http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/ Engadget Comments for More e-passports hacked within minutes, security questions abound http://www.engadget.com/media/feedlogo.gif http://www.engadget.com en-us Copyright 2012 Weblogs, Inc. The contents of this feed are available for non-commercial use only. Blogsmith http://www.blogsmith.com/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:12AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:34AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 4:36PMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:17AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 10:18AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:18AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:22AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 9:30AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
What the hell are you even talking about? You think electronic surveillance was "forced on the world by the US"? The UK has been using CCTV since the 70's, and there is a long list of countries that have had RFID passports before the US, Malaysia, New Zealand, Belgium, The Netherlands, Norway, Ireland, Japan, Pakistan, Germany, Portugal, and Poland.

Take your contempt for America somewhere else.]]>Aug 7th 2008 9:32AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 9:36AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 10:25AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
Most of the security related inconveniences are cuts on human rights originate in the US or would you like to deny that the "War on Terror" is a common idea that all of Europe had way before September 11th? It's the same excuse every time there is a new fingerprint scanner installed or phone line tapped. We are all looking for terrorists that might be a threat to the US and their allies. And the allies are only subject to terrorist threat because they are allied with the US in the first place, most of Europe held great business relationships with the Middle East and the so called "Axis of Evil" before they became a Fox News scare.]]>Aug 7th 2008 10:33AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 10:39AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
The first sentence in the second paragraph of my original answer makes no sense that way. I changed it half-way through it was supposed to read:

...or would you like to claim that the "War on Terror" is a common idea that all of Europe had way before September 11th?


Sorry for the spamming guys.]]>Aug 7th 2008 10:41AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
E-fraud and cyber-terrorism (and every other cyber-(scary word)) is becoming one of the most relevant topics that no one seems to address. Lawrence Lessig, who mentioned in a recent interview that the government was working on a Patriot Act for the internet (iPatriot?) but according to this article http://www.internetevolution.com/author.asp?section_id=556&doc_id=160628&f_src=flffour , it's all Lessig trying to push his own, personal agenda.]]>Aug 7th 2008 1:45PMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:27AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/They don't have my physical passport...

I don't see the problem, can someone enlighten me?]]>Aug 7th 2008 6:35AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:45AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
http://news.bbc.co.uk/1/hi/uk/7530180.stm]]>Aug 7th 2008 12:55PMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
It is an incredibly dangerous prospect, its only saving grace is that it's only going to be done by a minority. It is another major reason why ID cards are a bad idea. ]]>Aug 7th 2008 8:28AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:43AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 9:10AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 10:45AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/... That's a sickening mindset you got there, unless sarcastic. You are being trained to submit like a head of livestock. And that feeling isn't security, it's the warm loving embrace of slavery.

"They who can give up essential liberty to obtain a little temporary safety, deserve neither liberty nor safety." --Ben Franklin]]>Aug 7th 2008 11:24AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 12:34PMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
Abolish all iDols & Religions!,

(low rank in 4,3,2,1... and here we.... go)]]>Aug 7th 2008 6:47AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 6:52AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
(Unknown rank in GO!)]]>Aug 7th 2008 7:07AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
Oh, apart from the disregard for human rights issue.]]>Aug 7th 2008 7:26AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 7:10AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
Pretty soon, someone else will have your e-passport too.]]>Aug 7th 2008 7:13AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
Also good? Rather they're hacked and fixed now before they're out, rather than after. Not like this doesn't already happen with normal passports anyway.]]>Aug 7th 2008 7:12AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 8:41AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
I wound up in the file directory of some unknown server (legitamtely *cough*cough*) located in the Netherlands. There were all sorts of papers and abstracts about how to do this stuff. So naturally I installed "DOWN 'EM ALL" for Firefox and saved all the PDF's in one fell swoop.]]>Aug 7th 2008 7:26AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 8:23AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 9:13AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 8:21AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 10:31AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 11:09AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 11:14AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 7th 2008 11:18AMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/Aug 9th 2008 11:08PMhttp://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/http://www.engadget.com/2008/08/07/more-e-passports-hacked-within-minutes-security-questions-aboun/
On the other hand, the ICAO machine readable travel document specification has an optional active authentication scheme that makes the chip a token. Some countries have implemented active-auth in their e-passports. (incidentally, I specified the AA requirement in my countrys e-passport project) Now hacking that would be noteworthy as the chips used are specifically designed and common-criteria EAL verified to be tamper proof crypto-chips.

Also, I don't see how they could insert falsified biometrics - the biometrics are digitally signed. Unless the british document manufacturers really royally botched up and leaked their private key. Or the SHA-1 RSA-1024 signature scheme is broken, which would have much graver consequences than forged passports.

This current hack is as much newsworthy as someone photocopying a passport.]]>Aug 8th 2008 6:04AM