> There was a post from trailofbits blog recently about how passport crypto works. Kind of related here.
>
> I wonder if this is some zero knowledge proofs here or what? Reading the passport and its chip implies some terminal authentication capabilities coming from Apple devices. Passport would not allow reading sensitive data from the chip unless the terminal is valid.
>
> Another question is if Apple is allowed to read your biometric data?
Passport chips aren't that complex, especially not American ones. You just need to transmit part of the MRZ to unlock them (Other ICAO compliant passports have slightly different requirements, still all easily doable for any smart phone with NFC transmit)
The Apple ID isn't a ZKP - IIRC they're doing a CBOR representation of the claims which is signed with their own cert.
Passport chips aren't that complex, especially not American ones. You just need to transmit part of the MRZ to unlock them (Other ICAO compliant passports have slightly different requirements, still all easily doable for any smart phone with NFC transmit)
The Apple ID isn't a ZKP - IIRC they're doing a CBOR representation of the claims which is signed with their own cert.