Slashdot Mirror
RFID More Hackable Than Retailers Think?
Iphtashu Fitz writes "Lukas Grunwald, a senior consultant with DN-Systems Enterprise Solutions GmbH, is warning retailers that the RFID technology that they are quickly adopting can easily be hacked with the appropriate tools. Grunwald has written a program called RFDump which lets you read and display all metadata within an RFID tag and also modify the user data using a text or hex editor. He wrote this program to demonstrate how consumers can protect themselves by wiping out RFID data after purchasing a product but he acknowledges that it would be trivial to abuse this behavior. What, you might ask, can you do if you hack an RFID tag? Well as the technology is adopted more widely a thief could conceivably mark down the price of an expensive piece of jewelry before paying for it at an automated checkout counter, underage hackers could purchase alcohol or adult movies, and pranksters could simply reprogram the inventory of an entire store by just walking up and down the isles. 'The people who will be using this (shopkeepers) don't know much about technology,' Grunwald warned."
stupid rfid
Can anyone point out a new technology that was 'safe' when it was first deployed? It seems that every new technology has some security defect, or some other flaw. This reminds me of DirectTV smart cards.
-Daniel
KD5UZZ
www.w5yj.org
and pranksters could simply reprogram the inventory of an entire store by just walking up and down the isles
What quicker way to make life insanely difficult for a retailer who forces the use of these things upon customers.
How much would it cost to re-manualise their systems if they keep on just losing track of the info in their RFID tags. Hw many would even bother after the 2nd time.
Looks good
i dont think anyone could mark down stuff. because the price is not stored in the RFID itself. its a seperate database that matches with the product code. but yeah the thief might be able to change the product code to another cheap product. and thereby acheive the same thing
just my 0.02
Doesnt everything go like this? Im sure they will find a solution to the problem... then a new hack will come out... then a solution will come out...
free beer
KNEEL BEFORE ZOD!!
Their FeLiCa technology is integrated into NTT DoCoMo 506i (and I think some 900i) models. They are planning to use these for shopping, ticket purchases, etc, as "electronic cash". Having seen the SDK for FeLiCa it seems it would be trivial for a programmer to write a utility similar to RFDump to edit/delete/modify data stored on the RFID chip inside the phone.
Is it possible to make RFID write once read many? So the product info is in the tag, and price/special/discount is cross-referenced with a database.
Is there any advantage for embedding prices in the tag?
Uselessful technology (Air-Charged
...but I'd love to walk their aisles with something like this in my pocket and do my own price rollbacks!
Loading...
Why not simply store only a cryptographically secure (signed) random unique value on the tag itself, and keep all the other data somewhere else that all the legitimate readers are connected to?
With a simple database, this is not a problem, since it is computationally infeasable to forge a signature like that.
well DUH.. the DMCA will prevent all of this! Because if something is illegal, obviously nobody will do it!
The theory of relativity doesn't work right in Arkansas.
That I can finally start to buy name brand food?!
if I wanted to do just what you described, it would be pretty simple. So yes, that is what we would do
http://example.com/
When barcodes were introduced, retailers feared barcode swappers, because barcodes were not printed on partitioned labels, like those small price labels used to be (If you can remeber when all items were (manually) priced, you are getting old.) It turned out not to be to big a problem (now most barcodes are printed).
However, when you can automate something, that is an differend story. With tag swapping, you can play the percentage game, usually the number of individual swappers is small. With automated swapping (esp. wireless), one individual can swap everything. That is a true risk.
However like the step from label to printon bar code. There is only a small window of opportunity.
In the near future, we will see read-only tags, embedded during the production fase.
-- (:> jms cs.vu.nl (_) --"---
You can also zap any tag with an overdosis of energy. The manufacturers do not give "Absolute Maximum Ratings" so easily for their tags, however, a microwave zaps all electronics.
You can build a simple transmitter at 13.56MHz or an overtone combined with high gain antenna to transfer too much energy to the tag and gone it is.
This can be made as a pocket transmitter...
I don't think it's on the web yet but it describes how some RFID tags work (all of them? Some? I dont' know).
Here's a summary:
The scanner basically gets all the RFID tag info from all the tags at once, on the same frequency, which as you can imagine creates a lot of noise. In order to find out what tags are in the area, you have do a binary search. First ask all the tags that have a 1 in the first digit of their serial numbers to reply. Then the ones with zero. Then all of the "10's", the "11"'s, etc. And so on down the line, pruning empty subtrees as it goes, until it knows all the nearby RFID tags.
The article described a custom RFID tag that just always responds to all serial numbers. Tying up the scanner for 1^64 (or is it 1^64 factorial?) iterations of the algorithm (forever, basically).
Pretty neat. I will definitely be carrying one of those in the future. "Hey, whenever that guy comes in the store, all our inventory disappears"
Ah, I think I'm looking forward to all this RFID stuff!
John Kerry is a Joke!
Lukas Grunwald? RFID must be big in germany. At work we have a book by another German, Klaus Finkenzeller (RFID Handbook). I'm not really into these things but a collegue of mine told me it's sort of his bible (and then asked me if we could switch jobs)
Surf the Magical Mystery Wave!
Please login to access my lawn
i have seen pranksters swap prices tags on items many times before (no special equipment needed). The only more or less robust system seems barcodes...
When will I end this grieving ? When will my future begin ?
This sorry instance is yet another example of how "technology" can be used by the forces of power to clamp down on the rights of the individual. To wit: RfID tags are used by merchants to infringe on the rights of individuals: tracking the movements of customers, keeping track of their purchasing history, and so forth.
I for one am fed up with this sort of piecemeal erosion of our most sacred freedoms. What I strongly feel is needed is a "technological bill of rights" to curb this sort of abuse.
Strange as it may sound, I do not think that amending the constitution is too absurd a step to take. I think a simply worded amendment similar to the first or second amendments would be the way to go. Something like: "Congress shall make no law using technology to infringe on basic liberty of citizens." Something like that.
Of course, amending the constitution would not stop private merchants from abusing technology such as RFiD tags, but at least it would put a damper on the federal government's actions, as well as send a strong signal as to where we stand, similar to how that amendment that abolished slavery helped pave the way for civil rights. This page has some helpful information as well.
1^64 (or is it 1^64 factorial?)
i hope you're trolling, because both numbers are 1
One thing I have always seen as a potential problem is a store's competitors using RFID scanners to take inventory and/or monitor what their competitor's customers are walking out of the store with.
Any data you can get on your competitors is certainly better than none at all.
