An efficient and secure RFID authentication protocol using elliptic curve cryptography

Dinarvand, Negin; Barati, Hamid

doi:10.1007/s11276-017-1565-3

Cited by 59 publications

(70 citation statements)

References 27 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Knospe and Pohl [7] have mentioned confidentiality, availability, authenticity, integrity, and anonymity are the necessary security properties of an RFID system. Dinarvand and Barati [8] figured out that the two additional security features which must also be implemented in the RFID system are forward secrecy and scalability. Therefore, the necessary security requirements of an RFID system are data confidentiality, mutual authentication, data integrity, non-repudiation, availability, tag anonymity, forward secrecy, and scalability.…”

Section: Rfid Security Requirementsmentioning

confidence: 99%

“…They also proposed a security scheme for RFID which provided many security features but it fails to satisfy mutual authentication, scalability, and resistance against de-synchronization attack. Dinarvand and Barati [8] presented an elliptic curve based mutual authentication protocol which offers many security features including mutual authentication, confidentiality, forward security, scalability, anonymity, availability, and integrity. They also proved that the protocol can defend against cloning, replay, de-synchronization, location tracking, masquerade, modification, and server spoofing attacks.…”

Section: Related Workmentioning

confidence: 99%

“…They also proved that the protocol can defend against cloning, replay, de-synchronization, location tracking, masquerade, modification, and server spoofing attacks. Dinarvand and Barati [8] also compared their protocol with the related ones and showed that it takes less computational time and communication cost than others. Zhang et al [26] suggested an elliptic curve based scheme with anonymity for session initiation.…”

Section: Related Workmentioning

confidence: 99%

“…In the de-synchronization attack, the adversary prevents simultaneous updating of the secret information shared between the server and the tag. When an attacker performs de-synchronization attack and intercepts the messages, it is possible that the server doesn't update the entry of the tag while the tag does it [8]. To thwart de-synchronization attack the server stores both the previous tag pseudonym and the updated tag pseudonym in its database.…”

Section: (4) Resistance Against De-synchronization Attackmentioning

confidence: 99%

“…In this section, the performance of the proposed RFID security protocol has been analyzed by measuring computational overhead, communication cost, and storage cost taken by the protocol. Moreover, a comparison of security functionalities and the costs have been made in this section to prove that the proposed protocol is efficient than the other schemes mentioned in [8,18,22,23,26,37,38]. It has been assumed that 160 bit ECC has been used and the tag memory is 504 bytes for all the protocols.…”

Section: Performance Analysismentioning

confidence: 99%

See 4 more Smart Citations

Elliptic Curve Signcryption Based Security Protocol for RFID

Singh¹,

Patro²

2020

KSII TIIS

View full text Add to dashboard Cite

Providing security has been always on priority in all areas of computing and communication, and for the systems that are low on computing power, implementing appropriate and efficient security mechanism has been a continuous challenge for the researchers. Radio Frequency Identification (RFID) system is such an environment, which requires the design and implementation of efficient security mechanism. Earlier, the security protocols for RFID based on hash functions and symmetric key cryptography have been proposed. But, due to high strength and requirement of less key size in elliptic curve cryptography, the focus of researchers has been on designing efficient security protocol for RFID based on elliptic curves. In this paper, an efficient elliptic curve signcryption based security protocol for RFID has been proposed, which provides mutual authentication, confidentiality, non-repudiation, integrity, availability, forward security, anonymity, and scalability. Moreover, the proposed protocol successfully provides resistance from replay attack, impersonation attack, location tracking attack, de-synchronization attack, denial of service attack, man-in-the-middle attack, cloning attack, and key-compromise attack. Results have revealed that the proposed protocol is efficient than the other related protocols as it takes less computational time and storage cost, especially for the tag, making it ideal to be used for RFID systems.

show abstract

Section: Rfid Security Requirementsmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: Related Workmentioning

confidence: 99%

Section: (4) Resistance Against De-synchronization Attackmentioning

confidence: 99%

Section: Performance Analysismentioning

confidence: 99%

See 3 more Smart Citations

Elliptic Curve Signcryption Based Security Protocol for RFID

Singh¹,

Patro²

2020

KSII TIIS

View full text Add to dashboard Cite

show abstract

A lightweight hierarchical method for improving security in the internet of things using fuzzy logic

Doostani,

Barati,

Barati

2023

Concurrency and Computation

Self Cite

View full text Add to dashboard Cite

SummaryThe internet of things (IoT) refers to the interconnection of various devices through the internet. With the help of IoT, different applications and devices can interact with each other and even with humans through the internet. However, the widespread use of IoT in homes, offices, and private companies has raised concerns about privacy and security. The theft of user information by hackers is a major challenge that has hindered the adoption of IoT. This paper proposes a method for improving security on two levels: intra‐cluster and inter‐cluster. In the intra‐cluster phase, the cluster head uses fuzzy logic to measure the trust level of nodes. If the node is trusted, the information is received and sent to the destination. In the inter‐cluster phase, data between cluster heads is encrypted using column transposition encryption. The encryption is hop by hop, and the encryption key is changed at each hop. The proposed method is simulated using NS‐2 software. A comparison of the proposed method's performance with conventional methods shows that the proposed method results in better packet delivery rate, throughput, and prevention of link spoofing attacks.

show abstract

ESOTP: ECC‐based secure object tracking protocol for IoT communication

Majumder

Ray

Sadhukhan

et al. 2021

Int J Communication

View full text Add to dashboard Cite

Summary Objects/tags are generally passes through multiple readers before achieving the final destination within the IoT network. Hence, object identification is a significant issue as some bogus objects may take part for malicious access. Considering this situation, RFID can be used for unique identification and validation of IoT objects. However, it recognizes many objects at the same time and faces limitations like non‐repudiations, injection of fake objects, and unclonability issues. Alternatively, security limitations between tags and readers are analyzed and found that whole communication depends on limited computational resource and simple operations such as hash function, XOR operation, and so forth. Moreover, the communication channel between reader and backend server is secure due to symmetric or asymmetric key encryption algorithms. As the information is exchanged by the tags with readers, a secure path must be maintained among them for safe communication with cloud server. For the development of secure path and verification of objects, ECC‐based Cramer‐Shoup encryption, cryptographic authentication protocol (CAP), and device fingerprinting can be used. To overcome the existing limitations, we are motivated to design an ECC‐based secure object tracking and key exchange protocol that allows the owner device to be offline during communication. This suggested scheme is referred as ESOTP. Several recognized cryptographic attacks are evaluated, the security strength is validated and found that ESOTP is resilient against those attacks. Finally, a comparative study is performed regarding the security features and performance efficiency of ESOTP with other existing schemes and enhanced results are found.

show abstract

An efficient and secure RFID authentication protocol using elliptic curve cryptography

Cited by 59 publications

References 27 publications

Elliptic Curve Signcryption Based Security Protocol for RFID

Elliptic Curve Signcryption Based Security Protocol for RFID

A lightweight hierarchical method for improving security in the internet of things using fuzzy logic

ESOTP: ECC‐based secure object tracking protocol for IoT communication

Contact Info

Product

Resources

About