research-article

Supporting recovery, privacy and security in RFID systems using a robust authentication protocol

Authors:

Md. Endadul Hoque,

Farzana Rahman,

Sheikh Iqbal AhamedAuthors Info & Claims

SAC '09: Proceedings of the 2009 ACM symposium on Applied Computing

Pages 1062 - 1066

https://doi.org/10.1145/1529282.1529514

Published: 08 March 2009 Publication History

Get Access

Abstract

RFID systems have been scrutinized nowadays as one of the emerging technologies in pervasive environment. And authentication becomes indispensible in applications where security and privacy are major concerns. Besides thwarting some major attacks, RFID systems need to be able to recover from unexpected conditions during operation. In this paper, we propose a Robust Authentication Protocol (RoAP) that supports not only security and privacy, but also recovery in RFID systems. The protocol can get back the desynchronized tags and readers to their normal state, and thus provides robustness. We also present a "safety ring" consisted of six major goals that have to ensure by each RFID system to be secured. This paper illustrates security and robustness analysis of the protocol. Finally, we present the implementation of our authentication protocol.

References

[1]

Ahamed, S. I., Rahman. F., Hoque, E., Kawsar, F., and Nakajima, T. YA-SRAP: Yet Another Serverless RFID Authentication Protocol. In the 4th IET International Conference on Intelligent Environment (IE08), Seattle, USA, Jul 2008.

Digital Library

Google Scholar

[2]

Avoine., G. Security and Privacy in RFID Systems. http://www.avoine.net/rfid/, 2008.

Google Scholar

[3]

Avoine, G. and Oechslin, P. A Scalable and Provably Secure Hash Based RFID Protocol. In International Workshop on Pervasive Computing and Communication Security (PerSec '05), IEEE, IEEE Computer Society Press, pp. 110--114, Kauai Island, Hawaii, USA, March 2005.

Digital Library

Google Scholar

[4]

Conti, M., Pietro, R. D., Mancini, L. V., and Spognardi. A. RIPP-FS: an RFID Identification, Privacy Preserving Protocol with Forward Secrecy. In International Workshop on Pervasive Computing and Communication Security (PerSec '07), IEEE, IEEE Computer Society Press, pp. 229--234, New York, USA, Mar. 2007.

Digital Library

Google Scholar

[5]

Juels, A. RFID Security and Privacy: A Research Survey. Manuscript, Sep. 2005.

Digital Library

Google Scholar

[6]

Juels, A. and Weis, S. Defining Strong Privacy for RFID. Cryptology ePrint Archive, Report 2006/137, IACR, Apr. 2006.

Google Scholar

[7]

Ohkubo, M., Suzuki, K., and Kinoshita, S. Cryptographic Approach to "Privacy-Friendly" Tags. In RFID Privacy Workshop, MIT, MA, USA, Nov 2003.

Google Scholar

[8]

Seo, Y., and Kim, K. Scalable and Untraceable Authentication Protocol for RFID. In International Workshop on Security in Ubiquitous Computing Systems (Secubiq '06), Springer-Verlag, Seoul, Korea, August 2006.

Digital Library

Google Scholar

[9]

Tsudik, G. YA-TRAP: Yet another Trivial RFID Authentication Protocol. In International Conference on Pervasive Computing and Communication (PerCom '06), IEEE, IEEE Computer Society Press, Pisa, Italy, Mar. 2006.

Digital Library

Google Scholar

Cited By

View all

Rahman FBhuiyan MAhamed S(2017)A privacy preserving framework for RFID based healthcare systemsFuture Generation Computer Systems10.1016/j.future.2016.06.00172(339-352)Online publication date: Jul-2017
https://doi.org/10.1016/j.future.2016.06.001
Rahman FAhamed S(2014)Efficient detection of counterfeit products in large-scale RFID systems using batch authentication protocolsPersonal and Ubiquitous Computing10.1007/s00779-012-0629-818:1(177-188)Online publication date: 1-Jan-2014
https://dl.acm.org/doi/10.1007/s00779-012-0629-8
Ge ZHao Y(2013)Analysis and Improvement of Anonymous Authentication Protocol for Low-Cost RFID SystemsFoundations and Applications of Intelligent Systems10.1007/978-3-642-37829-4_60(723-732)Online publication date: 23-Nov-2013
https://doi.org/10.1007/978-3-642-37829-4_60
Show More Cited By

Index Terms

Supporting recovery, privacy and security in RFID systems using a robust authentication protocol
1. Security and privacy
  1. Security services
    1. Authentication

Recommendations

A Novel Anonymous RFID Authentication Protocol Providing Strong Privacy and Security
MINES '10: Proceedings of the 2010 International Conference on Multimedia Information Networking and Security

As the radio frequency identification (RFID) technology continues to evolve and mature, RFID tags can be implemented in a wide range of applications. Due to the shared wireless medium between the RFID reader and the RFID tag, however, adversaries can ...
Impossibility results for RFID privacy notions
Transactions on computational science XI

RFID systems have become increasingly popular and are already used in many real-life applications. Although very useful, RFIDs introduce privacy risks since they carry identifying information that can be traced. Hence, several RFID privacy models have ...
Enhancing Privacy and Security of RFID System with Serverless Authentication and Search Protocols in Pervasive Environments

One of the recent realms that gathered attention of researchers is the security issues of Radio Frequency Identification (RFID) systems that have tradeoff between controlled costs and improved efficiency. Evolvement and benefits of RFID technology ...

