Security and collision in RFID systems

Time Slot ◽

Mutual Authentication ◽

Wireless Channel ◽

Security And Privacy ◽

Linear Feedback ◽

Frame Size ◽

Identification Process ◽

Rfid Authentication Protocols

Abstract Radio Frequency Identification (RFID) is a promising technology to provide automated contactless identification of objects, people and animals. The identification process is performed as the reader receives simultaneous responses from various tags over a shared wireless channel and without no requirement of line-of-sight in the interrogation zone. The communication between the reader and tags is separated into two processes: identification and acknowledgment processes. Both processes suffer from serious drawbacks that limit the proliferation of RFID. Such drawbacks are security and privacy and collision problems. This thesis has two main parts. The first part examines the security and privacy of the existing RFID authentication protocols. We introduced a novel cryptographic scheme, Hacker Proof Authentication Protocol (HPAP) that allows mutual authentication and achieves full security by deploying tag static identifier, updated timestamp, a one-way hash function and encryption keys with randomized update using Linear Feedback Shift Register (LFSR). Cryptanalysis and simulation show that the protocol is secure against various attacks. In comparison with the various existing RFID authentication protocols, our protocol has less computation load, requires less storage, and costs less. The second part focuses on solving RFID collision arbitration imposed by the shared wireless link between a reader and the many tags distributed in the interrogation zone. In most proposed anticollision algorithms, tags reply randomly to the time slots chosen by the reader. Since more than two tags may choose the same time slot in a frame, this Random Access (RA) causes garbled data at the reader side resulting the identification process fails. Towards this challenge, two ALOHA based anti-collision algorithms that adopt a new way for tags to choose their replied time slots to enhance system efficiency are presented. In MBA and LTMBA, tags use modulo function to choose their owned time slot. The difference between the two algorithms relies on the method by which the reader estimates the next frame size. The performance evaluation of the two algorithms shows better performance than previously proposed algorithms in terms of fewer communication rounds and fewer collided/empty slots considering the limitation of the EPCglobal Class-1 Gen-2 standard.

Security and collision in RFID systems

10.32920/ryerson.14656728 ◽

2021 ◽

Author(s):

Mohammed Jameel Hakeem

Keyword(s):

Time Slot ◽

Mutual Authentication ◽

Wireless Channel ◽

Security And Privacy ◽

Linear Feedback ◽

Frame Size ◽

Identification Process ◽

Rfid Authentication Protocols

Cost and Lightweight Modeling Analysis of RFID Authentication Protocols in Resource Constraint Internet of Things

Journal of Communications Software and Systems ◽

10.24138/jcomss.v10i3.122 ◽

2017 ◽

Vol 10 (3) ◽

pp. 179

Author(s):

Adarsh Kumar ◽

Krishna Gopal ◽

Alok Aggarwal

Keyword(s):

Internet Of Things ◽

Radio Frequency ◽

Mutual Authentication ◽

Authentication Protocol ◽

Resource Constraint ◽

Pervasive Environment ◽

Rfid Authentication Protocols ◽

Mutual Authentication Protocol

Internet of Things (IoT) is a pervasive environment to interconnect the things like: smart objects, devices etc. in a structure like internet. Things can be interconnected in IoT if these are uniquely addressable and identifiable. Radio Frequency Identification (RFID) is one the important radio frequency based addressing scheme in IoT. Major security challenge in resource constraint RFID networks is how to achieve traditional CIA security i.e. Confidentiality, Integrity and Authentication. Computational and communication costs for Lightweight Mutual Authentication Protocol (LMAP), RFID mutual Authentication Protocol with Permutation (RAPP) and kazahaya authentication protocols are analyzed. These authentication protocols are modeled to analyze the delays using lightweight modeling language. Delay analysis is performed using alloy model over LMAP, RAPP and kazahaya authentication protocols where one datacenter (DC) is connected to different number of readers (1,5 or 10) with connectivity to 1, 5 or 25 tags associated with reader and its results show that for LMAP delay varies from 30-156 msec, for RAPP from 31-188 while for kazahaya from 61-374 msec. Further, performance of RFID authentication protocols is analyzed for group construction through more than one DC (1,5 or 10) with different number of readers (10, 50 or 100) and tags associated with these readers (50, 500, 1000) and results show that DC based binary tree topology with LMAP authentication protocol is having a minimum delay for 50 or 100 readers. Other authentication protocols fail to give authentication results because of large delays in the network. Thus, RAPP and Kazahaya are not suitable for scenarios where there is large amount of increase in number of tags or readers.

