If Simple Credit Cards are cloneable just imagine how ”New ID cards” are supposed to be ‘unforgeable’ – but it took expert minutes to clone one, and program it with false data

By Cory Doctorow at 11:43 PM February 11, 2010

(Chip and PIN is broken via Schneier)

BBC: New flaws in chip and pin system revealed

Noted security researcher Ross Anderson and colleagues have published a paper showing how “Chip-and-PIN” (the European system for verifying credit- and debit-card transactions) has been thoroughly broken and cannot be considered secure any longer. I remember hearing rumbles that this attack was possible even as Chip-and-PIN was being rolled out across Europe, but that didn’t stop the banks from pushing ahead with it, spending a fortune in the process.

The flaw is that when you put a card into a terminal, a negotiation takes place about how the cardholder should be authenticated: using a PIN, using a signature or not at all. This particular subprotocol is not authenticated, so you can trick the card into thinking it’s doing a chip-and-signature transaction while the terminal thinks it’s chip-and-PIN. The upshot is that you can buy stuff using a stolen card and a PIN of 0000 (or anything you want). We did so, on camera, using various journalists’ cards. The transactions went through fine and the receipts say “Verified by PIN”.

It’s no surprise to us or bankers that this attack works offline (when the merchant cannot contact the bank) — in fact Steven blogged about it here last August.

But the real shocker is that it works online too: even when the bank authorisation system has all the transaction data sent back to it for verification. The reason why it works can be quite subtle and convoluted: bank authorisation systems are complex beasts, including cryptographic checks, account checks, database checks, and interfaces with fraud detection systems which might apply a points-scoring system to the output of all the above. In theory all the data you need to spot the wedge attack will be present, but in practice? And most of all, how can you spot it if you’re not even looking? The banks didn’t even realise they needed to check.

By: The Kentucky Anti Real ID

The concept of a National ID card has been around for quite some time, back to at least the creation of the Social Security Number (SSN), and while (SSN) is a form of identification, it is not a National ID card in the sense that is being promoted in our time. The push for a National ID card in the modern era started back in the 80’s during the Reagan administration. Reagan, being the type of man he was, knew exactly what this would lead to and flat out rejected the concept. It was brought up in the Clinton administration as well, and while opposition to it was not as strong as Reagan’s, Clinton also did not sign off on a National ID card. Unfortunately, though the times have changed, I feel we can no longer trust our Federal government to operate in our best interest; it has severely broken with the Constitution and the ideals that founded this union. After 9/11 everyone was scared, angry, wanted protection from terrorism, and in that hysteria, most people did not care what it was or how it worked. As a result we got the PATRIOT Act written two years before 9/11 that gives the government the authority, among other things, to enter your house when you’re not there and to take anything. It’s called a “sneak and peak” (and they say trust us on healthcare). The Military Commission Act (MCA) was passed that has language so vague that it could catch average citizens in the category of a “threat” to the government and warrant the same treatment our government gives terrorists. During the process of making us safer a National ID card also became law in 2005 that was tacked onto a tsunami relief and military spending bill as a national security measure meant to guard against terrorism, illegal immigration and identity theft. Being attached to the type of bill that it was guaranteed no opposition, and so it sailed right through Congress straight to the President where it became law.

I will now remind everyone at this juncture what a couple of founding fathers has to say about Liberty and Security:

“I would rather be exposed to the inconveniencies attending too much liberty than to those attending too small a degree of it.”

-Thomas Jefferson

“Those willing to sacrifice Liberty for Security will get neither and deserve neither”

-Benjamin Franklin

The issue of REAL ID and all it entails is too complex to give in this medium, but I will give a brief overview and then direct you to a few sites where you can get all the dirty details. REAL ID is not just a National ID card but much more as it is an INTERNATIONAL ID card. When REAL ID became law, DHS had a non-negotiated rule making process, and so they inserted international regulations. The International Civil Aviation Organization (ICAO), a UN agency, are the ones charged with setting the ISOs for identification programs of the various participating countries, and there are a lot that are participating. The American Association of Motor Vehicle Administrators (AAMVA) will be the entity that will see to the implementation of REAL ID. AAMVA is American in name only. As they state on their website they are an international organization. Then there are the corporations, most prominently, a company called L1-Identity Solutions. This corporation has a monopoly on identification cards (i.e. drivers licenses) like Microsoft does on computer operating systems.

