Yuanchao Shu,Yu Gu,Jiming Chen

DOI: https://doi.org/10.1109/MASS.2012.6502522

2012-01-01

Abstract:Access card authentication is critical and essential for many modern access control systems, which have been widely deployed in various government, commercial and residential environments. However, due to the static identification information exchange among the access cards and access control clients, it is very challenging to fight against access control system breaches due to reasons such as loss, stolen or unauthorized duplications of the access cards. Although advanced biometric authentication methods such as fingerprint and iris identification can further identify the user who is requesting authorization, they incur high system costs and access privileges can not be transferred among trusted users. In this work, we introduce a sensory-data-enhanced authentication for access control systems. By combining sensory-data obtained from onboard sensors on the access cards as well as the original encoded identification information, we are able to effectively tackle the problems such as access card loss and stolen. Our solution is backward-compatible with existing access control systems and significantly increases the key spaces for authentication. We theoretically demonstrate the potential key space increases with simple sensor data and empirically demonstrate simple rotations can increase key space by more than 30, 000 times with an authentication accuracy of 95%. We performed extensive simulations under various environment settings and implemented our design on WISP to experimentally verify the system performance.

Shihui Zhang,Song Li,Shuo Cheng,Jian Ma,Hongyuan Chang

DOI: https://doi.org/10.1109/icept.2015.7236749

2015-01-01

Abstract:Taking advantage of the printed electronic interconnection technology and development of radio frequency identification (RFID) chip, a novel design and integration approaches for fabricated sensing RFID tags on flexible substrates is presented in this paper. The design is a semi-passive tag which includes a RFID chip, an additional microcontroller unit (MCU), a LED, and external sensors. The antennas and all electronic components interconnects were screen-printed on a polyethylene terephthalate (PET) substrate using silver ink. Their behaviors are in a good agreement with those simulations in electromagnetic simulation software. The acquisition of sensor data through answering to the RFID reader directly. Practical measurements have validated the reliability of the technique in low energy consumption and shown important advantages to monitor environment and display operating information.

Jinsong Han,Chen Qian,Panlong Yang,Dan Ma,Zhiping Jiang,Wei Xi,Jizhong Zhao

DOI: https://doi.org/10.1109/tnet.2015.2391300

2016-01-01

IEEE/ACM Transactions on Networking

Abstract:Physical-layer identification utilizes unique features of wireless devices as their fingerprints, providing authenticity and security guarantee. Prior physical-layer identification techniques on radio frequency identification (RFID) tags require nongeneric equipments and are not fully compatible with existing standards. In this paper, we propose a novel physical-layer identification system, GenePrint, for UHF passive tags. The GenePrint prototype system is implemented by a commercial reader, a USRP-based monitor, and off-the-shelf UHF passive tags. Our solution is generic and completely compatible with the existing standard, EPCglobal C1G2 specification. GenePrint leverages the internal similarity among pulses of tags' RN16 preamble signals to extract a hardware feature as the fingerprint. We conduct extensive experiments on over 10 000 RN16 preamble signals from 150 off-the-shelf RFID tags. The results show that GenePrint achieves a high identification accuracy of 99.68%. The feature extraction of GenePrint is resilient to various malicious attacks, such as the feature replay attack.

Yanni Yang,Zhenlin An,Jiannong Cao,Yanwen Wang,Pengfei Hu,Guoming Zhang,Xiuzhen Cheng

