| ??? 04/16/07 07:29 Read: times |
#137312 - Schneier on paranoia... :-) Responding to: ???'s previous message |
Jeff Post said:
I don't think it's just the media hyping a new scare tactic.
If Bruce Schneier thinks it's a problem, one would be well advised to believe it's a very real problem. Well, he stands on the paranoid side at all times by default... :-) However, this is really ridiculous. These guys have written their software with deliberate errors, so it CAN be directly attacked by - as also Joe pointed out - ANY piece of data. This is the same, for example, as if an ATM firmware would written so that entering a particular multi-digit "PIN" would trigger dump of the whole cashbox... (see what google gives you on the topic - if you omit the newspapers, most who dare to comment point out the same, each giving a different example of such path for the data -> you can come up with zillions of examples for the same, without a single mention of RFID itself). This does not mean that RFIDs don't have security issues - contrary, they do, and are periodically pertracted by Schneier himself. But this time, this IS an empty hype. So, the claim really should be, "crappy programs (written in crappy languages*) may be attacked if a user is permitted to enter any data". This won't make such a nice headline, though. JW --- * of course, this refers mainly to C... :-) |
| Topic | Author | Date |
| RFID Virus - as an another example of what the... | 01/01/70 00:00 | |
| RFID data storage | 01/01/70 00:00 | |
| RFID virus problem | 01/01/70 00:00 | |
| RFID and Barcodes | 01/01/70 00:00 | |
Schneier on paranoia... :-) | 01/01/70 00:00 |