Hey Bosko, most definitely so. The FloJack has all the protocols and cryptographic capabilities to read secure credentials but we haven’t done anything with ePassports before. So I checked into it a bit reading this post and the Machine Readable Travel Document specification. I played around with it a bit today using my ePassport, a Nexus 7, and a FloJack. On Google Play there’s several applications meant for reading ePassports, I used NFC Passport Reader.
The key to ePassport access is the BAC (Basic Access Control) command. It’s a cryptographic handshake that requires the NFC reader to know the Passport Document Number, DOB, and Expiration Date. Without these pieces of info the reader is useless at getting any identifiable information of the ePassport. It’s a common misconception that would be hackers would be able to take your identity off your ePassport without gaining physical access to it, since the keys to unlock the credential are hidden inside the Passport pages and out of plain sight. Here’s a quick video I put together showing the FloJack and Nexus 7 reading my ePassport (unfortunately the device screens are washed out but you get the idea).
