Security and Privacy of PUF-Based RFID Systems

The last decade has shown an increasing interest in the use of the physically unclonable function (PUF) technology in the design of radio frequency identification (RFID) systems. PUFs can bring extra security and privacy at the physical level that cannot be obtained by symmetric or asymmetric cryptography at the moment. However, many PUF-based RFID schemes proposed in recent years do not even achieve the lowest privacy level in reputable security and privacy models, such as Vaudenay’s model. In contrast, the lowest privacy in this model can be achieved through standard RFID schemes that use only symmetric cryptography. The purpose of this chapter is to analyze this aspect. Thus, it is emphasized the need to use formal models in the study of the security and privacy of (PUF-based) RFID schemes. We broadly discuss the tag corruption oracle and highlight some aspects that can lead to schemes without security or privacy. We also insist on the need to formally treat the cryptographic properties of PUFs to obtain security and privacy proofs. In the end, we point out a significant benefit of using PUF technology in RFID, namely getting schemes that offer destructive privacy in Vaudenay’s model.

Download Full-text

RFID Systems

Web Services Security and E-Business ◽

10.4018/978-1-59904-168-1.ch003 ◽

2007 ◽

pp. 57-74 ◽

Cited By ~ 1

Author(s):

Dennis M.L. Wong ◽

Raphael C.W. Phan

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Security And Privacy ◽

Malicious Attacks ◽

Rfid Systems ◽

Rfid System ◽

Frequency Identification ◽

Business Establishment ◽

Commercial Applications ◽

Privacy Issues

In this chapter, we discuss the business implications, as well as security and privacy issues, of the widespread deployment of radio frequency identification (RFID) systems. We first describe, in more detail, the components that make up an RFID system to facilitate better understanding of the implications of each, and then review the commercial applications of the RFID. We then discuss the security and privacy issues for RFID systems and what mechanisms have been proposed to safeguard these. The topics discussed in this chapter highlight the benefits of using RFIDs for user convenience in ubiquitous and pervasive commercial services and e-businesses, while maintaining the integrity of such systems against malicious attacks on the users’ security and privacy. This is vital for a business establishment to coexist with peers and remain competitively attractive to customers.

Download Full-text

Comparison and Feasibility of Various RFID Authentication Methods Using ECC

Sensors ◽

10.3390/s18092902 ◽

2018 ◽

Vol 18 (9) ◽

pp. 2902 ◽

Cited By ~ 5

Author(s):

Pagán Alexander ◽

Rania Baashirah ◽

Abdelshakour Abuzneid

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Security And Privacy ◽

Rfid Tags ◽

Rfid Technology ◽

Rfid Security ◽

Rfid Systems ◽

Frequency Identification ◽

Privacy Issues

Radio frequency identification (RFID) is a technology that has grown in popularity and in the applications of use. However, there are major issues regarding security and privacy with respect to RFID technology which have caught the interest of many researchers. There are significant challenges which must be overcome to resolve RFID security and privacy issues. One reason is the constraints attached to the provision of security and privacy in RFID systems. Along with meeting the security and privacy needs of RFID technology, solutions must be inexpensive, practical, reliable, scalable, flexible, inter-organizational, and long-lasting. To make RFID identifiers effective and efficient they must identify the item(s) while resisting attacks aimed at obtaining the tag’s information and compromising the system or making it possible to bypass the protection RFID tags are supposed to provide. Different authentication methods have been proposed, researched, and evaluated in the literature. In this work, we proposed our methodology in evaluating RFID authentication, and a few of the most promising authentication methods are reviewed, compared, and ranked in order to arrive at a possible best choice of protocol to use.

Download Full-text

RFID Systems

Electronic Business ◽

10.4018/978-1-60566-056-1.ch055 ◽

2009 ◽

pp. 879-894

Author(s):

Dennis M.L. Wong ◽

Raphael C.W. Phan

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Security And Privacy ◽

Malicious Attacks ◽

Rfid Systems ◽

Rfid System ◽

Frequency Identification ◽

Business Establishment ◽

Commercial Applications ◽

Privacy Issues

Download Full-text

Super lightweight mobile RFID authentication protocol for bit replacement operation

International Journal of RF Technologies ◽

10.3233/rft-200246 ◽

2020 ◽

pp. 1-15

Author(s):

