Slashdot Mirror

← Back to Stories (view on slashdot.org)

Tin Foil Passports?

Posted by michael on from the joke's-on-you dept.

Daedala writes "The debate over contactless chips with biometric information in passports continues. Vendors have been chosen for testing in the U.S. and Australia. Privacy advocates are still arguing about the measure, as are security reporters and bloggers. The specs themselves are interesting, to say the least. The EETimes says that in interoperability tests, the potential chips could be read from 30 feet away. However, both they and the New York Times have published articles reporting vendors' low-cost solution: '[I]incorporate a layer of metal foil into the cover of the passport so it could be read only when opened.' Don't they know that the whole tinfoil hat thing is supposed to be a joke?"

12 of 264 comments (clear)

  1. Not actually based on a joke. by paganizer · · Score: 5, Informative

    A charged layer of tin foil will block most electromagnet signals, AKA Farrady cage.
    a simple layer just won't cut it, though.

    --
    Why, yes, I AM a Pagan Libertarian.
    1. Re:Not actually based on a joke. by dougmc · · Score: 5, Informative
      Better still, save the metallized ziplock bag that your video card probably came in, and use it. Dual purpose -- keep RFI out, as well as moisture.
      The anti-static bags that computer cards come in do very little to stop RF. Doubt this? Put your cell phone in one, then call yourself. It'll work fine. Tin foil will work *much* better, and no, it doesn't need to be grounded. (In fact, grounding will have no effect.) Again, this is very easy to test -- just wrap your cell phone (or any other radio) in tin foil -- it will not work.

      Anti-static bags have high resistances. They're not completely insulators, but not good conductors either, and a Faraday cage needs a good conductor. Their high resistances allow static electricity (with many thousands of volts) to drain off, slowly. Tin foil *can* be used instead of an anti-static bag, but 1) if your circuit has potential somewhere (like a battery, or a charged capacitator) the tin foil will basically short circuit this, which is bad, and 2) it tends to look like a wad of tin foil, which may get thrown away as trash :)

      I don't think that you would actually need to drag a chain behind you to stay at earth ground -- that's what the Faraday cage does.
      A Faraday cage really has nothing to do with Earth ground. It certainly does not have to stay at the same potential as the Earth unless it's somehow connected to the Earth, and it'll equally as well connected or not connected to the Earth.
      Old fashioned Faraday cages did have problems -- they generally use a wire mesh of some particular size, which doesn't stop ALL RF signals.
      There's nothing `old fashioned' about any of this -- the first Faraday cage was built in 1836, and once the radio was invented, it was learned not long after that a Faraday cage will block any RF who's wavelength is much larger than the gaps in the cage. I'll bet this was known (and probably understood) long before 1930 or so. People use Faraday cages with a wire mesh today because it does what they need it to do. To do more would cost and weigh more, and might cause other problems (like not let air in, etc.) -- it's as simple as that.

      Faraday cages block *electrostic* fields, and you really don't need a tight mesh at all for this. Even your car makes a reasonable Faraday cage. Blocking RF is an added bonus, but for that, you need to make sure the mesh is a good deal smaller than the wavelength of what you need to block.

      So, if you need absolute protection against all frequencies of electromagnetic radiation, then you use something with no holes at all. If you also want to block magnetic fields (as the government will want to do to completely prevent TEMPEST attacks and such), then you'll make it out of something magnetic (mu-metal is ideal) and thick. And heavy, and expensive. But secure.

  2. So, they really are out to get me... by www.whitehouse.org · · Score: 5, Funny

    They laughed when I wore my tinfoil hat.

    They tried to have me committed when I said the government was tracking me.

    Now they all want to buy my sporty Faraday Cagewear (TM) line of geek clothing, made of fine woven nylon and copper wire.

    Bwahahaha!

    --
    Mod me down and I shall become more trollish than you can possibly imagine!
  3. Re:Hah! by Anonymous Coward · · Score: 5, Funny

    A much better idea than my tinfoil condom turned out to be.

    Christ, what was I thinking?

  4. Professional Shoplifters by stratjakt · · Score: 5, Interesting

    Have been lining their purses/trenchcoats/whatever with foil for years to avoid those little tag detectors at the door.

