Slashdot Mirror

← Back to Stories (view on slashdot.org)

RFID Injection Required for Datacenter Access

Posted by ryuzaki0 on from the one-way-to-make-sure-we're-working dept.

user24 writes "Security focus reports that RFID injections are now required for access to the datacenter of a Cincinnati company. From the article 'In the past, employees accessed the room with an RFID tag which hung from their keychains, however under the new regulations an implantable, glass encapsulated RFID tag from VeriChip must be injected into the bicep to gain access ... although the company does not require the microchips be implanted to maintain employment.'"

2 of 551 comments (clear)

  1. Re:Religious Objection by WasteOfAmmo · · Score: 3, Informative
    Not that I'm typically very religious or anything but:

    It seems to me that it would be a little hard to claim that this, or a good many of the other things that people have pointed too, constitutes the mark of the beast.

    1. It is in the bicep region, not the forehead or right hand;
    2. It is not a name nor the number 666
    From the book of revelations:

    13:16 He causes all, the small and the great, the rich and the poor, and the free and the slave, to be given marks on their right hands, or on their foreheads;

    13:17 and that no one would be able to buy or to sell, unless he has that mark, the name of the beast or the number of his name.

    I'm not sure what edition the above is from but it is plain English and close enough for this discussion.

    13:18 Here is wisdom. He who has understanding, let him calculate the number of the beast, for it is the number of a man. His number is six hundred sixty-six.

    On a side note: always wondered about making a program to compute all the possible combinations of the Jewish alphabet that adds up to 666 (filtering out all the nonsense ones of course). Someone must have done this somewhere already.

    Merlin.

  2. Re:Why? by Beryllium+Sphere(tm) · · Score: 5, Informative

    >What's the security benefit to injected RFID?

    If your threat model is someone walking into the data center with a lost/stolen/borrowed badge then requiring them to be injected does address the threat. But then so would issuing tokens in the form factor of a ring, except for the "borrowed" token problem.

    So, if you don't know that RFID chips can be cloned, if you don't know that they transmit the same number every time they're pinged, if you don't know that they can be read remotely and cloned at leisure, and if you have contempt for your employees and are oblivious to human rights, you might come up with a requirement for injected RFID.

    I sincerely hope that whoever came up with this isn't one of my colleagues in security consulting.