{"id":767,"date":"2015-11-08T13:07:46","date_gmt":"2015-11-08T13:07:46","guid":{"rendered":"http:\/\/nethemba.com\/cs\/o-nas\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/"},"modified":"2019-08-07T13:26:25","modified_gmt":"2019-08-07T12:26:25","slug":"public-security-analysis-of-slovak-biometric-passports","status":"publish","type":"page","link":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/","title":{"rendered":"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu"},"content":{"rendered":"<h3 lang=\"cs-CZ\">(st\u00e1le prob\u00edh\u00e1 &#8211; v p\u0159\u00edpad\u011b, \u017ee n\u00e1m dok\u00e1\u017eete pomoct, <a href=\"https:\/\/nethemba.com\/cs\/kontakt\/\">nev\u00e1hejte n\u00e1s kontaktovat<\/a>)<\/h3>\n<p lang=\"cs-CZ\">Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. Pas je mo\u017en\u00e9 na\u010d\u00edst libovolnou ISO14443A RFID \u010dte\u010dkou (pro n\u00e1\u0161 experiment jsme pou\u017eili levnou <a href=\"http:\/\/www.touchatag.com\/\">touchatag \u010dte\u010dku<\/a>, kterou je mo\u017en\u00e9 <a href=\"http:\/\/www.touchatag.com\/e-store\">zakoupit<\/a> za 30 \u20ac).<br \/>\nNa na\u010dten\u00ed je pot\u0159ebn\u00fd <a href=\"http:\/\/en.wikipedia.org\/wiki\/Machine-readable_passport\">MRZ k\u00f3d<\/a>, kter\u00fd je uveden na p\u0159edposledn\u00ed stran\u011b pasu. MRZ se skl\u00e1d\u00e1 prim\u00e1rn\u011b z \u010d\u00edsla pasu, datumu narozen\u00ed a datumu expirace pasu. Na z\u00e1klad\u011b osobn\u00edch \u00fadaj\u016f lze MRZ <a href=\"http:\/\/www.highprogrammer.com\/cgi-bin\/uniqueid\/mrzp\">i vypo\u010d\u00edtat<\/a>. Se znalost\u00ed MRZ k\u00f3du je mo\u017en\u00e9 z pasu na\u010d\u00edst:<\/p>\n<ul>\n<li>v\u0161echny osobn\u00ed data uveden\u00e9 v pase (EF.DG1)<\/li>\n<li>fotografii vlastn\u00edka (ulo\u017eenou v\u00a0JPEG) (EF.DG2)<\/li>\n<\/ul>\n<p lang=\"cs-CZ\">MRZ k\u00f3d ale nesta\u010d\u00ed na na\u010dten\u00ed:<\/p>\n<ul>\n<li>otisku prstu vlastn\u00edka pasu (EF.DG3)<\/li>\n<li>&#8222;Active Authentication Public\u00a0Key Info&#8220; (EF.DG15)<\/li>\n<\/ul>\n<p lang=\"cs-CZ\">Pas nebyl nijak chr\u00e1n\u011bn\u00fd <a href=\"http:\/\/www.rfid-shield.com\/\">speci\u00e1ln\u00edm pouzdrem<\/a>, tak\u017ee ho bylo mo\u017en\u00e9 na\u010d\u00edst v zav\u0159en\u00e9m stavu ze vzd\u00e1lenosti 5 cm. V p\u0159\u00edpad\u011b pou\u017eit\u00ed siln\u00e9 ant\u00e9ny t\u00e1to vzd\u00e1lenost m\u016f\u017ee b\u00fdt podstatn\u011b v\u011bt\u0161\u00ed (a\u017e 10 metr\u016f a bude nad\u00e1le r\u016fst).<br \/>\nPas vrac\u00ed n\u00e1hodn\u00fd unik\u00e1tn\u00ed identifik\u00e1tor (UID), tak\u017ee ho nen\u00ed mo\u017en\u00e9 na d\u00e1lku &#8222;fingerprintnout&#8220; a tedy odhadnout v\u00fdrobce (toto chov\u00e1n\u00ed je mo\u017en\u00e9 emulovat \u010dipovou kartou NXP JCOP 41 v2.2.1 72K RANDOM_UID).<\/p>\n<p>Bez znalosti &#8222;Active Authentication Public Key Info&#8220; pas nen\u00ed mo\u017en\u00e9 jednodu\u0161e vyklonovat.<\/p>\n<p>Pot\u0159ebn\u00e9 ov\u011b\u0159it:<\/p>\n<ul>\n<li>jak se chovaj\u00ed dostupn\u00e9 \u010dte\u010dky biometrick\u00fdch pas\u016f na Slovensku p\u0159i chybn\u00e9m hash, digit\u00e1ln\u00edm podpisu, absenci AA informace (je mo\u017en\u00e9, \u017ee akceptuj\u00ed i nedokonal\u00fd klon)<\/li>\n<li>je mo\u017en\u00e9 vytvo\u0159it nedokonal\u00e9ho klona na emul\u00e1tor NXP\u00a0JCOP 41 v2.2.1 72k RANDOM_UID, kdy se EF.DG3 a EF.DG15 vyhod\u00ed z passport indexu &#8211; bude tento klon nad\u00e1le akceptovan\u00fd slovensk\u00fdmi \u010dte\u010dkami biometrick\u00fdch pas\u016f?