e passport the global traceability
play

E-Passport: The Global Traceability or How to Feel Like an UPS - PowerPoint PPT Presentation

Oct 28, 2022 •29 likes •209 views

E-Passport: The Global Traceability or How to Feel Like an UPS Package Dario Carluccio, Kerstin Lemke-Rust, Christof Paar, and Ahmad-Reza Sadeghi Horst-Grtz Institute for IT Security July, 14th 2006 Workshop on RFID Security Electronic

  1. E-Passport: The Global Traceability or How to Feel Like an UPS Package Dario Carluccio, Kerstin Lemke-Rust, Christof Paar, and Ahmad-Reza Sadeghi Horst-Görtz Institute for IT Security July, 14th 2006 Workshop on RFID Security

  2. Electronic Passports • Specification for Machine Readable Travel Document (MRTD) • Claimed Goals • Protection of individuals against identity theft and forgery by storing biometric information in a chip included in passports • Better traceability of terrorists and other criminals • Increase national security 14.7.2006, Slide 2

  3. Current Situation • Security and privacy problems have been pointed out by experts • Successful attacks have been mounted on • e.g., on Netherlands e-passport by Riscure • Most security mechanisms are optional • Trust Model and relations have changed • new parties involved such as service providers, CAs • No complete security analysis including trust relations available publicly • Future plans require update of chip data (visa information) but not analyzed thoroughly and publicly Our goal • Revisit privacy problems (Germany as use case) • Present feasible devices to exploit vulnerabilities of current implementation of Basic Access Control • enables large scale tracing of e-passport holders • To draw public and authorities’ attention to existing problems and to care when employing a new technology for citizens in security critical areas 14.7.2006, Slide 3

  4. What is going on in Germany? • E-Passports issued since November 2005 – Validity of 10 years – If chip defect, passport remains valid • Storage of fingerprint enforced from 2007 • Electronic identity card planned from 2008 • Personalization done by privately-owned company (Bundesdruckerei) • Debates on – central storage of biometric data (June 2006) – new business models for funding biometric ID Cards, e.g., selling biometric data to service providers (June 2006) 14.7.2006, Slide 4

  5. Overview of E-Passport • RFID Communication between secure chip and reader • Distance passport – reader < 30cm • Stored data on chip – Name – Passport No – Date of birth – Date of expiry – Biometrical data (facial Image, fingerprint, …) • Main cryptographic components – Passive Authentication (mandatory) uses digital signature by issuer (data signed) – Active Authentication (optional) deployed against anti-cloning – Basic Access Control (BAC) (optional) establish secure RFID communication – Extended Access Control (ratified recently) chip and terminal authentication 14.7.2006, Slide 5

  6. Basic Access Control (BAC) • Prevent unauthorized read access • Key derived from data printed on the passport (note: only a part of Machine Readable Zone MRZ) – Passport No – Date of birth – Date of expiry • Only an optional feature (specification) K_Seed || '00000001' K_Seed || '00000002' MRZ SHA-1 SHA-1 SHA-1 160 160 160 32 32 32 128 128 128 Triple DES Keys for Basic Access Control K_Seed K_ENC K_MAC 14.7.2006, Slide 6

  7. BAC: Protocol Overview Reader (IFD) MRTD (ICC) RND ICC RND ICC ∈ R {0,1} 64 RND IFD ∈ R {0,1} 64, K IFD ∈ R {0,1} 128 S IFD := RND IFD || RND ICC || K IFD E IFD := E K_ENC (S IFD ) A:= E IFD || M IFD M IFD := MAC K_MAC (S IFD ) Decrypt and Verify E IFD || M IFD K ICC ∈ R {0,1} 128 S ICC := RND ICC || RND IFD || K ICC E ICC := E K_ENC (S ICC ) M ICC := MAC K_MAC (S ICC ) B:= E ICC || M ICC KS Seed := K IFD ⊕ K ICC Decrypt and Verify E ICC || M ICC KS Seed := K IFD ⊕ K ICC 14.7.2006, Slide 7

