Is it safe to show a biometric passport to a third party?
score:8
The RFID chip in a biometric passport can be convinced to communicate all the data stored therein if the right keys are provided to it. Note it’s not a matter of downloading encrypted data from the chip and then having a go at it with decryption tools of some kind; the communication with the chip is bi-directional and authentication has to be provided first.
The core data such as name and the photograph are secured by Basic Access Control, where the key can be derived from machine readable data visible on the passport itself. In essence, after viewing the passport, it’s possible to download the same data you’ve just seen, plus the digital signature of the issuing authority confirming it’s genuine.
There’s also Extended Access Control, where the idea is that more sensitive data such as fingerprints is protected by keys that the issuing authority only provides to parties such as other countries’ immigration departments.
Thus any random person who knows the document number, the owner’s birth date and the passport’s expiry date (that’s what comprises the BAC key) can use this to read basic data and download the photo (there are multiple Android apps that do just this), while it’s not possible to take a powerful scanner to an airport and load lots of passports of passers-by. Downloading the fingerprints and other such data requires special keys which are, in theory, distributed by some secure channels among proper authorities. I’ve heard, without proof, that this process involves many hurdles and my country (Ukraine) simply hasn’t shared such keys with any other countries.
Upvote:1
The data on your passport chip is encrypted, but the encryption key is the machine-readable data on the personal data page (see e.g. this slide deck from ICAO). So it is useless if someone just reads the chip alone, but if they also can see the personal data page, then they can also decrypt the contents of the chip. There are Android apps which can read the passport chip, and require you to scan the data page with the camera, then read the chip with the phone's NFC reader. It will be very obvious if someone is doing this to your passport.
More post
- 📝 Where can one rent rain boots in Uyuni?
- 📝 Getting from NYC to NC on trip to the US
- 📝 Goods from Germany, sent to U.K. address, VAT refund when leaving EU with them
- 📝 Traveling with an emergency travel document
- 📝 France visa for one day
- 📝 Carry-on liquids in toiletry bag (not clear ziplock)?
- 📝 Importing a projector to the US from Germany
- 📝 UK visitor visa question about EEA
- 📝 Beef jerky to Israel
- 📝 Non-EU drivers license in the EU (ie. Spain)
- 📝 Lufthansa and transfer to flight on Sun Express
- 📝 After an earlier US overstay, I was denied entry to the US; can this be reversed?
- 📝 Why does my Deutsche Bahn ticket have a different number and time?
- 📝 Do the intra-Schengen border controls at Euroairport have a set duration?
- 📝 Credit Card Trip Delay/Interruption Insurance
- 📝 Overnight connection at Delhi airport on separate tickets. Can we enter the secure area early if our bags are checked through?
- 📝 Travelling from India to Hawaii
- 📝 Schengen Visa number of entries
- 📝 Philippine Airlines - power supply in economy
- 📝 Freighter Travel for Vegetarians
- 📝 Finding a list of agriculture unique to Catalina Island
- 📝 Layover in CDG, traveling from India to US during COVID
- 📝 Transit Visa for a Ukrainian at Oman Airport
- 📝 Traveler's Century Club: Something similar just for Europe?
- 📝 If I have Schengen visa, can I enter Schengen area from different country?
- 📝 Can I be in transit in Athens for 24 h without transit visa?
- 📝 What is typical buy/sell spread in cash exchange booths for EUR, USD in Serbia?
- 📝 DS 160 form for non-immigrant visa application
- 📝 Minimum connecting time
- 📝 Last name typo on a Saudia Airlines flight from Bangalore BLR to Los Angeles LAX
Source: stackoverflow.com
Search Posts
Related post
- 📝 Is it safe to show a biometric passport to a third party?
- 📝 Should I avoid providing a copy of my passport to a third party to secure a visa to travel to Russia for a conference?
- 📝 Visiting Germany with Ukrainian biometric passport
- 📝 Will my biometric passport still work if I don't have any data stored on the chip?
- 📝 Is it safe to forward airplane ticket to third party?
- 📝 Which passport to present to a third EU country's immigration if you have two EU nationalities?
- 📝 When I enter the US, should I show my old or new passport to the US immigration? Or does the US immigration only look at my US green card?
- 📝 Can an Australian passport holder travel through New Zealand to a third country without an exemption?
- 📝 How long can I stay in Panama? Passport stamp does not show a number of days
- 📝 Do I have to show passport to board an international flight?
- 📝 What is a safe way to carry money and passport at night?
- 📝 Bulgarian blue card and Ukrainian biometric passport
- 📝 U.S. B visa denied under 214(b) in the past, income improved, European passport may show stronger ties?
- 📝 Can a Non-EEA passport holder with a Biometric Residence Permit (BRP), who accompany EEA family, join the EEA queue at UK borders?
- 📝 Does the negative PCR test 'EU list of safe countries' exemption apply to travellers with a layover in a third country?
- 📝 Why doesn't my passport show if a foreign country has banned me?
- 📝 Third Party Transit Insurance - Aussie Registered Car Travelling Via Singapore, Malaysia Into Thailand
- 📝 Car rental insurance third party liability vs third party damages
- 📝 Dual US/UK citizen. Will this show when my UK passport is scanned in America?
- 📝 Do I need to show my passport when I leave the UK?
- 📝 Booked with third party - How do I get my flights back?
- 📝 Round-trip flight with different airlines booked via third party - when is each airline paid?
- 📝 Does booking flights on a third party website produce a single PNR?
- 📝 Is it safe for someone with a British Passport to drive from the UK around the Black Sea and back?
- 📝 Travelling within and outside of Schengen with Italian Ricevuta + biometric passport (visa free)
- 📝 If a French citizen enters Kosovo from Montenegro, Albania or North Macedonia using their French passport, will their passport show their Kosovo entry
- 📝 Third party issued a wrong ticket
- 📝 Do I need to update my Australian student visa to show my new passport details?
- 📝 Can I buy in Japan expensive thing and transfer it to third party country through South Korea without paying taxes in Korea?
- 📝 US/CAN Dual Citizen - travelling to third country from Canada with US layover - which passport to use?