Instead of a slap on the wrist for shoplifting they could be looking at a life sentence for copyright infringement, patent violation or circumvention of a digital protection. It's probably better to hold a gun to someone's head and walk out the store with untampered RFID tags...
I have an idea that I've been thinking about for a while.
Some of us choose what to buy on the basis on how well-behaved the producing company is. Nothing new here. Some "bad" companies and their products are easy to indentify: I try to not buy anything from Nestle (breastmilk substitute in Africa), McDonalds (cutting down rainforests), and so on. As you can see from my reasons, they are probably a bit outdated as it can be hard to get good consumer information through the media noise.
Ok, heres the thing: most products these days have an EAN/UCC code. The number in that code includes an identifier for the selling company. What if the Internet community would create a database of companies and start setting grades on them with regards to product quality, environment concern, workforce treatment, and so on?
"But it would be too much of a hassle to query the database each time one buy cerials" you say. Sure, but consider two things:
How do RFID fit into this? Well, imagine a clock that vibrates when you are about to touch some ethically questionable item! :-D
RFIDs have been creating a lot of interest in the industry as it gives them better control over where items are, who buys them, if they return, etc. Now, if consumers could easily boycott a company due to bad quality or unethically behavior, the whole idea could backfire on them!
This article is a trival example of something you can do, a bomb would be much more damaging and more of threat as RFID is used for ID (with regards to people, not products. Unless you consider for a second that it makes them products, but i digress).
I really can't wait until we have time bombs that are a result of the number of times a given person walks by with their RFID tag on. 10, 11, 12, booom.
Food for thought anyway.
"Not my manner of thinking but the manner of thinking of others has been the source of my unhappiness." - M
Concerning expensive RFID tag applications like public tranport prepaid accounts, this could be a problem. More expensive crypto tags solve that problem.
Concerning stores, this is stupid. Retailers don't need expensive reprogrammable tags and don't use them. Cheap tags are just a unique ID number which can't be changed. Any decent retailer saves money on tags and increases security by using cheap tags (no data storage, just a fixed number) and keeping their price and product data in a database keyed to these ID numbers. So talk of walking through Wal-mart and saving money or causing chaos is fantasy.
Conclusion: it is only the medium price (storage but no crypto) tags which are and always have been a risk. The only contribution of this program is raising wider awareness and thus breaking illusory security through obscurity.
If legislation and corrective action on this is as slow and maladaptive as is currently for identity theft, this could be the next huge scam wave. Better get on board before they fix it :)
Guess my personal boycott of WalMart is over. Watch out for falling prices Sam.
Yes, I know they don't 'tag' each item,.....yet.
Someone hates these cans.
Not that we have paper records from then, but the wheel wasnt that bad, pretty hard to abuse, unless you call transporting 20000 slaves a bad sideeffect.
Liberty freedom are no1, not dicks in suits.
Most computers see twos only in their dreams, so maybe he thought that the 2 in 2^64 was a typo and replaced it with 1^64.
Who would be silly enough to purchase programmable RFID tags.
In any secure application you don't keep the important info on the portable device! You put it in a secure database where all the security risks are known. The RFID tags should have a non-programmable, non-erasable fixed unique code.
The scaremongering that this thread typifies is both stupid and done to death.
I for one would be delighted to see smirking hackers walking along the aisles of departement stores, wiping every RFID tag in site. At least that would wipe the smirks off the faces of marketing execs who lust after every intimate detail of our lives.
If they try to kick you out, dump the zapper in some old ladies trolley. She'll march about for hours, wiping any spy gadgets in the buliding. Some might construe this as vandalism, but I construe reading dozens of RFID tags, covertly embedded in every item I buy, an illegal search.
Of course execs will find some law (can you say DMCA) to label any such defenders of privacy evil criminals who seek to undermine the economy and of course the usual line, RFID helps fight terrorism or some such rubbish. They're probobly looking for a way to make RFID blocker tags illegal as well.
Unfortunatly, the solution may be simply to make RFIS tags read only, further compounding the privacy issue.
May the Maths Be with you!
OK, so it seems no el cheapo RFIDSs any more. This means either harder programming (more energy needed to change the contents, but then, poor little tags will have to dissipate it somehow during the initial programming) or(and) more processing power/memory for better cryptography, maybe even authentiction of scanner to tag (makes investigation of the protocol hard). Or, dump the whole flexibility idea and stick with PROM variant (or some kind of lock-the-programming feature, but it boils down to no-reuse either way).
:-).
On the bright side, if things stay this way, all of the sudden I feel like this could be the beginning of the beautiful friendship with RFIDs
Hope to see blank ones soon in my local electronic parts store.
Where can one buy the recommended "ACG Multi-Tag Reader, in a CF-Flash Socket or PCMCIA Adapter"? How expensive?
Why not use digital signatures?
This is total, fear installing crapiola.
As I understand it, RFIDs contain a unique number which is not overwritable.
The tags just identify the product. Backend databases hold the configurable information.
At it's core, it replaces a barcode. And to my knowledge barcodes are not hackable.
Why on earth would a retail store want to decentralise their information by storing data on RFIDs?!
For tagging postal package, that's a different matter. I imagine a courier would write to RFIDs. Sure it's hackable, but only couriers have phyiscal access to it.
underage hackers could purchase alcohol or adult movies, and pranksters could simply reprogram the inventory of an entire store by just walking up and down the isles.
COOL!
All cheap rfid tags are passive, ie they require a fscking lot of induced power to operate. Any receiver with decent sensitivity tuned to the same frequency can detect the reading/{re}writing attempts, filter out the legitimate ones at the counters, mark the exact moment on the video surveillance system, close the shop doors and switch on the alarm.
The shop personnel then examines the video at the given timeframe, find the thief and whack him/her
in the head. Problem solved.
_______________
Help Desk Software
computers never see ones either
Wow, 1^64? That's like, huge... It'd take a scanner at least 1^1024 ms to go through all that!
In order to write data to the tag you needed to know a 64bit number that was programmed into the tag. The standard didn't say how you set that number; that was policy reserved to the tag programmer. But in order to have a write command accepted, you needed to match the previously programmed number.
So if commercially deployed tags really are generally writeable it is more of an administration problem (like leaving telnet enabled on public facing servers) than a failure to consider the problem at all.
It doesn't matter much whether it's secure from a retailers perspective -- just so long as the savings they get from using machines instead of people is more than the extra product stolen.
