YU Yu,YANG Yu-qing,MIN Hao

DOI: https://doi.org/10.3969/j.issn.1000-1220.2007.07.040

2007-01-01

Abstract:Radio-frequency identification(RFID) is expected to take an important role for object identification as a ubiquitous infrastructure.As it will be pervasive in the social life,the security and privacy have to be concerned.Many jobs have been done in the communication between the reader and the backend database,however as an integrated technology the security of the reader and tag channel is also a weak point to be attacked.The challenge to provide RFID tag security is the limitation of its power resource,its cost requirement and even more the communication speed users bear such as EPC C1G2 standard defines the margin time the tag can process instructions.A peculiar security model of the channel between reader and tag is described in this paper,and based on the EPC C1G2 protocol the vulnerable points is analysed.The resource on the tag is recounted regarding the protocol.A modified scheme with security strategy is also suggested afterwards.

Song Li,Xue-tao Weng

DOI: https://doi.org/10.1109/eptc.2008.4763566

2008-01-01

Abstract:The number of applications that use radio-frequency identification (RFID) technology has grown continually in the last few years. In this presentation we will present the results of research on the electromagnetic environment on RFID systems. We analyze the effects of UHF MHz China RFID system near a GSM frequency bands. Kurokawa's method of calculating the power reflection coefficient from the Smith chart in the situation is applied to passive RFID tag design. The performance analysis of a specific RFID tag is presented to be compared with the theory. One of our objectives has been to examine tag designs that are less sensitive to their environment, in that their radiation patters and tag response characteristics change little when placed on different distance and orientation. We introduce a technique for deploying RFID systems and engineering solutions based on fundamental electromagnetic understanding. The paper will also explore tag designs that use electromagnetic models to simulate and engineer RFID systems.

Yuesong Nan,Xiaopeng Yu,Junjie Liu,Xian Ding,Qingwen Yu,Lizong Liu,Qiaofang Chen,Ying Liu

DOI: https://doi.org/10.1109/icpeca60615.2024.10470958

2024-01-01

Abstract:This method retains the original identity identification function of RFID electronic tags while adding an external interface, supporting IIC-bus protocol, based on modular design and the RFID chip radio frequency, tiggers pins and communication interfaces to interact with external devices such as readers and main controllers. When the RFID electronic tag is working, the interrupt signal is triggered and transmitted to the master controller. After the master controller wakes up after receiving the interrupt signal, the master controller can obtain the data in the memory area of the tag chip through the IIC interface and directly perform the relevant operations. In addition, the trigger signal of the electronic tag can also be used for switching circuit control and other scenarios. This method realizes the organic combination of RFID electronic tags and the master controller. Compared with the use of Bluetooth, WIFI and other communication modules, it has the advantages of lower power consumption, lower cost and stronger environmental adaptability, and has expanded functions such as parameter presetting in the case of device power failure.

Xiao Zheng E,Song Li,Dingfang Chen

2013-01-01

Ruan Jian Xue Bao/Journal of Software

Abstract:Speed and accuracy of information access are essential in modern logistics operations. In this paper, the RFID technology is applied to logistics containers for keeping information dynamically, and the concept of information containers as opposed to logistics containersis put forward. In order to improve the efficiency of data access on tag, a set of RFID middleware named tag operation system (TOS) is proposed. Firstly, the tag memory is paged according to the length of the electronic product code (EPC). Secondly, a bitmap is built up in the tag memory to index the free memory space. Thirdly, the data storage format identifier (DSFID) is designed to make memory paging more flexible. Finally, real-time memory database is set up in the host computer to improve efficiency of tag data query. The experimental results show that TOS can greatly enhance the efficiency of the reader operations on tag. TOS can be widely applied to the applications of lifecycle management of articles. © Institute of Software Chinese Academy of Sciences.

YU Yu,Yuqing YANG,Na YAN,Hao MIN

2007-01-01

Abstract:A challenge to implement tag's security is its power and cost performance. A feasible way to carry out a secure scheme on tag is to choose a tiny crypto algorithm and a secure protocol. In this paper, a secure UHF RFID tag baseband is designed. This baseband is integrated with TEA, which is one of the acceptable algorithms through estimation of hardware resource on tag and some performance analysis. To improve security, authentication procedure is added in the EPC Class 1 Gen 2 protocol. To support the flexible protocol and supply a good power management, an application specific micro-processor is designed in the structure. From the simulation results, this secure RFID tag baseband proves a feasible way to actualize security on tag.