Yubao Hou ◽

Hua Liang ◽

Juan liu

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Authentication Protocol ◽

Wireless Channel ◽

Identification System ◽

Rfid Systems ◽

Rfid System ◽

Frequency Identification ◽

Replacement Operation ◽

Mobile Rfid

In the traditional RFID (Radio Frequency IDentification) system, a secure wired channel communication is used between the reader and the server. The newly produced mobile RFID system is different from the traditional RFID system, the communication between the reader and the server is based on a wireless channel, and the authentication protocol is suitable for traditional RFID systems, but it cannot be used in mobile RFID systems. To solve this problem, a mutual authentication protocol MSB (Most Significant Bit) for super lightweight mobile radio frequency identification system is proposed based on bit replacement operation. MSB is a bitwise operation to encrypt information and reduce the computational load of communication entities. Label, readers, and servers authenticate first and then communicate, MSB may be used to resistant to common attacks. The security analysis of the protocol shows that the protocol has high security properties, the performance analysis of the protocol shows that the protocol has the characteristics of low computational complexity, the formal analysis of the protocol based on GNY logic Gong et al. (1990) provides a rigorous reasoning proof process for the protocol.

Download Full-text

Analysis of Vulnerabilities in Radio Frequency Identification (RFID) Systems

2018 8th International Conference on Cloud Computing, Data Science & Engineering (Confluence) ◽

10.1109/confluence.2018.8442623 ◽

2018 ◽

Cited By ~ 2

Author(s):

Rajat Jain ◽

Dev Kumar Chaudhary ◽

Sanjiv Kumar

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Rfid Systems ◽

Frequency Identification

Download Full-text

Intelligent Agent Framework for Secure Patient-Doctor Profiling and Profile Matching

Developments in Healthcare Information Systems and Technologies ◽

10.4018/978-1-61692-002-9.ch014 ◽

2011 ◽

pp. 195-213

Author(s):

Masoud Mohammadian ◽

Ric Jentzsch

Keyword(s):

Health Care ◽

Radio Frequency ◽

Data Acquisition ◽

Radio Frequency Identification ◽

Intelligent Agent ◽

Patient Data ◽

Security And Privacy ◽

Profile Matching ◽

Care Systems ◽

Frequency Identification

Radio frequency identification (RFID) is a promising technology for improving services and reduction of cost in health care. Accurate almost real time data acquisition and analysis of patient data and the ability to update such a data is a way to improve patients care and reduce cost in health care systems. This article employs wireless radio frequency identification technology to acquire patient data and integrates wireless technology for fast data acquisition and transmission, while maintaining the security and privacy issues. An intelligent agent framework is proposed to assist in managing patients health care data in a hospital environment. A data classification method based on fuzzy logic is proposed and developed to improve the data security and privacy of data collected and propagated.

Download Full-text

The Security and Privacy Protection in RFID

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.430-432.1755 ◽

2012 ◽

Vol 430-432 ◽

pp. 1755-1758

Author(s):

Chun Chang Fu ◽

Wei Lin He

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Security And Privacy ◽

Automatic Identification ◽

Present System ◽

Privacy Threats ◽

Wide Range ◽

Frequency Identification ◽

Radio Frequency Identification Technology ◽

Privacy Issues

Radio frequency identification technology is an automatic identification technology started in the 1990s. With the RFID technology in a wide range of applications in different areas, it offers the security and privacy threats and caused a great deal of attention. At present, system security and privacy issues have become one of the main factors restricted the wide application of radio frequency identification technology. Aimed at the problem, this article discussed the safety of the privacy issues.

Download Full-text

Time-Efficient Cloning Attacks Identification in Large-Scale RFID Systems

Security and Communication Networks ◽

10.1155/2017/8356983 ◽

2017 ◽

Vol 2017 ◽

pp. 1-9 ◽

Cited By ~ 1

Author(s):

Ju-min Zhao ◽

Ding Feng ◽

Deng-ao Li ◽

Wei Gong ◽

Hao-xiang Liu ◽

...