DOI: https://doi.org/10.1109/tmc.2024.3354813

IF: 6.075

2024-01-01

IEEE Transactions on Mobile Computing

Abstract:NFC tag authentication is crucial for preventing tag misuse. Existing NFC fingerprinting methods use physical-layer signals, which incorporate tag hardware imperfections, for authentication purposes. However, these methods suffer from limitations such as low scalability for a large number of tags or incompatibility with various NFC protocols, hindering practical application. To address these issues, we propose a new NFC fingerprinting scheme called NFChain$^+$. Instead of sticking to the NFC resonant frequency, NFChain$^+$ excavates the tag hardware uniqueness from the protocol-agnostic tag response signal using an agile and compatible frequency band of NFC to extract the tag fingerprint from a chain of tag responses over multiple frequencies. This significantly improves fingerprint scalability. However, extracting the desired fingerprint presents two challenges: fingerprint inconsistency under different configurations, and fingerprint variations due to the signal noise in generic readers. To overcome these challenges, we design an effective signal elimination method to remove the effect of device configurations and employ contrastive learning to reduce fingerprint variations for accurate tag authentication. We further cultivate a data augmentation strategy to save the cost of manually collecting fingerprint measurements for training the authentication model. Extensive experiments show that we can achieve as low as 3.4% FRR and 4.1% FAR for over 600 NFC tags.

computer science, information systems,telecommunications

Lei Yang,Pai Peng,Fan Dang,Cheng Wang,Xiang-Yang Li,Yunhao Liu

DOI: https://doi.org/10.1109/infocom.2015.7218580

2015-01-01

Abstract:RFID has been widely adopted as an effective method for anti-counterfeiting. Legacy systems based on security protocol are either too heavy to be affordable by passive tags or suffering from various protocol-layer attacks, e.g. reverse engineering, cloning, side-channel. In this work, we present a novel anti-counterfeiting system, TagPrint, using COTS RFID tags and readers. Achieving a low-cost and offline genuineness validation utilizing passive tags has been a daunting task. Our system achieves these three goals by leveraging a few of federated tags' fingerprints and geometric relationships. In TagPrint, we exploit a new kind of fingerprint, called phase fingerprint, extracted from the phase value of the backscattered signal, provided by the COTS RFID readers. To further solve the separation challenge, we devise a geometric solution to validate the genuineness. We have implemented a prototype of TagPrint using COTS RFID devices. The system has been tested extensively over 6,000 tags. The results show that our new fingerprint exhibits a good fitness of uniform distribution and the system achieves a surprising Equal Error Rate of 0.1 % for anti-counterfeiting.

Cui Zhao,Zhenjiang Li,Han Ding,Wei Xi,Ting Liu,Ruowei Gui,Jinsong Han

DOI: https://doi.org/10.1109/tmc.2020.3014092

IF: 6.075

2020-01-01

IEEE Transactions on Mobile Computing

Abstract:This paper presents RF-Mehndi, a passive commercial RFID tag array formed identifier. The key RF-Mehndi novelty is that when the user’s fingertip touching on the tag array surface during the communication, the backscattered signals by the tag array become user-dependent and unique. Hence, if we enhance the communication modality of many personal cards nowadays by RF-Mehndi, in case that a card gets lost or stolen, it cannot be used illegally by the adversaries. To harvest such a benefit, we have two key observations in designing RF-Mehndi. The first observation is when tags are nearby, their interrogated currents can change each other’s circuit characteristics, based on which unique phase features can be obtained from backscattered signals. The second observation is that when the user’s fingertip touches the tag array surface during communication, the phase feature can be further profiled by this user. Based on these observations, the card and its holder can be potentially authenticated at the same time. To transfer the RF-Mehndi idea to a practical system, we further address technical challenges. We implement a prototype system. Extensive evaluations show the effectiveness of RF-Mehndi, achieving excellent authentication performance.

Yinan Zhu,Chunhui Duan,Xuan Ding,Zheng Yang

DOI: https://doi.org/10.1109/secon55815.2022.9918585

2022-01-01

Abstract:Unauthorized access attack has always been a critical problem in RFID systems since any illegitimate reader can conduct access commands on tags without authorization and leave no trace. Past solutions for reader authentication require either modifications on EPC-global Gen2 protocol, which are inapplicable to existing infrastructures, or numerous extra customized devices as communication monitors, which incur high overhead. In this paper, we present a universal, low-cost and effective system to authenticate RFID readers, namely ReaderPrint, which only requires an extra passive tag array and is fully compatible with Gen2 protocol. The key insight behind ReaderPrint is that the impedance mismatch degrees (IMD) of different reader antennas across channels are distinguishable. We verify this mechanism through empirical studies using vector network analyzer and further propose two brand-new forms of hardware fingerprints, i.e., IMD-induced transmission power attenuation (ITPA) and phase shifts (IPS) across channels to quantify the IMD. Besides, to address the negative impacts of environmental changes, well-refined fingerprint matching algorithms are designed accordingly. We implement a prototype of ReaderPrint and evaluate it on 96 different readers in three indoor scenarios. Experimental results show that ReaderPrint can achieve fairly high authentication accuracy of up to 97.2%, regardless of environmental or device conditions.