The required data on these cards will not just be our physical attributes for identification purposes but our religious, political, educational, medical, financial, sexual, firearms, and biometric data will be on this card. Considering the fact that all our information will be on this card and that the state DMV databases will have to be linked and consolidated, the information will be held primarily by one corporation, and our government will be sharing it with any “nation” of the world such as Canada, England, Mexico, Australia, Russia, China, or Iran to name very few. There is no possible way for our information to remain secure. The more information or data on us that is compiled and shared, the more likely it will be stolen (130 million credit card numbers stolen). Note that one of the pieces of data that will be collected is biometric. When most people think biometric, they think fingerprints, iris scans, DNA; however, the biometric of choice is facial recognition because it can be taken without your knowledge or consent. A mathematical algorithm will be used based on your facial features to assign you a specific number. Law enforcement personnel do not need numbers to identify you, but a camera and computer surely does, and we are well on our way to being a surveillance society more than you think we are.

By: Stephen Patrick Hoffman, University of Minnesota – Twin Cities

Abstract

Biometric identification techniques such as retinal scanning and fingerprinting have now become commonplace, but near-future improvements on these methods present troubling issues for personal privacy. For example, retinal scanning can be used to diagnose certain medical conditions, even ones for which the patient has no symptoms or has any other way of detecting the problem. If a health insurance company scans the retinas of potential clients before they purchase coverage, they could be charged higher premiums for conditions that do not present any issues. Not only is this unfair, but the ease with which these scans can be conducted—including scanning without the subject’s consent or knowledge—present disturbing privacy concerns and suggest an Orwellian future, instead controlled by Big Business rather than Big Brother.

INTRODUCTION

Imagine it is the year 2030. As you walk down your street to visit your favorite coffee shop, a camera mounted at the nearest intersection tracks your movements. Initially, you are just a set of pixels transmitted to a video screen somewhere; however, after your movement has been picked up by the camera, it uses algorithms based on general body and skull structure to pinpoint the location of your eyes. Once the camera has found your eyes, it projects an infrared beam of light into your eyes which would not be noticed because infrared light is not visible to the human eye. Using the reflection of the light from your retinas and choroids, the camera photographs the vasculature structure of your eyes and runs it against a database of known criminals, immigrants, and even people dissenting from popular opinion. If your retinal pattern matches that of a person listed in the database, the computer transmits this information to the proper authorities. All of this happens before you even step through the door of the coffee shop. This Orwellian1 future of an omnipotent Big Brother is not consistent with a free democracy subservient to the people.

However, this is not the only worrisome issue presented by this scenario—what if private companies, instead of the government, are the ones running those cameras? What if a health insurance company installs these cameras outside its offices to identify individuals and detect disorders and illnesses before they walk through the door? Retinal vascular patterns have been shown to anticipate future illnesses as well as conclusively identify several illnesses that the individual suffers from, and many of these are hereditary or genetic conditions. If the insurance company knows what you are susceptible to before you are personally aware or have been notified of, and uses this to refuse coverage or charge a higher premium for the policy you apply for, they have appropriated something extremely private of yours without consent and may use this knowledge to profit from your supposed “condition,” regardless of whether those future or current illnesses have manifested or will manifest themselves. Why should such an intrusive procedure be allowed without any concern to the privacy rights of those being examined?

Suggested Citation

Stephen Patrick Hoffman. 2010. “Biometrics, Retinal Scanning, and the Right to Privacy in the 21st Century“

By ANGELA CHARLTON
Associated Press Writer – Charlotte Observer

DAVOS, Switzerland The biggest travel threat facing the world now is passport fraud, according to the chief of Interpol – the millions of stolen documents that could be used by terrorists or criminals to travel worldwide.

Airport body scanners, embraced by many in the aftermath of the attempted Christmas Day airplane bombing, are a misguided solution to travel threats, Interpol Secretary-General Ronald K. Noble told The Associated Press in an interview Thursday night.

“The greatest threat in the world is that last year there were 500 million, half a billion, international air arrivals worldwide where travel documents were not compared against Interpol databases,” he said on the sidelines of the World Economic Forum, where 2,500 business and political leaders are gathered in this Alpine resort.

“Right now in our database we have over 11 million stolen or lost passports,” he said. “These passports are being used, fraudulently altered and are being given to terrorists, war criminals, drug traffickers, human traffickers.”

The solution, he said, is better intelligence, and better intelligence sharing, among countries.

“You don’t know the motivation behind the person carrying the passport,” he said. If you’re a terrorist, he said, “Are you going to carry explosives that are going to be detected? No.”