Besides, they can make it reasonably secure with minor effort. Store the actual price in a database, check actual vs. expected weight, and scan a barcode too. Toss in a 5% random "failure" requiring a teller's attention if you're paranoid.
"Oh, yeah, we have it."
I get there, and it turned out they didn't have it. They had an AC Adapter.
A clerk who cannot tell the difference between something that lets you go on the internet and something that plugs into the electric socket will be easily fooled by the RFID swap. Even if someone DOES check your bag, do you think "Joe Walmart" is really going to be acute enough in his observation to recognize that you've got the high end ATI card, and not the 9600? Doubtful.
It'll be great to watch Wal-Mart reap the fruit of the seed they've sown - lost merchandise, lost profits, etc. And it's quite fitting that this really has nothing to do with RFID, but their unwillingness to go the extra mile to spend a few more bucks to get employees who know what they are doing.
The Patriot Act said, "In light of the threat of terrorism weus herewithus proclare that a special task force needs to be deployed to ensure that local and state law enforcement doesn't try to say:maybe you're a terrorist and that's why you don't want us searching you - just like why we have warrants that aren't really effective at curbing the: you don't wanna be searched you must be hiding something mentality that the ppl that wrote the constitution we're hoping we would never have to understand that sort of oppression." Politicians are assholes, they ruin everything. I wonder what our forefathers credentials are? Bush might be riding the oil baron ticket, but he ain't no Jed Clampett.
I hope it costs Walmart et al $billions
" it's easy for us to reverse" .. "us" ? So you class yourself as someone how could reverse engineer a device designed to be secure ? By yourself ?
Probably not methinks ... there aren't many megabrains about in the world who can chew up things like this and spit out answers, and somehow I don't think said megabrains would bother reading Slashdot and bother posting such a egotis .. egotest ... big headed comment :-)
How is this any different from sticking your own barcodes on products? At my local store, the video screen flashes a picture of every product scanned, so that even the most bored, drug addled check-out chick will notice.
Reminds me of my plan to stick condom barcodes on boxes of oatmeal.
Xix.
"Everything is adjustable, provided you have the right tools"
So you actually expect the 1337 kids to *buy* adult movies? I wouldn't be surprised if those very kids have access to this thing called "internet", where free adult content is not in short supply...
Save your wrists today - switch to Dvorak
I hope this guys RFID dumper helps people learn about their car hidden RFID more (if supported scanner is in the AIAG frequency standard range 13.56Mhz)
:
:
: ...but the link finally died in July 2004 and the new location does not have a photo of a RFID bridge underpass collector. But does discuss thhe toll booth RFID uses...
TOP SECRET FACT:Most modern cars have tracking transponders!
Spy transmission chips embedded in tires that can be read REMOTELY while driving.
I had to post this an additional time because this factual, detailed and 100% accurate post was modded -1 today rapidly by a federal shill account. Sorry for thise extra posting. There's no need for that action. I will post it a few times to help it survive. Naturally I have to post the following anon.
A secret initiative exists to track all funnel-points on interstates and US borders for car tire ID transponders (RFid chips embedded in the tire).
Yup. My brother works on them.
Your tires have a passive coil with 64 to 128 bit serial number emitter in them! (AIAG B-11 ADC v3.0) . A particular frequency energizes it enough so that a receiver can read its little ROM. A ROM which in essence is your GUID for your TIRE. Multiple tires do not confuse the readers. Its almost identical to all "FastPass" "SpeedPass" technologies you see on gasoline keychain dongles and commuter windshield sticker-chips. The US gov has secretly started using these chips to track people.
Its kind of like FBI "Taggants" in fertilizer and "Taggants" in Gasoline and Bullets, and Blackpowder. But these car tire transponder Ids are meant to actively track and trace movement of your car.
Taggant research papers
http://www.wws.princeton.edu/cgi-bin/byteserv.prl/ ~ota/disk3/1980/8017/801705.PDF
(remove spaces in url from slashcode if needed)
I am not making this up. Melt down a high end Firestone, or Bridgestone tire and go through the bits near the rim (sometimes at base of tread) and you will locate the transmitter (similar to 'grain of rice' pet ids and Mobile SpeedPass, but not as high tech as the tollbooth based units). Sokymat LOGI 160, and Sokymat LOGI 120 transponder buttons are just SOME of the transponders found in modern high end car tires. The AIAG B-11 Tire tracking standard is now implemented for all 3rd party transponder manufactures [covered below].
It is for QA and to prevent fraud and "car theft", but the US Customs service uses it in Canada to detect people who swap license plates on cars when doing a transport of contraband on a mule vehicle that normally has not logged enough hours across the border. The customs service and FBI do not yet talk about this, and are starting using it soon.
Photos of chips before molded deep into tires!
http://www.sokymat.com/sp/applications/tireid.ht ml
(slashdot ruins links, so you will have to remove the ASCII space it insertess usually into the url above to get to the shocking info and photos on the enbedded LOGI 160 chips that the us gov scans when you cross mexican and canadian borders.)
You never heard of it either because nobody moderates on slashdot anymore and this is probably +0 still. It has also never appeared in print before and is very secret.
Californias Fastpass is being upgraded to scan ALL responding car tires in future years upcoming. I-75 may get them next in rural funnel points in Ohio.
The photo of the secret prototype WAS at
http://www.tadiran-telematics.com/products6.htm l
http://www.telematics-wireless.com/site/index1.p hp ?ln=en&main_id=33
but the fact is... YOU PROBABLY ALREADY HAVE A RADIO TRANSPONDER not counting your digital cell phone which is routinely silently pulsed in CA bay area each rush hour morning unless turned off (consult Wired Magazine Expose article). Those data point pulses are used by NSA on occasio
1^64 = 1000000000000000000000000000000000000000000000000
(I think that was 64 zeros I typed....)
Tom.
Oh arse
They used to do just that with the items permanently marked down or going out of season. I think the reson was because they didn't have the computing power to track so many items and their new price. If you wanted to, you could just print out a new bar code with the description and price you want. I am sure they would make the same mistake with RFID.
Wow. someone has a littttle too much time on his hands... Anyways, i dont think rfid will need to worry much. Jammers are really the only problem, but re-writing like this is pure bs. All they would need to do is create a rfid "gun" and let JUST that modify the code. simpler than green acres. [edit] bloody timer... its been 5 mins since my last post...
A bullet may have your name on it but splash damage is addressed "To whom it may concern."
