Presentation is loading. Please wait.

Presentation is loading. Please wait.

Serverless Search and Authentication Protocols for RFID Chiu C. Tan, Bo Sheng and Qun Li Department of Computer Science College of William and Mary.

Published byDinah Taylor Modified over 9 years ago

Similar presentations

Presentation on theme: "Serverless Search and Authentication Protocols for RFID Chiu C. Tan, Bo Sheng and Qun Li Department of Computer Science College of William and Mary."— Presentation transcript:

1 Serverless Search and Authentication Protocols for RFID Chiu C. Tan, Bo Sheng and Qun Li Department of Computer Science College of William and Mary

2 2 What is RFID? ID #:12345678 Name: Fischer, B

3 3 Using RFID Query Data Tag Reader

4 4 Basic Requirements for RFID ● Authentication  We want reader to distinguish a fake RFID tag from a real RFID tag. ● Privacy  We want the information from the RFID tag to be read only by authorized RFID readers.  This also includes location information about the tag. Why authentication and privacy?

5 5 No Authentication Query Fisher, B Accept Query Fisher, B Accept ??? Fake Tag Real Tag

6 6 No Privacy Paparazzi Query Law Enforcement Fisher, B Query Fisher, B ??

7 7 Location Privacy Query Fisher, B

8 8 Using a Server (adapted Dimitriou 2005)

9 9 Our paper ● Serverless solution, while still providing authentication and privacy.  Server solutions requires constant connection between reader and server. Not always possible ! ● Ability to search,i.e. how to find 1 tag from a larger group of tags.  Authentication. Reader can detect a fake tag.  Privacy. Unauthorized reader cannot get back useful information from searching for a tag

10 10 Remainder of this talk ● Introduce our serverless solution. ● Introduce the problem of searching RFID tags. ● Conclude.

11 11 First dig at the problem... Query Secret t Access List (adapted from Weis et. al. 2003)

12 12 Checking Authentication Query Secret x Secret x not in access list. Reader rejects tag ! FAKE Access List Reader checks access list

13 13 Checking Privacy Query Secret t Access List Unauthorize d Blank Unauthorized reader does not have secret t. Cannot obtain ID ! Every tag reply uses a different random N. Cannot track movements of the tag!

14 14 However, do not lose the reader Query Secret t, ID FAKE Secret t, ID Fools legitimate reader ! Access List

15 15 If you first don't succeed..... ● Problem: Reader knows tag secret t ● Idea : Let the reader check if tag knows secret t, without telling reader t. ● Use 1-way hash function. ● Create reader id for each reader, r. ● Instead of telling reader t, use f(r,t). f() is a 1-way hash function.

16 16 If you first don't succeed..... Query, r ID,t, f() Access List

17 17 Stealing the reader Query, s Secret f(r,t) FAKE Secret f(r,t) Access List Reader s expects f(s,t). Reader not fooled ! Access List

18 18 However..... Query, r ID,t, f() Fake Access List

19 19 When reader queries again... Query, r Fake tag fools legitimate reader r ! Fake Checks access list Access List

20 20 Third times a charm... ● Problem:  Reader always issues same query, susceptible to replay attack.  Tag response always the same, vulnerable against tracking. ● Idea: Use random numbers to differentiate query and response.

21 21 Third times a charm... ID,t, f(),h() Access List Check against access list.

22 22 Eavesdropping now gets ID,t, f(),h() Access List Fake

23 23 When reader queries again Access List Fake Reader will pick a different random number each time. Reader not fooled ! When checked against access list, reader will not get back ID.

24 24 When unauthorized reader queries ID,t, f(),h() Unauthorized Tag uses a different random number each time Unauthorized reader repeats the same query at different places Gets back a different reply. No tracking !

25 25 A little bit faster.... Problem : Access list could have many entries. Slow. ID,t, f(),h() Tag returns the first m bits of h(f(r,t)) Reader can pre-compute this value ahead of time. Not affected by random numbers. Access List Return the first m bits of h(f(r,t))

26 26 Onto searching ● RFID search problem:  Find 1 particular tag from a collection of tags, while still providing authentication and privacy. ● Simple solution:  Collect IDs from every tag, using technique presented earlier.  Find the tag you want. ● Not efficient.

27 27 Needle in a haystack ID4 Keep silent Reader cannot distinguish fake tag. An unauthorized reader can still query. No protection against eavesdropper.

28 28 Use the same trick as before ID4 Access List

29 29 Seems to work..... ● We basically invert the same techniques presented earlier on. ● One major exception....

30 30 What went wrong?