Many U.S. airports use the body-scanning machines and airports in other countries are adopting them after Nigerian Umar Farouk Abdulmutallab allegedly tried to detonate explosives hidden in his underwear Dec. 25 on the Detroit-bound flight.

But Noble questioned “the amount of money and resources that go into these (body-scanning) machines.”

He cited a case two weeks ago in a Caribbean country where five people were arrested carrying European passports, but were caught after they were found to be carrying stolen passports – one stolen back in 2001. The five had “definite links to crime, organized crime, human trafficking but no definite links to terrorism,” he said, though he wouldn’t name the country.

He said U.S. authorities are recognizing the threat of passport fraud – in 2006, U.S. authorities scanned the Interpol database about 2,000 times, while last year they did so 78 million times. They came up with 4,000 people traveling on stolen or lost passports.

Intelligence experts have cast doubt on the usefulness of the so-called no-fly lists of suspects shared among airports worldwide, saying that criminals can change their names or make simple name spelling changes that render them untrackable.

“(The lists) are useful but I don’t believe they are the be-all and end-all,” Noble said, adding he was concerned about governments’ efforts to expand them.

Noble, who has expanded Interpol’s efforts to fight terrorism, cybercrime, corruption and maritime piracy in his nearly 10 years at the helm of international police agency Interpol, also had words of warning for people hoping to donate money to Haiti after its devastating earthquake.

“Be very careful,” he said, citing several cases of fraudsters preying on donors and stealing their money via fake charity Web sites.

“Whenever there’s a tragedy it seems to bring out the best in people and unfortunately the worst,” he said. He said several U.S. sites have been taken down since the earthquake after they were found to represent no known charity.

Interpol has a team helping identify victims in Haiti, a daunting task with an estimated 200,000 dead. Another daunting task will be rebuilding Haiti’s law enforcement.

Policing in Haiti “was a challenge before this happened,” he said.

This threat brought to you by RFID

By Dan Goodin in San Francisco • The Register

Computer scientists in Britain have uncovered weaknesses in electronic passports issued by the US, UK, and some 50 other countries that allow attackers to trace the movements of individuals as they enter or exit buildings.

The so-called traceability attack is not the only exploit of an e-passport that allows attackers to remotely track a given credential in real time without first knowing the cryptographic keys that protect it, the scientists from University of Birmingham said. What’s more, RFID, or radio-frequency identification, data in the passports can’t be turned off, making the threat persistent unless the holder shields the government-mandated identity document in a special pouch.

“A traceability attack does not lead to the compromise of all data on the tag, but it does pose a very real threat to the privacy of anyone that carries such a device,” the authors, Tom Chothia and Vitaliy Smirnov, wrote. “Assuming that the target carried their passport on them, an attacker could place a device in a doorway that would detect when the target entered or left a building.”

To exploit the weakness, attackers would need to observe the targeted passport as it interacted with an authorized RFID reader at a border crossing or other official location. They could then build a special device that detects the credential each time it comes into range. The scientists estimated the device could have a reach of about 20 inches.

“This would make it easy to eavesdrop on the required message from someone as they used their passport at, for instance, a customs post,” the authors wrote.

The attack works by recording the unique message sent between a particular passport and an official RFID reader and later replaying it within range of the special device. By measuring the time it takes the device to respond, attackers can determine whether the targeted passport is within range. In the case of e-passports from France, the process is even easier: electronic credentials from that country will return the error message “6A80: Incorrect parameters” if the targeted person is in range and “6300: no information given” if the person is not.

The research is only the latest to identify the risks of embedding RFID tags into passports and other identification documents. Last year, information-security expert Chris Paget demonstrated a low-cost mobile platform that surreptitiously sniffs the unique digital identifiers in US passport cards and next-generation drivers licenses. Among other things, civil liberties advocates have warned that those identifiers could be recorded at political demonstrations or other gatherings so police or private citizens could later determine whether a given individual attended.

To be sure, the practicality of traceability attacks is more limited because a targeted passport first must be observed within range of a legitimate reader. But once this hurdle is cleared – as would be relatively easy for unscrupulous government bureaucrats to do – the attack becomes a viable way to track a target.

Chothia and Smirnov of the University of Birmingham’s School of Computer Science said the security hole can be closed by standardizing error messages and “padding” response times in future e-passports. But that will do nothing to protect holders of more than 30 million passports from more than 50 countries who are vulnerable now, they said.

And that’s sure to fuel criticism of RFID-enabled identification.

