The cryptography behind electronic passports

Enhanced ID allows border crossing for most cases covered by the passport card, while real ID does not, for reasons that are unclear to me.

1. It's easier to centralize cryptographic cert issuance than passport issuance.

You may allow embassy personnel to issue passports, while still requiring a computer system in the homeland to verify that the person actually exists in some government register (and that photos match) before the certificate can be issued.

If you give embassy personnel blank passport templates, they can issue passports with completely fake identification details, for people who have never existed. The moment computers get into the mix, that may no longer be possible, or at least leave an audit trail.

2. There's no risk of surveillance. Reading data from the chip still requires you to read the MRZ, so you can't do that remotely.

There's nothing a chip gives you that you wouldn't get from a normal passport (beyond a very easy and hard-to-fake way to verify that the passport is authentic).

Usually some state's passports grant the holder more privileges than those issued by another state precisley because of the perceived risk of them being (not) obtained by fraud. Your genuine Sealand passport is less practically useful than a genuine Finnish one for use in the context of international travel.

The cryptography aspect is basically preventing the corrupt Sealand government official from stamping out ones that might be confused for, for example, a Finnish one.

Sealand[1] being used as an example least likely to cause offense - but you can understand that most governments around the world really do want to ensure that they are the only ones issuing their passports, and hence what that means for their citizens.

[1] https://en.wikipedia.org/wiki/Principality_of_Sealand

Here is a list of trivially obvious ways that they solve problems:

1. They can be read significantly faster, or even automatically, which cuts down on long border control lines even when the biometrics are not used.

2. They are significantly harder to forge without the consent of the issuer, even for other nation-states.

3. They can store biometrics that allow the bearer's identity to be verified automatically and with a very high degree of confidence.

I am all for being skeptical of the government's actions, but passports are a ridiculous place to have such a strong kneejerk reaction. You're already on a list and your movements are being tracked. ePassport features are only more convenient when compared to older passports.

Cryptography is a tool that turns arbitrary problems into key management problems. It doesn't solve problems, but it constrains them in useful ways.

That's an overly cynical take. Obviously it means that a criminal organization would need to recruit officials before they could issue fake passports. Which is already pretty hard.

And maybe they would need to recruit multiple officials across multiple agencies. And if these agencies has internal policing, then even if they manage to do that, they now have another vulnerability where the criminal operation can be discovered and sabotaged.

Passports and money are quote complex to be forgery-resistant. With internet existing it turns out, it's easier to discard the physical form altogether and only leave pure chain of trust digital form.

It already happened to money, it is slowly happening to passports and ids too.

> I’m wondering how they will manage to upgrade them - for future algorithms without breaking compatibility.

The same way as always -- introduce a new version of the passport, which can as well be verified through a completely different system altogether.

What's even more impressive is that this technology has been around for decades!

> I’m wondering how they will manage to upgrade them - for future algorithms without breaking compatibility.

Just like all other smartcard systems: Very, very slowly. Credit and debit payment cards with a smartcard (EMV) chip have similar issues – even small patches take multiple years due to the relatively long average card validity.

>Can activists organize an election for all citizens of that country in some online form, asking the voters to scan their passports using their phones, so that

By the point said activists reach organizational capacity to do so, they have already won and can hold the vote basically with scanning a qr code with a simple app.

>only legitimate citizens (who have passports) can vote

this makes no sense as a requirement in a situation you described.

> authoritarian countries that issue modern e-passports but do not allow free elections

You are trying to solve a political problem with a technological solution.

1. Many authoritarian countries don't allow freedom of travel (i.e. it is not easy to get a passport)

2. If they don't care free election, what's stopping them issuing more passport just for voting?

3. What's stopping them confiscating or revoking your passport?

Yes, as long as the passports implement a signing scheme, and the set of valid public keys (the electorate) can be agreed upon. If you can sign arbitrary data, then you can sign other public keys, including whatever the voting system requires.

Vitalik has a great blog post about blockchain voting.

https://vitalik.eth.limo/general/2021/05/25/voting2.html

You probably wouldn't want to use the cryptography on the passports themselves to implement the voting system. You probably want to use one of the general purpose zkSTARKs or multi-party-computation systems.

The authoritarian govt controls who gets passports and can create fake people if it wants.

> authoritarian countries that issue modern e-passports but do not allow free elections

Those tend to not issue passports (of any kind) to many citizens.

Then there's access. In America for example only half the adults in the country even have a passport, and I suspect that skews quite heavily towards one demographic. Do you think that India, Nigeria, or Russia have more equitable access?

And even if they did, what stops the state issuing extra fake passports to citizens they want to vote.

of course then there's key elements of a free election, freedom of access to the ballot paper, freedom to campaign the same as others, freedom from imprisonment because you are running against the incumbent leader, having each vote being worth the same. Many countries prevent people in jail from voting, or even people who used to be in jail. Many countries give more power to one constituency than another, almost all have some level of unequal access to campaigning.

It's not a "Free election" or "no election".

The actual casting of the vote is only part of the story.

It is one of the core concepts of sovereignty--defining a territory and then deciding who or what gets to be inside. Along with a government with a monopoly on violence used inwards, and some foreign relations directed outwards, you have the recipe for a modern country.

A democracy cannot function if the electorate is not well defined. They are vulnerable to Sybil attacks, same as the distributed ledgers and hash tables.

The native Americans tolerated immigration, and we all know what happened to them.

On the topic of the article, every hotel outside the US I've used has asked for my passport; I didn't know that a copy of the details exposed weaknesses on the electronic side.

How do you offer entitlements and quality healthcare to the entire population of the world without money?

Who should be allowed to participate in the decision-making process that allocates these finite resources?

It's because generations/families are a thing. Even the countries taking the most immigrants like USA aren't expecting an immediate benefit, they're thinking 1-2 gens later.

Go to South Sudan and tell me if you still feel the same way.

I was going to respond, but when I looked in my bag of trollfeed I saw it contained fuck all.

Do you treat your immediate family better than an absolute stranger?

If so, why? Aren't they all just people?