<\/li>\n<li>ov\u011b\u0159it mo\u017enost \u00fatoku skrz postrann\u00ed kan\u00e1ly (nap\u0159. <a href=\"http:\/\/wiki.whatthehack.org\/images\/2\/28\/WTH-slides-Attacks-on-Digital-Passports-Marc-Witteman.pdf\">anal\u00fdza nap\u011b\u0165ov\u00e9 stopy RSA v \u010dase<\/a>)<\/li>\n<li>analyzovat entropii MRZ:<br \/>\ndatum expirace pasu p\u0159i 10\u00a0letech = 3650\u00a0hodnot<br \/>\ndatum narozen\u00ed (p\u0159i odhade +\/- 5 let) = 3650\u00a0hodnot<br \/>\n\u010d\u00edslo pasu (2\u00a0alfaznaky + 7 \u010d\u00edslic) = 25 * 25 * (10\u00a0^ 7) = 6250000000 hodnot<\/li>\n<li>je mo\u017en\u00e9 determinovat \u010d\u00edslo pasu (jak\u00fdm zp\u016fsobem se p\u0159id\u011bluje?)<\/li>\n<\/ul>\n<p><strong>M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"<p>(st\u00e1le prob\u00edh\u00e1 &#8211; v p\u0159\u00edpad\u011b, \u017ee n\u00e1m dok\u00e1\u017eete pomoct, nev\u00e1hejte n\u00e1s kontaktovat) Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. Pas je mo\u017en\u00e9 na\u010d\u00edst libovolnou ISO14443A RFID \u010dte\u010dkou (pro n\u00e1\u0161 experiment jsme pou\u017eili levnou touchatag \u010dte\u010dku, kterou je mo\u017en\u00e9 zakoupit za 30 \u20ac). Na na\u010dten\u00ed je pot\u0159ebn\u00fd MRZ k\u00f3d, kter\u00fd je uveden na p\u0159edposledn\u00ed [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"parent":524,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"inline_featured_image":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"class_list":["post-767","page","type-page","status-publish","hentry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.4 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu - Nethemba<\/title>\n<meta name=\"description\" content=\"Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/\" \/>\n<meta property=\"og:locale\" content=\"cs_CZ\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu - Nethemba\" \/>\n<meta property=\"og:description\" content=\"Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!\" \/>\n<meta property=\"og:url\" content=\"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/\" \/>\n<meta property=\"og:site_name\" content=\"Nethemba\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/nethemba\" \/>\n<meta property=\"article:modified_time\" content=\"2019-08-07T12:26:25+00:00\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@nethemba\" \/>\n<meta name=\"twitter:label1\" content=\"Odhadovan\u00e1 doba \u010dten\u00ed\" \/>\n\t<meta name=\"twitter:data1\" content=\"2 minuty\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/o-nas-old\\\/vyzkum\\\/public-security-analysis-of-slovak-biometric-passports\\\/\",\"url\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/o-nas-old\\\/vyzkum\\\/public-security-analysis-of-slovak-biometric-passports\\\/\",\"name\":\"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu - Nethemba\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/nethemba.com\\\/de\\\/#website\"},\"datePublished\":\"2015-11-08T13:07:46+00:00\",\"dateModified\":\"2019-08-07T12:26:25+00:00\",\"description\":\"Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/o-nas-old\\\/vyzkum\\\/public-security-analysis-of-slovak-biometric-passports\\\/#breadcrumb\"},\"inLanguage\":\"cs\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/nethemba.com\\\/cs\\\/o-nas-old\\\/vyzkum\\\/public-security-analysis-of-slovak-biometric-passports\\\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/o-nas-old\\\/vyzkum\\\/public-security-analysis-of-slovak-biometric-passports\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/home-new-2025\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"O