Slashdot Mirror
Hong Kong Gets Smart ID Cards
darnellmc writes: "This AP article is about Hong Kong's new smart ID cards (mandatory) with "embedded computer chips that hold names, pictures and birthdates -- as well as a digital template of both thumbprints". The picture in the article shows a man holding them and smiling. The article also mentions "Hong Kong's government backed down on proposals to have the cards carry health and bank records". The Hong Kong government hopes to add optional features like using them as driving licenses and library cards. This government learned nothing from the USA's abuse of the Social Security number, this is much worse. Hoping one card will do it all. These cards are also in the works in other countries like Finland, Malaysia and Japan where they are to be optional. Thailand
is working on a mandatory card."
Can somebody succinctly summarize the percieved threats of a national ID Card?
If the card is stolen, officials say the data on the chip can't be easily retrieved.
Officials estimate the seven-year plan to distribute the mandatory cards to all Hong Kong residents, aged 11 and up, will cost $400 million.
The expense includes computer database, networks, card readers, technical support and additional staff. (My emphasis)
Once the first card reader is compromised, or even if someone just reverse-engineers the chip, the whole system is compromised. Once bank information is on them -- and I have no doubt that that bit of the proposal is only on hold, not really dropped -- how long will it be before someone builds a remote reader that can pull info just by walking within a few feet of one?
Nope, no sig
This government learned nothing from the USA's abuse of the Social Security number, this is much worse.
ID cards are have been mandatory in Hong Kong for a very long time - they were just not "smart" yet.
Identidy theft/number abuse is NOT a problem.
Do you have a driver's license?
What is on that?
Mine has; name, birthdate, address, height, weight, sex, eye color, date issued, organ donor status (yes), class, picture of me, and my signature.
And the state that it is issued in has my social security number, car information, insurance information at the dmv.
We have long been in this horrible place that people have only started to worry about since 09/11/2001.
Er, what makes you think that these abuses aren't precisely what the government wants to emulate?
/. If the government wants us to respect the law, it should set a better example.
well im sure everyone is thinking somewhere along the same lines of security issues with these cards. What will happen if someone is able to sucessfully duplicate an individuals card. The information has to be kept somewhere, and if that database ever gets hacked, say goodbye to everything - credit card numbers, back account information, health issues that could arrise from having all your health and medical conditions kept on this one card - - On the plus side i'm sure there is going to be lots of bounus to the card as well. Bac kto the medical reasons, anyone that carries their card could have all the treatment proceduers for that "rare life threating disease" they may have. I think it would be a major toss up, the list of pros and cons could go on for a very long time.
So this change is limited to putting a smart chip in a card people already carry.
Not that its not dangerous -- there are a whole load of risks associated with people not knowing what information they are giving up whenever they show it (though there are laws about who is allowed to request it), as opposed to a print-only card where its obvious what you are showing.
indecision
And no one in the US who's proposing mandatory id cards considers the fact that one of the first implementations comes from a communist country. Yes, Hong Kong was once British territory and their governement probably hasn't changed that much, but they are still under communist rule. This is a TRUE example of 1984, just a little late.
My concern for the people of Hong Kong is less about theft than government control. I hope our representatives are watching closely the actions of the largest communist country in the world. I can't wait to hear a politician say "Well if it worked for China, why not here?" My biggest fear comes from our country eventually attempting the same thing here and how similarly it'll probably get abused by the government.
Developers: We can use your help.
What do you expect from a goverment that is focused on control of the masses?
Do they count the day that Christians profess faith or something?
Maybe they have conception day on there, too?
Or does it hold other people's birthdays?
Can it beep to remind you that it's your friend's birthday and you're a big slacker and didn't get them a present?
It would be like an ID card and PDA in one!
-- Erich
Slashdot reader since 1997
They don't describe how the system protects against forgery, but the do talk about information only being stored on the card. No central database to check against. This seems rather unsafe to me and a poor way to implement an identification mechanism.
The Economics of Website Security
This government learned nothing from the USA's abuse of the Social Security number.
How could we expect them to learn anything when we have Congressman screaming "National ID" since 9/11. The article itself mentions the USA as considering a national ID.
You are receiving this message because your browser supports Slashdot Sigs and you have Slashdot Sigs enabled.
These have been cracked, almost trivially, by a French hacker a year or two ago -- the models he cracked were bank/ATM cards.
All in all, I fail to see what the fuss is all about. Dealing with Chinese police is not easy, but this is not a surprise for most users, is it?