Qingsong Yao,Jianfeng Ma,Rui Li,Xinghua Li,Jinku Li,Jiao Liu

DOI: https://doi.org/10.1109/access.2019.2922220

IF: 3.9

2019-01-01

IEEE Access

Abstract:Internet of Things (IoT) devices are basic units in edge computing. Denial of service (DoS) attack is a great threat to low-cost IoT devices, even worse in privacy-preserving authentication protocols for radio frequency identification (RFID) tags. During DoS attacks, the attacker consumes the legal states in a target tag by continuous scanning and further observes its behavior in authentication to break privacy. Due to lack of adequate energy and computing power, it is hard for passive backscattering RFID tags to defend against DoS attacks. In this work, we cast a new insight on the DoS attacks to RFID tags and leverage the malicious scanning behavior as a new energy source. In this way, a passive tag gains more and more energy and can afford more and more complex cryptography computation under a DoS attack. Finally, the victim tag with adequate energy achieves to complete the complicated public key cryptographic computations and defend against the DoS attack. We further propose a protocol, namely the RUND protocol. We define the tracking privacy model and introduce in the notion of tracking interval to define the tracking privacy other than indistinguishable privacy. To guarantee the security and tracking privacy properties of our protocol, we propose 3 rules as designing guidelines. The analysis shows that our approach can achieve $O$ (1) efficiency while providing DoS-defending privacy-preserving authentication. Furthermore, with proper parameters our approach can save about 40% boosting time at least, compared to the directly charging for public key cryptographic computation method.

Zhengjie Huang,Shiwei Dong,Jiangtao Huangfu,Lixin Ran,Dexin Ye

DOI: https://doi.org/10.1109/tap.2021.3137199

IF: 5.7

2021-01-01

IEEE Transactions on Antennas and Propagation

Abstract:In this communication, we present a low-cost chipless radio frequency identification (RFID) tag with a high data capacity and a wide reading range based on time-domain scattering modulation. The proposed tag consists of a slotted square patch antenna with a switchable resistor and a mechanically driven slider etched with a barcode-like metallic wire array. Encoding is achieved by the presence and absence of the metallic wire on the slider, and tag identification is obtained by sequential bit reading. A special encoding strategy is applied to improve its insensitivity to the motion velocity of the slider. For a proof-of-concept demonstration, a prototype designed to operate at 2.1 GHz was fabricated and measured, and the experimental results verified the effectiveness. Compared with the methods based on time-domain reflectometry, spectral signature, and resonator-based sequential encoding, the proposed approach provides a substantially enhanced data capacity within a narrow spectrum without sacrificing its reading range and tag size, due to the design of nonresonant code cell. Such a mechanically triggered chipless RFID tag exhibits promising potentials in some practical applications, such as personal ID and credit cards.

