A minimum disclosure approach to authentication and privacy in RFID systems

Authors:
Robin Doss;Wanlei Zhou;Saravanan Sundaresan;Shui Yu;Longxiang Gao
Affiliations:
School of Information Technology, Deakin University, Australia;School of Information Technology, Deakin University, Australia;School of Information Technology, Deakin University, Australia;School of Information Technology, Deakin University, Australia;School of Information Technology, Deakin University, Australia
Venue:
Computer Networks: The International Journal of Computer and Telecommunications Networking
Year:
2012

Citing 28
Cited 0

Strand spaces: proving security protocols correct

Journal of Computer Security
Hash-based Enhancement of Location Privacy for Radio-Frequency Identification Devices using Varying Identifiers

PERCOMW '04 Proceedings of the Second IEEE Annual Conference on Pervasive Computing and Communications Workshops
An Approach to Security and Privacy of RFID System for Supply Chain

CEC-EAST '04 Proceedings of the E-Commerce Technology for Dynamic E-Business, IEEE International Conference
Privacy and security in library RFID: issues, practices, and architectures

Proceedings of the 11th ACM conference on Computer and communications security
RFID: A Technical Overview and Its Application to the Enterprise

IT Professional
The Pros and Cons of RFID in Supply Chain Management

ICMB '05 Proceedings of the International Conference on Mobile Business
YA-TRAP: Yet Another Trivial RFID Authentication Protocol

PERCOMW '06 Proceedings of the 4th annual IEEE international conference on Pervasive Computing and Communications Workshops
Mutual authentication protocol for RFID conforming to EPC Class 1 Generation 2 standards

Computer Standards & Interfaces
Protocols for RFID tag/reader authentication

Decision Support Systems
A novel mutual authentication scheme based on quadratic residues for RFID systems

Computer Networks: The International Journal of Computer and Telecommunications Networking
LAMED - A PRNG for EPC Class-1 Generation-2 RFID specification

Computer Standards & Interfaces
Cryptanalysis of a novel authentication protocol conforming to EPC-C1G2 standard

Computer Standards & Interfaces
New mutual agreement protocol to secure mobile RFID-enabled devices

Information Security Tech. Report
A study on secure RFID mutual authentication scheme in pervasive computing environment

Computer Communications
ERAP: ECC Based RFID Authentication Protocol

FTDCS '08 Proceedings of the 2008 12th IEEE International Workshop on Future Trends of Distributed Computing Systems
Smashing SQUASH-0

EUROCRYPT '09 Proceedings of the 28th Annual International Conference on Advances in Cryptology: the Theory and Applications of Cryptographic Techniques
PAP: A privacy and authentication protocol for passive RFID tags

Computer Communications
Anti-cloning protocol suitable to EPCglobal Class-1 Generation-2 RFID systems

Computer Standards & Interfaces
ECC-based lightweight authentication protocol with untraceability for low-cost RFID

Journal of Parallel and Distributed Computing
Conformation of EPC Class 1 Generation 2 standards RFID system with mutual authentication and privacy protection

Engineering Applications of Artificial Intelligence
On a new formal proof model for RFID location privacy

Information Processing Letters
An efficient mutual authentication scheme for EPCglobal class-1 generation-2 RFID system

EUC'07 Proceedings of the 2007 conference on Emerging direction in embedded and ubiquitous computing
Securing RFID systems conforming to EPC Class 1 Generation 2 standard

Expert Systems with Applications: An International Journal
Improvement of the RFID authentication scheme based on quadratic residues

Computer Communications
Defending RFID authentication protocols against DoS attacks

Computer Communications
Securing against brute-force attack: A hash-based RFID mutual authentication protocol using a secret value

Computer Communications
Authenticating pervasive devices with human protocols

CRYPTO'05 Proceedings of the 25th annual international conference on Advances in Cryptology
RFID security and privacy: a research survey

IEEE Journal on Selected Areas in Communications

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we present a novel approach to authentication and privacy in RFID systems based on the minimum disclosure property and in conformance to EPC Class-1 Gen-2 specifications. We present two security schemes that are suitable for both fixed reader and mobile/wireless reader environments, the mutual authentication and the collaborative authentication schemes respectively. Both schemes are suited to the computational constraints of EPC Class-1 Gen-2 passive RFID tags as only the cyclic redundancy check (CRC) and pseudo random number generator (PRNG) functions that passive RFID tags are capable of are used. Detailed security analysis of both our schemes show that they offer robust security properties in terms of tag anonymity, tag untraceability and reader privacy while at the same time being robust to replay, tag impersonation and desynchronisation attacks. Simulations results are also presented to study the scalability of the schemes and its impact on authentication delay. In addition, Yeh et al. (2010) [20] proposed a security scheme for EPC Class-1 Gen-2 based mobile/wireless RFID systems. We show that this scheme has a security vulnerability and is not suitable for mobile/wireless RFID systems.