Survey: Vulnerability Analysis of Low-Cost ECC-Based RFID Protocols against Wireless and Side-Channel Attacks

Sensors ◽

10.3390/s21175824 ◽

2021 ◽

Vol 21 (17) ◽

pp. 5824

Author(s):

Souhir Gabsi ◽

Vincent Beroulle ◽

Yann Kieffer ◽

Hiep Manh Dao ◽

Yassin Kortli ◽

...

Keyword(s):

Data Transfer ◽

Low Cost ◽

Mutual Authentication ◽

Side Channel ◽

Side Channel Attacks ◽

Advantages And Disadvantages ◽

Rfid System ◽

Rfid Authentication Protocols

The radio frequency identification (RFID) system is one of the most important technologies of the Internet of Things (IoT) that tracks single or multiple objects. This technology is extensively used and attracts the attention of many researchers in various fields, including healthcare, supply chains, logistics, asset tracking, and so on. To reach the required security and confidentiality requirements for data transfer, elliptic curve cryptography (ECC) is a powerful solution, which ensures a tag/reader mutual authentication and guarantees data integrity. In this paper, we first review the most relevant ECC-based RFID authentication protocols, focusing on their security analysis and operational performances. We compare the various lightweight ECC primitive implementations designed for RFID applications in terms of occupied area and power consumption. Then, we highlight the security threats that can be encountered considering both network attacks and side-channel attacks and analyze the security effectiveness of RFID authentication protocols against such types of attacks. For this purpose, we classify the different threats that can target an ECC-based RFID system. After that, we present the most promising ECC-based protocols released during 2014–2021 by underlining their advantages and disadvantages. Finally, we perform a comparative study between the different protocols mentioned regarding network and side-channel attacks, as well as their implementation costs to find the optimal one to use in future works.

A Secure Lightweight Mutual Authentication for RFID Systems

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.644-650.4496 ◽

2014 ◽

Vol 644-650 ◽

pp. 4496-4500

Author(s):

Hang Qin ◽

Yi Liu

Keyword(s):

Low Cost ◽

Mutual Authentication ◽

Security Analysis ◽

Limited Resource ◽

Authentication Protocol ◽

Security And Privacy ◽

Linear Feedback ◽

Security Issues ◽

Rfid Systems

Radio Frequency Identification (RFID) technology is an automated identification technology which is widely used to identify and track all kind of objects. It is well suitable for many fields and is expected to replace barcodes in the near future. However, it is a challenging task to design an authentication protocol because of the limited resource of low-cost RFID tags. Recently, a lightweight RFID authentication protocol presented by Kulseng et al uses Physically Unclonable Functions (PUFs) and Linear Feedback Shift Registers (LFSRs) which are well known lightweight operations. The number of gates which the protocol require can be significantly decreased. Unfortunately, their protocol faces several serious security issues. In this paper, based PUFs and LFSRs, we suggest a secure mutual authentication for low-cost RFID Systems. Security analysis shows that our protocol owns security and privacy.

Cryptanalysis of ultralightweight mutual authentication protocol for radio frequency identification enabled Internet of Things networks

International Journal of Distributed Sensor Networks ◽

10.1177/1550147718795120 ◽

2018 ◽

Vol 14 (8) ◽

pp. 155014771879512 ◽

Cited By ~ 2

Author(s):

Madiha Khalid ◽

Umar Mujahid ◽

Muhammad Najam-ul-Islam

Keyword(s):

