RFID

RFID security questions raised

Smart-Card users’ information easy to reveal

Marina Ricci

Highlights

Thieves can read RFID-enabled credit cards from a 30 to 60 foot radius
RFID readers can take personal information off chips in a matter of seconds
RFID chips being used in passports in the UK

RFID-enabled credit cards are presenting a security breach and becoming prey to thieves who can steal the information from as far as a 30 to 60 foot radius. RFID has been around for some time and the frequency enabled broadcast chips have traditionally been used to track pets and retail goods, but most recently have been used to track people from the chips set inside credit cards, passports and even the human body. However, sophisticated thieves, equipped with a technologically advanced RFID reader, can take information off the chips in a matter of seconds.

American Express has assured their customers that the account numbers obtained by the reader are not the same as on the front of the card and can only be used for online purchases, not in-store. But, this is of little comfort to people who will be dealing with unauthorized purchases on their accounts later on.

The most eye-popping revelation, however, is that RFID chips are being used in passports, which contain some of the most critical and personal information about an individual. The UK has picked up on this passport trend, with other countries including the U.S., soon to follow suit. But users should beware that vendors have been popping up all over the internet, selling trackers that can scan RFID chips from as far as 30 feet away.

Solutions are not easy to come by in the RFID world because the whole point of RFID is to make it more convenient to store private information. Convenience is met with risk, however, and until security is developed on the RFID encryption method, those using RFID technology will be at risk of having their information security compromised without any contact. University of Virginia graduate student Karsten Nohl puts it best when he says, “From what we can see, RFID-enabled credit cards have no security (yet?), and hence there is nothing to compromise.”

Comments:

Lindsa, Home
2008 07 19

Pretty nice info, thanks for sharing.

Add Your Comment

Name: Company name:

Email:

(We will never sell your name or e-mail address to anyone)

Comment:

Remember my personal information
Notify me of follow-up comments?

Please enter the word you see in the image below:

		Organizational security
		Security via subscription a compelling option
		With increased visibility comes increased risk
		Achieving PCI DSS compliance
		Achieving organizational security and user nirvana with biometrics and other forms of strong authentication

		Facebook automates sensitive data identification in multi-database environment with dataguise dgdiscover
		Microsoft Windows Live ID Secures ISO/IEC 27001:2005 Certification
		Agiliance announces a Unified Privacy Management solution
		Radware upgrades DefensePro security solution to protect against high-volume cybercriminal activity
		Confidence in antivirus solutions so low 50% of survey respondents considering discontinuing use or expect for nearly free

		Is your mobile guru costing you money?
		Enterprise efficiency requires enterprise mobility
		New software applications extend the call center to mobile employees
		Mobile Caller ID bridges gap between sales team and potential clients
		How to plan a Mobile Enterprise Resource Planning network-part III

		iBooster cellular amplifier for the iPhone and Curve is now shipping from Wilson Electronics
		Telecom Lifecycle Management reduces global costs by 25%
		Infonetics Research: WiMAX growing in India, Russia, Brazil, driven by basic broadband needs and VoIP
		MEDL Mobile gives ordinary people around world an opportunity to become next iPhone success story
		CompanionLink desktop PC synchronization available for Palm Pre at launch

		Desktop virtualization powers offshore software development
		Virtualization: Defined-A Primer for the SMB Consultant
		Application performance in the virtualized data center
		Internet threat detection ‘in the cloud’
		Does the thought of going virtual spook you?

Security & Privacy

Simple file backup may not be enough for today’s business demands

Data Loss Prevention – not a panacea

Unified Business Comm.

How to make your social networking site work for you

Challenges IT organizations face as they attempt to manage growing field service mobility initiatives

Virtualization

Making your service management processes and solutions play in a virtual world

Is there an immediate return on investment in virtualization?

RFID

RFID and the web

Beyond RFID: Breaking down dedicated network silos with Unified Asset Visibility solutions

Green IT

Green is good

The paperless movement

IT Briefs

Electronic medical records

Using Workforce Automation as the method for Enterprise Architecture

Viewpoint

5 things organizations can do to prepare for the upturn

If It Ain’t Broke…

Partners

RFID

RFID security questions raised

Smart-Card users’ information easy to reveal

Marina Ricci

Highlights

Comments:

		TPI presents a white paper on security framework and best practices in offshore outsourcing
		Coming Soon!

		Podcast: ISaccountable on the critical management challenges of virtualizing server environments

		Voltaire presents a white paper on scaling-out Ethernet for the data center
		TPI presents a white paper on server virtualization: the new future for midrange implementation
		ISaccountable presents a white paper on chargeback in a virtualized world
		Reducing data center energy costs up to 50% by consolidating and virtualizing your network

		Asigra partners with Hitachi Data Systems to bring high-throughput cloud backup and recovery to the midmarket
		SMBVirtualization.net secures Ryan Morris from IPED to lead discussion about the future of IT delivery
		Economic conditions accelerate consolidation’s dampening of server hardware demand
		Asigra launches hybrid cloud backup with industry firsts in automation, security and efficiency that allow IT focus on strategic projects
		NComputing partners with new United Nations program to provide computing access to schools in developing nations

		Canada introduces RFID into biking
		Blood supply tracking
		RFID security questions raised
		Credit card chips embedded into the human body

		RFID Journal Live! Orlando 2010, Orlando, Florida, April 14-16, 2010

		Diamond Management and Technology Consultants presents a white paper on RFID’s long-term potential

		San Joaquin Community Hospital selects Skytron, powered by Awarepoint, for their RTLS enterprise-wide asset tracking solution
		Alien Technology® secures RFID garment tracking application with G&P Net of Italy
		Reva Systems extends the reach of healthcare tracking systems
		Arada Systems announces complete WLAN-based RFID solution featuring Atheros ROCm technology
		Companies significantly improve productivity, user satisfaction and “time to information” with RFID

		The Ontario Government takes control of their e-waste
		Report: Security tops green among e-waste concerns
		Going "green" with electronic data capture
		When the economy looks gray, it is time to go green
		Redemtech has a zero tolerance policy for e-waste

		Octus Energy announces the Octus Smart Energy Alliance
		Triple Point launches new product for emissions trading and management
		Cisco study finds telecommuting significantly increases employee productivity, work-life flexibility and job satisfaction
		Integration of PeopleCube’s Resource Scheduler with Tandberg Management Suite
		Leading Chinese PC company and NComputing partner to bring sub-$150 computing to governments and educational institutions

		Why are my backups still killing me?
		Transparency: It is about the data - the quality of the data
		The importance of the sales engineer in growing an IT services practice
		The influence of globalization on information technology
		The Bi-Lingual Advantage in IT

		The changing roles of the CFO and CIO for greater business agility in a turbulent economy
		Sustainable technology is the key to reviving the automotive industry
		The mouse for the business user review
		Greenwashing: Don’t be mislead by green claims
		Technology businesses find innovative way to succeed amidst economic uncertainty

Security & Privacy

Unified Business Comm.

Virtualization

RFID

Green IT

IT Briefs

Viewpoint

Partners

RFID

RFID security questions raised

Smart-Card users’ information easy to reveal

Marina Ricci

Highlights

Comments:

Sign up for our monthly newsletter:

Sign up for our
monthly newsletter: