Tool to backup, modify and clone ePassport released
Peter Tomlinson
ukcrypto at chiark.greenend.org.uk
Sat, 04 Oct 2008 11:40:16 +0100
steve wrote:
> Hi,
>
> Ian, your are argueing about 'the secrecy of your data' but the real
> problem is somewhere else. It is your choice how public you want to make
> your data or not. Other folks might not want to be as 'open' as you are.
>
> This is your choice and it's your responsibility.
>
> The problem with rfid and epassport is that it is no longer your choice.
> It's the choice of the attacker as you are forced to use the epassport
> and can not prevent others from reading your data.
>
> If you are not worried about someone stealing your data because your
> data is public already (other people might have a different opinion on
> this) then consider that somebody can track you: Anyone
> can read the epassport info without any authentication required. This
> means someone can tell when you enter which building or what shop or
> who you meet or sit at the same table with.
>
> And let's not forget with all the other issues with the epassport,
> including people using your credentials to authenticate themself
> (forging of epassports), ...
>
> The real question is:
I'm deviating from Steve's real question in order to point you to Dan
Solove http://docs.law.gwu.edu/facweb/dsolove/
and in particular his article ""I've Got Nothing to Hide" and Other
Misunderstandings of Privacy" which is downloadable free if you
register. He argues that we need privacy, whether or not we have
anything to hide: "In this essay, Solove critiques the nothing to hide
argument and exposes its faulty underpinnings."
Peter