  8. Key Entropy • Part of MRZ used for BAC (Germany) : x1x2x3x4 y1y2y3y4y5 p<< jjmmtt p<< jjmmtt p<< Behördenkennzahl BKZ (local agency number) – x1x2x3x4 Serial number of passport – y1y2y3y4y5 Date-of-birth – jjmmtt Date-of-expiry (10 years) – jjmmtt • Entropy model for BAC • Date of Expiry depends on Serial Number of each BKZ • However, for BKZ assumptions should be made ⇒ Reducing entropy • Further entropy reduction possible www.pruefziffernberechnung.de – Age can be guessed – City of residence can be guessed (at airport) • Use cases for this work • Netherlands: 35 bit entropy • Germany: 40 bit - 51bit entropy (conservative estimation) • Further breakdowns possible depending on assumptions 14.7.2006, Slide 8

  9. Tracking System • Threat • Ability to trace individuals by eavesdropping, recording and breaking the Basic Access control • Collecting information stored on chip in a database accessible over Internet • Who is interested in tracking and such databases • Criminal organizations and terrorists • Detectives • Commercial data mining agencies • Technical requirements • Eavesdropper device – Can record communication between reader and e-passport from several meters – Installation at places with high e-passport density (e.g., at airports) may need collaborators, e.g., insiders, maintenance and cleaning personal • MRTD Cracker – Performs key searching remotely 14.7.2006, Slide 9

  10. Basic Idea of Tracking System RFID Database MRTD Cracker eavesdropper encrypted MRTD Data Date, Time, Location, encrypted MRTD Data Plain MRTD Data (name, date-of-birth, facial image) and Encryption key Eavesdropping communication (basic access control) 14.7.2006, Slide 10

  11. RFID Eavesdropper 13,56+0,847 13,56-0,847 13,56 power power power freq. [MHz] freq. [MHz] freq. [MHz] Amplifier Mixer Antenna PLL 13,56 Mhz 847 kHz 13,56MHz Detector Detector e-passport to Reader Reader to e-passport PLL = Phase Locked Loop (used as 13,65 MHz signal generator) Range of eavesdropper: a few meters depart from inspection system 14.7.2006, Slide 11

  12. MRTD Cracker • With precompution – Compute possible K_ENC eavesdropped Data – Memory needed to store K_ENC RND ICC , E ICC – Cracker computes 3DES PC Cracker Key MRZ computes computes Database SHA-1 3DES • Without precompution – Cracker computes SHA-1 and 3DES eavesdropped Data RND ICC , E ICC Cracker computes MRZ SHA-1 and 3 DES 14.7.2006, Slide 12

  13. Implementations of Cracker • Software based – Low engineering cost – Distributed computing (computing nodes must be trusted) • Hardware based – ASIC - cheap for large scale - high non recovering engineering costs – FPGA - flexible architecture - reasonable costs - adaptation of Cost Optimized Parallel Code Breaker (COPACOBANA) 14.7.2006, Slide 13

  14. Hardware based mrtd craker • Specialized cost efficient Hardware to compute E ICC := E K_ENC (RND ICC ) without pre-computation stop Clock Counter stop Clock Counter stop Counter Clock stop Counter start value Counter Clock (MRTD Data) Crypto Engine yes Crypto Engine A = B ? yes Crypto Engine A = B ? A´ yes A:= RND ICC SHA1 and 3 DES A = B ? yes A´ = B ? Engine B:= E K_ENC (A) 14.7.2006, Slide 14

  15. COPACOBANA: Overview • Currently optimized for DES • 480 pipelined DES engines (120 FPGAs, 4 DES each) • Operating at 100 MHz • Estimated capability • 2 33 Triple DES keys per second – a key space of 2 35 is completely searched in 4 seconds – a key space of 2 40 in 2 minutes 14.7.2006, Slide 15

