Redacted RFID talk delivered at Black Hat

by Joris Evers February 28, 2007 12:40 PM PST

ARLINGTON, Va.--A security researcher on Wednesday delivered a redacted version of a presentation on RFID risks.

The talk at the Black Hat DC conference here was cancelled on Tuesday and was to be replaced with a presentation by the American Civil Liberties Union. However, Chris Paget, director of research and development with IOActive, got on stage anyway and delivered a modified version of his planned talk.

IOActive had originally withdrawn the presentation citing a legal threat from HID Global, a major seller of access systems.

Paget instead removed a slide that listed specifications of a particular RFID tag implementation from HID Global. He also did not demonstrate a handheld RFID tag cloner, which was originally planned.

Paget also displayed quotes from its correspondence with HID Global to show that the company was indeed threatened. HID Global on Tuesday issued a statement to the media stating that it had done no such thing and that it was surprised that IOActive had pulled its talk.

The IOActive presentation ultimately did highlight some weaknesses of RFID tags, but without many details on how the tags could be cloned.

The concept behind IOActive's presentation is not new. RFID security is regularly scrutinized. In fact, at last year's Black Hat Briefings in Las Vegas, a German security researcher showed how passports equipped with the radio tags could be cloned. The same researcher said this could also be done with building access cards.

Inside CNET News

1-2 of 12

Scroll Left Scroll Right

Googleplex expansion to include 'Experience Center,' test labs
Web giant is spending $120 million to beef up its Mountain View, Calif., headquarters, according to filings with the city reviewed by the San Jose Mercury News.

Cutting Edge
Video game Spacewar reborn at 50 (photos)
Gallery
Litigation lunacy: Silicon Valley's lost its collective mind
The dreary details differ, but the same theme informs--we're good, they're bad, and dear judge: would you please kneecap these guys for us?

News Blogs
SNL laughs at Verizon confusing 'old people'
To LTE or not to LTE? Verizon mocks Verizon's ad that make no sense whatsoever to real, forlorn human beings.

Technically Incorrect
Tips for keeping your browsing private
Video
Reddit bans sexually suggestive images of children
In response to a wave of criticism, the popular social news site announced it would ban sections that focus on the sexualization of children.

Digital Media
Ethical manufacturing petition delivered to San Francisco Apple Store
Video
Tor anonymity project looks to help Iranians sidestep Net ban
Tor's "obfsproxy" technology would make encrypted data look innocuous and let it dodge government censors. That could help citizens in Iran reach blocked sites as antigovernment protests reportedly loom.

Politics and Law
Seminal computer video game Spacewar lives again
MIT creates a simulation to celebrate the 50th anniversary of Spacewar. A relic of the early days of minicomputers, it was one of the first computer video games and set the stage for many others, including Asteroids.

Cutting Edge
Top-rated reviews of the week (photos)
Gallery
The pool table that levels itself in rough seas
A pool table on a cruise ship is gyroscopically controlled so that it moves with the waves and the balls don't slide at all.

Technically Incorrect
Around the world in a solar car
In a two-seater electric car powered only by the sun, a team of German students plan to circumnavigate the world.

The Car Tech blog

Redacted RFID talk delivered at Black Hat

Inside CNET News

CNET Blogs

Discussions

Shared

About News Blogs

RSS

my Yahoo

Google

MSN

Topics

CNET on the Go

Like Us / Follow Us