Weiye Xu,Jianwei Liu,Shimin Zhang,Yuanqing Zheng,Feng Lin,Fu Xiao,Jinsong Han

DOI: https://doi.org/10.1109/infocom42981.2021.9488737

IF: 6.075

2024-01-01

IEEE Transactions on Mobile Computing

Abstract:Current facial authentication (FA) systems are mostly based on the images of human faces, thus suffering from privacy leakage and spoofing attacks. Mainstream systems utilize facial geometry features for spoofing mitigation. which are still easy to deceive with the feature manipulation, e.g., 3D-printed human faces. In this paper, we propose a novel privacy-preserving anti-spoofing FA system, named RFace, which extracts both the 3D geometry and inner biomaterial features of faces using a COTS RFID tag array. These features are difficult to obtain and forge, hence are resistant to spoofing attacks. RFace only requires users to pose their faces in front of a tag array for a few seconds, without leaking their visual facial information. We build a theoretical model to rigorously prove the feasibility of feature acquisition and the correlation between the facial features and RF signals. For practicality, we design an effective algorithm to mitigate the impact of unstable distance and angle deflection from the face to the array. Extensive experiments with 30 participants and three types of spoofing attacks show that RFace achieves an average authentication success rate of over 95.7% and an EER of 4.4%. More importantly, no spoofing attack succeeds in deceiving RFace in the experiments.

Chengchen Zhu,Kunling Li,Jianan Hong,Cunqing Hua,Futai Zou

DOI: https://doi.org/10.1109/icc51166.2024.10622361

2024-01-01

Abstract:The technology development of wireless communication has brought about the rapid growth of various wireless devices, but also brings in many security threats. This paper focuses on the security and privacy problems in wireless authentication and proposes a novel authentication scheme based on the design of reusable fuzzy extractor (RFE) for device's radio frequency (RF) fingerprinting. Firstly, unlike the traditional authentication protocol, our scheme can accomplish the mutual authentication without the storage of long-term secret key, thus tackles with the key-compromise threats. Furthermore, although the scheme authenticates devices based on their RF fingerprint, it does not store RF fingerprinting information explicitly to safeguard it from eavesdroppers who may use it to impersonate the identity of valid users. Finally, our designed protocol relies on the correspondent peer to measure the fingerprint, rather than the device itself, thus is more secure against various adversaries. The security analysis shows the resiliency against theft of secret keys, wireless channel attacks and privacy disclosure. And the performance evaluation demonstrates that the design of RFE for device's RF fingernrinting is efficient in terms of recognition accuracy.

Xi Tan,Mianxiong Dong,Cheng Wu,Kaoru Ota,Junyu Wang,Daniel W. Engels

DOI: https://doi.org/10.1109/access.2016.2615003

IF: 3.9

2017-01-01

IEEE Access

Abstract:In this paper, we present the design and analysis of an energy-efficient 163-b elliptic curve cryptographic (ECC) processor suitable for passive ultrahigh frequency (UHF) radio frequency identification (RFID) tags that are usable for banknote authentication and anti-counterfeiting. Even partial public key cryptographic functionality has long been thought to consume too much power and to be too slow to be usable in passive UHF RFID systems. Utilizing a low-power design strategy with optimized register file management and an architecture based on the López-Dahab Algorithm, we designed a low-power ECC processor that is used with a modified ECC-DH authentication protocol. The ECC-DH authentication protocol is compatible with the ISO/IEC 18000-63 (“Gen2”) passive UHF RFID protocol. The ECC processor requires 12 145 gate equivalents. The ECC processor consumes 5.04 nJ/b at a frequency of 960 kHz when implemented in a 0.13-μm standard CMOS process. The tag identity authentication function requires 30 600 cycles to complete all scalar multiplication operations. This size, speed, and power of the ECC processor makes it practical to use within a passive UHF RFID tag and achieve up to 1500 banknote authentications per minute, which is sufficient for use in the fastest banknote counting machines.

Fei-yi XIE,Yu-shan LI,Song-lin CHEN,Hong WEN

DOI: https://doi.org/10.3969/j.issn.1002-0802.2017.01.022

2017-01-01

Abstract:Access security of wireless device is a great challenge to wireless communication networks, especially for RFID and some other devices with limited computing power, which are faced with effective high-strength security challenges, and as an important non-cryptographic authentication technology, radio frequency fingerprint recognition technology, for its full use of non-imitation radio frequency characteristics, attracts more and more attention. The generation mechanism of radio frequency fingerprint and the basic model of recognition system are described, and several new methods for radio frequency fingerprint recognition also analyzed. In addition, the existing problems of radio frequency fingerprint recognition technology and the research direction of further improvement are pointed out.

