Privacy Analysis of Forward and Backward Untraceable RFID Authentication Schemes

Authors:
Raphael C.-W. Phan;Jiang Wu;Khaled Ouafi;Douglas R. Stinson
Affiliations:
Department of Electronic and Electrical Engineering, Loughborough University, Leicestershire, UK;The Institute of Electronics, Communications and Information Technology, Queen's University Belfast, Belfast, UK;Security and Cryptography Lab (LASEC), EPFL University, Lausanne, Switzerland 1015;David R. Cheriton School of Computer Science, University of Waterloo, Waterloo, Canada
Venue:
Wireless Personal Communications: An International Journal
Year:
2011

Citing 25
Cited 2

How to construct random functions

Journal of the ACM (JACM)
Handbook of Applied Cryptography

Handbook of Applied Cryptography
Increasing the Lifetime of a Key: A Comparative Analysis of the Security of Re-keying Techniques

ASIACRYPT '00 Proceedings of the 6th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
A model and architecture for pseudo-random generation with applications to /dev/random

Proceedings of the 12th ACM conference on Computer and communications security
Security and Privacy Issues in E-passports

SECURECOMM '05 Proceedings of the First International Conference on Security and Privacy for Emerging Areas in Communications Networks
Refuting Security Proofs for Tripartite Key Exchange with Model Checker in Planning Problem Setting

CSFW '06 Proceedings of the 19th IEEE workshop on Computer Security Foundations
Universally composable and forward-secure RFID authentication and authenticated key exchange

ASIACCS '07 Proceedings of the 2nd ACM symposium on Information, computer and communications security
Defining Strong Privacy for RFID

PERCOMW '07 Proceedings of the Fifth IEEE International Conference on Pervasive Computing and Communications Workshops
RFID authentication protocol for low-cost tags

WiSec '08 Proceedings of the first ACM conference on Wireless network security
Mutual authentication in RFID: security and privacy

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Attacks and improvements to an RIFD mutual authentication protocol and its extensions

Proceedings of the second ACM conference on Wireless network security
Security analysis of the Song-Mitchell authentication protocol for low-cost RFID tags

IEEE Communications Letters
RFID privacy: relation between two notions, minimal condition, and efficient construction

Proceedings of the 16th ACM conference on Computer and communications security
Authenticated key exchange secure against dictionary attacks

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
On privacy models for RFID

ASIACRYPT'07 Proceedings of the Advances in Crypotology 13th international conference on Theory and application of cryptology and information security
Vulnerabilities in first-generation RFID-enabled credit cards

FC'07/USEC'07 Proceedings of the 11th International Conference on Financial cryptography and 1st International conference on Usable Security
Traceable privacy of recent provably-secure RFID protocols

ACNS'08 Proceedings of the 6th international conference on Applied cryptography and network security
RFID security: tradeoffs between security and efficiency

CT-RSA'08 Proceedings of the 2008 The Cryptopgraphers' Track at the RSA conference on Topics in cryptology
Strong and robust RFID authentication enabling perfect ownership transfer

ICICS'06 Proceedings of the 8th international conference on Information and Communications Security
Examining indistinguishability-based proof models for key establishment protocols

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
Errors in computational complexity proofs for protocols

ASIACRYPT'05 Proceedings of the 11th international conference on Theory and Application of Cryptology and Information Security
On the role definitions in and beyond cryptography

ASIAN'04 Proceedings of the 9th Asian Computing Science conference on Advances in Computer Science: dedicated to Jean-Louis Lassez on the Occasion of His 5th Cycle Birthday
Crossing borders: security and privacy issues of the european e-passport

IWSEC'06 Proceedings of the 1st international conference on Security
RFID privacy based on public-key cryptography

ICISC'06 Proceedings of the 9th international conference on Information Security and Cryptology
RFID security and privacy: a research survey

IEEE Journal on Selected Areas in Communications

Addressing flaws in RFID authentication protocols

INDOCRYPT'11 Proceedings of the 12th international conference on Cryptology in India
Security Flaws in a Smart Card Based Authentication Scheme for Multi-server Environment

Wireless Personal Communications: An International Journal

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper, we analyze the first known provably secure Radio Frequency Identification (RFID) authentication schemes that are designed to provide forward untraceability and backward untraceability: the L-K and S-M schemes. We show how to trace tags in the L-K scheme without needing to corrupt tags. We also show that if a standard cryptographic pseudorandom bit generator (PRBG) is used in the S-M scheme, then the scheme may fail to provide forward untraceability and backward untraceability. To achieve the desired untraceability features, we show that the S-M scheme can use a robust PRBG which provides forward security and backward security. We also note that the backward security is stronger than necessary for the backward untraceability of the S-M scheme.