Lightweight ECC based RFID Authentication Protocol

The RFID (radio frequency identification) technology is being extensively accepted and used as a governing recognizing technology in medical management domain like information corroboration, patient records, blood transmission, etc. With more rigid security concern to RFID based authentication protocols, ECC (elliptic curve cryptography) established Radio Frequency Identification verification protocols is being expected to fit the prerequisite of security and privacy. However, abounding new published ECC based RFID protocols have severe security vulnerability. In the following paper, we have reviewed few RFID verification and authentication protocols and has compared its strengths, fragility and proposed less complex and more efficient authentication protocol.

Download Full-text

A Lightweight RFID Mutual Authentication Protocol with PUF

Sensors ◽

10.3390/s19132957 ◽

2019 ◽

Vol 19 (13) ◽

pp. 2957 ◽

Cited By ~ 7

Author(s):

Feng Zhu ◽

Peng Li ◽

He Xu ◽

Ruchuan Wang

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Large Scale ◽

Mutual Authentication ◽

Authentication Protocol ◽

Security And Privacy ◽

Great Loss ◽

Physically Unclonable Functions ◽

Frequency Identification ◽

Mutual Authentication Protocol

Radio frequency identification is one of the key techniques for Internet of Things, which has been widely adopted in many applications for identification. However, there exist various security and privacy issues in radio frequency identification (RFID) systems. Particularly, one of the most serious threats is to clone tags for the goal of counterfeiting goods, which causes great loss and danger to customers. To solve these issues, lots of authentication protocols are proposed based on physical unclonable functions that can ensure an anti-counterfeiting feature. However, most of the existing schemes require secret parameters to be stored in tags, which are vulnerable to physical attacks that can further lead to the breach of forward secrecy. Furthermore, as far as we know, none of the existing schemes are able to solve the security and privacy problems with good scalability. Since many existing schemes rely on exhaustive searches of the backend server to validate a tag and they are not scalable for applications with a large scale database. Hence, in this paper, we propose a lightweight RFID mutual authentication protocol with physically unclonable functions (PUFs). The performance analysis shows that our proposed scheme can ensure security and privacy efficiently in a scalable way.

Download Full-text

Cryptographic Solution Based Secure Elliptic Curve Cryptography Enabled Radio Frequency Identification Mutual Authentication Protocol for Internet of Vehicles

IEEE Access ◽

10.1109/access.2021.3124209 ◽

2021 ◽

pp. 1-1

Author(s):

Surbhi Sharma ◽

Baijnath Kaushik ◽

Mohammad Khalid Imam Rahmani ◽

Md Ezaz Ahmed

Keyword(s):

Radio Frequency ◽

Elliptic Curve ◽

Radio Frequency Identification ◽

Elliptic Curve Cryptography ◽

Mutual Authentication ◽

Authentication Protocol ◽

Internet Of Vehicles ◽

Frequency Identification ◽

Mutual Authentication Protocol

Download Full-text

Super lightweight mobile RFID authentication protocol for bit replacement operation

International Journal of RF Technologies ◽

10.3233/rft-200246 ◽

2020 ◽

pp. 1-15

Author(s):

Yubao Hou ◽

Hua Liang ◽

Juan liu

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Authentication Protocol ◽

Wireless Channel ◽

Identification System ◽

Rfid Systems ◽

Rfid System ◽

Frequency Identification ◽

Replacement Operation ◽

Mobile Rfid

In the traditional RFID (Radio Frequency IDentification) system, a secure wired channel communication is used between the reader and the server. The newly produced mobile RFID system is different from the traditional RFID system, the communication between the reader and the server is based on a wireless channel, and the authentication protocol is suitable for traditional RFID systems, but it cannot be used in mobile RFID systems. To solve this problem, a mutual authentication protocol MSB (Most Significant Bit) for super lightweight mobile radio frequency identification system is proposed based on bit replacement operation. MSB is a bitwise operation to encrypt information and reduce the computational load of communication entities. Label, readers, and servers authenticate first and then communicate, MSB may be used to resistant to common attacks. The security analysis of the protocol shows that the protocol has high security properties, the performance analysis of the protocol shows that the protocol has the characteristics of low computational complexity, the formal analysis of the protocol based on GNY logic Gong et al. (1990) provides a rigorous reasoning proof process for the protocol.

