U.S. set to issue passports with RFID chips

Marc L. Songini   Today’s Top Stories   or  Other Mobile Applications and RFID Stories  

Data Protection and Disaster Recovery with iSCSI and VMware Client Security Podcast Get a Grip on Storage Growth and Reduce Costs VMware DRS: Why You Still Need Assured Application Delivery An Overview of PAN Manager by Egenera Maximizing Business Agility with the Dynamic Data Center Computerworld Report- Large Enterprises Pay More for IPAM An Apple for Your Enterprise? Six Questions To Ask About Information And Competition Sign up to receive Privacy Resource Alerts

July 28, 2006 (Computerworld) -- The U.S. Department of State is on track to start issuing passports with radio frequency identification (RFID) chips next week, despite warnings from some security experts that such systems could be accessed or tracked by hackers.

The new program will start in the Denver passport office and be rolled out across the country over the next several years. All American passports are expected to include RFID chips containing personal information by 2017.

State Department personnel have successfully tested the electronic passports over the past year, said Frank Moss, deputy assistant secretary for passport services.

Moss contended that electronic passports improve security by making it harder to forge or alter official documents. All personal information on the chip must precisely match that in the printed portion of the electronic passport. "In the past, it could have been possible to put a new photo inside [a stolen passport] or find someone who looks like the holder," Moss said.

Additionally, if an electronic passport is stolen, the chip has a unique identifying number that can be tracked by law enforcement agencies worldwide, he said.

Moss said that extra memory space on the RFID chip may be used in the future to store biometric information such as a fingerprint image. However, he said no decision has yet been made on how to use the extra storage space.

Some security experts have expressed concern over the use of a chip that doesn't require contact with a scanner. The new passport can be read about four inches from a scanner.

Given the fast pace of technology changes, and the 10-year life of a passport, it's inevitable that the RFID chip will become hackable and that technology will be built to access it from long distances, said Bruce Schneier, founder and CTO of Counterpane Internet Security Inc. in Mountain View, Calif. The new passport could eventually allow for surreptitious access and tracking, he said.

Schneier contended that the State Department could have used an RFID chip that requires contact with a reader. "I can think of no benefit for a contact-less chip," he said. "The question is, if there is no good reason for RFID, why are they pushing so hard for it?"

Other experts downplayed such potential flaws. "The only vaguely legitimate arguments I have heard against E-passports is that they might permit someone two feet away from you to learn that you are American and blow you up, or permit someone two feet away to learn whatever might be stored on the E-passport," said Michael Shamos, a professor who specializes in security issues at Carnegie Mellon University in Pittsburgh.

"It's a balancing of risks. The E-passport will be much more difficult to forge and thus ought to reduce the prospect of terrorists getting hold of valid ones," he said.

The passive 64Kb RFID devices in the new passports will be supplied by Infineon Technologies North America Corp. of San Jose and Amsterdam-based Gemalto NV, Moss said. The E-passports meet specifications laid down by the Montreal-based International Civil Aviation Organization (ICAO), a United Nations standards body.

The ICAO has been pushing for its 189-member countries to adopt machine-readable passports by 2010.

Print this Story

Send Us Feedback

E-mail this Story

Digg this Story

Slashdot this Story

"In Monday's..." Read more... Read more Mobile & Wireless posts or See all Blogs

Microsoft e-mails detail internal fight over 'Vista Capable' changes Deleting your digital past -- for good Update: Symantec CEO John Thompson to step down More top stories...

Microsoft's 'Vista Capable' changes outraged HP, insider e-mails show Citigroup's 52,000 layoffs will impact IT McColo takedown: Internet vigilantism or online Neighborhood Watch?

