Abstract
The biggest challenge for current RFID technology is to provide the necessary benefits while avoiding any threats to the privacy of its users. Although many solutions to this problem have been proposed, almost as soon as they have been introduced, methods have been found to circumvent system security and make the user vulnerable. We are proposing an advanced mutual-authentication protocol between a tag and the back-end database server for a RFID system to ensure system security integrity. The three main areas of security violations in RFID systems are forgery of the tags, unwanted tracking of the tags, and unauthorized access to a tag’s memory. Our proposed system protects against these three areas of security violations. Our protocol provides reader authentication to a tag, exhibits forgery resistance against a simple copy, and prevents the counterfeiting of RFID tags. Our advanced mutual-authentication protocol uses an AES algorithm as its cryptograph primitive. Since our AES algorithm has a relatively low cost, is fast, and only requires simple hardware, our proposed approach is feasible for use in RFID systems. In addition, the relatively low computational cost of our proposed algorithm compared to those currently used to implement similar levels of system security makes our proposed system especially suitable for RFID systems that have a large number of tags.
This research was supported by the MIC(Ministry of Information and Communication), Korea, under the ITRC(Information Technology Research Center) support program supervised by the IITA(Institute of Information Technology Assessment) (IITA-2006-C1090-0603-0020).
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Feldhofer, M., Dominikus, S., Wolkerstorfer, J.: Strong authentication for RFID systems using the AES algorithm. In: Conference of Cryptographic Hardware and Embedded Systems, Proceedings, pp. 357–370. Springer, Heidelberg (2004)
Gao, X., Xiang, Z., Wang, H., Shen, J., Huang, J., Song, S.: An approach to security and privacy of RFID system for supply chain. In: CEC-East, IEEE International Conference on E-Commerce Technology for Dynamic E-Business (CEC-East 2004), pp. 164–168 (2004)
Aigner, M., Feldhofer, M.: Secure symmetric authentication for RFID tags. Telecommunication and Mobile Computing (March 2005)
Juels, R., Rivest, L., Szydlo, M.: The blocker tag: selective blocking of RFID tags for consumer privacy. In: Atluri, V. (ed.) 8th ACM Conference on Computer and Communications Security, pp. 103–111. ACM Press, New York (2003)
Henrici, D., Muller, P.: Hash-based enhancement of location privacy for radio-frequency identification devices using varying identifiers. In: PerSec 2004 at IEEE PerCom, pp. 149–153 (March 2004)
Weis, S.A., Sarma, S.E., Rivest, R.L., Engels, D.W.: Security and privacy aspects of low-cost radio frequency identification systems. In: Hutter, D., Müller, G., Stephan, W., Ullmann, M. (eds.) Security in Pervasive Computing. LNCS, vol. 2802, pp. 201–212. Springer, Heidelberg (2004)
Weis, S.: Security and privacy in radio-frequency identification devices. Master’s thesis, MIT (2003)
Ohkubo, M., Suzuki, K., Kinoshita, S.: Cryptographic approach to “privacy-friendly” tags. In: RFID Privacy Workshop. MIT, USA (2003)
ISO/IEC JTC 1/SC 31/WG 4, Information technology AIDC techniques—RFID for item management air interface, part 3: parameters for air interface communications at 13.56 MHz. Version N681R (April 2004)
Feldhofer, M., Wolkerstorfer, J., Rijmen, V.: AES implementation on a grain of sand. IEE Proceedings Information Security 152(1), 13–20 (2005)
Daemen, J., Rijmen, V.: The design of Rijndael. In: AES—The Advanced Encryption Standard. Springer, Heidelberg (2002)
National Institute of Standards and Technology (NIST). FIPS-197: advanced encryption standard (November 2001) (accessed March 18, 2006), http://www.itl.nist.gov/fipspubs/
Satoh, A., Morioka, S., Takano, K., Munetoh, S.: A Compact Rijndael Hardware Architecture with S-Box Optimization. In: Boyd, C. (ed.) ASIACRYPT 2001. LNCS, vol. 2248, pp. 239–254. Springer, Heidelberg (2001)
Mangard, S., Aigner, M., Dominikus, S.: A highly regular and scalable AES hardware architecture. IEEE Trans. Comput. 52(4), 483–491 (2003)
Wolkerstorfer, J.: An ASIC implementation of the AESMixColumn operation. In: Proc. Austrochip 2001, Vienna, October 2001, pp. 129–132 (2001)
Pramstaller, N., Mangard, S., Dominikus, S., Wolkerstorfer, J.: Efficient AES implementations on aSICs and fPGAs. In: Dobbertin, H., Rijmen, V., Sowa, A. (eds.) AES 2005. LNCS, vol. 3373, pp. 98–112. Springer, Heidelberg (2005)
Wolkerstorfer, J., Oswald, E., Lamberger, M.: An ASIC implementation of the AES sBoxes. In: Preneel, B. (ed.) CT-RSA 2002. LNCS, vol. 2271, pp. 67–78. Springer, Heidelberg (2002)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Toiruul, B., Lee, K., Lee, H., Lee, Y., Park, Y. (2006). Mutual-Authentication Mechanism for RFID Systems. In: Cao, J., Stojmenovic, I., Jia, X., Das, S.K. (eds) Mobile Ad-hoc and Sensor Networks. MSN 2006. Lecture Notes in Computer Science, vol 4325. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11943952_38
Download citation
DOI: https://doi.org/10.1007/11943952_38
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-49932-9
Online ISBN: 978-3-540-49933-6
eBook Packages: Computer ScienceComputer Science (R0)