Download Full-text

Cryptanalysis of Radio Frequency Identification System Mutual Authentication Protocol

2019 2nd International Conference on Communication, Computing and Digital systems (C-CODE) ◽

10.1109/c-code.2019.8681046 ◽

2019 ◽

Author(s):

Madiha Khalid ◽

Aniqa Tahir ◽

Umar Khokhar ◽

Hyesung Park

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Mutual Authentication ◽

Authentication Protocol ◽

Identification System ◽

Frequency Identification ◽

Mutual Authentication Protocol

Download Full-text

Cryptanalysis of ultralightweight mutual authentication protocol for radio frequency identification enabled Internet of Things networks

International Journal of Distributed Sensor Networks ◽

10.1177/1550147718795120 ◽

2018 ◽

Vol 14 (8) ◽

pp. 155014771879512 ◽

Cited By ~ 2

Author(s):

Madiha Khalid ◽

Umar Mujahid ◽

Muhammad Najam-ul-Islam

Keyword(s):

Internet Of Things ◽

Radio Frequency ◽

Radio Frequency Identification ◽

Mutual Authentication ◽

Authentication Protocol ◽

Wireless Channel ◽

Frequency Identification ◽

Mutual Authentication Protocol ◽

Attack Models ◽

Internet Of Thing

Internet of Things is one of the most important components of modern technological systems. It allows the real time synchronization and connectivity of devices with each other and with the rest of the world. The radio frequency identification system is used as node identification mechanism in the Internet of Thing networks. Since Internet of Things involve wireless channel for communication that is open for all types of malicious adversaries, therefore many security protocols have been proposed to ensure encryption over wireless channel. To reduce the overall cost of radio frequency identification enabled Internet of Thing network security, the researchers use simple bitwise logical operations such as XOR, AND, OR, and Rot and have proposed many ultralightweight mutual authentication protocols. However, almost all the previously proposed protocols were later found to be vulnerable against several attack models. Recently, a new ultralightweight mutual authentication protocol has been proposed which involves only XOR and Rotation functions in its design and claimed to be robust against all possible attack models. In this article, we have performed cryptanalysis of this recently proposed ultralightweight mutual authentication protocol and found many pitfalls and vulnerabilities in the protocol design. We have exploited weak structure of the protocol messages and proposed three attacks against the said protocol: one desynchronization and two full disclosure attacks.

Download Full-text

Intelligent Agent Framework for Secure Patient-Doctor Profiling and Profile Matching

Developments in Healthcare Information Systems and Technologies ◽

10.4018/978-1-61692-002-9.ch014 ◽

2011 ◽

pp. 195-213

Author(s):

Masoud Mohammadian ◽

Ric Jentzsch

Keyword(s):

Health Care ◽

Radio Frequency ◽

Data Acquisition ◽

Radio Frequency Identification ◽

Intelligent Agent ◽

Patient Data ◽

Security And Privacy ◽

Profile Matching ◽

Care Systems ◽

Frequency Identification

Radio frequency identification (RFID) is a promising technology for improving services and reduction of cost in health care. Accurate almost real time data acquisition and analysis of patient data and the ability to update such a data is a way to improve patients care and reduce cost in health care systems. This article employs wireless radio frequency identification technology to acquire patient data and integrates wireless technology for fast data acquisition and transmission, while maintaining the security and privacy issues. An intelligent agent framework is proposed to assist in managing patients health care data in a hospital environment. A data classification method based on fuzzy logic is proposed and developed to improve the data security and privacy of data collected and propagated.

Download Full-text

The Security and Privacy Protection in RFID

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.430-432.1755 ◽

2012 ◽

Vol 430-432 ◽

pp. 1755-1758

Author(s):

Chun Chang Fu ◽

Wei Lin He

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Security And Privacy ◽

Automatic Identification ◽

Present System ◽

Privacy Threats ◽

Wide Range ◽

Frequency Identification ◽

Radio Frequency Identification Technology ◽

Privacy Issues

Radio frequency identification technology is an automatic identification technology started in the 1990s. With the RFID technology in a wide range of applications in different areas, it offers the security and privacy threats and caused a great deal of attention. At present, system security and privacy issues have become one of the main factors restricted the wide application of radio frequency identification technology. Aimed at the problem, this article discussed the safety of the privacy issues.

Download Full-text

Design and Implementation of RFID Authentication Protocol based on Simple Symmetric Key (SSK) Algorithm

International Journal of Recent Technology and Engineering - 2 ◽

10.35940/ijrte.f7131.038620 ◽

2020 ◽

Vol 8 (6) ◽

pp. 437-442

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Distributed Database ◽

Business Environment ◽

Authentication Protocol ◽

Replay Attack ◽

Device Identification ◽

Frequency Identification ◽

Limited Power ◽

Symmetric Key

RFID uses radio frequency waves to transfer data using components such as tag, the reader and back-end server for device identification. Radio Frequency Identification technology (RFID) providing unique identification and tracking any device that has a tag attached to safeguard the products and protect from unauthorized users. There are many kinds of protocols to resolve these problems have been researched. Though, the security, cost, time and task of RFID are accountable to identify the feasible authentication protocol according to the business environment. In this research article, we proposed new authentication protocol as a method to protect privacy, especially for affordable cost and functionalities and have limited power consumption, memory and effective security process. The proposed protocol called as simple symmetric key (SSK) algorithm using random integers based on modulo 37. The proposed authentication protocol is secure against spoofing and replay attack and also it is suitable to support distributed database environment.

