Improvement of the RFID authentication scheme based on quadratic residues

Lin

2011 IEEE International Conference on Communications (ICC)

2011

RFID is popular to be used in plenty of applications with its capability of remote automatic identification. However, information transmitted wirelessly is under the treats of eavesdropping, interception, or modification because of the nature of the transmission media. Thus, Yeh et al. proposed an RFID authentication scheme based on quadratic residues by improving Chen et al.'s. However, we find that the server needs to maintain the obsolete shared secret key to resist DoS (Denial of Service) attack in both schemes. To overcome this drawback and improve the computation load, an improvement will be given with simple operations, one-way hash function and XOR operations. The proposed scheme can defend against possible attacks and be suitable for applications requiring efficiency and security at the same time.

Section: Introductionmentioning

confidence: 88%

“…Recently, many RFID schemes have been proposed for location privacy protection. According to utilized methods, these schemes can be divided into two categories: pseudonym [7,8] and shared secret update [2,3,[9][10][11][12][13][14]. In the first category, the server and the tag preshare a series of pseudonyms.…”

Section: Introductionmentioning

confidence: 99%

A Location-Privacy-Protected RFID Authentication Scheme

Lin

2011 IEEE International Conference on Communications (ICC)

2011

2011 Seventh International Conference on Intelligent Sensors, Sensor Networks and Information Processing

“…However, cryptanalysis of the scheme by Cao and Shen [24] shows that the scheme is vulnerable to tag impersonation attacks, replay attacks and tag location disclosure. Chen's scheme was improved by Yeh and Wu [25] by having the tag generate an additional random number. However, since PAP and both the original quadratic residue based scheme and the improved version require the tag to compute multiple hash functions they are not suitable for EPC Class-1 Gen-2 tags.…”

Section: Related Workmentioning

confidence: 99%

“…In our mutual authentication scheme and those proposed by Chien [29], Chen [23],Yeh [25] and Chen [27] the channel between the reader and the server is assumed to be secure. Hence there is no reader-server authentication that is built into the schemes.…”

Section: B Performance Comparisonmentioning

confidence: 99%

A novel mutual authentication scheme with minimum disclosure for RFID systems

Doss

Zhou

et al. 2011

In this paper we present a novel approach to authentication and privacy in RFID systems based on the minimum disclosure property and in conformance to EPC Class-1 Gen-2 specifications. We take into account the computational constraints of EPC Class-1 Gen-2 passive RFID tags and only the cyclic redundancy check (CRC) and pseudo random number generator (PRNG) functions that passive RFID tags are capable of are employed. Detailed security analysis of our scheme shows that it can offer robust security properties in terms of tag anonymity and tag untraceability while at the same time being robust to replay, tag impersonation and desynchronisation attacks. Simulations results are also presented to study the scalability of the proposed scheme and its impact on authentication delay.

IEICE Trans. Inf. & Syst.

“…RFID authentication has been intensively studied by researchers like [2]- [6], [11]- [26]. The security features of extant schemes have been improved to some extent, but only few of them simultaneously considered anonymity, un-traceability and forward secrecy.…”

Section: Introductionmentioning

confidence: 99%

RFID Authentication with Un-Traceability and Forward Secrecy in the Partial-Distributed-Server Model

Chien

Hsu

2015

SUMMARYSecure authentication of low cost Radio Frequency Identification (RFID) tag with limited resources is a big challenge, especially when we simultaneously consider anonymity, un-traceability, and forward secrecy. The popularity of Internet of Things (IoT) further amplifies this challenge, as we should authenticate these mobile tags in the partialdistributed-server environments. In this paper, we propose an RFID authentication scheme in the partial-distributed-server environments. The proposed scheme owns excellent performance in terms of computational complexity and scalability as well as security properties.