Daniel W. Engels,You Sung Kang,Junyu Wang

DOI: https://doi.org/10.1109/RFID.2013.6548148

2013-01-01

Abstract:Radio frequency identification (RFID) systems compliant to the EPCglobal Generation 2 (Gen2) passive UHF RFID protocol are being deployed in a broad range of applications including access control, automated tolling, personal identification, anti-counterfeiting, and supply chain management. With the broad applications and the demand for ever increasing amounts of on-tag functionality, security on the tag has become a critical enabling functionality in many applications. To address this growing marketplace need, EPCglobal is developing a standard security framework within which security functionality may be integrated seamlessly into the Gen2 protocol. We review the proposed Gen2 security framework and introduce example cryptographic suites to illustrate how to utilize this framework to provide a range of security functionality. We analyze the security of the Gen2 protocol and this new functionality in the context of timing-based attacks. We conclude that the tight communication timings specified in the Gen2 protocol mitigate timing-based attacks; however, the loose timing implementations on commercial interrogators and limited timing enforcement on tags lesson the effectiveness of the specified timing constraints. Further, we conclude that the new security framework allows for the efficient integration of secure functionality that, as specified, is resistant to timing-based attacks; however, we caution that using the delayed response of the new Gen2 security functionality creates new vulnerabilities to timing based attacks such as relay attacks and man-in-the-middle attacks. © 2013 IEEE.

Qi Yongzhen,Wang Xin'an,Feng Xiaoxing,Gu Weqing

DOI: https://doi.org/10.1109/asicon.2009.5351524

2009-01-01

Abstract:This paper presents a security-enhanced baseband system for UH R ID tag, which is based on ISO1 000- B protocol. The proposed baseband system consists of the following modules Receiver, Controller, Power Management (PM), Transmitter, Advanced Encryption Standard with 12 bits cryptographic key (AES-12), and Cyclic Redundancy Check (CRC). AES-12 is the encryption engine, which is designed and implemented properly for low cost requirement. Tag uses AES-12 to protect sensitive data in memory and realize mutual authentication with reader. As the actual length of data transacted between reader and tag is less than 12 bits, a novel data flow is given to enhance security strength. The chip was designed using 0.1 mu m CMOS process. Total area of the baseband system is 5 mu mX3 0 mu m excluding pads. Power analysis shows that it consumes. mu w IV. The chip is under fabrication.(1)

J Yang,Kui Ren,Kwangjo Kim

2005-01-01

Abstract:In the near future, radio frequency identiflcation (RFID) technology is expected to play an important role for object identiflcation as a ubiquitous infrastructure. However, low-cost RFID tags are highly resource-constrained and cannot support its long-term security, so they have potential risks and may violate privacy for their bearers. To remove security vulnerabilities, we propose a robust mutual authentication protocol between a tag and a back-end server for low-cost RFID system that guarantees data privacy and location privacy of tag bearers. Difierent from the previous works (4, 14), our protocol flrstly provides reader authentication and prevent active attacks based on the assumption that a reader is no more a trusted third party and the communication channel between the reader and the back-end server is insecure like wireless channel. Also, the proposed protocol exhibits forgery resistant against simple copy, or counterfeiting prevailing RFID tags. As tags only have hash function and exclusive-or operation, our proposed protocol is very feasible for low-cost RFID system compared to the previous works. The formal proof of correctness of the proposed authentication protocol is given based on GNY logic.

Zhao Wang,Wei Xin,Zhigang Xu,Zhong Chen

DOI: https://doi.org/10.1007/978-3-642-34528-9_37

2013-01-01

Abstract:As a non-contact auto-identifying technology, RFID has played an important role in our daily life. However, the tradeoff between limited computing resource and high security requirement has become its bottleneck for wider use and application. Current mechanisms cannot give an effective solution to use limited computing resource to achieve a high goal of security. This paper proposes a novel secure protocol of communication between tags and readers. The protocol, which is based on EPC global UHF protocol and simplified DES, can lower the size of tag circuit and enhance the security of RFID reading and writing process. © 2013 Springer-Verlag.