  16. COPACOBANA: Architecture FPGA Module 20 FPGA Module 1 FPGA FPGA FPGA FPGA Controller Card FPGA FPGA FPGA FPGA to FPGA FPGA PC FPGA FPGA USB FPGA FPGA FPGA FPGA FPGA yes FPGA yes FPGA FPGA yes yes FPGA FPGA FPGA FPGA FPGA Controller 14.7.2006, Slide 16

  17. Conclusion • Global tracking of e-passport holders is a real threat • We introduced a system architecture consisting of RF eavesdropper and MRTD cracker • Security and privacy of citizens must be protected when carrying and using e-passports • RFID technology in this context must realize privacy laws – All basic principles of data protection law have to be observed when designing, implementing and using RFID technology (see Marc Langheinrich‘s talk) • Further technical discussion need regarding security evaluation (protocols), maintenance (PKI issues, trust relations/models) and future changes • Many issues are still unclear or confusing • Some protection measures are optional • Issuing states still did not increase entropy of Basic Access Control Keys • Passport still valid even if chip is defect • New players, their role and security of their work flows are not thoroughly analyzed • Public debate on this important issue has come too short • What is the choice for citizens to protect their privacy? 14.7.2006, Slide 17

  18. Further Work • Extending operation range of RFID eavesdropper • Performance analysis of implementation choices for MRTD Cracker • e.g., optimizing COPACOBANA to be an efficient MRTD cracker • Encourage more joint work with security experts, researchers and governmental organisations • Thorough and public security analysis of cryptographic components and work flows 14.7.2006, Slide 18

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

CISV PASSPORT for Active Global Citizenship The Passport provides a summary of CISVs

CISV PASSPORT for Active Global Citizenship The Passport provides a summary of CISVs

CISV PASSPORT for Active Global Citizenship The Passport provides a summary of CISVs approach to Peace Education. It is a practical guide to what we do and why we do it, and can be used as a handbook for CISV training. We hope you enjoy

1.06k views • 26 slides
Produce Traceability Initiative Produce Traceability Initiative Traceability 2012 Traceability

Produce Traceability Initiative Produce Traceability Initiative Traceability 2012 Traceability

Produce Traceability Initiative Produce Traceability Initiative Traceability 2012 Traceability 2012 - - Getting From Here to There Getting From Here to There Idaho Grower Shipper Association IPC Marketing Committee Meeting September 2, 2009

565 views • 23 slides
User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication

User Authentication Passport Jason Situ Passport What is it? Passport is authentication middleware for Node. It is designed to serve a singular purpose: authenticate requests. Supports a comprehensive set of authentication mechanisms called

808 views • 16 slides
Your Passport To Future Horizons Your Passport To Future Horizons Your Passport To Future

Your Passport To Future Horizons Your Passport To Future Horizons Your Passport To Future

Your Passport To Future Horizons Your Passport To Future Horizons Your Passport To Future Horizons Your Passport To Future Horizons Making Sense Of The Industry Tea Leaves ! The Economy ! ! ! ! ! ! ! Fab Capacity ! Unit Demand !

174 views • 15 slides
Traceability: Overview GrapeNet 2 Traceability in practice In practice, the term

Traceability: Overview GrapeNet 2 Traceability in practice In practice, the term

Traceability in Agri Commodities for Exports Grapenet: a case study GrapeNet Presentation by S.Kaleeswaran Logicsoft 1 Traceability: Overview GrapeNet 2 Traceability in practice In practice, the term traceability stands for a system

765 views • 48 slides
Passport for Life Education is the most powerful weapon which you can use to change the

Passport for Life Education is the most powerful weapon which you can use to change the

Passport for Life Education is the most powerful weapon which you can use to change the world Nelson Mandela Contents The Responsible Safari Company 19. 3. Global Development Workshops Itinerary Malawi 21. 4. Global

831 views • 34 slides
Cattle Traceability Chain Verification you can trust. IMI Global: Beef Background Selected as

Cattle Traceability Chain Verification you can trust. IMI Global: Beef Background Selected as

IMI Global: Cattle Traceability Chain Verification you can trust. IMI Global: Beef Background Selected as exclusive verification body for McDonalds Canadian Created 1st USDA PVP for Roundtable for Sustainable Founded as IMI Global, a

