Securing RFID-based authentication systems using ParseKey+

  • Authors:

  • Behnam Rahnama;Atilla Elci;Selcuk Celik

  • Affiliations:

  • European University of Lefke, Dept. of Computer Engineering, Gemikonagi, via mersin 10, TRNC, Turkey;Middle East Technical University, NCC, Guzelyurt, via mersin 10, TRNC, Turkey;European University of Lefke, Dept. of Computer Information Systems, Gemikonagi, via mersin 10, TRNC, Turkey

  • Venue:
  • Proceedings of the 3rd international conference on Security of information and networks
  • Year:
  • 2010

Quantified Score

Hi-index 0.00

Visualization

Abstract

Currently RFID authentication systems rely only on matching tag ID with the one kept in database. Additionally, an alphanumerical password might be matched as extra security. However, tag ID and information inside can be compromised. Therefore, a more secure scheme is required in order to enhance safety of access control through RFID tags in particularly highly secure environments such as secure virtual meetings or authentication and access control to access high security locals. We wish to present attendance control system which is more like access control in general as an application of our novel security enhancement on RFID based access control systems. The security enhancement utilizes partial ParseKey+ multi-way authentication scheme. ParseKey+ scatters randomly divided sub-keys into uniformly distributed noise. Generated file is encrypted using AES256 and then it is written into RFID device. Each successful login changes the key and its trace kept in DB in addition to updating the device for future login.