Cryptanalysisof two mutual authentication protocols for low-cost RFID

Habibi, Mohammad Hassan; Gardeshi, Mahmoud; Alaghband, Mahdi R.

doi:10.5121/ijdps.2011.2109

Cited by 5 publications

(5 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…(2) The IDT is renewed after each successful authentication by the back-end server and the tag itself; (3) the IDT is concealed during the transmission by the AK that is changed in each authentication session according to the TST; (4) the KT is renewed after each successful authentication; (5) the IDR is protected by the hash function during the transmission where the hash value is changed according to the value of TRT that is generated by the reader itself; (6) if the authentication is fail, the existing identities and keys of the tag and reader will be used for next authentication session with fresh authentication parameters such as the TST, TRT and AK; (7) the mutual authentication must be achieved between all authentication entities. Therefore, the proposed protocol can prevent the following:…”

Section: Resistance To Attacksmentioning

confidence: 99%

“…(1) unauthorized reader cannot replay the tag identity; (2) the unauthorized tag cannot replay the reader identity; (3) the attacker cannot track the tag holder; (4) the tag and reader identities or the secret keys of unsuccessful authentication session cannot be used by the attacker; (5) the authentication messages of the previous authentication session cannot be resent by the attacker; (6) the attacker cannot force the backend server and tag to renew the tag identity when the authentication is fail; (7) the attacker cannot impersonate the tag, reader and server due to cannot retrieve the reader identity or compute the anonymity key. Consequently, the proposed protocol can resist all current attacks such as impersonate, desynchronization, tracking and replay attacks.…”

Section: Resistance To Attacksmentioning

confidence: 99%

See 1 more Smart Citation

SE-H: A Secure and Efficient Hash Protocol for RFID System

Nashwan

2022

Int. j. commun. netw. inf. secur.

View full text Add to dashboard Cite

The Radio Frequency Identification (RFID) systems are suffered from the growing of security vulnerabilities. In the RFID Applications, an attackers may exploit these vulnerabilities to break the tag holder privacy and desynchronize the communication messages between system components. The majority of the proposed solutions fail to solve the existing vulnerabilities. Therefore, the authentication protocol is the main challenge in such systems. This paper proposes a secure and efficient hash authentication (SE-H) protocol for RFID system to support attractive security features. Compared with the recent RFID authentication protocols, the SE-H protocol cannot only perform strong security features including mutual authentication and the data secrecy features, but also perform the user anonymity and untraceability features with low cost performance. The security analysis proves that the SE-H protocol is resistant to the current vulnerabilities. Furthermore, the performance analysis in term of the authentication operations cost illustrates that SE-H protocol is more efficient than the recent RFID protocols.

show abstract

Section: Resistance To Attacksmentioning

confidence: 99%

Section: Resistance To Attacksmentioning

confidence: 99%

SE-H: A Secure and Efficient Hash Protocol for RFID System

Nashwan

2022

Int. j. commun. netw. inf. secur.

View full text Add to dashboard Cite

show abstract

“…Many RFID authentication protocols have been proposed until now [14,15,16,17,18,19,20,21,22,23,24]. Although mentioned protocols have wanted to provide secure and untraceable communication for RFID systems; many weaknesses have been found in them [25,26,27,28,29,30,31,32,33,34,35,36,37,38].However, Yeh et al [1] have recently proposed a RFID mutual authentication protocol compatible with EPC C-1 G-2 standard that we name SRP (Securing RFID Protocol) in this paper. The authors have claimed that not only does not reveal SRP any information but also it has forward secrecy characteristic.…”

Section: Introductionmentioning

confidence: 99%

Practical Attacks on a RFID Authentication Protocol Conforming to EPC C-1 G-2 Standard

Habibi¹,

Gardeshi²,

Alaghband³

2011

IJU

View full text Add to dashboard Cite

show abstract

“…Although these protocols tried to provide secure and untraceable communication for RFID systems, however many weaknesses have been found in them [16,17,18,19,20,21]. In this context, Yeh et al have recently proposed a RFID mutual authentication protocol compatible with EPC C-1 G-2 standard [22] that we name SRP (Securing RFID Protocol) in this paper.…”

Section: Introductionmentioning

confidence: 99%

Attacks on a Lightweight Mutual Authentication Protocol under EPC C-1 G-2 Standard

Habibi

Alagheband

Aref

2011

Information Security Theory and Practice. Security and Privacy of Mobile Devices in Wireless Communication

Self Cite

View full text Add to dashboard Cite

Abstract. Yeh et al. have recently proposed a mutual authentication protocol based on EPC Class-1 Gen.-2 standard. They claim their protocol is secure against adversarial attacks and also provides forward secrecy. In this paper we show that the proposed protocol does not have cited security features properly. A powerful and practical attack is presented on this protocol whereby the whole security of the protocol is broken. Furthermore, Yeh et al.'s protocol does not assure the untraceabilitiy and backwarduntraceabilitiy attributes. We also will propose our revision to safeguard the Yeh et al.'s protocol against cited attacks.

show abstract

Cryptanalysisof two mutual authentication protocols for low-cost RFID

Abstract: ABSTRACT

Cited by 5 publications

References 37 publications

SE-H: A Secure and Efficient Hash Protocol for RFID System

SE-H: A Secure and Efficient Hash Protocol for RFID System

Practical Attacks on a RFID Authentication Protocol Conforming to EPC C-1 G-2 Standard

Attacks on a Lightweight Mutual Authentication Protocol under EPC C-1 G-2 Standard

Contact Info

Product

Resources

About