Strong and robust RFID authentication enabling perfect ownership transfer

Chae Hoon Lim; Taekyoung Kwon

doi:10.1007/11935308_1

Strong and robust RFID authentication enabling perfect ownership transfer

Chae Hoon Lim, Taekyoung Kwon

Graduate School of Information

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

122 Citations (Scopus)

Abstract

RFID technology arouses great interests from both its advocates and opponents because of the promising but privacy-threatening nature of low-cost RFID tags. A main privacy concern in RFID systems results from clandestine scanning through which an adversary could conduct silent tracking and inventorying of persons carrying tagged objects. Thus, the most important security requirement in designing RFID protocols is to ensure untraceability of RFID tags by unauthorized parties (even with knowledge of a tag secret due to no physical security of low-cost RFID tags). Previous work in this direction mainly focuses on backward untraceability, requiring that compromise of a tag secret should not help identify the tag from past communication transcripts. However, in this paper, we argue that forward untraceability, i.e., untraceability of future events even with knowledge of a current tag secret, should be considered as an equally or even more important security property in RFID protocol designs. Furthermore, RFID tags may often change hands during their lifetime and thus the problem of tag ownership transfer should be dealt with as another key issue in RFID privacy problems; once ownership of a tag is transferred to another party, the old owner should not be able to read the tag any more. It is rather obvious that complete transfer of tag ownership is possible only if some degree of forward untraceability is provided. We propose a strong and robust RFID authentication protocol satisfying both forward and backward untraceability and enabling complete transfer of tag ownership.

Original language	English
Title of host publication	Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings
Editors	Peng Ning, Sihan Qing, Ninghui Li
Publisher	Springer Verlag
Pages	1-20
Number of pages	20
ISBN (Print)	9783540494966
DOIs	https://doi.org/10.1007/11935308_1
Publication status	Published - 2006
Event	8th International Conference on Information and Communications Security, ICICS 2006 - Raleigh, United States Duration: 2006 Dec 4 → 2006 Dec 7

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	4307 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Other

Other	8th International Conference on Information and Communications Security, ICICS 2006
Country/Territory	United States
City	Raleigh
Period	06/12/4 → 06/12/7

Bibliographical note

Funding Information:
★ Research by the 2nd author was supported by grant No. R01-2005-000-11261-0 from Korea Science and Engineering Foundation in Ministry of Science & Technology.

Funding Information:
Research by the 2nd author was supported by grant No. R01-2005-000-11261-0 from Korea Science and Engineering Foundation in Ministry of Science & Technology.

Publisher Copyright:
© Springer-Verlag Berlin Heidelberg 2006.

All Science Journal Classification (ASJC) codes

Theoretical Computer Science
Computer Science(all)

Access to Document

10.1007/11935308_1

Cite this

Lim, C. H., & Kwon, T. (2006). Strong and robust RFID authentication enabling perfect ownership transfer. In P. Ning, S. Qing, & N. Li (Eds.), Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings (pp. 1-20). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4307 LNCS). Springer Verlag. https://doi.org/10.1007/11935308_1

Lim, Chae Hoon ; Kwon, Taekyoung. / Strong and robust RFID authentication enabling perfect ownership transfer. Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. editor / Peng Ning ; Sihan Qing ; Ninghui Li. Springer Verlag, 2006. pp. 1-20 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{822eade9d68c445abddb21eba5020137,

title = "Strong and robust RFID authentication enabling perfect ownership transfer",

abstract = "RFID technology arouses great interests from both its advocates and opponents because of the promising but privacy-threatening nature of low-cost RFID tags. A main privacy concern in RFID systems results from clandestine scanning through which an adversary could conduct silent tracking and inventorying of persons carrying tagged objects. Thus, the most important security requirement in designing RFID protocols is to ensure untraceability of RFID tags by unauthorized parties (even with knowledge of a tag secret due to no physical security of low-cost RFID tags). Previous work in this direction mainly focuses on backward untraceability, requiring that compromise of a tag secret should not help identify the tag from past communication transcripts. However, in this paper, we argue that forward untraceability, i.e., untraceability of future events even with knowledge of a current tag secret, should be considered as an equally or even more important security property in RFID protocol designs. Furthermore, RFID tags may often change hands during their lifetime and thus the problem of tag ownership transfer should be dealt with as another key issue in RFID privacy problems; once ownership of a tag is transferred to another party, the old owner should not be able to read the tag any more. It is rather obvious that complete transfer of tag ownership is possible only if some degree of forward untraceability is provided. We propose a strong and robust RFID authentication protocol satisfying both forward and backward untraceability and enabling complete transfer of tag ownership.",

author = "Lim, {Chae Hoon} and Taekyoung Kwon",

note = "Funding Information: ★ Research by the 2nd author was supported by grant No. R01-2005-000-11261-0 from Korea Science and Engineering Foundation in Ministry of Science & Technology. Funding Information: Research by the 2nd author was supported by grant No. R01-2005-000-11261-0 from Korea Science and Engineering Foundation in Ministry of Science & Technology. Publisher Copyright: {\textcopyright} Springer-Verlag Berlin Heidelberg 2006.; 8th International Conference on Information and Communications Security, ICICS 2006 ; Conference date: 04-12-2006 Through 07-12-2006",