Comments

Information & Contributors

Information

Published In

SAC '09: Proceedings of the 2009 ACM symposium on Applied Computing

March 2009

2347 pages

ISBN:9781605581668

DOI:10.1145/1529282

Conference Chairs:
Sung Y. Shin
South Dakota State University, United States
,
Sascha Ossowski
University Rey Juan Carlos, Spain

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 08 March 2009

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

SAC09

Sponsor:

SIGAPP

SAC09: The 2009 ACM Symposium on Applied Computing

March 8, 2009 - March 12, 2008

Hawaii, Honolulu

Acceptance Rates

Overall Acceptance Rate 1,650 of 6,669 submissions, 25%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

10
Total Citations
View Citations
495
Total Downloads

Downloads (Last 12 months)5
Downloads (Last 6 weeks)1

Reflects downloads up to 03 Nov 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Rahman FBhuiyan MAhamed S(2017)A privacy preserving framework for RFID based healthcare systemsFuture Generation Computer Systems10.1016/j.future.2016.06.00172(339-352)Online publication date: Jul-2017
https://doi.org/10.1016/j.future.2016.06.001
Rahman FAhamed S(2014)Efficient detection of counterfeit products in large-scale RFID systems using batch authentication protocolsPersonal and Ubiquitous Computing10.1007/s00779-012-0629-818:1(177-188)Online publication date: 1-Jan-2014
https://dl.acm.org/doi/10.1007/s00779-012-0629-8
Ge ZHao Y(2013)Analysis and Improvement of Anonymous Authentication Protocol for Low-Cost RFID SystemsFoundations and Applications of Intelligent Systems10.1007/978-3-642-37829-4_60(723-732)Online publication date: 23-Nov-2013
https://doi.org/10.1007/978-3-642-37829-4_60
Rahman FAhamed SOssowski SLecca P(2012)DRAPProceedings of the 27th Annual ACM Symposium on Applied Computing10.1145/2245276.2245372(498-503)Online publication date: 26-Mar-2012
https://dl.acm.org/doi/10.1145/2245276.2245372
Rahman FAhamed S(2012)Looking for needles in a haystack: Detecting counterfeits in large scale RFID systems using batch authentication protocol2012 IEEE International Conference on Pervasive Computing and Communications Workshops10.1109/PerComW.2012.6197623(811-816)Online publication date: Mar-2012
https://doi.org/10.1109/PerComW.2012.6197623
Ge Zhi-jun Hao Yong-sheng (2012)An efficient authentication protocol for serverless RFID systems2012 IEEE 14th International Conference on Communication Technology10.1109/ICCT.2012.6511283(640-644)Online publication date: Nov-2012
https://doi.org/10.1109/ICCT.2012.6511283
Rahman FAhamed SYang JWang Q(2012)I am not a goldfish in a bowl: A privacy preserving framework for RFID based healthcare systems2012 IEEE 14th International Conference on e-Health Networking, Applications and Services (Healthcom)10.1109/HealthCom.2012.6379432(335-340)Online publication date: Oct-2012
https://doi.org/10.1109/HealthCom.2012.6379432
Morshed MAtkins AYu H(2012)An efficient and secure authentication protocol for RFID systemsInternational Journal of Automation and Computing10.1007/s11633-012-0642-49:3(257-265)Online publication date: 1-Jun-2012
https://dl.acm.org/doi/10.1007/s11633-012-0642-4
Hawrylak PSchimke NHale JPapa M(2012)Security Risks Associated with Radio Frequency Identification in Medical EnvironmentsJournal of Medical Systems10.1007/s10916-011-9792-036:6(3491-3505)Online publication date: 1-Dec-2012
https://dl.acm.org/doi/10.1007/s10916-011-9792-0
Zuo YPimple MLande S(2010)A Framework for RFID Survivability Requirement Analysis and SpecificationInnovations in Computing Sciences and Software Engineering10.1007/978-90-481-9112-3_26(153-159)Online publication date: 20-May-2010
https://doi.org/10.1007/978-90-481-9112-3_26

View Options

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Cited By

Index Terms

Recommendations

A Novel Anonymous RFID Authentication Protocol Providing Strong Privacy and Security

Impossibility results for RFID privacy notions

Enhancing Privacy and Security of RFID System with Serverless Authentication and Search Protocols in Pervasive Environments