Buffer Overflow Found in RFID Passport Readers 96
epee1221 writes "Wired ran a story describing Lukas Grunwald's Defcon talk on an attack on airport passport readers. After extracting data from the (read-only) chip in a legitimate passport, he placed a version of the data with an altered passport photo (JPEG2000 is used in these chips) into a writable chip. The altered photo created a buffer overflow in two RFID readers he tested, causing both to crash. Grunwald suggests that vendors are typically using off-the-shelf JPEG2000 libraries, which would make the vulnerability common."
Explain to me how... (Score:3, Funny)
Passport is scanned
Reader goes casters up
Reader is power cycled
Passport is scanned again
Reader goes casters up
Owner of said passport is hauled off to some secret room where all of their orifices are checked by an ex-prison guard with large hands.
This does show the lack of testing and hardening, but it seems a buffer overflow situation like this would be relatively easy to patch.
Re:Are borders are open! (Score:2, Funny)
Re:Explain to me how... (Score:2, Funny)
"..the Windows-based border-screening computer.." (Score:3, Funny)
FTFA: "If a reader could be compromised using Grunwald's technique, it might be reprogrammed to misreport an expired passport as a valid one, or even -- theoretically -- to attempt a compromise of the Windows-based border-screening computer to which it is connected."
That does it. From now on I'm only travelling to countries which use OpenBSD to operate their border gateway protocols.
And: "Additionally, the International Civil Aviation Organization recommends that issuing countries protect biometric data on the e-passport with an optional feature known as Extended Access Control, which protects the biometric data on the chip by making readers obtain a digital certificate from the country that issued the passport before the equipment can access the information."
Sounds like in the future, the only people who'll be able to traveler with any degree of success will be those who can forge their passports...
Re:Are borders are open! (Score:2, Funny)
Yes.
Re:Explain to me how... (Score:2, Funny)
Amsterdam, here we go!
Re:"..the Windows-based border-screening computer. (Score:3, Funny)
Re:Explain to me how... (Score:3, Funny)
Blackhat? No sir! I've just got an unfortunate face!"