Internet Of Things ◽

Radio Frequency ◽

Mutual Authentication ◽

Authentication Protocol ◽

Wireless Channel ◽

Mutual Authentication Protocol ◽

Attack Models ◽

Internet Of Thing

Internet of Things is one of the most important components of modern technological systems. It allows the real time synchronization and connectivity of devices with each other and with the rest of the world. The radio frequency identification system is used as node identification mechanism in the Internet of Thing networks. Since Internet of Things involve wireless channel for communication that is open for all types of malicious adversaries, therefore many security protocols have been proposed to ensure encryption over wireless channel. To reduce the overall cost of radio frequency identification enabled Internet of Thing network security, the researchers use simple bitwise logical operations such as XOR, AND, OR, and Rot and have proposed many ultralightweight mutual authentication protocols. However, almost all the previously proposed protocols were later found to be vulnerable against several attack models. Recently, a new ultralightweight mutual authentication protocol has been proposed which involves only XOR and Rotation functions in its design and claimed to be robust against all possible attack models. In this article, we have performed cryptanalysis of this recently proposed ultralightweight mutual authentication protocol and found many pitfalls and vulnerabilities in the protocol design. We have exploited weak structure of the protocol messages and proposed three attacks against the said protocol: one desynchronization and two full disclosure attacks.

Survey on Prominent RFID Authentication Protocols for Passive Tags

Sensors ◽

10.3390/s18103584 ◽

2018 ◽

Vol 18 (10) ◽

pp. 3584 ◽

Cited By ~ 10

Author(s):

Rania Baashirah ◽

Abdelshakour Abuzneid

Keyword(s):

Large Scale ◽

Security Requirements ◽

The Internet ◽

Reliable System ◽

Passive Tags ◽

Rfid Authentication Protocols ◽

The Internet Of Things

Radio Frequency Identification (RFID) is one of the leading technologies in the Internet of Things (IoT) to create an efficient and reliable system to securely identify objects in many environments such as business, health, and manufacturing areas. Recent RFID authentication protocols have been proposed to satisfy the security features of RFID communication. In this article, we identify and review some of the most recent and enhanced authentication protocols that mainly focus on the authentication between a reader and a tag. However, the scope of this survey includes only passive tags protocols, due to the large scale of the RFID framework. We examined some of the recent RFID protocols in term of security requirements, computation, and attack resistance. We conclude that only five protocols resist all of the major attacks, while only one protocol satisfies all of the security requirements of the RFID system.

SLEC: A Novel Serverless RFID Authentication Protocol Based on Elliptic Curve Cryptography

Electronics ◽

10.3390/electronics8101166 ◽

2019 ◽

Vol 8 (10) ◽

pp. 1166

Author(s):

Rania Baashirah ◽

Abdelshakour Abuzneid

Keyword(s):

Elliptic Curve ◽

Elliptic Curve Cryptography ◽

Secure Communication ◽

Mutual Authentication ◽

Authentication Protocol ◽

New Paradigm ◽

Rfid System ◽

Setup Phase

Internet of Things (IoT) is a new paradigm that has been evolving into the wireless sensor networks to expand the scope of networked devices (or things). This evolution drives communication engineers to design secure and reliable communication at a low cost for many network applications such as radio frequency identification (RFID). In the RFID system, servers, readers, and tags communicate wirelessly. Therefore, mutual authentication is necessary to ensure secure communication. Normally, a central server supports the authentication of readers and tags by distributing and managing the credentials. Recent lightweight RFID authentication protocols have been proposed to satisfy the security features of RFID networks. Using a serverless RFID system is an alternative solution to using a central server. In this model, both the reader and the tag perform mutual authentication without the need for the central server. However, many security challenges arise from implementing lightweight authentication protocols in serverless RFID systems. We propose a new secure serverless RFID authentication protocol based on the famous elliptic curve cryptography (ECC). The protocol also maintains the confidentiality and privacy of the messages, tag information, and location. Although most of the current serverless protocols assume secure channels in the setup phase, we assume an insecure environment during the setup phase between the servers, readers, and tags. We ensure that the credentials can be renewed by any checkpoint server in the mobile RFID network. Thus, we implement ECC in the setup phase (renewal phase), to transmit and store the communication credentials of the server to multiple readers so that the tags can perform the mutual authentication successfully while far from the server. The proposed protocol is compared with other serverless frameworks proposed in the literature in terms of computation cost and attacks resistance.