2008 Salary Survey: IT pay takes tiny leaps If you're like our 7,000 survey respondents, your paycheck this year has been flattened and your bonus obliterated. We offer 12 ways to plump up your paycheck. Windows 7 in-depth review and video: This time Microsoft gets it right Microsoft's next OS might more accurately be called Windows 6.5: It's essentially a better version of Vista. Twitter for business: 5 ways to tap the power of the tweet Twitter can be a valuable business tool -- if you know what you're doing. Here's how to juice it for all it's worth. Microsoft's 'Vista Capable' changes outraged HP, insider e-mails show By helping Intel with loosened 'Vista Capable' requirements, Microsoft 'severely damaged' its credibility, said an HP exec in a newly unsealed Feb. 2006 e-mail. Windows 7 Get the latest news, reviews and more about Microsoft's newest desktop operating system More Continuing Coverage Windows 7 Voting Technology Google's Chrome browser Economy in turmoil: Latest news and tips iPhone 3G Bill Gates moves on Windows Vista A to Z Mac A to Z 2008 Salary Survey Find wage data for 50 IT job titles. More Special Reports 2008 Premier 100 IT Leaders 2007 Premier 100 IT Leaders 2008 Best Places to Work in IT 2007 Best Places to Work in IT 2008 Salary Survey 2007 Salary Survey 2006 Salary Survey 2008 IT Forecast 2007 IT Forecast 40 Years of Computerworld Top 12 Green-IT Users The FAQs About Going Green IT Schools to Watch iPhone: One Year Later Global Mobile Your Next Data Center Management: Reinventing IT Stop Data Leaks Web 2.0 Security Surviving Disasters Managing Storage Virtualization The Lean Storage Machine Storage on Trial Can Web 2.0 Save BI? Bypass These BI Potholes All Zones Business Continuity Zone The File Data Management Zone Security Management Zone The SAS Zone Business Intelligence and Analytics Zone The Enterprise Search Zone Software as a Service Zone The Security Zone See your link here

From Laggard to Leader: Transforming the Data Center From Laggard to Leader: Transforming the Data Center Register for this complimentary webcast today! Go to the webcast  Computerworld Executive Bulletin: Building a Robust Antivirus Defense Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs. (Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more. Download this executive briefing  Record Capacity for Microsoft® Exchange 2007 With VMware and IBM System x3850 M2 Download this white paper today! (Source: VMware) The more that e-mail becomes an entrenched IT infrastructure application, the more that messaging administrators face numerous--sometimes conflicting--demands in the categories of availability, flexibility and cost. Employing a virtual solution can help avoid expensive over-provisioning of server computing resources, while improving management and disaster recovery. And ultimately, it can more than double the number of supportable Exchange 2007 users, as compared to a non-virtualized environment. This whitepaper explains how to break down the scalability barrier and respond faster to your mail system needs. Download this white paper  White Papers Read up on the latest ideas and technologies from companies that sell hardware, software and services. An Overview of PAN Manager by Egenera VMware DRS: Why You Still Need Assured Application Delivery Informal Learning: Extending the Impact of Enterprise Ideas and Information View more whitepapers

• Microsoft e-mails detail internal fight over 'Vista Capable' changes
• Microsoft's 'Vista Capable' changes outraged HP, insider e-mails show
• Deleting your digital past -- for good
• More top stories 

2008 Internet Malware Trends Report Researchers at IronPort, now part of Cisco, have identified a link between originators of malware, such as Storm, and illegal pharmaceutical supply chain businesses that recruit the botnets to send spam. This report highlights the impact and uncovers the true drivers of pharmacy spam and continued malware innovation. Download this report now!

In Security Stripping away the trappings of applications, systems and networks, information is the core asset of most organizations. Our columnist describes how asserting the importance of information governance is crucial to making that asset tangible, addressable and protected. Click here to read the latest column by Jon Espenschied

"Turning information into a Competitive Advantage" Companies today are realizing that competitive advantage is harder to sustain when based solely on gains in productivity and cost efficiency. The focus is shifting to invest more in business optimization initiatives which rely on trusted information to develop new insights that deliver better business results. But how can this be done efficiently in a business environment across multiple applications and processes. The answer is an Information Agenda - an innovative approach to transforming business information into a strategic asset for competitive advantage. View this webcast now!  See more Webcasts

• Microsoft's 'Vista Capable' changes outraged HP, insider e-mails show

• Microsoft e-mails show 'Vista Capable' changes helped Intel

• Apple exec fights for new job, sues IBM

Read more news 

• The Matrix runs on Windows

• It's doing something now...

Read more Shark Bait