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Large Scale ◽

Emerging Technology ◽

Current Form ◽

Rfid Systems ◽

Frequency Identification ◽

Rfid Applications

Radio Frequency Identification (RFID) is an emerging technology for electronic labeling of objects for the purpose of automatically identifying, categorizing, locating, and tracking the objects. But in their current form RFID systems are susceptible to cloning attacks that seriously threaten RFID applications but are hard to prevent. Existing protocols aimed at detecting whether there are cloning attacks in single-reader RFID systems. In this paper, we investigate the cloning attacks identification in the multireader scenario and first propose a time-efficient protocol, called the time-efficient Cloning Attacks Identification Protocol (CAIP) to identify all cloned tags in multireaders RFID systems. We evaluate the performance of CAIP through extensive simulations. The results show that CAIP can identify all the cloned tags in large-scale RFID systems fairly fast with required accuracy.

Download Full-text

A Lightweight RFID Mutual Authentication Protocol with PUF

Sensors ◽

10.3390/s19132957 ◽

2019 ◽

Vol 19 (13) ◽

pp. 2957 ◽

Cited By ~ 7

Author(s):

Feng Zhu ◽

Peng Li ◽

He Xu ◽

Ruchuan Wang

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Large Scale ◽

Mutual Authentication ◽

Authentication Protocol ◽

Security And Privacy ◽

Great Loss ◽

Physically Unclonable Functions ◽

Frequency Identification ◽

Mutual Authentication Protocol

Radio frequency identification is one of the key techniques for Internet of Things, which has been widely adopted in many applications for identification. However, there exist various security and privacy issues in radio frequency identification (RFID) systems. Particularly, one of the most serious threats is to clone tags for the goal of counterfeiting goods, which causes great loss and danger to customers. To solve these issues, lots of authentication protocols are proposed based on physical unclonable functions that can ensure an anti-counterfeiting feature. However, most of the existing schemes require secret parameters to be stored in tags, which are vulnerable to physical attacks that can further lead to the breach of forward secrecy. Furthermore, as far as we know, none of the existing schemes are able to solve the security and privacy problems with good scalability. Since many existing schemes rely on exhaustive searches of the backend server to validate a tag and they are not scalable for applications with a large scale database. Hence, in this paper, we propose a lightweight RFID mutual authentication protocol with physically unclonable functions (PUFs). The performance analysis shows that our proposed scheme can ensure security and privacy efficiently in a scalable way.

Download Full-text

A systematic mapping study on radio frequency identification security

International Journal of Sensors Wireless Communications and Control ◽

10.2174/2210327909666191004095834 ◽

2019 ◽

Vol 09 ◽

Author(s):

Yasir Amer Abbas ◽

Saad Albawi ◽

Abdullah Thaier Abd ◽

Ahmed K. Jameil

Keyword(s):

Radio Frequency ◽

Radio Frequency Identification ◽

Environmental Changes ◽

Real Life ◽

Security And Privacy ◽

Systematic Mapping Study ◽

Mapping Study ◽

Systematic Mapping ◽

Rfid Security ◽

Frequency Identification

Background: Radio frequency identification (RFID) technology can be applied in identification, security and tracking system platforms due to its flexible and low-cost implementation. The sensing ability of this technology can also be used to monitor real-life environmental changes and physical phenomena. RFID is designed to work in open wireless communication. Therefore, this system can be attacked by different malware. Enhancing RFID with new security and privacy features is important at present. Objective: The current work is a systematic mapping study on RFID security. The types, contributions, facets and activities of research on RFID security were plotted. Method: The systematic mapping for a specific search area. For this purpose, we must identify the number of RQs. These RQs help researchers obtain comprehensive related studies. Researchers are responsible for determining the number and type of RQs, which must be selected depending on the research field. In addition, the RQs must be selected carefully because they determine the research direction and help rapidly obtain the required information and studies. Result: We gathered 2133 relevant studies and retained 92 primary papers after four filtering processes. We classified them into three facets. Results provide researchers and readers an overview of existing relevant studies and help them identify the properties in the focus area. Conclusion: The systematic mapping study used to report the design, execution, tool, application and results of a Radio frequency identification (RFID). We systematically choosing and deeply analyzed a all conceptance related (RFID) techniques and implementation methods which provide an complete about the (RFID) state and enviroment of studies . Firstly we collect 2133 From the initially searchbased on manual and automatic searches. We reduction to 92 papers depend on the inclusion and exclusion criteria for this review.

Download Full-text