Close this Advertisement

What is your e-mail address?
My e-mail address is:

Do you have a password?
Forgot your password? Click here
close

EmbedEmbed

Does RFID present privacy risks?

  • May 05, 2009

Radio frequency identification technology is becoming increasingly common and sophisticated. But some worry that it's also increasingly susceptible to hackers, who could steal personal information during seemingly innocuous transactions such as credit-card payments and the use of RFID-enabled passports, according to a Boston Globe article.

Nicole Ozer, technology and civil liberties policy director at the American Civil Liberties Union of Northern California, told the Globe that an RFID-enabled passport issued by the Homeland Security and State departments, called a U.S. Passport Card, is vulnerable to wireless attacks.

Americans can use the Passport Card instead of a traditional passport to enter the United States from Mexico and Canada by land or from the Caribbean region and Bermuda by sea, according to the article. The card's RFID chip contains a number that corresponds to the bearer's photo and other personal information in a government database.

"The new tags have extreme read ranges," Ozer said. "They can be read up to 30 feet away, and copied and cloned, without people ever knowing."

However, some experts say there is no significant problem with RFID. In InformationWeek's Global CIO blog, Bob Evans, the publication's senior vice president, referred to such fears as paranoia.

"In a world jammed with surveillance cameras, cell phone cameras and imminent smart-grid brains that will scold you for using more electricity than some bureaucrat thinks you should, this paranoia over RFID goes beyond silly to absurd," Evans wrote.

He is particularly critical of legislative efforts to address a problem that he considers minor. He cited a report in Supply Chain Digest that summarized a proposed federal law regarding the use of RFID at retail stores. At one point, the bill would have required that customers give explicit consent to allow a store or government agency to use an RFID reader on items the person was buying. Since then, it's been amended to allow stores or agencies to read the tags they put on items but not tags put there by others.

"So the federal legislation will allow retailers to read RFID tags that they have put on items — now there's a productivity enhancement we can all look forward to!" Evans wrote.

Related Articles

Reader comments

Tue, May 26, 2009 PH

If someone is carrying a unique id around, such as in a driver's license, then it does not matter that the personal data is stored elsewhere. Once a reader - at say a retail store - determines who the person is by an associated purchase or action, they can forever identify you. All you need to do is pass through the doors or walk around the shop. The convenience store knows when you went by outside the store. The state park system could know when you came by for lunch. The bank knows when you walk by any one of their atms. Your neighbors know when you come and go from your home. And so on...

Wed, May 6, 2009 Kevin MD

Interesting that he only addresses the absurdity of a criminal standing outside of someones house waving an RFID reader waiting to pick up something. The main privacy problem is in being able to read and copy data from someone's passport card or other personally identifying documentation. I am more concerned with that than with someone reading the information from a store tag where I bought a computer. (and I break the box into smaller parts so they can't be seen). Thirty feet to read a passport card is way too much. The distance should be less than three feet in my opinion. The smaller the distance, the less chance of someone skimming the data.

Tue, May 5, 2009 Steve

The Supply Chain Digest article you reference does not mention any Federal legislation as you state. It does talk about Washington state legislation. But to my knowledge, there is no proposed Federal legislation which require consumers to opt-in to having RFID tags read.

Please post your comments here. Comments are moderated, so they may not appear immediately after submitting. We will not post comments that we consider abusive or off-topic.

Your Name:(optional)
Your Email:(optional)
Your Location:(optional)
Comment:
Please type the letters/numbers you see above

Related Webcasts

Related White Papers

Related Podcasts

Related Resources

Editorial Webcasts

  • Desktop Virtualization: Better Management with Smaller Budgets Register Now

    This webcast will explore the benefits of desktop virtualization, and how the innovative technology can help agencies lower the cost of their IT infrastructure, improve end-user performance, while enabling a mobile workforce. A government expert will share real-life case studies of leveraging desktop virtualization solutions to enable secure telework policies, organization-wide IT infrastructure standards and extend the life of current hardware assets - Register Now!! Read more

More Editorial Webcasts

Federal Computer Week eNewsletters

  • Subscribe to Newsletters Subscribe

    Federal Computer Week's eNewsletters deliver the latest policy and management news to your inbox.