For Libraries For Publication Open Access Downloads About Us Contact Us
Paper Titles
WDB's Query Interface Extraction Method Based on Watir & Ruglar Expression
p.1764
An Improved Segmentation Algorithm for Infrared Imaging Object
p.1770
The Application of Modal Analysis in Hole-Defect in Lumber
p.1776
Implied Volatility Surface Estimation Using Transductive Gaussian Fields Regression
p.1781
Impersonation Attack on RFID Authentication Protocol and its Countermeasures
p.1787
Configuration Software WinCC Application in Concrete Production
p.1793
True RMS Detection of Non-Sine Wave for Power Grid
p.1798
Finite Element Analysis of Track Rollers of the Crawler Excavator Based on ANSYS
p.1803
Design and Implementation of a Control System for Sludge Dehydration Based on S7-1200 PLC
p.1808

Impersonation Attack on RFID Authentication Protocol and its Countermeasures

Article Preview

Abstract:

Due to the well-developed technology and its variety of applications, the Radio Frequency Identifications (RFIDs) are widespread in a broad range of markets. In many applications, the RFID systems need security service such as authentication mechanism to identify tag and resist possible attacks. In 2008, Song et al. proposed a RFID authentication protocol for low-cost tags. Their protocol has the merits of privacy and security properties, and it can stand tag impersonation attack, replay attack, and backward/forward traceability. In this article, we show that their protocol cannot resist server impersonation attack as they declared. An adversary can successfully impersonate as a server to send fake message for verification. We also present countermeasures to fix the flaw. The performance of the improved mechanisms is the same as that of Song et al.’s protocol while the server impersonation attack is avoided.

You might also be interested in these eBooks
Materials, Mechatronics and Automation View Preview

Info:

Periodical:

Key Engineering Materials (Volumes 467-469)

Pages:

1787-1792

DOI:

https://doi.org/10.4028/www.scientific.net/KEM.467-469.1787

Citation:

Cite this paper

Online since:

February 2011

Authors:

Yung Cheng Lee

Keywords:

Authentication, Impersonation Attack, Radio Frequency Identification (RFID)

Export:

RIS, BibTeX

Price:

Permissions CCC:

Request Permissions

Permissions PLS:

Request Permissions

Сopyright:

© 2011 Trans Tech Publications Ltd. All Rights Reserved

Share:

Citation:

References

[1] G. Avoine: The Sixth International Conference on Smart Card Research and Advanced Applications-CARDIS (2004), p.33.

Google Scholar

[2] G. Avoine, E. Dysli, and P. Oechslin: Lecture Notes in Computer Science, Vol. 3897, Springer-Verlag (2005), p.291.

Google Scholar

[3] H. Y. Chien: IEEE Transactions on Dependable and Secure Computing, Vol. 4, No. 4 (2007), p.337.

Google Scholar

[4] H. Y. Chien and C. H. Chen: Computer Standards & Interfaces, Vol. 29, No. 2 (2007), p.254.

Google Scholar

[5] T. Dimitriou: IEEE International Conference on Security and Privacy for Emerging Areas in Communication Networks, SECURECOMM 2005, p.59.

Google Scholar

[6] S. L. Garfinkel, A. Juels, R. Pappu: IEEE Security & Privacy, Vol. 3, No. 3 (2005), p.34.

Google Scholar

[7] A. Henrici and P. M¨ulle: IEEE International Workshop on Pervasive Computing and Communication Security, PerSec'04, (2004), p.149.

Google Scholar

[8] A. Juels: The IEEE Journal on the Selected Areas in Communications, Vol. 24, Is. 2 (2006), p.381.

Google Scholar

[9] M. Langheinrich: Proceedings of the Security, Privacy, and Trust in Modern Data Management, Springer (2007), p.433.

Google Scholar

[10] M. Ohkubo, K. Suzki, and S. Kinoshita: RFID Privacy Workshop (2003). http: /www. avoine. net/rfid/download/papers/OhkuboSK-2003-mit-paper. pdf.

Google Scholar

[11] P. Peris-Lopez, J. C. Hernandez-Castro, J. M. Estevez-Tapiador, and A. Ribagorda: Proceedings of the Second Workshop RFID Security, RFID'06 (2006).

DOI: 10.1201/9781420068405.ch2

Google Scholar

[12] R. D. Pietro and R. Molva: ESORICS 2007, Lecture Notes in Computer Science, Springer- Verlag, Vol. 4734 (2007), p.187.

Google Scholar

[13] D. C. Ranasinghe, D. W. Engels, and P. H. Cole: Auto-ID Labs White Paper Journal, WP- SWNET- 013, Vol. 1 (2005), p.1.

Google Scholar

[14] B. Song, C.J. Mitchell: Proceedings of the first ACM Conference on Wireless Network Security (2008), p.140.

Google Scholar

[15] S. Weis, S. Sarma, R. Rivest, and D. Engels: International Conference on Security in Pervasive Computing, SPC2003, Lecture Notes in Computer Science, Vol. 2802 (2003), p.454.

Google Scholar

© 2025 Trans Tech Publications Ltd. All rights are reserved, including those for text and data mining, AI training, and similar technologies. For open access content, terms of the Creative Commons licensing CC-BY are applied.
Scientific.Net is a registered trademark of Trans Tech Publications Ltd.