Today vonJeek/THC released his tool and a video how to duplicate (clone) and modify a Passport with RFID chip. http://freeworld.thc.org/thc-epassport/ The weakness is in the way the system has been rolled out. The terminal accepts self-signed data. This attack is different to the grunwald attack. VonJeek's attack makes it possible to copy, forge and modify the data so that it is still accepted as a genuine valid passport by the terminal. Using a Certification Authority (CA) could solve the attack but at the same time introduces a new set of attack vectors:
The Risk of ePassports and RFID | rfidied.com
Posted by himangim under TechnologyFrom http://www.rfidied.com 5609 days ago
Who Voted for this Story
Subscribe
“You are most welcome Gaurav....”
“transition plan is the first thing to start. Thank for sharing this...”
“I have been using Picuki, and other tools. But, I was not aware about IG...”
“I am not into Google Sites. I still and always prefer WordPress. Easy to...”
“Semrush is changing. And, I am following the path....”
Comments