Qiang Li,Zhengliang Sun,Jin Huang,Sha Liu,Junyu Wang,Na Yan,Lei Wang,Hao Min

DOI: https://doi.org/10.1109/rfid.2017.7945582

2017-01-01

Abstract:UHF-RFID (Ultra High Frequency Radio Frequency Identification), with the feature of reliable, accurate and fast, has been used in the vehicular traffic management system to relief the urban traffic congestion, air pollution etc. To strengthen the system security and improve the performance of the tag, a secure, high performance UHF-RFID tag is designed and implemented in this paper. Authentication and authorization between the reader and the tag are performed to ensure the legal identities of both sides. Identity information of the tag is hidden to prevent unauthorized tracking. Low power circuit technology as well as power management technology is introduced in the encryption operation to increase the sensitivity. The tag chip is implemented with the SMIC 0.18μm CMOS EEPROM technology, conforms to the national standard of GB/T 29768-2013 protocol [1] and achieves mutual authorization, authentication and data encryption. The read and write sensitivity of the tag is measured to be -19dBm and -14dBm respectively.

Kai Bu,Junze Bao,Minyu Weng,Jia Liu,Bin Xiao,Xuan Liu,Shigeng Zhang

DOI: https://doi.org/10.1016/j.adhoc.2015.06.006

IF: 4.816

2016-01-01

Ad Hoc Networks

Abstract:Radio-Frequency Identification (RFID) technology has fostered many object monitoring applications. Along with this trend, a corresponding important problem is to verify the intactness of a set of objects using that of their attached tags. Existing solutions necessitate the knowledge of tag identifiers (IDs), sharing the intuition that verifying whether any tag is absent comes after knowing which tags are supposed to be present. Such solutions, however, can hardly live up to the recent vision of anonymous RFID systems that isolate tag IDs from protocols design for privacy concern. In this paper, we take the first leap toward verifying intactness of anonymous RFID systems. We first identify three critical solution requirements—deterministic verification, anonymity preservation, and scalability—for applications tolerating no absence. Without tag IDs as a priori, we propose a series of crypto-free, lightweight protocols that satisfy the requirements. The proposed protocols explore tag-cardinality difference or leverage Direct-Sequence Spread Spectrum enabled RFID. We validate their performance in terms of accuracy, privacy, and scalability through both analytical and simulation results. To cater for applications that tolerate losing some tagged objects, we further explore probabilistic intactness verification to trade tiny accuracy for boosted efficiency.

Jia Liu,Xingyu Chen,Shigang Chen,Wei Wang,Dong Jiang,Lijun Chen

2020-01-01

Abstract:Radio frequency identification has been gaining popularity in a variety of applications from shipping and transportation to retail industry and logistics management. With a limited reader-tag communication range, multiple readers (or reader antennas) must be used to provide full coverage to any deployment area beyond a few meters across. However, reader contention can seriously degrade the performance of the system or even block out some tags from being read. Most prior work on this problem requires hardware and protocol support that is incompatible with the EPC Gen2 standard. Moreover, they assume the knowledge of a reader network that precisely describes the contention relationship among all readers, but the efficient acquisition of the reader network in a practical system with commercial-off-the-shelf (COTS) tags is an open problem. This study fills the gap by proposing a novel protocol Retwork, which works under the limitations imposed by commercial Gen2-compatible tags and identifies all possible reader contentions efficiently through careful protocol design that exploits the flag-setting capability of these tags. We have implemented a prototype with 8,000 commercial tags. Extensive experiments demonstrate that Retwork can reduce communication overhead by an order of magnitude, in comparison to an alternative solution.

Han Ding,Jinsong Han,Yanyong Zhang,Fu Xiao,Wei Xi,Ge Wang,Zhiping Jiang

DOI: https://doi.org/10.1109/infocom.2018.8486424

2018-01-01

Abstract:As the Ultra High Frequency (UHF) passive Radio Frequency IDentification (RFID) technology becomes increasingly deployed, it faces an array of new security attacks. In this paper, we consider a type of attack in which a malicious RFID reader could arbitrarily modify the tags via standard commands, e.g., IDs or other data in the memory. To deal with this type of attack, we propose a physical-layer RF signal based reader authentication solution, namely Arbitrator, that involves passively listening on RF channels, analyzing the communication signals, identifying unauthorized readers and jamming the commands from such readers. Our solution does not need to modify RFID devices or the underlying communication standards, hence fully compatible with the existing RFID infrastructure. In this study, we have implemented a prototype Arbitrator over the Universal Software Radio Peripheral (USRP) platform, and conducted extensive experiments to evaluate its performance. Our results show that Arbitrator can detect unauthorized RFID readers with high accuracy, and thus effectively diminish the unauthorized access attacks.