If such a card was introduced in, say, the European Union, citizens would probably have the right to:
I am almost certain that the legal protections detailed above would be respected in a court of law, and enforced by the European Court for Human Rights.
Of course, that type of legal protection is only available in the EU, and not in Hong Kong. Or in the USA, for that matter...
So, on one hand, there is a chance of Big-Brotherish abuse... or a chance of ID theft or false-ID flood. Pick your poison. Fun future ahead for Hong Kong residents.
The right to offend is far more important than the right not to be offended. (Rowan Atkinson)
From the CNN article: If the card is stolen, officials say the data on the chip can't be easily retrieved. This is probably not true. Check out:
Tamperproofing of Chip Card(s) - abstract: There are two ways of attacking smartcards - destructive reverse engineering of the silicon circuit (including the contents of ROM), and discovering the memory contents by other means; a well equipped laboratory can do both. Persistent amateurs have often managed the latter, and may shortly be able to do the former as well.
Tamper Resistance - a Cautionary Note - abstract: An increasing number of systems, from pay-TV to electronic purses, rely on the tamper resistance of smartcards and other security processors. We describe a number of attacks on such systems - some old, some new and some that are simply little known outside the chip testing community. We conclude that trusting tamper resistance is problematic; smartcards are broken routinely, and even a device that was described by a government signals agency as `the most secure processor generally available' turns out to be vulnerable. Designers of secure systems should consider the consequences with care.
With any cryptographic system, it all comes down to one concept: time. With enough time and resources, these cards CAN be broken, overwritten, you name it. We have seen ubiquitous evidence that even the strongest cryptography can be broken in time. HK is planning on using these SmartCards as digital passports. "Smart card holders will speed through Hong Kong immigration, using self-service kiosks that match digital biometric data on the card against the cardholder's fingerprint image read by a scanner."
The scariest part, for me, is that HK is setting a precedent. And it won't take long for other countries to jump on the bandwagon.
--
Disclaimer: The above statement probably includes half-truths, because real truth is too complicated.
A DNA identification system would probably be best. You do not need to carry a card, or remember some arbitrary number. It would be very difficult for someone else to impersonate you.
The real problem is in how much information should be allowed to any given individual or organization, and how long that information is kept on file. Its one thing for a Bank to learn that you have a history of defaulting on loans. But does a bank really need to know that you were arrested for Possession of a Controled substance and spent 2 years in Prison 15 years ago?
ID's should not be smart. They should only give you enough information that you can positively identify a person and gain access to the information. DNA ID could do that, and if the control of DNA reading equipment was very tightly regulated, there would not be many chances for abuse.
END COMMUNICATION
This government learned nothing from the USA's abuse of the Social Security number
Well, what we learned is that a publicly available identification number shouldn't be used as a password for banks, credit card approval, etc.
We didn't learn that it's necessarily bad to have a national ID.
Personally, I don't see what's wrong with having identifying information on a fairly secure smart card.
Now, being required to carry it everywhere would be a bit more of a hassle than I'd want to endure, but then again, AFAIK the police here in the states can take you in for minor infractions if you don't have any identification on you.
Why are you letting these clowns ruin our country?
These are just pilot projects for the one-world government to iron out the kinks before giving all of us these IDs. You KNOW it's the truth! The only way to protect youself from the mind-reading space-stations is to buy one of my Open-Source shiney foil hats.
Don't bother calling, just think of your credit card number REAL hard and we'll direct bill it right away...
Just wait till some crappy band steals your nic.
With our losses of GBP£8bn per year, this sort of system could be used to help reduce benefit fraud, illegal immigration, monitor health service usage...
How do you design an ID which is cheap enough to issue to 60 million people. But hard to forge? Even if you have system where the ID is simply a key to a database how do you then ensure that the database is secure? Especially if you only have one database used for everything...
It's quite possible that this will deter the casual criminal whilst making things far easier for organised crime (including terrorism).
This government learned nothing from the USA's abuse of the Social Security number
Pull your head out of your computer and look around for a while. The Hong Kong politicos learned a great deal from the US system. They learned that people are sheep and will take anything if you slip it in slow enough. They learned that if you promise bread and circuses that they will even help you insert the object. They learned that once a system has been in place a while that the people will accept the reduction of their citizenship to chattel as gospel and a requirement to efficient government. They learned that an overbearing central government can be made stronger and more power delivered to fewer people if the people are reduced to interchangeable numbers. But most of all, they learned that people are sheep and will respond well to an idiot smiling about being reduced to a statistic. ("See, I got my check. Isn't the government so nice to give me money for nothing. What do you mean the government had to take the money from someone else? The government doesn't have to do that, 'cause the government can MAKE money")
How can you begin to think that the other countries would not pick up on these valuable lessons that the US government has provided for the world.
