SecureRF's IoT Security Blog

Articles related to IoT security and privacy solutions for NFC, RFID, embedded systems and other low-resource computing devices, keeping products smart and secure in the Internet of Things.

Fear and security concerns bring out the media, security solutions don’t.

Published July 24, 2009 by SecureRF in Hacks, Passport Cards, RFID, RFID Security Alliance, RFID Tag, Security

Contributed by Joanne C. Kelleher Last week I wrote blog entries about two very different types of RFID stories. It has been interesting to see the follow up on each. #1 – BRIDGE paper on RFID Tag Security This week RFID Journal did a nice article about BRIDGE’s work: BRIDGE Researchers Demo Highly Secure EPC Gen 2 RFID – “The group says its prototype shows it […]


Privacy More Then Security Is In the News

Published June 5, 2009 by SecureRF in Homeland Security, Passport Cards, Privacy, RFID, RFID Technology, Security

Contributed by Joanne C. Kelleher I try to contribute to the RFID Security blog every week. Today is Friday and I realized it has been over 2 weeks since my last entry. Why? Recently the news from the RFID industry has been slow and kind of boring (or for some, depressing) while the topic of cybersecurity has been hot. Here are a few topics that […]


Talking about Privacy Issues

Published February 20, 2009 by SecureRF in Legislation, Passport Cards, Privacy, RFID, RFID Security Alliance, RFID Technology, Security

Contributed by Joanne C. Kelleher The February issue of RFID Monthly, published by Reik Read of Robert W. Baird & Co., has an article called Privacy Stakes Raised, which first discusses Chris Paget’s recent efforts to collect the serial numbers from passport cards and electronic driver’s licenses in downtown San Francisco. For details on this see Got $250? Cloning Electronic Passport Cards. The article concludes […]


Not really cloning…

Published February 12, 2009 by SecureRF in Hacks, Passport Cards, Passports, Privacy, RFID, RFID Technology, Security, Smart Card Alliance

Contributed by Joanne C. Kelleher Last week, in Got $250? Cloning Electronic Passport Cards I discussed the presentation that security researcher Chris Paget planned to give at the Shmoocon hacker convention. The description of his talk says $250 on eBay buys the necessary kit to clone the Electronic Drivers License and US Passport Card… These two cards use unsecured EPC Gen 2 RFID technology. In […]


Got $250? Cloning Electronic Passport Cards

Published February 4, 2009 by SecureRF in Hacks, Passport Cards, RFID, RSA, State Department

Contributed by Joanne C. Kelleher Security researcher Chris Paget has developed a way to secretly sniff and clone electronic passport cards from 30 feet away with a used RFID reader from eBay. His efforts build off the work of researchers at the University of Washington and RSA, which last year found weaknesses in US passport cards and enhanced drivers’ licenses. See No Surprise: Border-Crossing Cards […]


A New Year, An Old Story

Published January 7, 2009 by SecureRF in Hacks, Homeland Security, Passport Cards, RFID, RFID Technology, Security

Contributed by Joanne C. Kelleher The January/February 2009 issue of Technology Review, Published by MIT included this article – RFID’s Security Problem: Are U.S. passport cards and new state driver’s licenses with RFID truly secure? Since this is an MIT publication and I know this institution has researchers and alumni involved in the field of RFID security, I was looking forward to an in-depth investigation […]


RFID in fiction: The Traveler

Published October 31, 2008 by SecureRF in Passport Cards, Privacy, RFID, RFID Technology

Contributed by Joanne C. Kelleher The commute to my (not at home) office is long enough that listening to the radio gets old so I have been raiding the book on cd shelf at the local library. As you can imagine, the number of audio books is much smaller then the old fashioned kind but as a result, I have been selecting everything that sounds […]


No Surprise: Border-Crossing Cards Can Be Copied

Published October 24, 2008 by SecureRF in Cryptography, Hacks, Homeland Security, Passport Cards, Privacy, RFID, RFID Tag, RFID Technology, RSA, Security

Contributed by Joanne C. Kelleher The Wall Street Journal posted an article called Border-Crossing Cards Can Be Copied.  It is based on a paper (EPC RFID Tags in Security Applications: Passport Cards, Enhanced Drivers Licenses, and Beyond) and set of FAQ that have been posted on the website of RSA Laboratories, a division of EMC Corp. Researchers at the University of Washington and RSA examined […]


RFID slips out of top 5 security threats

Published October 17, 2008 by SecureRF in Hacks, Passports, RFID, RFID Security Alliance, RFID Technology, Security

Contributed by Joanne C. Kelleher This week The Georgia Tech Information Security Center (GTISC) hosted its annual summit on emerging security threats and countermeasures affecting the digital world. For the second year in a row they have issued a report of those security threats expected to increase and evolve. Last year’s threats were: Web 2.0 and client-side attacks Targeted messaging attacks Botnets Threats targeting mobile convergence […]


Poor Implementation of e-Passport Security Features

Published October 3, 2008 by SecureRF in Hacks, Passports, RFID, RFID Tag, RFID Technology, Security

Contributed by Joanne C. Kelleher This week THC (The Hackers Choice) released a video and a tool to backup data from the ePassport. The tool also allows you to create a clone of the ePassport chip. http://freeworld.thc.org/thc-epassport/ In tests for The Times (UK), Jeroen van Beek, a security researcher at the University of Amsterdam who is involved in THC, cloned the chips on two British […]


Search SecureRF