Basic access control: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 03:17, 13 April 2024 edit 136.24.230.65 (talk) add apostrophe ← Previous edit		Latest revision as of 18:48, 15 June 2025 edit undo Chris the speller (talk \| contribs) Autopatrolled, Extended confirmed users, Pending changes reviewers 894,195 edits m →Security: replaced: specially-designed → specially designed Tag: AWB
(4 intermediate revisions by 3 users not shown)
Line 1: '''Basic access control''' ('''BAC''') is a mechanism specified to ensure only authorized parties<ref>{{cite web \|url=https://www.icao.int/publications/pages/publication.aspx?docnum=9303 \|title=ICAO Document 9303, Part 1 \|format=PDF \|accessdate=2023-04-12 }}{{cbignore\|bot=medic}}</ref> can wirelessly read personal information from [[passport]]s with an [[RFID]] chip. It uses data such as the passport number, date of birth and expiration date to negotiate a session key. This key can then be used to encrypt the communication between the passport's chip and a reading device. This mechanism is intended to ensure that the owner of a passport can decide who can read the electronic contents of the passport. This mechanism was first introduced into the German passport on 1 November 2005 and is now also used in many other countries (e.g., [[United States passport]]s since August 2007).<ref>[https://travel.state.gov/passport/eppt/eppt_2788.html#Eleven ] {{webarchive \|url=https://web.archive.org/web/20071230072602/http://travel.state.gov/passport/eppt/eppt_2788.html#Eleven \|date=December 30, 2007 }}</ref> == Inner workings == Line 9: There is a replay attack against the basic access control protocol that allows an individual passport to be traced.<ref>{{cite web\|last=Goodin \|first=Dan \|url=https://www.theregister.co.uk/2010/01/26/epassport_rfid_weakness/ \|title=Defects in e-passports allow real-time tracking, The Register, Dan Goodin, 26th Jan 2010 \|publisher=Theregister.co.uk \|date=2010-01-26 \|accessdate=2012-01-15}}</ref><ref>{{cite web\|url=http://www.cs.bham.ac.uk/~tpc/Papers/PassportTrace.pdf \|title=A Traceability Attack Against e-Passports, Tom Chothia and Vitaliy Smirnov, 14th International Conference on Financial Cryptography and Data Security 2010 \|format=PDF \|date= \|accessdate=2012-01-15}}</ref> The attack is based on being able to distinguish a failed nonce check from a failed MAC check and works against passports with randomized unique identifiers and hard to guess keys. The basic access control mechanism has been criticized as offering too little protection from unauthorized interception. Researchers claim <ref>{{cite web\|last=Hancke\|first=Gerhard\|url=http://www.rfidblog.org.uk/Hancke-IEEESP-RFIDPracAttacks.pdf \|title=Practical Attacks on Proximity Identification Systems (Short Paper), Security and Privacy, 2006 IEEE Symposium on, Gerhard Hancke, 10 April 2012 \|publisher=Security and Privacy, 2006 IEEE Symposium on \|date=2006 \|accessdate=2012-05-10}}</ref> that because there are only limited numbers of passport issued, many theoretically possible passport numbers will not be in use in practice. The limited range of human age ranges further reduce the space of possibilities. In other words, the data used as an encryption key has low [[entropy]], meaning that guessing the session key is possible via a modest [[brute force attack]]. This effect increases when passport numbers are issued sequentially or contain a redundant [[checksum]]. Both are proven to be the case in passports issued by the [[Netherlands]] .{{Citation needed\|date=July 2015}}. There are other factors that can be potentially used to speed up a brute force attack. There is the fact that dates of birth are typically not distributed randomly in populations. Dates of birth may be distributed even less randomly for the segments of a population that pass, for example, a check-in desk at an airport. And the fact that passports are often not issued on all days of the week and during all weeks of a year. Therefore, not all theoretically possible expiration dates may get used. In addition, the fact that real existing dates are used further limits the number of possible combinations: The month makes up two of the digits used for generating the key. Usually, two digits would mean 100 (00−99) combinations in decimal code or (36×36=1296) combinations in alphanumeric code. But as there are only 12 months, there are only 12 combinations. It is the same with the day (two digits and 31 combinations or less, depending on the month). The [[German passport]] serial-number format (previously 10-digit, all-numeric, sequentially assigned) was modified on 1 November 2007, in response to concerns about the low entropy of BAC session keys. The new 10-character serial number is alphanumeric and generated with the help of a specially- designed [[block cipher]], to avoid a recognizable relationship with the expiry date and increase entropy. In addition, a public-key based [[extended access control]] mechanism is now used to protect any information in the RFID chip that goes beyond the minimum ICAO requirements, in particular fingerprint images. == See also == Line 28: ==External links== *[~~http~~https://www.nbcnews.com/id/~~23736254~~wbna23736254 2 fired over Obama passport breach] [[NBC]] March 20, 2008 [[Category:Passports]]