Aah, change is good. -- Rafiki
Yeah, but it ain't easy. -- Simba
The US has chosen social security numbers for its globally unique identifier, just about the worst choice you could make. As a consequence, identity theft is rampant in the US, as are administrative snafus. Also, the US spends enormous amounts of money on border patrols, employment verification, and immgration status verification, when a secure ID card would solve the problem much more cheaply and reliably.
The way to fix the problem with SSNs is not to go back to the middle ages and pretend that you can get by in a modern society without a unique identifier. Rather, we need secure, unforgeable, globally unique identifiers. And smartcards are the most promising and least obtrusive way of doing that.
Unique, difficult-to-forge credentials and identifiers are in your and my interest. They aren't in conflict with privacy and security, they support it. It's time that the US gets with it.
I want to know where this country is- I'll consider moving.
I suggest they burn LOTS of CDS, and that they put them in many places, so as to avoid problems of having their eggs in one basket.
How come the goverment (I assume the original article is US centric, because of the example of social security numbers) wants to brand its citizens and keep track of them in a typical big brother fashion? I can't see any problem with the technology, I would love to have it so that it's hard to forge these types of IDs and I would love to lessen the number of cards that I have to carry. I already have a "version number" since I live in Sweden and I have a so called personal number (personnummer, I unfortunatly don't know a better translation).
I am not going to go into any kind of US bashing, as that works against my goal here. I do on the other hand want to ask you why you have all these fears, and what kind of goverment that is in power. I would have expected this kind of behaviour from the Taliban, The Stalin Sovjet Union, the Stasi in old East Germany, or from fictional settings such as Farenheit 451 or 1984. Is this also going to be the reality in todays USA with the SS, NSA, FBI, CIA, AOL, DIA, etc acting as SS, SA, Stasi, KGB, GRU, etc?
Hmm, I don't think I will really change anything with this rant, but maybe the few of you who read it might think about it. Agree with me, disagree with me, have opinions, but first and foremost, think about what freedom really is, and how to sustain it.
As a high-level Monex employee once acknowledged to me, it is obviously physically impossible to guarantee anything about hardware, basically anything that can be hacked will be hacked. So they have a system I was told that assumes cards are periodically updated.
If hardware is faulty Hong Kong will have to replace every card physically, ignore the problem, or try to do an online fix.
I think it is a pretty good bet that those readers, possibly when provided a suitable crypto key over the network, will be able to update the smart card software to the extent possible.
Also, if someone trashes a card they are going to be able to get a new one. Presumably they will have to show up at a government office in person with fingers attached if their card stops working.. Plenty of room to work the system at plenty of points it would seem.
Counterfeit ID cards in Hong Kong was pretty rampant. Hope this new card can help.
...economic freedom does not have much to do with actual freedom.
Hong Kong is regularly hailed in business newspapers such as the Wall Street Journal as the freeest place to do business. And before Hong Kong, countries like Taiwan, South Korea, Malaysia and other asian despotic nations with a democratic facade were high on the charts.
The equation free market = liberty is a lie.
I think this is a good point.
Why worry about ID cards when we are talking about deploying security cameras everywhere? And what happens when face recognition software becomes good enough to pick you out in a crowd?
If anything, ID cards are less problematic than things that are going to happen -- the only difference is that technological surveillance measures will be put in place without our permission, cooperation -- or even awareness. If the police are tracking you with your ID card, at least they can't do this without disclosing that they are doing so.
Technology is putting this capability into the hands of government and private industry whether we will or no.
I'd support a national ID card now for two reasons. First, the issue of government abuse is close to being mooted by new technology. Second, introduction of such a card will slow down the adoption of less obvious surveillance measures so that we can consider how to to make the operators of those measures accountable.
Getting to the issues of smart cards, I think the problem is in placing too much trust in them. First of all, they have proved more vulnerable to cracking than we first thought. Secondly, the cards themselves are useless without systems around them to do things with the information on the cards, and the card holder has to be careful about trusting those systems with access to his card.
I think it is wise to avoid putting sensitive records (bank records in particular) on these cards, at least at the outset. Concentrate on tamper proofing them, and let organized crime get a few years to crack them when they are relatively less critical. At some point in the future we can make a more informed decision about how much to trust the cards and the systems they interface with.
Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
Just finished watching Schindler's List last night (I recorded it in 1997; this is the first chance I've had time to watch it). I was particularly intrigued with the portrayal of the Germans as an extremely efficient data collection machine. So much easier to round up those who offend you if you have good records to go by.
This appears to be the first step in Hong Kong to crack down on those who continue to flaunt the Chinese ideological line. It's so much easier to keep your harassment of political dissidents out of the public eye when you have names, addresses, etc.
And anybody who voluntarily participates in such a program should really stop and think about the ulterior motives behind the government -- any government -- maintaining an ID database.
Seems to me one of the biggest problems with using one of these cards is that all of the information is available to anyone who scans the card for any part of the info on it. Say I go to a club, and instead of having a bouncer look at the ID, the club makes me run it through a card-reader of some sort. How do I know that they're just taking my age and name off the thing, and not my name, age, address, phone, blood type, and all the other info I don't think they need?
It would be cool if the cards had some kind of method to block off certain parts of the info. Like if you squeezed a spot of the card for two seconds, it would open up the address and phone stuff for the next sixty seconds. If you squeezed another spot, your medical history stuff would be available. The default state (no squeezes) would just reveal name, number and age.
Obviously someone could just squeeze it before the scan it in a surreptitious manner, but that's not really my point here. You could work the interface any way you wanted - maybe a second card that links to it and you squeeze that one, so bouncers can't make changes to their access. If you could give people a way to control the info coming off of their cards, the potential for privacy invasion (while still there) would at least be reduced.
This tagline is umop apisdn.
the system run by a bundle of clueless people.
The chips used is a passive one - i.e. it'll be powered by an electrical coil (passive) that reacts to nearby electrical fields. In brief, they should have used active data protection, the passive one is already known to have some security issues. However, they simply don't listen, they just want to do it quick, and don't care the rest.
E.g. anybody could easy deactive the ID card by challenging the authentication system while the victim passing by. The problem is that the ID must respond to challenge because it's just a passive one. If the challenge failed the ID card will be deactivated, if it succeeded.....one just need to put that kind of 'challenger' in a crowdy area, like outside cinema, to cause mass deactivation, or gain access to many IDs.
The active one would decrease the chance of it happening, though it's not 100% safe, well nothing is.
Another system built with half-clue is E-Cert. The Hong Kong Post Office wants to become a root CA and they are issuing CAs since last year. It uses 1024-bit key, sounds good.
Except that no one in this project has an idea of key management, or CA distribution. Their root CA is not embedded in common browser like Netscape or IE. Say when you reach a website it says 'the CA of this server is said to be issued by Hong Kong Post Office, but we have no way to verify it, click yes to trust this CA'...The whole point of issuing CA is defeated.
Communist China insists on smart ID cards. Do we really want to go down that route in the UK?
Deleted
... what I find scary was that the company for whom I worked for at the time sent me to Hong Kong back in 95 to show them a biometric identification system.
... but rather give them opportunity for reverse engineering.
... a design version that was essentially a glass man-trap.
It was a system similar to INSPASS, only it did NOT offer a 14 character OCR-B/passport-like encoding of the Hand Geometry, but instead had on a GemPlus card both a facial and a fingerprint image.
Of course, having several former Hong Kong natives on my development team, they warned me that it was likely that we wouldn't "sell" the system
The demonstration was very interesting. It was at their version of "Customs" department. Most of the individuals we came into contact were warm, friendly and knowledgable. However during the actual demonstration, there were a couple of very cheap suits (unusual for Hong Kong) in the back of the room, asking questions in Chinese.
No surprise when the hardware we sent over got hung up by their "Customs" for several weeks before it came back to us. I sure hope they didn't get too pissed when I low-level formatted the hard drive before we left the country.
I'd be very interested in seeing the system now. They had at the time asked some questions like, can we use it to trigger a door lock
Later that day, I visited with a missionary who just got out of prison for smuggling Bibles into the mainland. I cried when Hong Kong was turned back over to the Chinese.
It was one of the most beautiful and intriguing places I had ever visited.
healyourchurchwebsite.com - WWJB?
The problem with 1984 in applicatation to the Western world is our economic system. Business controls more of your life than government does. Maybe, depending on how the ID system works, government could revoke your identity. There's nothing stopping them from doing that already. But government can't force business to freeze the bank accounts of all political opponents, can't make all private security companies turn a blind eye, etc. Only if government has complete control of all aspects of life, can it impose a 1984-like control on you.
i-name =twylite [http://public.xdi.org/=twylite], see idcommons.net
Have you ever worked with smart cards? Do you know what a smart card reader is? It is simply an interface between the smart card and another system. It has no, I repeat NO intelligence. There is NOTHING TO CRACK in the reader.