31 31 What went wrong? Does not matter if tag changes random number Still able to track, since only 1 tag will reply !

32 32 What went wrong? ● Basic nature of search. We expect to find 1 tag from a group of tags. ● In other words, always have 1 tag replying. The very act of replying identifies the tag !

33 33 Possible techniques 1. Try to prevent readers from repeatedly using the same random number. 2. Try to create a query that can be satisfied by more than 1 tag. 3. Try to generate noise to mask reply.

34 34 Possible solution ID4 Check the first m bits Reader obtains ID using access list and checks. Reader receives more than 1 tag reply Access List

35 35 Under this scheme Eavesdropper receives multiple replies. Each tag chooses a different random number Cannot perform tracking !

36 36 To summarize... ● Provide authentication and privacy protections for RFID. ● Done without need for persistent connections with central server. ● Examined security considerations when searching for RFID tags. ● Suggested solutions for secure RFID search

37 37 Acknowledgments ● We like to thank reviewers for their helpful comments. Questions ?

Download ppt "Serverless Search and Authentication Protocols for RFID Chiu C. Tan, Bo Sheng and Qun Li Department of Computer Science College of William and Mary."

Similar presentations

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.

Security and Privacy over the Internet Chan Hing Wing, Anthony Mphil Yr. 1, CSE, CUHK Oct 19, 1998.
Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).

Kerberos 1 Public domain image of Heracles and Cerberus. From an Attic bilingual amphora, 530–520 BC. From Italy (?).
1 An Ultra-lightweight Authentication Protocol in RFID Speaker: 魏家惠.

1 An Ultra-lightweight Authentication Protocol in RFID Speaker: 魏家惠.
Efficient Information Retrieval for Ranked Queries in Cost-Effective Cloud Environments Presenter: Qin Liu a,b Joint work with Chiu C. Tan b, Jie Wu b,

Efficient Information Retrieval for Ranked Queries in Cost-Effective Cloud Environments Presenter: Qin Liu a,b Joint work with Chiu C. Tan b, Jie Wu b,
Last Class: The Problem BobAlice Eve Private Message Eavesdropping.

Last Class: The Problem BobAlice Eve Private Message Eavesdropping.
1 Security in Wireless Protocols Bluetooth, 802.11, ZigBee.

1 Security in Wireless Protocols Bluetooth, , ZigBee.
Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,

Further improvement on the modified authenticated key agreement scheme Authors: N.Y. Lee and M.F. Lee Source: Applied Mathematics and Computation, Vol.157,
1 Security Handshake Pitfalls. 2 Authentication Handshakes Secure communication almost always includes an initial authentication handshake: –Authenticate.

1 Security Handshake Pitfalls. 2 Authentication Handshakes Secure communication almost always includes an initial authentication handshake: –Authenticate.
Interlock Protocol - Akanksha Srivastava 2002A7PS589.

Interlock Protocol - Akanksha Srivastava 2002A7PS589.
Fast and Reliable Estimation Schemes in RFID Systems Murali Kodialam and Thyaga Nandagopal Bell Labs, Lucent Technologies.

Fast and Reliable Estimation Schemes in RFID Systems Murali Kodialam and Thyaga Nandagopal Bell Labs, Lucent Technologies.
A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen Kim, Kwangjo Kim {divyan, zeenkim, International.

A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen Kim, Kwangjo Kim {divyan, zeenkim, International.
CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 12 Jonathan Katz.
TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.

TrustMe: Anonymous Management of Trust Relationships in Decentralized P2P Systems Aameek Singh and Ling Liu Presented by: Korporn Panyim.
Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.

Lecture 2 Page 1 CS 236, Spring 2008 Security Principles and Policies CS 236 On-Line MS Program Networks and Systems Security Peter Reiher Spring, 2008.
1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.

1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.
Explorations in Anonymous Communication Andrew Bortz with Luis von Ahn Nick Hopper Aladdin Center, Carnegie Mellon University, 8/19/2003.

Explorations in Anonymous Communication Andrew Bortz with Luis von Ahn Nick Hopper Aladdin Center, Carnegie Mellon University, 8/19/2003.
CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 21 Jonathan Katz.
Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.
RFID Security and Privacy Part 2: security example.

RFID Security and Privacy Part 2: security example.
بسم الله الرحمن الرحيم NETWORK SECURITY Done By: Saad Al-Shahrani Saeed Al-Smazarkah May 2006.

بسم الله الرحمن الرحيم NETWORK SECURITY Done By: Saad Al-Shahrani Saeed Al-Smazarkah May 2006.

Similar presentations

Ads by Google