Download Full-text

SLEC: A Novel Serverless RFID Authentication Protocol Based on Elliptic Curve Cryptography

Electronics ◽

10.3390/electronics8101166 ◽

2019 ◽

Vol 8 (10) ◽

pp. 1166

Author(s):

Rania Baashirah ◽

Abdelshakour Abuzneid

Keyword(s):

Elliptic Curve ◽

Radio Frequency Identification ◽

Elliptic Curve Cryptography ◽

Secure Communication ◽

Mutual Authentication ◽

Authentication Protocol ◽

New Paradigm ◽

Authentication Protocols ◽

Rfid System ◽

Setup Phase

Internet of Things (IoT) is a new paradigm that has been evolving into the wireless sensor networks to expand the scope of networked devices (or things). This evolution drives communication engineers to design secure and reliable communication at a low cost for many network applications such as radio frequency identification (RFID). In the RFID system, servers, readers, and tags communicate wirelessly. Therefore, mutual authentication is necessary to ensure secure communication. Normally, a central server supports the authentication of readers and tags by distributing and managing the credentials. Recent lightweight RFID authentication protocols have been proposed to satisfy the security features of RFID networks. Using a serverless RFID system is an alternative solution to using a central server. In this model, both the reader and the tag perform mutual authentication without the need for the central server. However, many security challenges arise from implementing lightweight authentication protocols in serverless RFID systems. We propose a new secure serverless RFID authentication protocol based on the famous elliptic curve cryptography (ECC). The protocol also maintains the confidentiality and privacy of the messages, tag information, and location. Although most of the current serverless protocols assume secure channels in the setup phase, we assume an insecure environment during the setup phase between the servers, readers, and tags. We ensure that the credentials can be renewed by any checkpoint server in the mobile RFID network. Thus, we implement ECC in the setup phase (renewal phase), to transmit and store the communication credentials of the server to multiple readers so that the tags can perform the mutual authentication successfully while far from the server. The proposed protocol is compared with other serverless frameworks proposed in the literature in terms of computation cost and attacks resistance.

Download Full-text

Cost and Lightweight Modeling Analysis of RFID Authentication Protocols in Resource Constraint Internet of Things

Journal of Communications Software and Systems ◽

10.24138/jcomss.v10i3.122 ◽

2017 ◽

Vol 10 (3) ◽

pp. 179

Author(s):

Adarsh Kumar ◽

Krishna Gopal ◽

Alok Aggarwal

Keyword(s):

Internet Of Things ◽

Radio Frequency ◽

Radio Frequency Identification ◽

Mutual Authentication ◽

Authentication Protocol ◽

Resource Constraint ◽

Authentication Protocols ◽

Pervasive Environment ◽

Rfid Authentication Protocols ◽

Mutual Authentication Protocol

Internet of Things (IoT) is a pervasive environment to interconnect the things like: smart objects, devices etc. in a structure like internet. Things can be interconnected in IoT if these are uniquely addressable and identifiable. Radio Frequency Identification (RFID) is one the important radio frequency based addressing scheme in IoT. Major security challenge in resource constraint RFID networks is how to achieve traditional CIA security i.e. Confidentiality, Integrity and Authentication. Computational and communication costs for Lightweight Mutual Authentication Protocol (LMAP), RFID mutual Authentication Protocol with Permutation (RAPP) and kazahaya authentication protocols are analyzed. These authentication protocols are modeled to analyze the delays using lightweight modeling language. Delay analysis is performed using alloy model over LMAP, RAPP and kazahaya authentication protocols where one datacenter (DC) is connected to different number of readers (1,5 or 10) with connectivity to 1, 5 or 25 tags associated with reader and its results show that for LMAP delay varies from 30-156 msec, for RAPP from 31-188 while for kazahaya from 61-374 msec. Further, performance of RFID authentication protocols is analyzed for group construction through more than one DC (1,5 or 10) with different number of readers (10, 50 or 100) and tags associated with these readers (50, 500, 1000) and results show that DC based binary tree topology with LMAP authentication protocol is having a minimum delay for 50 or 100 readers. Other authentication protocols fail to give authentication results because of large delays in the network. Thus, RAPP and Kazahaya are not suitable for scenarios where there is large amount of increase in number of tags or readers.

Download Full-text