What about erasing or resetting all the RFID tags in a full shop just by walking past. Will trow the shop back into the stoneage. That will do some damage to the shop. Nice thought for those stores whose boards members get ultra high bonusses by tampering with the financial records. What about logistic centers?? What if they get blown into the stoneage by a powerfull microwave equiped car outside the building. Say bye bye to your system a few days. Or am I dropping ideas into hands of terrorists?
Legislation.
We'll just release poorly thought out technology that promises things older tech's can't deliver, but make sure not to put in the press releases that mayhem can ensue from its use. Then when someone discovers this, we'll just see to it that it's illegal to own equipment capable of performing these operations (despite their otherwise legitimate uses), and so we have protected our customers by giving them a false sense of security while sacrificing another tiny bit of essential liberty.
Slay a dragon... over lunch!
From what the submitter had mentioned, he thought it would be possible to reprogram RFID tags to use to cheat a SCO...I'm not really sure about how the RFID stuff works, so I can't really say much about that, however, I do know a bit about the SCO's.
Some SCO's (namly those by ACM/IBM) have a secondary server that handle the interactions with the cash register controllers (sometimes called the BOSS server). They have a 'security profile' that lets a SCO learn pieces of information about an item (dimensions, weight, that kinda thing) and if the item doesn't match a security profile, it'll kick it back, until a cashier scans their card to get it to learn the item.
Other SCO's use a weight-based system. I'm not totally sure if the scales weigh all items and go from item to item specifically, or from item to item just to see if the item's been placed in the 'bagging' area (if not a pass around item).
A properly set-up SCO won't allow things like this anyway. Really, nothing more than barcode switching.
I disable sigs...do you?
The inside of soda machines are all segregated columns filled with the various sugar drinks. Each column contains a seperated type of drink, although a few columns could contain the same drink, that's just an matter of local preferences.
Since each column is limited to one type of drink the machine can easy test how many of each brand are left and notify 'home' that they are running low. Which won't necesarily mean it will be filled quicker, it just means they know exactly what to bring to the machine. Distributors don't often change their routes since it allows them to send drivers out less often, servicing more machines without having to go back and forth all that often.
There is no reason to put an FRID into the cans going into Drink Machines. They serve no purpose that isn't already covered by tried and true technology.
If you ignore the other uses of a tool, does that make the tool less useful, or you less useful?
What an incredibly patronising, stupid, and, just plain wrong thing to say.
Walmart, Tescos, Carrefour (pick your local mega retailer) are incredibly sophisticated in thier use of technoligy. They all have first class inventory managment, ordering and distribution systems. With the advent of customer loyalty cards they drove data warehousing technoligy to new heights. In addition the "old" retailers have significant market share in e-commerce.
And this guy thinks they will have problems implementing what is effectively and upgrade to thier barcode system. Whats more he thinks they would be dumb enough to store the price information only on the RFID tag?
You could go around the supermarket going over barcodes with a felt tip pen, but, nobody ever bothered. Why do this just cause its digital?
And what exactly is the privicy issue? Do you refuse to drive VWs because they record fuel consumtion etc. on thier service chip. Do you file the serial numbers off your engine block? Its just product id!
In a world where people are starving, and, the only remaining superpower is led by a low I.Q. president there are other things to worry about.
Old COBOL programmers never die. They just code in C.
How would you have two different numbers (1 and 0) in base 1? You're thinking in binary. Base 1 is like counting on your fingers - 11111111.
Actually, 1^64 is 65. :)
The tags do not generally contain data and for the most part are read only in the new systems. The tag only contains an identifier which is used to access the info just like a barcode. Changing the number to another at the checkout would still display the id of the product. You have a watch at the checkout and the till shows a tin of beans.... These systems are not that easy to hack in reality, at least no more so than barcodes. Most people do not change the price tags either out of honesty or fear of being caught. I doubt very much that jewelry stores will ever have self checkout lanes.
"If the King's English was good enough for Jesus, it's good enough for me!" -- "Ma" Ferguson, Governor of Texas (circa
You might think self check-outs are easy to fool, but the fact is when they do an audit on the day, and realize that you've walked out with a load of stuff you didn't pay for, security is going to grab frames of you in the self-checkout and you'll be caught if you do it more than once. Sure if someone accidentally gets a deal on something once, they won't ban you from a store, but if your whole shopping spree is from a hacked slew of RFIDs, you'll find your picture on the wall of the security office and they'll pick you up if you go back.
The dangers of knowledge trigger emotional distress in human beings.
Actually, that's base 2 (2^64, also known as binary. 1^n where n=any number equals 1.
But why is the rum gone?
McDonalds (cutting down rainforests),
Uhm, what? There are so many things wrong with this, I'm not sure where to start.
First of all, it's not the fast-food companies that are cutting down forests, it's lumber companies. If a beef farmer needs some space for his cows, he cuts down a field, and then he's done, that's it. The next year, he doesn't need to cut down another field, he can simply use the same field. Lumber companies, on the other hand, are constantly trying to feed North America's voracious appetite for lumber. Every travel to Europe? Do a little digging and learn how houses are constructed in areas without such an abundant supply of lumber. What kind of house do you live in? Unless it's steel/concrete, guess what: You're part of the problem.
Secondly, McDonald's doesn't chop down any rainforests at all. Why would they? "For grazing land for their beef", you say? But McDonald's doesn't actually own any cows. Do you really think fast food chains farm their own animals? McDonald's isn't in the business of raising cows, they're in the business of selling shitty hamburgers. They outsource their beef production. Do you think KFC has a massive chain of chicken farms somewhere? Nope. In order to be competitive, fast food chains focus solely on their "core business", that is, the actual cooking and delivery of the food.
It is probably likely that some of the suppliers McDonald's uses may chop down some rainforests for land, but you can hardly blame McDonald's for that.
And finally, there's nothing wrong with chopping down forests anyway! Forests are a renewable resource. They'll grow back. This is a natural part of the cycle. There's no problem here.
You want to worry about something, worry about the companies that are wasting oil. Now that's something that won't grow back.
Like woodworking? Build your own picture frames.
I like your crypto idea, but wouldn't it be easier to just have write-once RFID tags?
There must be some sort of EOT packet in the RFID communications stream - the tag just blows a fuse when it sees the tag, like an FPGA can.
There would have to be some global namespace assignments so each store could use the RFID from the manufacturer, but I thought that was the plan anyhow. I can't see any reason for a retailer to reprogram an RFID tag - everything beyond the ID will be in their database.
My God, it's Full of Source!