year = "2006",

doi = "10.1007/11935308_1",

language = "English",

isbn = "9783540494966",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "1--20",

editor = "Peng Ning and Sihan Qing and Ninghui Li",

booktitle = "Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings",

address = "Germany",

}

Lim, CH & Kwon, T 2006, Strong and robust RFID authentication enabling perfect ownership transfer. in P Ning, S Qing & N Li (eds), Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 4307 LNCS, Springer Verlag, pp. 1-20, 8th International Conference on Information and Communications Security, ICICS 2006, Raleigh, United States, 06/12/4. https://doi.org/10.1007/11935308_1

Strong and robust RFID authentication enabling perfect ownership transfer. / Lim, Chae Hoon; Kwon, Taekyoung.

Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. ed. / Peng Ning; Sihan Qing; Ninghui Li. Springer Verlag, 2006. p. 1-20 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 4307 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Strong and robust RFID authentication enabling perfect ownership transfer

AU - Lim, Chae Hoon

AU - Kwon, Taekyoung

N1 - Funding Information: ★ Research by the 2nd author was supported by grant No. R01-2005-000-11261-0 from Korea Science and Engineering Foundation in Ministry of Science & Technology. Funding Information: Research by the 2nd author was supported by grant No. R01-2005-000-11261-0 from Korea Science and Engineering Foundation in Ministry of Science & Technology. Publisher Copyright: © Springer-Verlag Berlin Heidelberg 2006.

PY - 2006

Y1 - 2006

N2 - RFID technology arouses great interests from both its advocates and opponents because of the promising but privacy-threatening nature of low-cost RFID tags. A main privacy concern in RFID systems results from clandestine scanning through which an adversary could conduct silent tracking and inventorying of persons carrying tagged objects. Thus, the most important security requirement in designing RFID protocols is to ensure untraceability of RFID tags by unauthorized parties (even with knowledge of a tag secret due to no physical security of low-cost RFID tags). Previous work in this direction mainly focuses on backward untraceability, requiring that compromise of a tag secret should not help identify the tag from past communication transcripts. However, in this paper, we argue that forward untraceability, i.e., untraceability of future events even with knowledge of a current tag secret, should be considered as an equally or even more important security property in RFID protocol designs. Furthermore, RFID tags may often change hands during their lifetime and thus the problem of tag ownership transfer should be dealt with as another key issue in RFID privacy problems; once ownership of a tag is transferred to another party, the old owner should not be able to read the tag any more. It is rather obvious that complete transfer of tag ownership is possible only if some degree of forward untraceability is provided. We propose a strong and robust RFID authentication protocol satisfying both forward and backward untraceability and enabling complete transfer of tag ownership.

AB - RFID technology arouses great interests from both its advocates and opponents because of the promising but privacy-threatening nature of low-cost RFID tags. A main privacy concern in RFID systems results from clandestine scanning through which an adversary could conduct silent tracking and inventorying of persons carrying tagged objects. Thus, the most important security requirement in designing RFID protocols is to ensure untraceability of RFID tags by unauthorized parties (even with knowledge of a tag secret due to no physical security of low-cost RFID tags). Previous work in this direction mainly focuses on backward untraceability, requiring that compromise of a tag secret should not help identify the tag from past communication transcripts. However, in this paper, we argue that forward untraceability, i.e., untraceability of future events even with knowledge of a current tag secret, should be considered as an equally or even more important security property in RFID protocol designs. Furthermore, RFID tags may often change hands during their lifetime and thus the problem of tag ownership transfer should be dealt with as another key issue in RFID privacy problems; once ownership of a tag is transferred to another party, the old owner should not be able to read the tag any more. It is rather obvious that complete transfer of tag ownership is possible only if some degree of forward untraceability is provided. We propose a strong and robust RFID authentication protocol satisfying both forward and backward untraceability and enabling complete transfer of tag ownership.

UR - http://www.scopus.com/inward/record.url?scp=84977783611&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84977783611&partnerID=8YFLogxK

U2 - 10.1007/11935308_1

DO - 10.1007/11935308_1

M3 - Conference contribution

AN - SCOPUS:84977783611

SN - 9783540494966

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 1

EP - 20

BT - Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings

A2 - Ning, Peng

A2 - Qing, Sihan

A2 - Li, Ninghui

PB - Springer Verlag

T2 - 8th International Conference on Information and Communications Security, ICICS 2006

Y2 - 4 December 2006 through 7 December 2006

ER -

Lim CH, Kwon T. Strong and robust RFID authentication enabling perfect ownership transfer. In Ning P, Qing S, Li N, editors, Information and Communications Security - 8th International Conference, ICICS 2006, Proceedings. Springer Verlag. 2006. p. 1-20. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/11935308_1

Strong and robust RFID authentication enabling perfect ownership transfer

Abstract

Publication series

Other

Bibliographical note

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this