n\u00e1s\",\"item\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/?page_id=319\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"V\u00fdzkum\",\"item\":\"https:\\\/\\\/nethemba.com\\\/cs\\\/o-nas-old\\\/vyzkum\\\/\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/nethemba.com\\\/de\\\/#website\",\"url\":\"https:\\\/\\\/nethemba.com\\\/de\\\/\",\"name\":\"Nethemba\",\"description\":\"We care about your security\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/nethemba.com\\\/de\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"cs\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu - Nethemba","description":"Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/","og_locale":"cs_CZ","og_type":"article","og_title":"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu - Nethemba","og_description":"Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!","og_url":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/","og_site_name":"Nethemba","article_publisher":"https:\/\/www.facebook.com\/nethemba","article_modified_time":"2019-08-07T12:26:25+00:00","twitter_card":"summary_large_image","twitter_site":"@nethemba","twitter_misc":{"Odhadovan\u00e1 doba \u010dten\u00ed":"2 minuty"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/","url":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/","name":"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu - Nethemba","isPartOf":{"@id":"https:\/\/nethemba.com\/de\/#website"},"datePublished":"2015-11-08T13:07:46+00:00","dateModified":"2019-08-07T12:26:25+00:00","description":"Prakticky jsme demonstrovali na\u010dten\u00ed nov\u00e9ho slovensk\u00e9ho biometrick\u00e9ho RFID pasu. M\u00e1te pr\u00e1vo b\u00fdt informov\u00e1n o bezpe\u010dnosti technologi\u00ed, kter\u00e9 se dot\u00fdkaj\u00ed va\u0161ich osobn\u00edch \u00fadaj\u016f!","breadcrumb":{"@id":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/#breadcrumb"},"inLanguage":"cs","potentialAction":[{"@type":"ReadAction","target":["https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/public-security-analysis-of-slovak-biometric-passports\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/nethemba.com\/cs\/home-new-2025\/"},{"@type":"ListItem","position":2,"name":"O n\u00e1s","item":"https:\/\/nethemba.com\/cs\/?page_id=319"},{"@type":"ListItem","position":3,"name":"V\u00fdzkum","item":"https:\/\/nethemba.com\/cs\/o-nas-old\/vyzkum\/"},{"@type":"ListItem","position":4,"name":"Bezpe\u010dnostn\u00ed anal\u00fdza slovensk\u00e9ho biometrick\u00e9ho pasu"}]},{"@type":"WebSite","@id":"https:\/\/nethemba.com\/de\/#website","url":"https:\/\/nethemba.com\/de\/","name":"Nethemba","description":"We care about your security","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/nethemba.com\/de\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"cs"}]}},"_links":{"self":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages\/767","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/comments?post=767"}],"version-history":[{"count":0,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages\/767\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/pages\/524"}],"wp:attachment":[{"href":"https:\/\/nethemba.com\/cs\/wp-json\/wp\/v2\/media?parent=767"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}