Discovering ePassport vulnerabilities using bisimilarity

Ross Horne; Sjouke Mauw

doi:10.23638/LMCS-17(2:24)2021

Discovering ePassport vulnerabilities using bisimilarity

Ross Horne, Sjouke Mauw

Research output: Contribution to journal › Article › peer-review

10 Citations (Scopus)

16 Downloads (Pure)

Abstract

We uncover privacy vulnerabilities in the ICAO 9303 standard implemented by ePassports worldwide. These vulnerabilities, confirmed by ICAO, enable an ePassport holder who recently passed through a checkpoint to be reidentified without opening their ePassport. This paper explains how bisimilarity was used to discover these vulnerabilities, which exploit the BAC protocol - the original ICAO 9303 standard ePassport authentication protocol - and remains valid for the PACE protocol, which improves on the security of BAC in the latest ICAO 9303 standards. In order to tackle such bisimilarity problems, we develop here a chain of methods for the applied π-calculus including a symbolic under-approximation of bisimilarity, called open bisimilarity, and a modal logic, called classical FM, for describing and certifying attacks. Evidence is provided to argue for a new scheme for specifying such unlinkability problems that more accurately reflects the capabilities of an attacker.

Original language	English
Article number	24
Number of pages	52
Journal	Logical Methods in Computer Science
Volume	17
Issue number	2
DOIs	https://doi.org/10.23638/LMCS-17(2:24)2021
Publication status	Published - 2 Jun 2021

Keywords

bisimilarity
ePassports
modal logic
privacy
protocols

Access to Document

10.23638/LMCS-17(2:24)2021Licence: CC BY 4.0

Horne-Mauw-LMCS-2021-Discovering-ePassport-vulnerabilities-using-bisimilarityFinal published version, 674 KBLicence: CC BY 4.0

Cite this

@article{da68d7a26d8e4bd9923a3eb5797710f8,

title = "Discovering ePassport vulnerabilities using bisimilarity",

abstract = "We uncover privacy vulnerabilities in the ICAO 9303 standard implemented by ePassports worldwide. These vulnerabilities, confirmed by ICAO, enable an ePassport holder who recently passed through a checkpoint to be reidentified without opening their ePassport. This paper explains how bisimilarity was used to discover these vulnerabilities, which exploit the BAC protocol - the original ICAO 9303 standard ePassport authentication protocol - and remains valid for the PACE protocol, which improves on the security of BAC in the latest ICAO 9303 standards. In order to tackle such bisimilarity problems, we develop here a chain of methods for the applied π-calculus including a symbolic under-approximation of bisimilarity, called open bisimilarity, and a modal logic, called classical FM, for describing and certifying attacks. Evidence is provided to argue for a new scheme for specifying such unlinkability problems that more accurately reflects the capabilities of an attacker.",

keywords = "bisimilarity, ePassports, modal logic, privacy, protocols",

author = "Ross Horne and Sjouke Mauw",

year = "2021",

month = jun,

day = "2",

doi = "10.23638/LMCS-17(2:24)2021",

language = "English",

volume = "17",

journal = "Logical Methods in Computer Science",

issn = "1860-5974",

number = "2",

}

TY - JOUR

T1 - Discovering ePassport vulnerabilities using bisimilarity

AU - Horne, Ross

AU - Mauw, Sjouke

PY - 2021/6/2

Y1 - 2021/6/2

N2 - We uncover privacy vulnerabilities in the ICAO 9303 standard implemented by ePassports worldwide. These vulnerabilities, confirmed by ICAO, enable an ePassport holder who recently passed through a checkpoint to be reidentified without opening their ePassport. This paper explains how bisimilarity was used to discover these vulnerabilities, which exploit the BAC protocol - the original ICAO 9303 standard ePassport authentication protocol - and remains valid for the PACE protocol, which improves on the security of BAC in the latest ICAO 9303 standards. In order to tackle such bisimilarity problems, we develop here a chain of methods for the applied π-calculus including a symbolic under-approximation of bisimilarity, called open bisimilarity, and a modal logic, called classical FM, for describing and certifying attacks. Evidence is provided to argue for a new scheme for specifying such unlinkability problems that more accurately reflects the capabilities of an attacker.

AB - We uncover privacy vulnerabilities in the ICAO 9303 standard implemented by ePassports worldwide. These vulnerabilities, confirmed by ICAO, enable an ePassport holder who recently passed through a checkpoint to be reidentified without opening their ePassport. This paper explains how bisimilarity was used to discover these vulnerabilities, which exploit the BAC protocol - the original ICAO 9303 standard ePassport authentication protocol - and remains valid for the PACE protocol, which improves on the security of BAC in the latest ICAO 9303 standards. In order to tackle such bisimilarity problems, we develop here a chain of methods for the applied π-calculus including a symbolic under-approximation of bisimilarity, called open bisimilarity, and a modal logic, called classical FM, for describing and certifying attacks. Evidence is provided to argue for a new scheme for specifying such unlinkability problems that more accurately reflects the capabilities of an attacker.

KW - bisimilarity

KW - ePassports

KW - modal logic

KW - privacy

KW - protocols

U2 - 10.23638/LMCS-17(2:24)2021

DO - 10.23638/LMCS-17(2:24)2021

M3 - Article

AN - SCOPUS:85112369567

SN - 1860-5974

VL - 17

JO - Logical Methods in Computer Science

JF - Logical Methods in Computer Science

IS - 2

M1 - 24

ER -

Discovering ePassport vulnerabilities using bisimilarity

Abstract

Keywords

Access to Document

Fingerprint

Cite this