Hung-Min Sun,Wei-Chih Ting

DOI: https://doi.org/10.1109/tmc.2008.175

IF: 6.075

2009-01-01

IEEE Transactions on Mobile Computing

Abstract:EPCglobal Class-1 Generation-2 specification (Gen2 in brief) has been approved as ISO18000-6C for global use, but the identity of tag (TID) is transmitted in plaintext which makes the tag traceable and clonable. Several solutions have been proposed based on traditional encryption methods, such as symmetric or asymmetric ciphers, but they are not suitable for low-cost RFID tags. Recently, some lightweight authentication protocols conforming to Gen2 have been proposed. However, the message flow of these protocols is different from Gen2. Existing readers may fail to read new tags. In this paper, we propose a novel authentication protocol based on Gen2, called Gen2+, for low-cost RFID tags. Our protocol follows every message flow in Gen2 to provide backward compatibility. Gen2+ is a multiple round protocol using shared pseudonyms and Cyclic Redundancy Check (CRC) to achieve reader-to-tag authentication. Conversely, Gen2+ uses the memory read command defined in Gen2 to achieve tag-to-reader authentication. We show that Gen2+ is more secure under tracing and cloning attacks.

Junyu Wang,Christian Floerkemeier,Sanjay E. Sarma

DOI: https://doi.org/10.1007/s00779-014-0788-x

2014-01-01

Personal and Ubiquitous Computing

Abstract:Radio frequency identification (RFID) is an important technique used for automatic identification and data capture. In recent years, low-cost RFID tags have been used in many open-loop applications beyond supply chain management, such as the tagging of the medicine, clothes, and belongings after the point of sales. At the same time, with the development of semiconductor industry, handheld terminals and mobile phones are becoming RFID-enabled. Unauthorized mobile RFID readers could be abused by the malicious hackers or curious common people. Even for authorized RFID readers, the ownership of the reader can be transferred and the owners of the authorized mobile reader may not be always reliable. The authorization and authentication of the mobile RFID readers need to take stronger security measures to address the privacy or security issues that may arise in the emerging open-loop applications. In this paper, the security demands of RFID tags in emerging open-loop applications are summarized, and two example protocols for authorization, authentication and key establishment based on symmetric cryptography are presented. The proposed protocols adopt a timed-session-based authorization scheme, and all reader-to-tag operations are authorized by a trusted third party using a newly defined class of timed sessions. The output of the tags is randomized to prevent unauthorized tracking of the RFID tags. An instance of the protocol A is implemented in 0.13-μm CMOS technology, and the functions are verified by field programmable gate array. The baseband consumes 44.0 μW under 1.08 V voltage and 1.92 MHz frequency, and it has 25,067 gate equivalents. The proposed protocols can successfully resist most security threats toward open-loop RFID systems except physical attacks. The timing and scalability of the two protocols are discussed in detail.

Min Chen

DOI: https://doi.org/10.1109/icdcs.2019.00071

2016-01-01

Abstract:Traditional radio frequency identification (RFID) technologies allow tags to communicate with a reader but not among themselves. By enabling peer-to-peer communications among nearby tags, the emerging networked tags make a fundamental enhancement to today's RFID systems. This new capability supports a series of system-level functions in previously infeasible scenarios where the readers cannot cover all tags due to cost or physical limitations. This paper makes the first attempt to design a new communication model that is specifically tailored to efficient implementation of system-level functions in networked tag systems. Instead of exploiting complex mechanisms for collision detection and resolution, we propose a collision-resistent communication model (CCM) that embraces the collision in tag communications and utilizes it to merge the data from different sources in a benign way. Two fundamental applications: RFID estimation and missing-tag detection, are presented to illustrate how CCM assists efficient system-level operations in networked tag systems. Simulation results show that system-level applications through CCM outperform those through ID collection.

