Efficient RFID authentication protocols based on pseudorandom sequence generators

Lee, Jooyoung; Yeom, Yongjin

doi:10.1007/s10623-008-9255-x

Cited by 9 publications

(8 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The LMAP, M 2 AP and EMAP protocols proposed respectively in [16][17][18] allow a mutual authentication between the reader and the tag but are also completely broken [20] by key recovery attacks. In [21], the authors proposed a family of protocols, called S-protocols, based on a family of generic random number generators that they introduced in the same paper. They presented a formal proof which guarantees the resistance of the S-protocol against the attacks of desynchronization [22,23] and impersonation [24].…”

Section: Related Workmentioning

confidence: 99%

Lightweight Authentication Protocol for Low-Cost RFID Tags

Dusart

Sinaly

2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

Section: Related Workmentioning

confidence: 99%

Lightweight Authentication Protocol for Low-Cost RFID Tags

Dusart

Sinaly

2013

Lecture Notes in Computer Science

View full text Add to dashboard Cite

show abstract

“…collision resistance) that are unnecessary in these applications. While the S-protocol [36] has no privacy goals, an example of a stream cipher based privacy preserving protocol is the recently proposed protocol O-FRAP and its variants [48] but it does not achieve almost-forward privacy because it stores a pseudo-random number in the tag that is transmitted during the last pass of the protocol. Due to this feature, an attacker can compare the value of the pseudo-random number found by tampering with a tag with the last pseudo-random number used by an unknown tag to immediately determine whether it is the same tag or not.…”

Section: Dos Resistance and Privacymentioning

confidence: 99%

“…Grain v1 or Trivium [25,16], are also known to have the potential to lead to extremely efficient authentication solutions. On the other hand, few explicit stream cipher based authentication schemes have been proposed so far; an example is the relatively complex stream cipher based protocol from [36] which requires up to six message exchanges. Lightweight authentication protocols not based on a symmetric primitive like SQUASH [47] and the HB family of RFID schemes [34,23] represent another promising avenue of research, even though it remains a complicated task to identify practical instances from those families resisting all the partial cryptanalysis results obtained so far [42,21,22,41].…”

Section: Introductionmentioning

confidence: 99%

Lightweight Privacy Preserving Authentication for RFID Using a Stream Cipher

Billet

Etrog

Gilbert

2010

Fast Software Encryption

View full text Add to dashboard Cite

Abstract. In this paper, a privacy preserving authentication protocol for RFID that relies on a single cryptographic component, a lightweight stream cipher, is constructed. The goal is to provide a more realistic balance between forward privacy and security, resistance against denial of service attacks, and computational efficiency (in tags and readers) than existing protocols. We achieve this goal by solely relying on a stream cipher-which can be arbitrarily chosen, for instance a stream cipher design aimed at extremely lightweight hardware implementations-and we provide security proofs for our new protocol in the standard model, under the assumption that the underlying stream cipher is secure.

show abstract

“…Forward secure authentication [9], [10], [11], [12], [13], [14], [15], [16], [17], [18], [19], [20], [21] is introduced on RFID protocol to minimize the impact for compromised present session key on previous established sessions. As RFID tags are generally low cost device without tamper resistance, compromising RFID tag can be very easy.…”

Section: Introductionmentioning

confidence: 99%

“…Some researchers [10], [16], [17], [22] claim that desynchronization attacks on RFID protocol is unavoidable but have minimal impact to the RFID protocol. This may not be appropriate as RFID technology may be used in a large enterprise, thus the protocol should be robust and with high availability.…”

Section: Introductionmentioning

confidence: 99%

RFID Forward Secure Authentication Protocol: Flaw and Solution

Yiu

Hui

2009

2009 International Conference on Complex, Intelligent and Software Intensive Systems

View full text Add to dashboard Cite

RFID is a widely adopted technology in the enterprises for inventory checking and management. Due to the ubiquitous nature of RFID, attackers can easily launch attacks over wireless channel whenever there is a flaw on the RFID authentication protocol being used. A successful attack can imply a substantial loss in the enterprise and may trigger a series of problems. In this paper, we investigate a useful type of RFID authentication protocol, called forward secure authentication schemes, and found that these schemes are not secure. In particular, we present attacks that can desynchronize the authentication key of the RFID server and the tag so that they loss the ability to communicate or identify each other. On the other hand, we propose a solution to overcome this attack. We also provide a formal proof to show that our solution is secure under this attack based on the Universally Composable Model.

show abstract

Efficient RFID authentication protocols based on pseudorandom sequence generators

Cited by 9 publications

References 18 publications

Lightweight Authentication Protocol for Low-Cost RFID Tags

Lightweight Authentication Protocol for Low-Cost RFID Tags

Lightweight Privacy Preserving Authentication for RFID Using a Stream Cipher

RFID Forward Secure Authentication Protocol: Flaw and Solution

Contact Info

Product

Resources

About