What do you mean by reverse engineering a chip? In a properly designed smart card system the bad guys can get ahold of all the cards (initialized or uninitialized) they want and they will not be able to "compromise the whole system".
Even if you somehow managed to extract the keys from one card, that is all you would have, one card. You would have go through the process again for another card. BTW, extracting the keys from a single card is estimate to cost $300,000 or more. It is not something that can be mass-produced.
A remote reader is only useful for contactless cards and only in certain situations.
I work with smart cards everyday. I work for one of the teams that bid on this project. Not the winning team :( . I am only flaming the parent post because it is spreading lies and for some reason has been modded it.
Lasers Controlled Games!
Techniques specific to cracking a smartcard have undone this work. If one knows the encryption algorithm used by the card and the hardware used to implement it, then because the card reader provides the card with power to do its computations, the power-demand-vs-time information gained by the reader can be used to reconstruct the key stored in the card.
All modern smart cards defeat simple power analysis and most of them defeat differential power analysis and a variety of other side-channel attacks as well.
How? It's not that hard.
Defeating simple power analysis (watching the power consumption for one run through the encryption) is easy, and cards fixed this problem quickly -- just install a capacitor that buffers the power consumption. In theory, enough buffering can completely smooth the power consumption curve and defeat all power analysis, but as Paul Kocher (inventor of power analysis) found, in practice if you run the card through enough cycles and apply some math to the results you can still extract the information. This is differential power analysis.
There are a wide variety of mechanisms for defeating DPA. Some focus on protocol design, ensuring that the same data is never encrypted twice, or limiting the number of times that a particular key is used, by doing most work with session keys established during an authentication protocol, counting the number of failed authentications and refusing to operate after a small number of them. This does enable a DOS attack, but that's less damaging to the system as a whole. Other approaches focus on the cryptographic algorithms, exploiting nuances of their structure. For example, some IBM researchers discovered that they could inject randomness into DES calculations, XORing random numbers with the values in the computations at certain points and then XORing again to remove the effects. The result is randomized power consumption, without compromising the consistency of the results. A 3DES engine built with randomized DES is immune to DPA. The current direction anti-DPA technology is less technologically sophisticated but just as effective: A hardware encryption engine. Because a hardware 3DES or AES engine performs its computations in such a tiny amount of time, and at such tiny power consumption, a very small capacitor can complete buffer the operation.
Many other side channel attacks have been defeated as well, mostly by shielding the chips with heat and power-conductive sheaths.
It's interesting to note that public key cryptography in smart cards *is* still vulnerable to power analysis, in most cases even to simple power analysis. PK cards use a hardware coprocessor, but the process still takes time, and that makes SPA/DPA possible.
Cards are not 100% secure, but nothing is. Current best estimates are that a modern card that incorporates all of the current security features would cost approximately $300,000 to break. All good designers of smart card systems understand that, and take various precautions (which I won't go into here) to ensure that the compromise of one card does not compromise the entire system.
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
There is a constant cat and mouse game going on between those who design smart cards and those who try to break them. A few years ago it was discovered that through power analysis techniques you could get the keys off a card. Card makers then introduced measures to proctect against that attack. Later differential power analysis was used to extract keys. Countermeasures were again deployed by card makers.
You can be sure that the cards used in this system will be resistant to all known attacks. There will of course be new attacks invented that could make the system easier to attack. That is why cards have an expiration date. Every few years you will need to issue new cards because new attacks have rendered older cards vulnerable.
As for Big Brother type abuse, you may be right. I have no idea what kind of protections the winning bidder will put in place to prevent these. But you can design a system that will protect against these types of abuses if you want to.
Lasers Controlled Games!
And unlike an ethernet cable, reading the bits going by won't do you any good.
Lasers Controlled Games!
I replied to the wrong message! Sorry for the stupidity.
Lasers Controlled Games!
Having parents from Hong Kong, I can attest to the fact that Hong Kong denizens must carry paper ID cards at all times. This is different from a passport. Any time you were caught without ID, you were taken to the lockup and questioned. This feature was implemented by the British Government when HK was still a colony back in the 1950s. People stopped caring about the IDs in more recent decades (much like most Americans have forgotten about what the SSN is (not) supposed to be used for). This new development doesn't change much, except maybe cut down on the number of forgeries and make the system digitized. The US system still uses paper to keep track of everything.