    I was watching it on TV, you saw this lady open up her purse and could see the tinfoil.. She shoved a waffle iron or some such thing in there and out she went.

    --
    I don't need no instructions to know how to rock!!!!
    1. Re:Professional Shoplifters by NiTr|c · · Score: 5, Funny

      Bit off topic, but I wouldn't say professional shoplifters use this technique. It's more of something an amateur would do, that they probably saw on TV or read on the internet. The professionals are the ones who get the managers to walk out with it and help them to their cars ;).

      --
      Try actually thinking for yourself. It's quite refreshing.
  5. 10 bucks says... by ilyanep · · Score: 5, Insightful

    That in about 5 years or so they'll implement this technology and we'll see a story, "Identity Theft On The Rise As Biometrics Are Stolen From Traveller's Passports".

    --
    ~Ilyanep
    To get message, take amount of carrier pigeons at each stage mod 2. Then decode binary.
  6. why by Anonymous Coward · · Score: 5, Insightful

    why do they need to read passports from miles away?

    The whole point of the biometrics (even the lowly photography) is that you confirm the data in the passport with the person in front of you at a booth as you check everyone as they go through.

    There is no reason to broadcast this info at ALL.

    It's like having two computers next to each other (2 meters apart) in a "security" installation and using 2 wifi cards to link them instead of cat5.

    1) it's more expensive to use wifi
    2) you have no need to broadcast due to range
    3) not only do you not need to, there are now a pile of security problems you have to deal with which aren't needed.

    When will these fucktards learn to stop pissing taxpayers money away on "futurists" to help enslave us with at worst crappy overbearing over intrusive government leaning toward fascism, at the least they are wasting our money and enslaving us with red tape.

  7. If the issue is forged passports by Coryoth · · Score: 5, Interesting

    The what's wrong with cryptographic signing? Strong cryptography should have been used in passports a long time ago. The principle would be simple enough:

    The name, photo and other information is hashed and then signed by the issuing authority. Airport checks are then a matter of verifying the signature. You can't forge a passport without the private key of the issuing country (which I presume they will guard closely), and modifying an existing passport will invalidate the signature.

    The only tricky point here is photos: You can't scan the straight photo for the check because of all sorts of tricky alignment and scan quality issues, but that's what a chip might be useful for - it contains a hi res photo, along with the other data and signature. The hi-res photo from the chip is displayed on a terminal for the person checking the documents, along with signature verification.

    Yes, you still have to have people checking photos. No, that isn't foolproof. But realistically it is as good as what we have now, with the added bonus that forged, faked, or munged passports will display as invalid due to the signature check. That's pretty damn good, especially when the resulting passport is no more invasive than what we have now.

    Jedidiah.

    --
    Craft Beer Programming T-shirts
  8. Bzzt. American over here! by bluntyetsharpe · · Score: 5, Interesting

    It's one thing to get a reader to gather all my personal data, but at what distance can equipment detect the presence of one of these chips? Is the US the only country using them? I don't like the idea of walking around with a US Passport emitting signals to advertise my nationality.

  9. One step forward... by webender · · Score: 5, Funny

    The new passport is smaller, lighter, more durable and contains more information than any previous passports, however the lead carrying case kind of makes it a wash.

  10. So now I can't open my passport safely? by YouHaveSnail · · Score: 5, Interesting

    However, both they and the New York Times have published articles reporting vendors' low-cost solution: '[I]incorporate a layer of metal foil into the cover of the passport so it could be read only when opened.'

    Well that's just a fantastic idea. Now I don't have to worry about someone surrepticiously snagging my personal data as long as my passport is closed. Of course, my passport isn't actually useful if I can't let someone open it.

    RFID is an interesting technology with a lot of potential, but passports are a stupid, stupid application for RFID. There are much better technologies for passports. Magnetic stripes and bar codes both do the same thing RFID does, but only at close range and with the permission of the document's holder. There are some 2D bar code symbologies out there that store more than enough data for this application and which are highly redundant, therefore resistant to dirt, wear, etc. Bar codes can be read very quickly and require no contact, which means less wear on both the documents and the readers.

    The main thing that RFID gives you over bar codes is the ability to read them without the document holder's knowledge, and that makes me very suspicious of anyone who insists that we must have RFID in passports, drivers licenses, etc.