Comments on: Cloning and modifying E-Passports http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/ Fresh hacks every day Fri, 10 Feb 2012 17:43:10 +0000 hourly 1 http://wordpress.com/ By: Gulielmo http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44278 Fri, 03 Oct 2008 22:33:59 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44278 I have a doppelganger whom is a close personal friend of mine, so close in appearance is he, that people on the same project constantly approached me and started a dialog with me thinking I was him. Now do you think this is potentially scary?

]]> By: digideth http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44126 Thu, 02 Oct 2008 06:19:05 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44126 video been yanked from google, anyone have a link to another copy?

]]> By: Ali Raheem http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44095 Wed, 01 Oct 2008 21:30:09 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44095 @2 JimXugle
That’s true but a hell of a lot haven’t.

@3 Ed
The white RFID card could be taken apart (using acetone) and the coil chip taken out I’m sure you could embed it in a passport somehow. Might need to disable the RFID chip already in there would a needle piecing the chip work?

At least it read it and displayed the info, if the nation hasn’t joined the public key sharing register then this may actually be workable. Once they do join it’ll be much securer.

]]> By: Skitchin http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44063 Wed, 01 Oct 2008 16:25:48 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44063 Yeah, leave it to the people leaving comments to downplay this type of thing. Now just imagine the people who don’t want to release the exploits that THEY found.

]]> By: BLKMGK http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44046 Wed, 01 Oct 2008 14:05:30 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44046 Umm, the data IS signed. However the signature isn’t always properly checked and the file that specifies what security features are on the passport is apparently unprotected according to his talk at BH. I’d agree that the fact that a demo station allows this doesn’t mean that it will work in a real passport scanner.

]]> By: Ed http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44032 Wed, 01 Oct 2008 08:08:45 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44032 Whoa, the guy creates a fake epassport (all the specs are public and on the web anyway, icao doc 9303) and reads it using a public demo terminal, which does not check any particular security feature and just displays the contents of the chip.

Come on, I’ll be impressed the day the same person goes through customs using a totally fake ePassport. I seriously doubt a white smart card such as the one on video will be accepted by border control :-)

]]> By: JimXugle http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44016 Wed, 01 Oct 2008 02:53:51 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44016 Wouldn’t this all be moot point if the data on the passport was digitally signed by the issuing country’s passport office using a private/public key system?

]]> By: Man On Fire http://hackaday.com/2008/09/30/cloning-and-modifying-e-passports/comment-page-1/#comment-44008 Wed, 01 Oct 2008 01:11:13 +0000 http://hackadaycom.wordpress.com/?p=4038#comment-44008 I bought an RFID proof wallet for mine. haven’t tested it to see if it works yet though.

]]>