Xuan Liu,Bin Xiao,Shigeng Zhang,Kai Bu,Alvin Chan

DOI: https://doi.org/10.1109/tc.2015.2394461

IF: 3.183

2015-01-01

IEEE Transactions on Computers

Abstract:The radio frequency identification (RFID) technology is greatly revolutionizing applications such as warehouse management and inventory control in retail industry. In large RFID systems, an important and practical issue is tag searching: Given a particular set of tags called wanted tags, tag searching aims to determine which of them are currently present in the system and which are not. As an RFID system usually contains a large number of tags, the intuitive solution that collects IDs of all the tags in the system and compares them with the wanted tag IDs to obtain the result is highly time inefficient. In this paper, we design a novel technique called testing slot, with which a reader can quickly figure out which wanted tags are absent from its interrogation region without tag ID transmissions. The testing slot technique thus greatly reduces transmission overhead during the searching process. Based on this technique, we propose two protocols to perform time-efficient tag searching in practical large RFID systems containing multiple readers. In our protocols, each reader first employs the testing slot technique to obtain its local searching result by iteratively eliminating wanted tags that are absent from its interrogation region. The local searching results of readers are then combined to form the final searching result. The proposed protocols outperform existing solutions in both time efficiency and searching precision. Simulation results show that, compared with the state-of-the-art solution, our best protocol reduces execution time by up to 60 percent, meanwhile promotes the searching precision by nearly an order of magnitude.

Yang Xu,Jinsha Yuan

DOI: https://doi.org/10.1007/s11107-018-0812-6

IF: 1.768

2018-01-01

Photonic Network Communications

Abstract:With comprehensive applications of radio-frequency identification (RFID) technology in Internet of things, more and more mobile reader devices are utilized. However, in mobile RFID system the readers are not considered trustworthy as usual; thus, an authentication protocol with the mutual authentication ability is demanded; that is, the tag can authenticate the reader when necessary. In this paper, the one-way Hash is used to realize the mutual authentication between RFID tags, readers and application servers. Meanwhile, to solve the tracking attacks of tags, the ID update ability is proposed. The IDs of the RFID tags used in this protocol are variable and traceable. Besides, the out-of-synchronous mechanism and anti-collision mechanism are also designed for the ID-updating stage. BAN logic is used to prove the security of the protocol, and the communication cost simulations of several protocols are carried out and comparisons are then made. Through the security and comparisons performance analysis of various protocols, the proposed protocol is proved to require for a smaller storage space and lower operation cost. What is more, it can resist multiple attacks, which can meet the requirements of the security and privacy of RFID system for the mobile environment.

Zheng Zhou,Weiming Zhang,Nenghai Yu

DOI: https://doi.org/10.48550/arXiv.1902.00676

2019-05-19

Abstract:Radio-frequency identification(RFID) technology is widely applied in daily human life. The RFID cards are seen everywhere, from entrance guard to consumption. The information security of RFID cards, such as data confidentiality, tag anonymity, mutual authentication etc, has been fully studied. In the paper, using the RFID cards in MIFARE Classic and DESFire families, a bidirectional covert channel via multipurpose RFID cards between service providers is built to leak sensitive data between two simulation systems. Furthermore, by calculations and experiments, the daily channel capacity to leak data of the channel is obtained. Although the storage capacity of a single RFID card is very small, a large user base can still bring about a considerable amount to leak data. Then, the reasons for the existence of such channels are discussed. To eliminate this type of covert channels, a new authentication protocol between RFID cards and card readers are proposed. Our experimental results show a significant security improvement in prevention of such covert communications while keeping user convenience.

Cryptography and Security

FAN Jun-di,LI Min-bo,CHEN Guang-yu

DOI: https://doi.org/10.3969/j.issn.1000-3428.2011.19.042

2011-01-01

Abstract:The method of implementation of security and privacy in low cost tags is a key technique to be solve in research field.Based on the use of pseudo-random number generation function in writer/reader device instead of in tags,this paper proposes a new Radio Frequency Identification(RFID) mutual authentication protocol,focus on high-capacity but low-cost tags,which possesses forward security ability and can defeat location privacy attack,relay attack,eavesdropping attack and can protect data from being falsifying.The new scheme effectively solves problems of RFID security and privacy with lower complexity of hardware,so it is useful for low-cost RFID tags.