507 views • 12 slides
The IHI Passport Program: The Quality Champions Improvement Toolkit As a Passport member,

The IHI Passport Program: The Quality Champions Improvement Toolkit As a Passport member,

The IHI Passport Program: The Quality Champions Improvement Toolkit As a Passport member, everyone in our organization can have access to Expeditions Leading Quality Improvement: Essentials for Managers Passport Members-Only

234 views • 10 slides
A Global Journey with Purdue Universitys Passport to Intercultural Learning Employees

A Global Journey with Purdue Universitys Passport to Intercultural Learning Employees

A Global Journey with Purdue Universitys Passport to Intercultural Learning Employees are looking to hire graduates with INTERCULTURAL KNOWLEDGE &amp; COMPETENCY ! Relevance E mployers of Purdue Graduates We live in a global

504 views • 34 slides
Traceability and Visibility Presented by: Guillaume Akbaraly 11 th Global Supply Chain and

Traceability and Visibility Presented by: Guillaume Akbaraly 11 th Global Supply Chain and

Presentation Title Supply Chain challenges in Healthcare: Traceability and Visibility Presented by: Guillaume Akbaraly 11 th Global Supply Chain and Logistics Summit 28 Nov 2018 www.sclgsummit.org What happening in the market 9 Feb 2011 11

430 views • 13 slides
On the Equivalence of Information Retrieval Methods for Automated Traceability Link Recovery

On the Equivalence of Information Retrieval Methods for Automated Traceability Link Recovery

On the Equivalence of Information Retrieval Methods for Automated Traceability Link Recovery Rocco Oliveto, Malcom Gethers, Denys Poshyvanyk , Andrea De Lucia Traceability Management Traceability... the ability to describe and follow

574 views • 23 slides
Asia Region Funds Passport Summary Context Comparison with other regional initiatives

Asia Region Funds Passport Summary Context Comparison with other regional initiatives

Introducing the framework for Asia Region Funds Passport Summary Context Comparison with other regional initiatives What is the Passport? Objectives Who regulates what? Other host economy laws and regulations Passport

149 views • 10 slides
Global Tuna Alliance Tuna 2020 Traceability Declaration Progress Report Illegal, Unreported and

Global Tuna Alliance Tuna 2020 Traceability Declaration Progress Report Illegal, Unreported and

Global Tuna Alliance Tuna 2020 Traceability Declaration Progress Report Illegal, Unreported and Unregulated Fishing (IUU) The estimated annual losses Almost 30% Up to 32% due to diversion of fish from the legitimate trade system is Of the

420 views • 38 slides
OMS OMS Passport Education Support Kitty Petty, M.A., M.Ed., LMHC Educational Consultant

OMS OMS Passport Education Support Kitty Petty, M.A., M.Ed., LMHC Educational Consultant

OMS OMS Passport Education Support Kitty Petty, M.A., M.Ed., LMHC Educational Consultant Neurology Department Boston Childrens Hospital OMS MEDICAL PASSPORT The purpose of a medical passport is to allow adolescents/young adults/adults

652 views • 24 slides
? ? Isotopes ... ? ? ? 1 29/07/2012 Analyses in Food Microbial Ecology Global Microbial

? ? Isotopes ... ? ? ? 1 29/07/2012 Analyses in Food Microbial Ecology Global Microbial

29/07/2012 Traceability of food commodities MICROBIAL ECOLOGY OF INDIGENOUS FRUITS IN RELATION Traceability of foods (fruits) is only documentary. In case of doubt or fraud, no standardized analysis makes it WITH GEOGRAPHICAL ORIGIN

876 views • 6 slides
WeClimbUK Passport Presentation &amp; discussion by the Project Board 27 th July 2019 Session

WeClimbUK Passport Presentation &amp; discussion by the Project Board 27 th July 2019 Session

WeClimbUK Passport Presentation &amp; discussion by the Project Board 27 th July 2019 Session objectives 1. Brief you on progress with the Passport The business case for such a scheme Our vision for the Passport Progress to

