Feeds

Rules for RFID chips in US passports

Toothbrush, travel soap, clean underwear, new passport?

Protecting users from Firesheep and other Sidejacking attacks with SSL

OUT-LAW News, 26/10/2005 The US State Department on Tuesday set out rules that will govern the use of radio frequency identification (RFID) chips in US passports. The passports, which will be piloted from December, are due to be issued in the US from October 2006, according to reports.

RFID chips consist of a microchip and a tiny antenna that transmits data from the chip to a reader. The reader is activated whenever the antenna comes into range and the data can be used to trigger an event – such as ringing up a purchase, ordering more stock or, in this case, providing identification details to border control officials.

The new plans are the latest stage of the US administration’s campaign to increase internal security, and will complement requirements that EU citizens, who are currently entitled to enter the US without a visa, will be obliged to obtain a visa from October next year unless they hold a biometrically-enabled passport.

The system is designed to follow the biometric standardisation developed by the International Civil Aviation Organisation (ICAO) – a UN-level body that acts on behalf of governments to create international standards for airline navigation, safety and security – in 2003. This provides that the initial international biometric standard for passports is facial mapping, although additional biometrics such as fingerprinting can be included.

But there have been difficulties in developing the technology quickly, and the US has decided to preempt matters by insisting that all US passports issued from next October contain an RFID chip, to which fingerprints or iris scans can be added later.

The chip, according to reports, will contain the usual details printed in the passport, together with a digital photograph.

In order to counter fears that the chipped passports will allow holders to be tracked or to fall prey to identity thieves, the State Department has announced that the covers of the passport will contain an anti-skimming device to block casual access. It also proposes a security system that will ensure that the chips only provide the data to recognised readers.

Meanwhile, EU citizens will find it more difficult to enter the US as from today – the date from which passports issued in the EU must contain a digital photograph if their holders wish to be able to enter the US without a visa. Passports issued before today will still be valid for visa-less entry.

According to reports, the requirement is likely to affect travellers from France, Italy and Austria, countries which have not yet put the appropriate systems fully in place. The UK Passport Office is already able to issue passports containing a digital photo.

Copyright © 2005, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

The next step in data security

More from The Register

next story
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
THREE QUARTERS of Android mobes open to web page spy bug
Metasploit module gobbles KitKat SOP slop
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
Apple Pay is a tidy payday for Apple with 0.15% cut, sources say
Cupertino slurps 15 cents from every $100 purchase
YouTube, Amazon and Yahoo! caught in malvertising mess
Cisco says 'Kyle and Stan' attack is spreading through compromised ad networks
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
Greater dev access to iOS 8 will put us AT RISK from HACKERS
Knocking holes in Apple's walled garden could backfire, says securo-chap
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Security and trust: The backbone of doing business over the internet
Explores the current state of website security and the contributions Symantec is making to help organizations protect critical data and build trust with customers.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.