Lili Song,Zhenzhen Gao,Jian Huang,Boliang Han

DOI: https://doi.org/10.1109/WCNC55385.2023.10118789

2023-01-01

Abstract:The physical layer (PHY) security technology based on radio frequency (RF) fingerprint can effectively solve the secure access problem of wireless devices. The hardware impairments of the devices can be used to generate the unique RF fingerprint to identify different wireless devices. Fingerprint extraction as a key step in the process of identification faces the challenges of ensuring the identification accuracy with reduced sample dimension and low testing and training time. To address the above problems, we propose a lightweight RF fingerprint extraction scheme to extract the physical layer attributes and effectively reduce the data dimension and time consumption. Based on the proposed RF fingerprint, the Bayesian classifier is used to identify the wireless devices. Furthermore, a joint judgment strategy is proposed to improve the identification accuracy by using multiple segments of one signal frame. The experimental result shows that, compared to the existing RF fingerprint identification schemes, the proposed RF fingerprint identification scheme obtains the best identification accuracy with lower time and data consumption.

Martin Feldhofer,Sandra Dominikus,Johannes Wolkerstorfer

DOI: https://doi.org/10.1007/978-3-540-28632-5_26

2004-01-01

Abstract:Radio frequency identification (RFID) is an emerging technology which brings enormous productivity benefits in applications where objects have to be identified automatically. This paper presents issues concerning security and privacy of RFID systems which are heavily discussed in public. In contrast to the RFID community, which claims that cryptographic components are too costly for RFID tags, we describe a solution using strong symmetric authentication which is suitable for today’s requirements regarding low power consumption and low die-size. We introduce an authentication protocol which serves as a proof of concept for authenticating an RFID tag to a reader device using the Advanced Encryption Standard (AES) as cryptographic primitive. The main part of this work is a novel approach of an AES hardware implementation which encrypts a 128-bit block of data within 1000 clock cycles and has a power consumption below 9 μA on a 0.35 μm CMOS process.

Yinan Zhu,Chunhui Duan,Xuan Ding,Zheng Yang

DOI: https://doi.org/10.1109/icpads53394.2021.00100

2021-01-01

Abstract:RFID tags authentication is always a critical but challenging problem because only checking the EPC is vulnerable to counterfeiting attacks. Past works explore the unique backscat-ter signal features induced by tags' manufacturing imperfection as fingerprints, but fail to support simultaneous authentication for a batch of tags in practice, which is vital for large-scale RFID applications (e.g., warehouse inventory). In this paper, we present a universal architecture, namely B-AUT, to simultaneously authenticate multiple tags even with the same EPC and pinpoint them, which is fully compatible with Gen2 standard and applicable to almost all tags' hardware fingerprints proposed in existing works. The workflow of B-AUT is threefold based on our novel algorithms. First, the extracted fuzzy fingerprint and EPC are jointly exploited to cluster raw data. Second, we extract the tags' fine-grained fingerprints for genuineness validation and obtain the invalid clusters. Third, we harness localization methods to match the invalid cluster to dubious tags and further conduct small-scale re-validation to pinpoint the counterfeit tags. We have implemented a prototype of B-AUT and evaluated it in extreme cases. Experiment results demonstrate that B-AUT can maintain nearly the same authentication accuracy as that of separate authentication and reduce the time overhead by 43.3%. Moreover, the pinpointing accuracy can reach as high as 92.8%, regardless of tags' total quantities or tag models.

