Updating childrens photos on passports
These standards intend interoperability between different countries and different manufacturers of passport books.Some national identity cards (for example in the Netherlands, Albania and Brazil) are fully ICAO9303 compliant biometric travel documents; however others, such as the United States Passport Card, are not.Privacy proponents in many countries question and protest the lack of information about exactly what the passports' chip will contain, and whether they impact civil liberties.The main problem they point out is that data on the passports can be transferred with wireless RFID technology, which can become a major vulnerability.BAC protects the communication channel between the chip and the reader by encrypting transmitted information.Before data can be read from a chip, the reader needs to provide a key which is derived from the Machine Readable Zone: the date of birth, the date of expiry and the document number.Using online flight booking sites, flight coupons and other public information it's possible to significantly reduce the number of possible keys.Laurie demonstrated the attack by reading the passport chip of a Daily Mail's reporter in its envelope without opening it.
Public key infrastructure (PKI) is used to authenticate the data stored electronically in the passport chip making it expensive and difficult to forge when all security mechanisms are fully and correctly implemented.
The digital signature is made using a document signing key which itself is signed by a country signing key. the picture) is changed, this can be detected since the hash value is incorrect.
Readers need access to all used public country keys to check whether the digital signature is generated by a trusted country. According to a September 2011 United States Central Intelligence Agency document released by Wikileaks in December 2014, "Although falsified e-passports will not have the correct digital signature, inspectors may not detect the fraud if the passports are from countries that do not participate in the International Civil Aviation Organization’s Public Key Directory (ICAO PKD).
Although this could allow ID-check computers to obtain a person's information without a physical connection, it may also allow anyone with the necessary equipment to perform the same task.
If the personal information and passport numbers on the chip are not encrypted, the information might wind up in the wrong hands.