Bordering on crazy?
By davebirch posted Aug 31 2007 at 6:53 PMsaves you approximately half a second in the border-control process [but] open a potential security hole.The hole is that the border control systems have to store certificates (with the public keys that are needed to check the signatures on passports) that are pre-verified, so if the bad guys can get their certificates into the system, their (bent) passports will be accepted as real. There is a proposal floating around to implement a more sophisticated PKD (with cross-certification, so that countries could check the signatures on other country's certificates) but that means a more complicated structure. I'm not sure this is the kind of interoperability that should be a goal for other sectors.
Technorati Tags: fraud, identity, interoperability, passport, PKI