The security implications of VeriChip cloning

John Halamka¹, Ari Juels, Adam Stubblefield, Jonathan Westhues

Affiliations

PMID: 16929037
PMCID: PMC1656959
DOI: 10.1197/jamia.M2143

The security implications of VeriChip cloning

John Halamka et al. J Am Med Inform Assoc. 2006 Nov-Dec.

. 2006 Nov-Dec;13(6):601-7.

doi: 10.1197/jamia.M2143. Epub 2006 Aug 23.

Authors

John Halamka¹, Ari Juels, Adam Stubblefield, Jonathan Westhues

Affiliation

¹ Beth Israel-Deaconess Medical Center, Boston, MA 02120, USA. jhalamka@caregroup.harvard.edu

PMID: 16929037
PMCID: PMC1656959
DOI: 10.1197/jamia.M2143

Abstract

The VeriChip is a Radio-Frequency Identification (RFID) tag produced commercially for implantation in human beings. Its proposed uses include identification of medical patients, physical access control, contactless retail payment, and even the tracing of kidnapping victims. As the authors explain, the VeriChip is vulnerable to simple, over-the-air spoofing attacks. In particular, an attacker capable of scanning a VeriChip, eavesdropping on its signal, or simply learning its serial number can create a spoof device whose radio appearance is indistinguishable from the original. We explore the practical implications of this security vulnerability. The authors argue that:1 The VeriChip should serve exclusively for identification, and not authentication or access control. 2 Paradoxically, for bearer safety, a VeriChip should be easy to spoof; an attacker then has less incentive to coerce victims or extract VeriChips from victims' bodies.

PubMed Disclaimer

Comment in

Re: "A security analysis of the Verichip implantable RFID device" JAMIA PrePrint: accepted article. Published August 23, 2006 as doi:10.1197/jamia.M2143.
Albrecht K. Albrecht K. J Am Med Inform Assoc. 2007 Mar-Apr;14(2):249-50; author reply 251. doi: 10.1197/jamia.M2316. Epub 2007 Jan 9. J Am Med Inform Assoc. 2007. PMID: 17213488 Free PMC article. No abstract available.

Cited by

Safety and reliability of Radio Frequency Identification Devices in Magnetic Resonance Imaging and Computed Tomography.
Steffen T, Luechinger R, Wildermuth S, Kern C, Fretz C, Lange J, Hetzer FH. Steffen T, et al. Patient Saf Surg. 2010 Feb 2;4(1):2. doi: 10.1186/1754-9493-4-2. Patient Saf Surg. 2010. PMID: 20205829 Free PMC article.
Clone tag detection in distributed RFID systems.
Kamaludin H, Mahdin H, Abawajy JH. Kamaludin H, et al. PLoS One. 2018 Mar 22;13(3):e0193951. doi: 10.1371/journal.pone.0193951. eCollection 2018. PLoS One. 2018. PMID: 29565982 Free PMC article.
Implantable QR code subcutaneous microchip using photoacoustic and ultrasound microscopy for secure and convenient individual identification and authentication.
Wan N, Zhang P, Liu Z, Li Z, Niu W, Rui X, Wang S, Seong M, He P, Liang S, Zhou J, Yang R, Chen SL. Wan N, et al. Photoacoustics. 2023 May 9;31:100504. doi: 10.1016/j.pacs.2023.100504. eCollection 2023 Jun. Photoacoustics. 2023. PMID: 37214429 Free PMC article.
Clinical Study of Using Biometrics to Identify Patient and Procedure.
Sohn JW, Kim H, Park SB, Lee S, Monroe JI, Malone TB, Kinsella T, Yao M, Kunos C, Lo SS, Shenk R, Machtay M. Sohn JW, et al. Front Oncol. 2020 Dec 1;10:586232. doi: 10.3389/fonc.2020.586232. eCollection 2020. Front Oncol. 2020. PMID: 33335855 Free PMC article.
The Value of Radio Frequency Identification in Quality Management of the Blood Transfusion Chain in an Academic Hospital Setting.
Dusseljee-Peute LW, Van der Togt R, Jansen B, Jaspers MW. Dusseljee-Peute LW, et al. JMIR Med Inform. 2019 Aug 5;7(3):e9510. doi: 10.2196/medinform.9510. JMIR Med Inform. 2019. PMID: 31381503 Free PMC article.

See all "Cited by" articles

References

1. Second meeting of the American Health Information Community, 29 November 2005. Available at: http://www.hhs.gov/healthit/m20051129.html.
1. Albrecht K, McIntyre L. The Spychips Threat: Why Christians Should Resist RFID and Computer Tracking. Nelson Current; 2006.
1. Bahney A. High tech, under the skin New York Times 2006. 2 February. Available at: http://www.nytimes.com/2006/02/02/fashion/thursdaystyles/02tags.html. Accessed February 2, 2006.
1. Bono S, Green M, Stubblefield A, Juels A, Rubin A, Szydlo M. Security analysis of a cryptographically-enabled rfid device 14th USENIX Security Symposium. 2005. pp. 1-16Baltimore, Maryland, USA, July-August. USENIX Videos and other information available at www.rfidanalysis.org .
1. VeriChip Corporation Procedure for VeriMedTM system use. 2006. Available at: www.verimedinfo.com/files/VeriMed%20ER%20Protocol.pdf .

MeSH terms

Actions
Actions
Actions
Actions
Actions
Actions
Actions

LinkOut - more resources

Full Text Sources
Other Literature Sources
- The Lens - Patent Citations Database
Research Materials
- NCI CPTC Antibody Characterization Program

Save citation to file

Email citation

Add to Collections

Add to My Bibliography

Your saved search

Create a file for external citation management software

Your RSS Feed

The security implications of VeriChip cloning

Affiliation

The security implications of VeriChip cloning

Authors

Affiliation

Abstract

Comment in

Similar articles

Cited by

References

MeSH terms

LinkOut - more resources

Full Text Sources

Other Literature Sources

Research Materials