OUTSIDE_IP=$(dig +short my.ip @outsideip.net)
Designate one code as "never used", test that first, if it succeeds then thow an exception.
whatever extra space may be available in the RFID metadata, the store checksums the verified contents and encrypts that with their private key. simple.
I would expect that instead of actually fixing the technology (if possible) adopters and promoters of RFID will start a massive campaign of lobbying for harsh federal laws that make it illegal to possess, create or look at any device that could possibly be used in "hacking" RFIDs. These would include (but are not limited to:
RF detectors
Calculators
pencils
human brain
words
-I'm not the troll you're looking for.
Sig
Appended to the end of comments you post. 120 chars
At least RFID can handle some types of encryption. A encryption key can be kept in the reader and since it doesn't have to be broadcast this isn't necessarily a huge problem. And since RFIDs can be managed automatically if someone really was worried the whole system could check and rewrite each items data once a day or something to make use of a new encryption key.
Some people have already looked in to this, although of course retailers don't pay attention anyway.
Presently here, but not there.
Jenerally, then, the improvement would kontinue iear bai iear with Iear 5 doing awai with useless double konsonants, and Iears 6-12 or so modifaiing vowlz and the rimeining voist and unvoist konsonants. Bai Iear 15 or sou, it wud fainali bi posibl tu meik ius ov thi ridandant letez "c", "y" and "x" -- bai now jast a memori in the maindz ov ould doderez -- tu riplais "ch", "sh", and "th" rispektivli.
Fainali, xen, aafte sam 20 iers ov orxogrefkl riform, wi wud hev a lojikl, kohirnt speling in ius xrewawt xe Ingliy-spiking werld.
//Information does not want to be free; it wants to breed.
on the whims of the internet community you'll know it's time to put me down.
The number system is built using powers of 1, yes? The right-most column is 1^0, then 1^1 .... 1^64. In these terms, the 100...0000 I've given represents 1^64 (which = 1 ). Now if the number I've given (100...000) was base 2, we'd have a much larger number indeed.
See what I mean?
Tom.
Oh arse
Just read the RF tag within the store from a cheap item and use it to encode an expensive item.
You can even 'switch' the RF tags, so the expensive item is accounted for in the store's inventory. In a huge store, no one will find a mismarked item until long after you've left.
~~~
Click here, you know you wanna!
I'm sure they all love their jobs and take them seriously.
You better watch out, there may be dogs about . .
- What kind of house do you live in? Unless it's steel/concrete, guess what: You're part of the problem.
No, you're wrong. The lumber in construction is usually softwood because it is much much cheaper than hardwood. The forests used by the lumber industry contain softwood trees. Rainforests contain hardwood trees.- It is probably likely that some of the suppliers McDonald's uses may chop down some rainforests for land, but you can hardly blame McDonald's for that.
I don't see anything wrong in him exercising his right to choose for any reason which companies he buys from. It's his personal choice.- And finally, there's nothing wrong with chopping down forests anyway! Forests are a renewable resource. They'll grow back. This is a natural part of the cycle. There's no problem here.
No, you're wrong. Firstly, we're not talking about "forests"; we're talking about rainforests. Rainforests do not "grow back". When a rainforest is cut down, the animals that were there die because there is no food. The lost animals do not grow back. When a rainforest is cut down the tree root structure which was binding the topsoil together starts to decay. Topsoil is the special layer of fertile soil which is essential for healthy plant growth. Without the binding effect of the tree roots, there is soil erosion during rainstorms and eventual loss of the topsoil. The rainforest plants cannot grow back without topsoil.- You want to worry about something, worry about the companies that are wasting oil. Now that's something that won't grow back.
No, you're wrong again. Oil is a product of nature, the result of millions of years of geological processes operating on decaying plant and animal matter. The same geological processes are operating today on decaying plant and animal matter. It would certainly take millions of years for new oil to be created by nature but it's a matter of time, not of possibility.Tom.
Oh arse
Time to take the tinfoil hat off. The reason why merchants are slavering over RFID is not because they are stroking their evil beards while thinking up ways to trick you into the matrix vats. The biggest reason why RFID is exciting is because it means they can inventory a shelf just by having a guy sweep a scanner across it in a matter of seconds. Hell, they could inventory an entire warehouse in a matter of seconds. They are excited because you can go to the checkout line, swipe your credit card and grab your recipe on the way out without ever having to glance at a human.
Now, could RFID be used to track your movements? Potentially, but so could a camera with facial recognition. RFID chips could simply be implanted with the ability to deactivate once the transaction is complete.
Even taking the worst case scenario, all the evil corporations collaborate to track what you buy and where you go, what do you think they are going to do with that data, send in a corporate death squad to off you? At worst, they are going to take all that data, shove it into a computer, decide what it is you seem to be inclined to buy, and try and sell you stuff some computer algorithm thinks you are likely to want. Annoying if it results in more spam in your mail box? Sure. The end of liberty? Hardly.
Honestly, corporations worry me the least. When I deal with a corporation, it is generally a voluntary transaction. Abercrombie can't put a gun to my head and force me to pay double the price to buy a shirt with their ugly corporate logo smeared across it. If I am dumb enough to buy it, well, I was dumb enough to buy it. If anything gives me pause, it is the government. If I tell the government I don't feel like paying for social security this year because I would rather invest that money myself, they CAN point a gun to my head and tell me that I am mistaken and I in fact DO want to buy social security this year.
My mom always said, "Jim, you're 1 in a million." Given the current population, there are 7000 of me. God help us all!
Make owning this equipment or talking about the technology illegal. This will make the technology safe for the retailers to deploy them in their stores.
Besides, I don't think the RF signal can get through my foil hat.
Since when is expensive jewelry taken through a self checkout line? I hardly see jewelry stores adopting self-checkout counters. There is a reason why they keep stuff under lock and key, and then there is the lady in high heels who wears too much make-up and jewelry who encourages you to buy the more expensive piece.
I am working on an RFID client project at my company. There are read-only tags and read-write tags. The read-write tags can also be locked on a per-byte basis so that those bytes can never be written to again. Believe me, the system can be secured.
/.'er that dissed Walmart's technology because of his experience with their sales people is pretty myopic. I'm definitely no fan of Walmart--last time I stepped into one was about 10 years ago--but their distribution system is incredibly efficient. In 1993, their gross sales were $USD244 Billion. The U.S. GDP was 10.98 Trillion, so if my math is correct, their sales amounts to 2.2% of the U.S. GDP. That is a lot of inventory for a single company to move around the world. Of course, they have 3rd party distributors that bring in a lot of their products, but they still have to keep track of that as well.
