Reducing Time Complexity in RFID Systems

Avoine, Gildas; Dysli, Etienne; Oechslin, Philippe

doi:10.1007/11693383_20

Cited by 168 publications

(162 citation statements)

References 12 publications

Supporting

Mentioning

158

Contrasting

Order By: Relevance

“…The trade-off that exists between efficiency and security in tree-based protocols was already pointed out by Avoine [1], with respect to Molnar's original trees. Because tags share their partial keys, if one tag is compromised (i.e.…”

Section: Related Workmentioning

confidence: 93%

“…Examples are OSK (by Ohkubo, Suzuki and Kinoshita in [14]) and Yeo's protocol [16]. In [1], Avoine et al suggest applying time-memory trade-offs (based on Hellmann tables [9]) to hash-chain protocols (namely OSK and an improved version thereof). In [2] they extend this trade-off with socalled rainbow tables and checkpoints to further improve efficiency.…”

Section: Related Workmentioning

confidence: 99%

“…This expected size of the anonymity set that a randomly selected member will belong to, is denoted S. One could also view it as the average anonymity set size over all tags, as shown in (1). Note thatS can be computed for any given scenario where a tree is broken into anonymity sets.…”

Section: Buttyán Treesmentioning

confidence: 99%

See 2 more Smart Citations

Improved Anonymity for Key-Trees

Veugen

Beye

2013

Radio Frequency Identification. Security and Privacy Issues

View full text Add to dashboard Cite

Abstract. Randomized hash-lock protocols for Radio Frequency IDentification (RFID) tags offer forward untraceability, but incur heavy search on the server. Key trees have been proposed as a way to reduce search times, but because partial keys in such trees are shared, key compromise affects several tags. Buttyán et al. have quantified the resulting loss of anonymity in the system, and proposed specific tree properties in an attempt to minimize this loss. We will further improve upon these results, and provide a proof of optimality. Finally, our proposals are compared to existing results by means of simulation.

show abstract

Section: Related Workmentioning

confidence: 93%

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Improved Anonymity for Key-Trees

Veugen

Beye

2013

Radio Frequency Identification. Security and Privacy Issues

View full text Add to dashboard Cite

show abstract

“…A paradigmatic example of an RFID identification protocol providing some forward privacy is the OSK scheme [39,40] which relies on the use by the tag of two one-way hash functions. 1 Variants of the OSK scheme turning it into a forward private authentication protocol have been proposed in [5], thus making it resistant to replay attacks. 2 It was however noticed that the OSK protocol and its authentication variants are vulnerable to Denial of Service attacks (DoS) that desynchronize a tag from the system.…”

Section: Introductionmentioning

confidence: 99%

Lightweight Privacy Preserving Authentication for RFID Using a Stream Cipher

Billet

Etrog

Gilbert

2010

Fast Software Encryption

View full text Add to dashboard Cite

Abstract. In this paper, a privacy preserving authentication protocol for RFID that relies on a single cryptographic component, a lightweight stream cipher, is constructed. The goal is to provide a more realistic balance between forward privacy and security, resistance against denial of service attacks, and computational efficiency (in tags and readers) than existing protocols. We achieve this goal by solely relying on a stream cipher-which can be arbitrarily chosen, for instance a stream cipher design aimed at extremely lightweight hardware implementations-and we provide security proofs for our new protocol in the standard model, under the assumption that the underlying stream cipher is secure.

show abstract

“…The problem of the above described tree-based approach is that upper level keys in the tree are used by many members, and therefore, if a member is compromised and its keys become known to the adversary, then the adversary gains partial knowledge of the key of other members too [1]. This obviously reduces the privacy provided by the system to its members, since by observing the authentication of an uncompromised member, the adversary can recognize the usage of some compromised keys, and therefore its uncertainty regarding the identity of the authenticating member is reduced (it may be able to determine which subtree the member belongs to).…”

Section: Introductionmentioning

confidence: 99%

Optimal Key-Trees for Tree-Based Private Authentication

Buttyán

Holczer

Vajda

2006

Privacy Enhancing Technologies

View full text Add to dashboard Cite

Abstract. Key-tree based private authentication has been proposed by Molnar and Wagner as a neat way to efficiently solve the problem of privacy preserving authentication based on symmetric key cryptography. However, in the key-tree based approach, the level of privacy provided by the system to its members may decrease considerably if some members are compromised. In this paper, we analyze this problem, and show that careful design of the tree can help to minimize this loss of privacy. First, we introduce a benchmark metric for measuring the resistance of the system to a single compromised member. This metric is based on the well-known concept of anonymity sets. Then, we show how the parameters of the key-tree should be chosen in order to maximize the system's resistance to single member compromise under some constraints on the authentication delay. In the general case, when any member can be compromised, we give a lower bound on the level of privacy provided by the system. We also present some simulation results that show that this lower bound is quite sharp. The results of this paper can be directly used by system designers to construct optimal key-trees in practice; indeed, we consider this as the main contribution of our work.

show abstract

Reducing Time Complexity in RFID Systems

Cited by 168 publications

References 12 publications

Improved Anonymity for Key-Trees

Improved Anonymity for Key-Trees

Lightweight Privacy Preserving Authentication for RFID Using a Stream Cipher

Optimal Key-Trees for Tree-Based Private Authentication

Contact Info

Product

Resources

About