Jue Shen,Li Xie,Jia Mao,Lirong Zheng

DOI: https://doi.org/10.1109/RFID.2013.6548144

2013-01-01

Abstract:In this paper, an inkjet-printed electrochromic (EC) paper display integrated with passive UHF-RFID tag is introduced as a solution for passive electronic shelf labels (ESL). To address the system challenges of the limited power budget of passive UHF-RFID tags and the material aging of EC display, a feedback comparator integrated digital display driver is proposed based on the study of electrochromic, bi-stable and aging features of the EC display. Modularized baseband with different enable conditions and clock domains is implemented in the system design level. Moreover, to maintain the system functions when the input power is lower than the display refresh power, a duty-cycled power management unit (PMU) is activated to reduce the load current during energy scavenging and drive the display in short intervals, enabling the fast charging of the voltage rectifier and the correct output of the regulated supply for the core circuit. The design is fabricated in a 0.18-um CMOS process with an area of 2.25 mm2. Fed with EPC C1G2 protocol write command, experiments demonstrate correct refresh of EC display with 4 cm2 effective area. System sensitivity at the antenna reference point is basically immune to the display load. Further improvements can be achieved after careful chip-to-antenna impedance matching and PMU efficiency optimization.

Feiyi Xie,Songlin Chen,Yi Chen,Runfa Liao,Hong Wen

DOI: https://doi.org/10.1109/emc-b.2017.8260397

2017-01-01

Abstract:Wireless device accessing security is a great challenge in wireless communication networks, especially RFID and some other mini wireless terminals with limited computing power are facing higher strength security challenges because of the high cost caused by the traditional cryptographic. As an important non-cryptographic authentication technology, radio frequency fingerprinting technology, due to its full use of non-imitation of the radio frequency characteristics, has been gaining increasing attention to be a lightweight authentication scheme. Aiming at the shortcomings of traditional radio frequency fingerprint feature extracting methods, this paper constructs a system for the feature extraction of radio frequency fingerprint based on multi-resolution analysis. Meanwhile, BP neural network is designed to optimize features. Finally, a better separable metric algorithm and threshold value are selected according to the actual identification accuracy rate.

Jinsong Han,Chen Qian,Yuqin Yang,Ge Wang,Han Ding,Xin Li,Kui Ren

DOI: https://doi.org/10.1145/3287044

2018-01-01

Proceedings of the ACM on Interactive, Mobile, Wearable and Ubiquitous Technologies

Abstract:RFID tag authentication is challenging because most commodity tags cannot run cryptographic algorithms. Prior research demonstrates that physical layer information based authentication is a promising solution, which uses special features from the physical backscatter signals from tags as their fingerprints. However, our recent studies show that existing physical-layer authentication may fail if feature collection and authentication are conducted in different locations, due to location-dependent noises, environmental factors, or reader hardware differences. This paper presents a new physical layer authentication scheme, called Butterfly, which is resilient to environment and location changes. Butterfly utilizes a pair of adjacent tags as an identifier of each object. By using the difference between the RF signals of the two tags as their fingerprint, the environmental factors can be effectively canceled. Butterfly is fully compatible with commodity RFID systems and standards. We set up a prototype Butterfly using commodity readers, tags, and RF devices. Extensive experiments show that Butterfly achieves high authentication accuracy for substantially different environments and device changes.

He Xu,Xianzhen Yin,Feng Zhu,Peng Li

DOI: https://doi.org/10.1109/jsen.2021.3077575

IF: 4.3

2021-08-01

IEEE Sensors Journal

Abstract:Currently, Radio Frequency Identification (RFID) is one of the key technologies to realize the Internet of Things (IoT), which is widely used in our daily life. However, there are some security threats such as impersonation attack, replay attack in existed RFID systems. In addition, most physical-layer authentication methods for RFID systems are mainly to authenticate tags without authenticating the user. In this paper, we present the design and implementation of Au-Hota, a system that can authenticate the tag and the user simultaneously, and can resist replaying attack and impersonation attack that cannot be solved by most physical-layer methods. Our idea is to assign a unique identifier to the user based on the inductive coupling between two adjacent tags. When the user draws the identity identifier on the tag, different identity identifiers correspond to unique phase features so that simultaneous authentication of the tag and the user can be achieved under the premise of ensuring security. The system is fully compatible with Ultra High Frequency (UHF) RFID systems without any modification. We implement a prototype of the system and conduct extensive experiments to evaluate performance. Our results demonstrate that the system has good authentication performance.

engineering, electrical & electronic,instruments & instrumentation,physics, applied