By the way, the
For mass retailers like Walmart, RFID will work much better than barcodes and it will probably be first implemented in the distribution system, not the sales system. One RFID tag will keep track of a single shipment lot, case, box, whatever.
RFID tags will NOT replace barcodes in the forseeable future. But they can accomplish some things better than barcodes so they will coexist.
What is cool about the RFID stuff is that I bet with the right antenna, you could do the reprogramming from the parking lot, and do a whole shelf full (store full?) at once. Suddenly, everything in the store is a 50 cent pack of Wrigley's...
- "History shows again and again how nature points out the folly of men" -- Blue Oyster Cult, 'Godzilla'
"The RFID is used to keep track of inventory. Just what does that impose on the customer? Please be specific."
I don't know about other folks, but as a human, I don't want to be part of the "inventory".
Attaching RFID to everything, having that in a database, then attaching your purchasing all over to the same database, with your location, time, etc starts to get into the bogus area pretty quickly. Add in traveling, the various schemes to have rfid in car tires, onstar like devices, your cellphone phoning home, etc, etc, etc, all start to add up to "humans as inventory". All the parts make up the "wrongness".
Hey, don't knock it. Thanks to my loyalty card, I get free bagels every other week. :-)
--- Ban humanity.
Is the in the USA? EU? It's not that I don't beleive you, I just am amazed that's illegal. I understand that it might be illegal to take photographs inside someone's place of business without permission, but what about an outdoor vendor in a public location? Is it legal for me to stand on the sidewalk and photograph the visible items and prices?
Really, is that sticked in the box, or what? Would be difficult to just throw it away after buying something? While i read these topics it looks like something that is embedded in the products that you can't take away. If it is sticked, wouldn't be enough to stick the RFID from a different product to cheat automated systems? I say this because in your examples you talk about t-shirts and what not, i don't think they can embed an electronic device on a tshirt
than hacking traditional inventory control systems.
Storing metadata on a read/write tag? Well, that's obviously not secure. That's why the older ISO format with banked registers has been overlooked for the newer ePC format -- which allows the storing of a single 64 or 96 bit GUID. This key would be used to lookup things like price from a secured database.
Not all tags are read/write -- Matrics ePC class 0 are encoded with a GUID at the factory, and are read only. Furthermore, tags that are read/write can be "locked", preventing future rewriting without knowing the unlock password.
Granted, if a store is using ePC in "barcode" style, you could recode an expensive item to be the same as a cheaper item, thus, this proposed type of fraud is no different than "overwriting" a traditional inventory control device, such as placing your own sticker with a lower price or different barcode (of an item with a lower price) over the existing pricetag or barcode. The only difference here is that you will need a very expensive and portable tag reader/writer plus the tag unlock password, and/or access to the product database. Neither of which are very discreet.
Whee
One of the worst uses of RFID is for use when taking inventory, or scanning bulk boxes of some item. Just because your crate has the proper weight and the correct number of the appropriate RFID tags doesn't mean you're really getting a case of pretzels. When money is on the line, you can't put your trust in some little chips that have no requirement to be attached to what they should identify. One can't put blind faith on the tags. A manual count would still be necessary. For automated checkouts, it places too much trust on the customer. How do you know that the tag they're scanning is really the tag that it should be?
If RFID only causes more problems and solves none, other than to enrich companies selling RFID products, why would anyone use it?
Why even risk being caught with a reprogrammer? One or two reprogrammers hidden in a couple of shopping carts would do the trick. Every few days or so, a customer will push the cart around doing all the work without even knowing it.
What retailer in their right minds (especially the big ones, who have the power to make or break this technology) would allow the use of something that is so easily modified. Whatever RFID tags are used, they would have to be write-once-read-many. The article is obvious grand standing by someone who really doesn't know how much research (that is already) going into such a radical change. Doing this RFID thing right could mean the life or death of even the biggest of retailers.
They will start somewhere that is in a much more controlled environment; the supply chain. They will implement and discover its limitations there, where there isn't as higher likelihood of some little twirp wanting to cause havoc.
As someone who works in the retail industry, on systems that do need to identify items (i.e. reading barcodes), one thing I see is that implementing RFID will cost a lot more in systems development than what happens with today's barcodes. If I want to mimic a whole lot of products being scanned today, I simply print a whole heap of barcodes on a sheet of paper. I can print as many copies as I like and hand them out to as many developers and testers as I like (the only cost being the paper and toner, and perhaps licensing costs for the barcode font I'm using).
With RFID, you have to pay per tag you require. So, however many developers and components they are developing, plus however many testers you have and however many scenarios they're testing, multiplied by the (far higher) cost of the tag itself. You will come to much higher overheads in your development / testing cycle. And you can't just "make up" your own tags on the fly, so it will be by far more annoying than what happens today.
I think you're just explaining applications of RFID, not responding to your parent. Giving each can of coke a product ID and serial number is overkill. You should put one tag on a 6-pack, 8-pack (they do have them), 12-pack, whatever and the computer and tell you how many of each pack you have.
RFID should be able to inventory things that otherwise cannot be inventoried easily. If a Coke/Pepsi guy goes to fill a machine, he can input the number of Pepsi's (and others) he's putting in the machine to the machine itself and it can count for itself. It's not like customers are going to interfere with the product before it's sold.
You need RFID for a place that customers can examine merchandise, or for a place that's too big to make inventoring a trivial task. At the Coke machine, it's really small and for a non-RFID to count how many it has (how many it was given minus how many it sold since then) is trivial. At a large department store, people pick up shirts, put them in the cart, move around, then put the shirt back wherever they want.
at least we don't stick these chips in our children like the japanese are planning to start doing...
--- Website: http://spinhex.sytes.net/
I was waiting for wide spread adoption of RFID so I could get a new car for $1. Now you spoiled all of my plans.
...... it's the gestalt of all the little specifics that add up to a general wrongness. RFID tracks the part, thew widget, then you use a store card or cc or cash to buy it. They have cameras as well that go to the mix. Add in location of where you are at with a cellphone, yada yada yada, it isn't any ONE of those things that is wrong, it's ther ability to eventually tie them all in together that's wrong. I don't want a total surveilled/controlled/command and controlled society, which is exactly where this rfid stuff-and everything else- is heading, and make NO mistake, at some time the government is going to insist by law that you have a complex rfid implanted.
