due to introduction of ..."

on Technology giants propose white space plan

by Bill | Feb 7, 2009 3:50 AM

"orkut not open what is this probam please give me reply"

on NBN ‘critical’ to resolving State backhaul complaints

by christomathew | Feb 7, 2009 3:40 AM

"Hi everybody! If you want to download any film, music, clip or soft I would recommend you to visit http://megaupload.name/..."

on MySpace clanger causes comment chaos

by kiopel | Feb 7, 2009 1:41 AM

more comments »

Product Reviews

	Kaspersky Labs Total Space Security v6.0 Other products may boast more malware components, but this one is good at what it does.

	F-Secure Client Security 8 This tool offers a large amount of protection, ease of use and management, all for a fair price.

	ESET Smart Security v3.0 It provides a good range of malware protection at the endpoint, and the administration console did a nice job...

	BitDefender Corporate Security BitDefender Corporate Security is a security and management solution which delivered proactive protection...

	AVG Technologies Internet Security Network This product integrated most of the malware solutions while providing an efficient, streamlined user-friendly...