SecureRF's IoT Security Blog

Articles related to IoT security and privacy solutions for NFC, RFID, embedded systems and other low-resource computing devices, keeping products smart and secure in the Internet of Things.

Fear and security concerns bring out the media, security solutions don’t.

Published July 24, 2009 by SecureRF in Hacks, Passport Cards, RFID, RFID Security Alliance, RFID Tag, Security

Contributed by Joanne C. Kelleher Last week I wrote blog entries about two very different types of RFID stories. It has been interesting to see the follow up on each. #1 – BRIDGE paper on RFID Tag Security This week RFID Journal did a nice article about BRIDGE’s work: BRIDGE Researchers Demo Highly Secure EPC Gen 2 RFID – “The group says its prototype shows it […]


Privacy More Then Security Is In the News

Published June 5, 2009 by SecureRF in Homeland Security, Passport Cards, Privacy, RFID, RFID Technology, Security

Contributed by Joanne C. Kelleher I try to contribute to the RFID Security blog every week. Today is Friday and I realized it has been over 2 weeks since my last entry. Why? Recently the news from the RFID industry has been slow and kind of boring (or for some, depressing) while the topic of cybersecurity has been hot. Here are a few topics that […]


Talking about Privacy Issues

Published February 20, 2009 by SecureRF in Legislation, Passport Cards, Privacy, RFID, RFID Security Alliance, RFID Technology, Security

Contributed by Joanne C. Kelleher The February issue of RFID Monthly, published by Reik Read of Robert W. Baird & Co., has an article called Privacy Stakes Raised, which first discusses Chris Paget’s recent efforts to collect the serial numbers from passport cards and electronic driver’s licenses in downtown San Francisco. For details on this see Got $250? Cloning Electronic Passport Cards. The article concludes […]


Not really cloning…

Published February 12, 2009 by SecureRF in Hacks, Passport Cards, Passports, Privacy, RFID, RFID Technology, Security, Smart Card Alliance

Contributed by Joanne C. Kelleher Last week, in Got $250? Cloning Electronic Passport Cards I discussed the presentation that security researcher Chris Paget planned to give at the Shmoocon hacker convention. The description of his talk says $250 on eBay buys the necessary kit to clone the Electronic Drivers License and US Passport Card… These two cards use unsecured EPC Gen 2 RFID technology. In […]


Got $250? Cloning Electronic Passport Cards

Published February 4, 2009 by SecureRF in Hacks, Passport Cards, RFID, RSA, State Department

Contributed by Joanne C. Kelleher Security researcher Chris Paget has developed a way to secretly sniff and clone electronic passport cards from 30 feet away with a used RFID reader from eBay. His efforts build off the work of researchers at the University of Washington and RSA, which last year found weaknesses in US passport cards and enhanced drivers’ licenses. See No Surprise: Border-Crossing Cards […]


A New Year, An Old Story

Published January 7, 2009 by SecureRF in Hacks, Homeland Security, Passport Cards, RFID, RFID Technology, Security

Contributed by Joanne C. Kelleher The January/February 2009 issue of Technology Review, Published by MIT included this article – RFID’s Security Problem: Are U.S. passport cards and new state driver’s licenses with RFID truly secure? Since this is an MIT publication and I know this institution has researchers and alumni involved in the field of RFID security, I was looking forward to an in-depth investigation […]


RFID in fiction: The Traveler

Published October 31, 2008 by SecureRF in Passport Cards, Privacy, RFID, RFID Technology

Contributed by Joanne C. Kelleher The commute to my (not at home) office is long enough that listening to the radio gets old so I have been raiding the book on cd shelf at the local library. As you can imagine, the number of audio books is much smaller then the old fashioned kind but as a result, I have been selecting everything that sounds […]


No Surprise: Border-Crossing Cards Can Be Copied

Published October 24, 2008 by SecureRF in Cryptography, Hacks, Homeland Security, Passport Cards, Privacy, RFID, RFID Tag, RFID Technology, RSA, Security

Contributed by Joanne C. Kelleher The Wall Street Journal posted an article called Border-Crossing Cards Can Be Copied.  It is based on a paper (EPC RFID Tags in Security Applications: Passport Cards, Enhanced Drivers Licenses, and Beyond) and set of FAQ that have been posted on the website of RSA Laboratories, a division of EMC Corp. Researchers at the University of Washington and RSA examined […]


Briefing on Federal RFID-Enabled Documents

Published July 31, 2008 by SecureRF in Homeland Security, Passport Cards, Passports, Privacy, RFID, RFID Tag, RFID Technology, Security, State Department

Contributed by Joanne C. Kelleher I found a briefing from The Center for Democracy and Technology (CDT) called Security and Privacy Issues Associated With Federal RFID-Enabled Documents. The CDT is a non-profit public policy organization dedicated to promoting the democratic potential of today’s open, decentralized global Internet. Our mission is to conceptualize, develop, and implement public policies to preserve and enhance free expression, privacy, open […]


Consumers Misunderstand How RFID Works

Published April 23, 2008 by SecureRF in Passport Cards, Privacy, RFID, RFID Tag, RFID Technology, Security, Smart card, Smart Card Alliance

Contributed by Joanne C. Kelleher A new paper from researchers at the University of California, Berkeley says that consumers have misunderstandings about how RFID works and the security issues related to the technology. The report, Where’s The Beep?: Security, Privacy, and User Misunderstandings of RFID, issued by researchers Jennifer King and Andrew McDiarmid, focused on RFID-enabled passports, transit passes, and credit cards. The researches issued […]


Search SecureRF