Totalitarian regimes don't spring up overnight, they take some time and come at you from many diverse areas, and rfid is definetly one of the areas they are going to use. Here is my original thought again
I am a human, a soverign man, distinct, unique, I am more important than business and government or their convenience. I am NOT their inventory.
The more they can tie "inventory" and "tracking" and "this is now part of the database" to *everything* you do, the closer we come to US human folks as individual soverign humans to be their "inventory".
It's a really large general concept that is made up of all the other smaller bits of data, rfid tracking is just one of them, it is not "the" only part, but I would say it's a pretty important part.
Want to know when it changed in society, where this mindshare paradign to "humans are the inventory, too" shifted? Exactly when we stopped being called "personel" and got turned into "human resources".
Perhaps people will call this "ten-fingered discounting", a progression from the ancient (and cruder) "five-fingered discounting"?
This will lead to a ban on all electronic devices in any US retail outlet. Hey, get with the times, this is how we do things now.
Edith Keeler Must Die
I've been pondering the security implications of this stuff lately.
Most of the places I've worked over the past few years use RFID based access controls.
If I scanned someone's security badge with my wrist watch, then went home and programmed another RFID to match it, I would get access to controlled areas...
O=='=++
Why not just have one of the RFID data fields be a digitally signed MD5 checksum on the entire record? In-store scanners could verify the encrypted checksum then hackers would need the store's private encryption key to modify the checksum field.
to generate the digital signatures you'd need a cpu that could handle generating cryptographic keys... = more $$ as mentioned in the article. ~ ddf ~
there appears to be some type of law being sought by privacy groups so that once the chip has been used it is to be dispatched so that the consumer cannot be traced off the grounds... which would require it to be writeable to be dispatched... in which case could be abused simply by generating enough power and you could be zapping entire stores from your vehicle with a nice high gain antenna... now that is some real "war"-driving... hehe.
~ ddf ~
I dont get it...but maybe I just dont know as much about electronics any more as I use to... When I was studying electronics there were things like volatile and nonvolatile storage devices. Why not have RFID's be nonvolatile for cases like this? Seems pretty stupid to me to create RFID's that can be modified.
"Well as the technology is adopted more widely a thief could conceivably mark down the price of an expensive piece of jewelry before paying for it at an automated checkout counter" Weren't these same objections raised for bar codes? Bar codes have cost stores billions of dollars and the collapse of the US economy is near! Please!
:(){
1^64 = 1, BTW.
(1^64)! = 1! = 1, too
I think you meant 2^64 since it's binary.
One big point everyone is missing--there won't just be RFID readers at the exit. They will be ALL OVER the store. It'd be trivial to figure out the movement of the product through the store. If it dissapears, then reappears somewhere else, the alarm goes off and the exact location of the duped item is now known for an arrest.
Seems the discussion here has been mainly about ripping off the retailer. I think the idea of erasing them after purchase for privacy reasons is far more improtant.
However, another way to look at it is as a cheap way to get tags to use at home. I've got large collections of CDs, videos, and books in my house, and it's always a real pain in the ass trying to find something I haven't used in a couple years. If I'm getting all these RFID tags for free in the products I buy anyway, and I'm able to erase and rewrite them easily, then perhaps I can remove them from the products and redeploy them into my books, CDs, etc, and then use an RFID reader to more easily find things.
Sure, it would be a long-term project to get everything tagged and inventoried, but so what? I'd be able to easily find things I'd already tagged, and if I have to search for something that wasn't tagged, it would be easy enough to tag it once I find it.
Retail products will not have rewritable tags. But each unit will have a different serial number. See the EPC specs of the AutoID center.
digitally signed MD5 checksum
Your description betrays a misunderstanding of encryption technology, which is irrelevant to the quality of the suggestion.
Digitally signing a checksum is about as silly as compressing a file twice for better storage. You should just sign the whole record and be done with it. Some form of checksum will undoubtably be part in the signing process.
Hey, someone has to employ the idiots. Why shouldn't it be Wal*Mart?
Contribute to civilization: ari.aynrand.org/donate
Damn these underage hackers!! Somebody needs to hunt them down and arrest them. Then things will stop going wrong.
Even more frightening is the idea of government required ID's for individuals. What a horrible choice to be branded electronicly like a cow or face legal consequences.
To conclude, you're right: Corporations are too concerned with profit to infringe on my liberties too much. Also you're wrong: governments are concerned with controlling their populations and RFID tags is a great centrally based way to track people. Is there a government that you trust enough to know your most every movement?
Ignorance kills, complacency kills, hatred kills, but usually not the ones guilty of them.
It would also be commercial terrorism. Never mind that the Utah law on Commercial Terrorism has been struck down thanks to the ACLU, it'll be back, I promise you and it wont matter if most Americans are stupid enough to vote just between either Bush or Kerry, either of the two will make it happen on federal level. Read up on commercial terrorism here, and here
...stuck in many holes in many dikes might keep the ocean at bay, unless until we decide to build a more intelligent dike-or move to the high ground!
1. Read the RFID on a cheap item.
2. Write that data onto the RFID on an expensive item. Notice how all your fancy signatures and checksums still match.
3.
4. Profit!
When you grab a bunch of grapes, write "grapes 2384" and tie that to the grapes. Makes life easy when you get to the checkout.
If they don't have bulk produce tags, then drop by an electronics store (e.g. Radio Shack) and get some wire labels.
Free Software: Like love, it grows best when given away.
I published a yellow-paper on this some time ago. If hackers bring a black pen into stores, it is trivial to modify the bar-codes on packaging. For example, you could turn a bottle of expensive liquor into an innocuous candy bar!
If you remember that the "shopkeeper" that one interacts with in the store is either a teenager who is working for a pittance while going to school, or a retired person, it is a reality. While there may be a boatload of smart IT people behind the scenes, that is exactly where they are -- behing the scenes. They won't see the problem until it becomes apparent in the dataflow.
What an incredibly patronising, stupid, and, just plain wrong thing to say. You may disagree with his policies, but that doesn't make him low IQ. By ending your comment with this knee-jerk nonsense, you've made your entire comment look like it comes from a knee-jerk ignoramus. If that's what you want, ok.
They can still track your purchasing habits with barcodes... why does RFID violate privacy any more than barcodes in an average retail environment, like say wal-mart or best buy?
You escaped the shop without paying! -more- You stole $20,000 worth of merchandise. -more- An alarm sounds! -more- The Keystone Kops appear! -more- Pasawahan gets angry! -more- Pasawahan shoots a wand of magic missle! -more- The magic missles hit you! -more- You die... -more- Pasawahan comes and takes all your possessions -more- You were 16 years old when you died -more- [tombstone deleted]
What if one just wants to destroy the tag with a modified reader pulse? What kind of field strength and transmitter power is necesary?
If you read some of the great books on the subject of Cybernetics, you may begin to think differently.
As machines of communication and control become more of a part of humans, we increasingly become machines ourselves. These tools extend humans beyond what they are normally capable of. We ceased to be humans the moment we used the first machines as Early Humans to amplify our ability to do work.
We now have evolved to the point where we react to the machine's signals and feedback, thus it controls us to a certain extent while we control it. Such evolution is bound to continue, and we will eventually be able to communicate completely and utterly without distortion with every other thing on the planet.
Thus, we become a singular consciousness which is perhaps the destiny of humankind. Yes, we will have to give up certain "freedoms" as we evolve as a species (as we already have). But I wouldn't worry about it too much because it doesn't matter what stance you take now, you will eventually be replaced with new generations of humans which will increasingly tend towards the acceptance of this enevitability.
It can start with you or your children. It is of course within your rights as a human to go against the flow, and I applaud that as you will make the final product a more perfect union. But rest assured that eventually the slippery slope we all find ourselves upon will become too steep and there will be too few resistors to keep us afloat.
It's already too late. You aren't a soverign man, you aren't distinct, you aren't unique. You are far less important than business and government or their conveinient. You ARE their inventory.
See you at the bar.
Cool! Amazing Toys.
Anyone who frequents Laser Quest (a laser tag arena) knows that they use Maxim/Dallas Semiconductor iButton devices to activate the "blaster" with your callsign and to keep track of statistics. The problem with this is that anybody with a knowledge of microcontrollers and some basic hardware skills (such as, ahem... moi) can rig up a simple unit to read and write to them (using a serial protocol called 1Wire). While this might not seem particularly relevant to the topic, it demonstrates the same concept, which is that if you make widespread use of a low-cost technology that nerds have free access to, it's only a matter of time until one of them starts to get curious. And then you're screwed. ;)
Great. Now a legal, useful, and important use of technology
He wrote this program to demonstrate how consumers can protect themselves by wiping out RFID data after purchasing a product
is likely to be outlawed because of fear of abuses. Not unlike P2P. I predict much FUD coming about this technology from the RFID peddlers, as well as cries for Congress/FTC/FCC to "do something about it!"
Global warming is neither science, nor politics. It is a religion.
Barcodes are scanned only where and when you buy something. But RFIDs can be read without your knowledge by anyone with a suitable scanner.
Screw high tech culture jamming and scamming in a supermarket. If/when RFID are implemented in schools... All I can say is that there will be a whole lot of the same person walking around the hallways any place I am educated at.
I was responding to the remarks regarding soda machines.
There wasn't anything regarding a 7-11.
In fact, I didn't even respond the points regarding the supermarket statements. RFID is still sort of silly in the previously described cans, 6-packs, 12 and 24-packs, but I don't have time to talk about everything.
If you ignore the other uses of a tool, does that make the tool less useful, or you less useful?
The Future of RFID resistance... At the present time there is some hype in all this RFID stuff... The chips are very small, 0.3mm - 0.5mm square but all I have read about the fractal antennas they require suggests that these aerials are not that small... yet... And anyway... can't you see the protestors walking around Wal-Mart zapping all the RFID Tags. Then they will have to put some kind of firewall on the chips and surround them with a Faraday cage... :) passive chips wont work, they will have to be interactive or at least encrypted, more complex and robust.
It will just lead to more electromagnetic pollution and spam and scam all over the datasphere. Not to mention further erosion of civil liberties...
But... with Nanofabrication Techniques these chips will get even smaller and smaller and smaller...
Imagine the scene... As Orwell turns in his grave...
A secret court in the UK, sometime in the future....
The UK Midland Area Anti-Globalisation Economic Terrorism Special Tribunal
The tribunal was set up in 2009 under the Anti-Capitalist Global Alliance Suppression Act of 2008, which forbids all manner of economic protests, strikes and boycotts.
January 13th 2011
Invisible Judge speaking over a one-way Video Link...
Judge:
"Norman Stanley Smith, also known as SubCommandante Flash-Zapata... you are charged that when you were detained in Santa's Grotto at Wal-Mart Happy-Toys Depot on the 23rd of December 2010 you did have about your person an unlicensed radio amplification device tuned to an illegal frequency, contrary to section 4b, para. 1, subsection 19a, of the Anti-Capitalist Global Alliance, Suppression Act of 2008."
Judge:
"You are further charged that on the said date, in your disguise as Santa Claus you employed the aforementioned radio device to destroy all the RFID Tags at the Wal-Mart HyperMeggaSupperStore in Birmingham by generating a powerful proscribed radio signal, occasioning $487 millions damage to or loss of, perishable and non perishable goods in stock (or thought to be) at that time on those premises. This occurred whilst you were engaged in a conspiracy, which involved an illegal economic protest concerning the fact that the said establishment is now the only shop in central Birmingham. This contrary to section 1, para. 6, subsection 9d, of the above act.
The store you attacked with your radio beam economic terrorist tactic had to close for three months for re-inventory. Some 19,257 tonnes of food and other perishable items had to be thrown away and a major public health disaster was only narrowly averted. You were the key element in the coordinated looting conducted by an estimated 1300 of your fellow conspirators and which is the subject of further proceedings in other cases before this court."
Judge:
"Due to your actions on that day most of your co-conspirators were able to leave Wal-Mart undetected, laden with millions of dollars worth of food and other goods which they had not purchased, without alerting the security system. When some of these persons were challenged by the small contingent of overwhelmed security staff a number of them became violent, after stating "Free The World" and "I have lost my receipt" and... "Fuck off - I paid cash"..."
Judge:
"The court has taken cognisance of the fact that while you have been remanded in custody you have amputated a small section of your left buttock to remove an RFID tag inserted into your body under due process of law. This was when after your arrest you were designated as "A Suspected Person without Voluntary National RFID", in accordance with the Human Security and Freedom RFID (Registration Resistance) Act of 2007. You claim to have done this in protest against a law, which simply serves to protect us all."
Judge:
"In view of this senseless act, your unwillingness to enter a plea and your refusal to recognise this special anti-economic terrorist tribunal, the court appointed automated defence counsel smart system software has entered a plea of insanity on your behalf."
Judge:
"What do you have to say...?"
Sub