A Lightweight RFID Mutual Authentication Protocol with PUF

Sensors ◽

10.3390/s19132957 ◽

2019 ◽

Vol 19 (13) ◽

pp. 2957 ◽

Cited By ~ 7

Author(s):

Feng Zhu ◽

Peng Li ◽

He Xu ◽

Ruchuan Wang

Keyword(s):

Radio Frequency ◽

Large Scale ◽

Mutual Authentication ◽

Authentication Protocol ◽

Security And Privacy ◽

Great Loss ◽

Physically Unclonable Functions ◽

Mutual Authentication Protocol

Radio frequency identification is one of the key techniques for Internet of Things, which has been widely adopted in many applications for identification. However, there exist various security and privacy issues in radio frequency identification (RFID) systems. Particularly, one of the most serious threats is to clone tags for the goal of counterfeiting goods, which causes great loss and danger to customers. To solve these issues, lots of authentication protocols are proposed based on physical unclonable functions that can ensure an anti-counterfeiting feature. However, most of the existing schemes require secret parameters to be stored in tags, which are vulnerable to physical attacks that can further lead to the breach of forward secrecy. Furthermore, as far as we know, none of the existing schemes are able to solve the security and privacy problems with good scalability. Since many existing schemes rely on exhaustive searches of the backend server to validate a tag and they are not scalable for applications with a large scale database. Hence, in this paper, we propose a lightweight RFID mutual authentication protocol with physically unclonable functions (PUFs). The performance analysis shows that our proposed scheme can ensure security and privacy efficiently in a scalable way.

Efficient Hardware Implementation of KMAP+: An Ultralightweight Mutual Authentication Protocol

Journal of Circuits System and Computers ◽

10.1142/s0218126618500330 ◽

2017 ◽

Vol 27 (02) ◽

pp. 1850033 ◽

Cited By ~ 2

Author(s):

Umar Mujahid ◽

M. Najam-ul-Islam ◽

Madiha Khalid

Keyword(s):

Hardware Implementation ◽

Low Cost ◽

Mutual Authentication ◽

Cost Effective ◽

Authentication Protocol ◽

Wireless Channel ◽

Logical Operators ◽

Attack Model ◽

Mutual Authentication Protocol

Internet of Things (IoTs) are becoming one of the integral parts of our lives, as all of the modern devices including pervasive systems use internet for its connectivity with the rest of the world. The Radio Frequency IDentification (RFID) provides unique identification and nonline of sight capabilities, therefore plays a very important role in development of IoTs. However, the RFID systems incorporate wireless channel for communication, therefore have some allied risks to the system from threat agents. In order to prevent the system from malicious activities in a cost effective way, numerous Ultralightweight Mutual Authentication Protocols (UMAPs) have been proposed since last decade. These UMAPs mainly involve simple bitwise logical operators such as XOR, AND, OR, etc., in their designs and can be implemented with extremely low cost RFID tags. However, most of the UMAP designers didn’t provide the proper hardware approximations of their UMAPs and presented only theoretical results which mostly mislead the reader. In this paper, we have addressed this problem by reporting our experiences with FPGA and ASIC-based implementation of UMAP named psuedo Kasami code-based Mutual Authentication Protocol (KMAP[Formula: see text]. Further, we have also improved the structure of the KMAP protocol to overcome the previously highlighted attack model. The hardware implementation results show that KMAP[Formula: see text] successfully conform to EPC-C1G2 tags and can be implemented using less than 4[Formula: see text]K GE (for 32-bit word length).

International Journal of Innovative Technology and Exploring Engineering - Special Issue ◽

Lightweight ECC based RFID Authentication Protocol

10.35940/ijitee.g5189.059720 ◽

2020 ◽

Vol 9 (7) ◽

pp. 347-351

Keyword(s):

Radio Frequency ◽

Elliptic Curve Cryptography ◽

Authentication Protocol ◽

Security And Privacy ◽

Patient Records ◽

Management Domain ◽

Security Concern

The RFID (radio frequency identification) technology is being extensively accepted and used as a governing recognizing technology in medical management domain like information corroboration, patient records, blood transmission, etc. With more rigid security concern to RFID based authentication protocols, ECC (elliptic curve cryptography) established Radio Frequency Identification verification protocols is being expected to fit the prerequisite of security and privacy. However, abounding new published ECC based RFID protocols have severe security vulnerability. In the following paper, we have reviewed few RFID verification and authentication protocols and has compared its strengths, fragility and proposed less complex and more efficient authentication protocol.