Providing resistance against server information leakage in RFID systems

Kardaş, Süleyman and Levi, Albert and Murat, Ertuğrul (2011) Providing resistance against server information leakage in RFID systems. In: 4th IFIP International Conference on New Technologies, Mobility and Security (NTMS 2011), Paris, France

[img]PDF - Registered users only - Requires a PDF viewer such as GSview, Xpdf or Adobe Acrobat Reader

Official URL: http://dx.doi.org/10.1109/NTMS.2011.5720587


RFID (Radio Frequency Identification) technology has been widely used in daily life, such as in access control, electronic passports, contactless credit cards, transportation, and animal tracking. However, this technology may cause various security and privacy problems, e.g. traceability of tag owner, malicious eavesdropping of tags and cloning of tags. In order to thwart these security and privacy problems, a wide variety of authentication protocols have been proposed in the literature. All of these protocols assume that the server is secure, and it does not leak any information about the system. In this paper, we propose a novel attack on RFID systems, namely Server Information Leakage (SIL) attack. In this attack, an adversary illegally captures information from the server and sends this information to the reader in order to impersonate the tag. To the best of our knowledge, none of the existing protocols resist against this new attack. We also propose an RFID authentication protocol that provides resistance against SIL attack and other known attacks.

Item Type:Papers in Conference Proceedings
Uncontrolled Keywords:RFID system , authentication protocol , privacy problem , radio frequency identification , server information leakage
ID Code:18432
Deposited By:Albert Levi
Deposited On:25 Dec 2011 17:22
Last Modified:31 Jul 2019 09:39

Repository Staff Only: item control page