406 views • 28 slides
RecoveringTraceabilityLinks viaInforma7onRetrievalMethods

RecoveringTraceabilityLinks viaInforma7onRetrievalMethods

RecoveringTraceabilityLinks viaInforma7onRetrievalMethods ChallengesandOpportuni7es Dr.RoccoOliveto,Ph.D. DepartmentofMathemaFcsandInformaFcs, UniversityofSalerno

914 views • 53 slides
Towards Distributed Trustworthy Traceability and Accountability Jrn Erbguth a and Jean-Henry

Towards Distributed Trustworthy Traceability and Accountability Jrn Erbguth a and Jean-Henry

Towards Distributed Trustworthy Traceability and Accountability Jrn Erbguth a and Jean-Henry Morin a b a University of Geneva, CUI - ISS, 1227 Carouge, Switzerland Tel: +41 787256027, E-mail: erbguth@unige.ch - Tel: +41 22 379 02 55, E-mail:

177 views • 3 slides
White-Box Security Notions for Symmetric Encryption Schemes ee 1 ede Lepoint 1 , 2 C ecile

White-Box Security Notions for Symmetric Encryption Schemes ee 1 ede Lepoint 1 , 2 C ecile

White-Box Security Notions for Symmetric Encryption Schemes ee 1 ede Lepoint 1 , 2 C ecile Delerabl Tancr` Pascal Paillier 1 Matthieu Rivain 1 CryptoExperts 1 , erieure 2 Ecole Normale Sup SAC 2013 Outline 1 What is white-box

406 views • 38 slides
Strong Jump-Traceability The Computably Enumerable Case Peter Cholak University of Notre Dame

Strong Jump-Traceability The Computably Enumerable Case Peter Cholak University of Notre Dame

Will he finish in time? No way! Yes! Strong Jump-Traceability The Computably Enumerable Case Peter Cholak University of Notre Dame Department of Mathematics www.nd.edu/~cholak Supported by NSF Grant DMS 02-45167 (USA). Logic Colloquium 07

440 views • 9 slides
Non-Hamiltonian and Non-Traceable Regular 3-Connected Planar Graphs Nico Van Cleemput Carol T.

Non-Hamiltonian and Non-Traceable Regular 3-Connected Planar Graphs Nico Van Cleemput Carol T.

Introduction Quartic Quintic Conclusion Non-Hamiltonian and Non-Traceable Regular 3-Connected Planar Graphs Nico Van Cleemput Carol T. Zamfirescu Combinatorial Algorithms and Algorithmic Graph Theory Department of Applied Mathematics,

673 views • 40 slides
Scott Hebbard Scott Hebbard Communicatjons Manager at Sparx Systems Over 2 decades of

Scott Hebbard Scott Hebbard Communicatjons Manager at Sparx Systems Over 2 decades of

Scott Hebbard Scott Hebbard Communicatjons Manager at Sparx Systems Over 2 decades of experience in computjng and modeling Sparx Systems Sparx Systems Enterprise Architect: Commercially released in 2000 Based in Creswick, near

848 views • 53 slides
Comparison of complementary statistical analysis approaches in metabolomic food traceability Ral

Comparison of complementary statistical analysis approaches in metabolomic food traceability Ral

Comparison of complementary statistical analysis approaches in metabolomic food traceability Ral Gonzlez-Domnguez 1,2* , Ana Sayago 1,2 , ngeles Fernndez-Recamales 1,2 1 Department of Chemistry, Faculty of Experimental Sciences,

377 views • 13 slides
Improving Trace Accuracy through Data-Driven Configuration and Composition of Tracing Features

Improving Trace Accuracy through Data-Driven Configuration and Composition of Tracing Features

Improving Trace Accuracy through Data-Driven Configuration and Composition of Tracing Features Barleen Kaur COMP 762 What is traceability? Traces are navigable links between data held in software artifacts (like requirement document, design

757 views • 17 slides

More recommend