CIO Tests Embedded RFID Chip

Written by Evan Schuman
January 28th, 2005

January 28, 2005
By , eWEEK

As an emergency medicine physician, Dr. John D. Halamka immediately saw the life-saving potential of embedding tiny wireless RFID (radio-frequency identification) devices in people. As the CIO of the Harvard Medical School, he was naturally skeptical of such devices and wanted to test them thoroughly before recommending their adoption.

As a physician CIO, he knew that there would be risks inserting any foreign object into a human being and that the body might interfere with the device’s functioning and that the device could interfere with the body’s functioning.

Therefore, Halamka said he did the only reasonable move: He offered himself as a radio-signal guinea pig and got a first-hand experience of having an embedded transmitter.

“I’m not necessarily an advocate, but as a CIO and a physician, I think it’s important for me to evaluate it fully,” Halamka said in an interview. “I’m just experimenting with the technology. I think RFID now is at the peak of the hype curve. It has great promise, but it will require a bit of time.”

RFID technology is a subject of extreme interest to retailers, consumer goods manufacturers, law enforcement and the medical communities, but it has been beset by reports of inaccurate read rates and interference from other devices. The technology also has been the subject of privacy concerns.

Halamka’s experiment is intended to see how the variables of the human body affect the device’s functioning and its read rate and whether RFID can be a practical, safe and privacy-respecting technology in today’s hospitals.

One medical benefit that Halamka sees is in dealing with nonresponsive patients?perhaps an unconscious car accident victim?who have particular medical issues that the physician needs to know.

The chip itself is a passive RFID device that merely transmits a 16-digit numeric identifier. Properly credentialed emergency room staff could access a secure Web site that would allow them to identify him and access relevant medical records, he said.

Another possibility is medical error reductions. Halamka painted a scenario where a hospitalized patient has an embedded RFID tag. All medication bottles would also have RFID tags, as would the identification tags worn by nurses and doctors.

“What if a nurse walks into your room with the wrong medication?” he asked. With the triple RFID scenario he painted, the chart information could immediately flag that the medication about to be administered was incorrect.

Although it’s more intrusive, the RFID approach would work a lot better than having a tag attached to today’s typical hospital patient plastic wristband, he said, as those tags can be lost or damaged.

Halamka said the implant procedure itself was “painless” and “took five minutes in a doctor’s office.” The RFID device is about the size of two grains of rice, and it’s inserted using what Halamka described as “a big syringe.”

It is typically inserted into the triceps area of the right arm, an attractive area because it’s relatively clean, more pain-free than other body parts, and it’s easily accessed in an emergency.

To be precise, the skin is treated with a sterile iodine solution and the RFID chip is inserted less than one-quarter-of-an-inch into the triceps’ fascia, which is a connective tissue that envelops the triceps. Because it rests within the fascia, it is not technically considered subdermal, and it also does not cause the discoloration typical with subdermal procedures.

The benefit of the consistent placement, Halamka said, is that emergency room personnel can routinely give a quick scan to that part of the arm to see if an RFID chip exists. Otherwise, there would be no way for staff to know that it existed.

Halamka said his body seems to have accepted the RFID chip without incident. His chip is made by VeriChip Corp., a wholly owned subsidiary of Applied Digital.

“The RFID is enclosed in medical-grade glass. It is just seen as a foreign body” but a non-threatening one, he said. “There’s no immune system on the planet that attacks glass.” This is similar to the way the body sees a properly administered intravenous (IV) insert, Halamka said, adding that the glass itself is so thin that it has no risk of breaking.

The implanted RFID chip “will last for hundreds of years, longer than I will,” Halamka said.

But if there is some kind of a problem, the method for removing the chip is far more invasive and troublesome than inserting it. The removal process involves actual surgery, albeit a minor one.

Because it is a passive device, the RFID chip requires no independent power source and accesses all needed power from the radio signal. The small handheld reader needs to be within five inches of the chip to get a signal.

Halamka has found that the read-rates under real-world conditions are excellent and consistent. “I have experimented with reading it from a variety of angles and distances,” including during a mountain climb where the temperature fell to minus-20 at a 6,000-foot altitude.

The only reader-related concern the CIO expressed was that the readers are proprietary. Once standards take better hold and competing quality readers are on the market, he’d feel better about recommending the technology, he said.

As for the privacy concerns, the doctor said he was confident it could be worked out. He envisions a trusted host-like approach, where a major hospital would have access and could then extend access to trusted individuals.

Halamka estimated that there are about 200 people today with the RFID chip implants, many of them in Mexico where the government is using them as secure identifiers.


Comments are closed.


StorefrontBacktalk delivers the latest retail technology news & analysis. Join more than 60,000 retail IT leaders who subscribe to our free weekly email. Sign up today!

Most Recent Comments

Why Did Gonzales Hackers Like European Cards So Much Better?

I am still unclear about the core point here-- why higher value of European cards. Supply and demand, yes, makes sense. But the fact that the cards were chip and pin (EMV) should make them less valuable because that demonstrably reduces the ability to use them fraudulently. Did the author mean that the chip and pin cards could be used in a country where EMV is not implemented--the US--and this mis-match make it easier to us them since the issuing banks may not have as robust anti-fraud controls as non-EMV banks because they assumed EMV would do the fraud prevention for them Read more...
Two possible reasons that I can think of and have seen in the past - 1) Cards issued by European banks when used online cross border don't usually support AVS checks. So, when a European card is used with a billing address that's in the US, an ecom merchant wouldn't necessarily know that the shipping zip code doesn't match the billing code. 2) Also, in offline chip countries the card determines whether or not a transaction is approved, not the issuer. In my experience, European issuers haven't developed the same checks on authorization requests as US issuers. So, these cards might be more valuable because they are more likely to get approved. Read more...
A smart card slot in terminals doesn't mean there is a reader or that the reader is activated. Then, activated reader or not, the U.S. processors don't have apps certified or ready to load into those terminals to accept and process smart card transactions just yet. Don't get your card(t) before the terminal (horse). Read more...
The marketplace does speak. More fraud capacity translates to higher value for the stolen data. Because nearly 100% of all US transactions are authorized online in real time, we have less fraud regardless of whether the card is Magstripe only or chip and PIn. Hence, $10 prices for US cards vs $25 for the European counterparts. Read more...
@David True. The European cards have both an EMV chip AND a mag stripe. Europeans may generally use the chip for their transactions, but the insecure stripe remains vulnerable to skimming, whether it be from a false front on an ATM or a dishonest waiter with a handheld skimmer. If their stripe is skimmed, the track data can still be cloned and used fraudulently in the United States. If European banks only detect fraud from 9-5 GMT, that might explain why American criminals prefer them over American bank issued cards, who have fraud detection in place 24x7. Read more...

Our apologies. Due to legal and security copyright issues, we can't facilitate the printing of Premium Content. If you absolutely need a hard copy, please contact customer service.