“This is a great example of why e-passports are a bad idea,” Paget wrote in an email to The Register. “It’s simply too expensive to replace vulnerable documents (especially when they have a 10-year lifespan) in response to legitimate security concerns, regardless of their severity. People will continue to poke holes in e-passports; without a mechanism to fix those problems there’s a strong argument that’s we’re better off without the RFID.”

U.S. Department of Homeland Security Secretary Janet Napolitano and Public Safety Canada Minister Peter Van Loan today announced initiatives between the United States and Canada.

Source: U.S. Department of Homeland Security Posted on: 24th November 2009

Those initiatives build on their shared commitment to tackle common threats like terrorism and organized crime while ensuring the lawful flow of travel and trade across the border.

The announcement came after Secretary Napolitano and Minister Van Loan met for the second of their formal biannual meetings; the Secretary and the Minister have also met three other times this year.

Today they reviewed progress on the mutual goals they announced in May, including enhancing information sharing and expanding integrated law enforcement while protecting privacy and economic security.

“Close cooperation and coordination between the United States and Canada is critical to the national and economic security of both nations,” said Secretary Napolitano. “Minister Van Loan and I are committed to working together to combat transnational threats and facilitate lawful travel and trade on both sides of the border.”

“A shared understanding of the threats and risks we face is paramount to our common objective of enhancing U.S.-Canadian security. We are working together to achieve this,” said Minister Van Loan. “We have a joint responsibility to secure the safety of our citizens.”

Secretary Napolitano and Minister Van Loan also made announcements to strengthen both trade and security:

Streamlining Border Shipping: Canada and United States have agreed to work toward aligning the U.S. Customs Trade Partnership Against Terrorism (C-TPAT) and Canada’s Partners in Protection (PIP) program, in an effort to achieve harmonization as quickly as possible. These trusted shipper programs focus on improving the security of private sector supply chains and benefit shippers.

Maritime Emergency Cooperation: Canada and United States have created a Maritime Annex to the Joint Framework for the Movement of People and Goods During and Following Emergencies. This is an addition to the Framework the countries established in May. The new annex guides communication and coordination during incidents that affect shared waterways and ports, enabling both nations to assist one another during emergencies.

NEXUS and FAST Cards Now Accepted Everywhere: Canada will join the United States in recognizing NEXUS and Free and Secure Trade (FAST) trusted traveler program cards as valid identification documents in all lanes at all land and sea border ports of entry beginning Nov. 25. It was also announced that the programs are expanding with new enrollment centers opening in St. Stephen, New Brunswick – Calais, Maine and Lansdowne, Ontario – Alexandria Bay, N.Y

Immigration Information Sharing: Secretary Napolitano announced that the United States will join a biometric data sharing initiative involving Canada, Australia, the United Kingdom and, eventually, New Zealand – an initiative designed to strengthen the integrity of immigration systems and the security of each country while protecting privacy and civil rights. Minister Van Loan, with the Canadian Minister of Citizenship, Immigration and Multiculturalism, Jason Kenney, welcomed the United States’ participation.

“Previous trials show that biometric information sharing works. For example, when the fingerprints of some asylum claimants in Canada were checked against the U.S. database, more than a third matched and 12 percent of these individuals presented a different identity in the United States,” said Minister Kenney. “The data sharing helps uncover details about refugee claimants such as identity, nationality, criminality, travel and immigration history, all of which can prove relevant to the claim.”

Fighting Money Laundering and Terrorist Financing: Secretary Napolitano and Minister Van Loan announced that the two countries are in the final stages of completing a Memorandum of Understanding to share data on currency seized at the border. This will significantly enhance the ability of law enforcement officers in both countries to investigate and track illicit cash movement. It will disrupt the flow of funds that support the activities of criminals and terrorists.

Combating Human Trafficking: Secretary Napolitano and Minister Van Loan agreed to instruct their respective law enforcement agencies to enhance collaboration on efforts to combat human trafficking in both nations and across the U.S.-Canada border. As part of extensive existing cooperative efforts to ensure the security of the 2010 Vancouver Olympic Games, both countries are already focusing on ensuring that the Games do not present a venue for criminals to engage in human trafficking.

Security Cooperation: Secretary Napolitano and Minister Van Loan also agreed to exchange best practices and broaden collaboration in the areas of critical infrastructure protection and countering violent extremism.

Continuing Cooperation: Minister Van Loan and Secretary Napolitano expect to meet again in approximately six months to continue their strategic work on mutual initiatives to combat security threats and expedite travel and trade.