(Dieser Artikel ist auch in deutscher Sprache verfügbar)

EDRi member FoeBuD e.V. has set up a contest for finding a RFID warning sign to be passed on to the EU's process in RFID legislation. Since the industry came up with a similar contest but looking for a somewhat "friendly" design, FoeBuD is looking for a precise warning sign that would shows the dangers for citizens' rights when RFID technology is involved.

There are two categories in FoeBuD's contest: strict and freestyle. In the strict category, a design for an official RFID warning sign is wanted. The winning design in this category shall be sent to the EU as a proposal for marking RFID tags and readers. It should follow the rules for warning and danger signs as e.g. DIN 4844-2 shows. The freestyle category is what its

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

Jeroen van Beek, a computer researcher at the University of Amsterdam, has shown in some tests conducted for The Times that the new micro-chipped passports, introduced in UK to protect against terrorism and organised crime, can be easily cloned.

The researcher has succeeded in cloning the chips of two British passports in which he introduced the pictures of Osama bin Laden and a suicide bomber and in passing the cloned chips as genuine through Golden Reader, which is the standard passport reader software used by the UN agency setting standards for e-passports and which is also recommended for use at airports. The cloning operation took less than an hour. Van Beek developed his cloning

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

Dutch chipmaker NXP Semiconductors has sued the Dutch Computer Security Group of Radboud University in Nijmege in order to stop the publication of research results showing security flaws in NXP's Mifare Classic wireless smart cards used in transit and building entry systems around the world.

The technology is used for the transit system in The Netherlands, in the subway systems in London, Hong Kong and Boston, as well as in cards for accessing buildings and facilities, covering 80 percent of the market.

The security researchers of the Dutch university have checked the Mifare system used with Oyster cards for transport in London and recently succeeded in cracking the encryption on a card and clone it. They added credit to it

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

Draft Recommendation on the implementation of privacy, data protection and information security principles in applications supported by Radio Frequency Identification (RFID): your opinion matters! The Public Consultation will be open for a period of eight weeks and will finish on 25th April 2008. You may find also a translation of the consultation in French and German.
http://ec.europa.eu/yourvoice/ipm/forms/dispatch?form=RFIDRec

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

The European Commission published the Draft Recommendation on RFID Privacy and Security on the Your Voice in Europe-Platform for public consultation.

After a public consultation on RFID Privacy Issues in 2006, some conferences and workshops and various discussions on the topic within the RFID Expert Group, this publication finally represents the measures that the Commission recommends to the member states and stakeholders, in order to achieve a high level of privacy and data protection in the context of RFID applications.

EDRi welcomes this Draft Recommendation, which contains various important measures, like the recommendation that RFID reading areas as well as RFID tagged object should be marked with a clear sign indicating the presence of

(Dieser Artikel ist auch in deutscher Sprache verfügbar) The privacy problems created by the Internet and other new technologies such as RFID have an important place on the agenda of the European institutions that seem to be more anxious than ever to tackle those issues. The hearing at the European Parliament's Civil Liberties Committee reported in the last EDRi-gram seems to be only the top of the iceberg.

Article 29 working party will discuss at the next meeting, on 18 February 2008, the highly sensitive topic of privacy & search engines, and it is probable to adopt an Opinion on this topic.

But the views of the Working party's members are already public, after the last month meeting at the European Parliament. Moreover, Peter Schaar,

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

The nominees and winners of the Dutch Big Brother Awards 2007 showed it clearly: a proper level of data protection in The Netherlands cannot be taken for granted. A number of big projects and ongoing legislative efforts threaten the state of data protection in the Netherlands. The government shows no signs of taking critics seriously. The disinterest of the public and ease with which a majority of Dutch citizens are willing to hand over their privacy for a promise of security, led the jury of the Big Brother Awards declare the Dutch citizen the winner. Other winners were the plans for an Electronic Child Dossier, the National Railways for the RFID transit card system and De Nederlandsche

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

In the context of increasing debates in the European Union over the RFID policy, Peter Hustinx, the European Data Protection Supevisor (EDPS), published on 20 December 2007 his opinion on the growing use of RFID chips in consumer products and other new applications affecting individuals.

EDPS published this opinion as a response to the European Commission's communication on Radio Frequency Identification (RFID) in Europe that was released in March 2007, but taking into consideration other actions, such as the creation by the EC of the RFID expert group, where EDRi is a member.

Peter Hustinx, explained the role of RFID and its relation with the privacy issues: "RFID systems could play a key role in the development of

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

Following the the EDRi statements on RFID Privacy Issues and RFID Security Issues published earlier this year, EDRi recently contributed with a third written statement to the European Commission's RFID Expert Group focusing on RFID and Informed Consent.

In this paper, EDRi deals with the possibilities of informing individuals about RFID use and strongly asks for a strict opt-in regime for RFID usage. Furthermore various mechanisms for removing, altering or disabling RFID functionality are discussed and evaluated with respect to the protection of personal data.

Finally, EDRi suggests a concept of responsibilities to ensure that RFID technology is only disseminated to organisations that

(Dieser Artikel ist auch in deutscher Sprache verfügbar)

Last week the conference "On RFID", organised by the Portuguese Presidency with support of the European Commission DG Information Society, took place in Lisbon. During the one and a half days of the conference a number of topics were discussed, that could be crucial for the future development of RFID technology.

Privacy and security were the topics of a panel discussion held during the morning of the first day. The participants in this discussion, representatives of industry, consumer, data protection and international organisations, all shared the opinion that security and privacy by design is the proper way for advancements of RFID technology. As Reinhard Posch, representative of the European Network and Information Security Agency