You would have go through the process again for another card. BTW, extracting the keys from a single card is estimate to cost $300,000 or more. It is not something that can be mass-produced.
That's in current figures, right? How much will that amount of processing time/power cost in say 20 years? I see statements like that, "It's too hard/costs too much, so it can't happen," and I only have to look back to here and here. Whenever someone coomes up with an encryption scheme that "can't" be cracked in a "reasonable" amount of time, the definition of "reasonable" inevitably slides downward.
In a properly designed smart card system the bad guys can get ahold of all the cards (initialized or uninitialized) they want and they will not be able to "compromise the whole system".
Just to point out, I said when someone gets their hands on the card readers. Granted, the reader is just an interface and the real work is done by the computer behind it. But for smart cards to be practical, there has to be a portable appliance-type device that does all the work. Something you can mount in a police car. If the cards were read-only, I would be less concerned, but I don't imagine it would be long before someone realized how much more "efficient" it would be to allow the judge to digitally revoke a driver's license on the spot. Basically, if we don't want them to be writable, then we don't really need smart cards, just write-once memory chips.
Given the way government works, more and more information would start going on the cards, they would become "required" for most transactions, and dishonest people would figure out how to crack the system.
Nope, no sig
Your point is a good one. I addressed it in another post attached to this article. To sum it up: The cards have to expire after some amount of time and new cards are issued.
Just to point out, I said when someone gets their hands on the card readers . Granted, the reader is just an interface and the real work is done by the computer behind it. But for smart cards to be practical, there has to be a portable appliance-type device that does all the work. Something you can mount in a police car.
This post explains why "the reader" as you call it is not an easy target. The smart card is communicating with another secure device. Actually, Slashdot user swillden has made a number of good posts in this thread and I suggest you reader them as well.
Your link to the story on the IBM 4758 just proves that you don't have experience with what you are posting about. As for the "RSA is cracked" story, without discussing the merits of that story, most smart card security schemes are based on 3DES right now. If you have found a way to crack that please, submit your winning entry to distributed.net, ok?
If the cards were read-only, I would be less concerned
All computer security is a cat and mouse game, not just smart cards. If you can sell computer security based on read-only devices (which aren't able to securely authenticate themselves) then you should go into business for yourself. You could start by selling signed barcodes as the security of the future. If you are right, you'll make heaps of money. You can post to /. and let us all know about it. I for one won't be buying stock in your company.
I am sorry if I sound annoyed, but your parent comment has been sitting at +3 Insightful all day and it is simply wrong. Since I can no longer moderate I thought that I should at least point it out.
Lasers Controlled Games!
Next magazine (next.atnext.com) has an article regarding to the technology of these ID cards. Unfortunately, it is a subscription only and therefore I cannot provide a direct link into it. I attempt to translate some key points into English. The technical terms may not be too accurate. Since Next Magazine is a popular tabloid type of magazine some of their explanations may be in accurate in the first place....
The card has adopted a number of tamper-proof technologies. For example, the key information including the name of the card holder, the date of birth and the ID card number are marked on the card by laser lithography. Hologram will also be printed as the background pattern of the card. The card is made up with very tough plastic which will not break even fold into half....
In terms of the embedded OS used, they picked Multos against the rival Java based systems. Multos was developed by Maosco in UK in early 90s, which was mainly used for credit card and is regarded as a reasonably secure system.
However, the selection of multos against Java has sparked a little debate. Since only one bidder promotes the use of Multos whereas the rest four promotes Java, critics argue that the hk govt may be in bias with the PCCW group controlled by a local tycoon and multos may not work with the proposed e-commerce infrastruture.... (I really don't think multos is such a bad system tecnhically....)
In order to minimise the damage upon card loss, sensitive personal information, e.g. bank transactions, medical records, etc, will be encryp\ted and stored only in the main servers. Only a small number of personnels will grant permissions for accessing the information.
Smart cards are just normal, Turing machine type comptuers. The interface is a standart serial port that's been flatened.
You can put any CPU you want, any amount of ram any OS. There are smartcards that use java, and some that run linux.
The fact that one persion has hacked one kind of smart card dosn't mean that "all" smart cards have been hacked any more then the fact that you can break into a PC running windows2000 means you can hack a Linux box, or a mac or a Comidore 64
This comment should NOT be modded where it is. it's totaly wrong.
autopr0n is like, down and stuff.