NDLI: Security Analysis and Improvement on Two RFID Authentication Protocols

Content Provider	Springer Nature Link
Author	Wang, Shaohui Liu, Sujuan Chen, Danwei
Copyright Year	2014
Abstract	Several lightweight RFID authentication protocols have been proposed to settle the security and privacy problems. Nevertheless, most of these protocols are analyzed and they are not successful in their attempt to achieve the claimed security objectives. In this paper, we consider the security of two recently proposed typical RFID authentication protocols: RAPLT protocol and SRP+ protocol. RAPLT protocol is a new ultra-lightweight RFID protocol based on two new operations named $$merge$$ and $$separation$$ . Utilizing the linear property of the $$merge$$ operation, we present a passive disclosure attack on RAPLT protocol, and we can deduce the shared secrets with overwhelming probability after eavesdropping about 100 round authentication sessions. SRP+ protocol is a novel secure RFID authentication protocol conforming to the EPC C-1 G-2 standard, and we present efficient de-synchronization attack and passive disclosure attack through exhaustive search. Our disclosure attack only needs one run of the protocol, and the attack complexity is $$O(2^{16})$$ evaluation of the PRNG function in off-line analysis mode. In addition, to counteract the vulnerabilities, we propose a new modified version of SRP+ protocol, denoted by $$ SRP ^{++}$$ , conforming to the EPC C-1 G-2 standard. Our security analysis demonstrates that $$ SRP ^{++}$$ protocol can resist the exhaustive search attack with the complexity $$O(2^{32})$$ , which is the optimal security bound.
Starting Page	21
Ending Page	33
Page Count	13
File Format	PDF
ISSN	09296212
Journal	Wireless Personal Communications
Volume Number	82
Issue Number	1
e-ISSN	1572834X
Language	English
Publisher	Springer US
Publisher Date	2014-11-19
Publisher Place	Boston
Access Restriction	One Nation One Subscription (ONOS)
Subject Keyword	RFID Lightweight mutual authentication Passive attack EPC C-1 G-2 Communications Engineering, Networks Signal, Image and Speech Processing Computer Communication Networks
Content Type	Text
Resource Type	Article
Subject	Electrical and Electronic Engineering Computer Science Applications

Sl.	Authority	Responsibilities	Communication Details
1	Ministry of Education (GoI), Department of Higher Education	Sanctioning Authority	https://www.education.gov.in/ict-initiatives
2	Indian Institute of Technology Kharagpur	Host Institute of the Project: The host institute of the project is responsible for providing infrastructure support and hosting the project	https://www.iitkgp.ac.in
3	National Digital Library of India Office, Indian Institute of Technology Kharagpur	The administrative and infrastructural headquarters of the project	Dr. B. Sutradhar bsutra@ndl.gov.in
4	Project PI / Joint PI	Principal Investigator and Joint Principal Investigators of the project	Dr. B. Sutradhar bsutra@ndl.gov.in Prof. Saswat Chakrabarti will be added soon
5	Website/Portal (Helpdesk)	Queries regarding NDLI and its services	support@ndl.gov.in
6	Contents and Copyright Issues	Queries related to content curation and copyright issues	content@ndl.gov.in
7	National Digital Library of India Club (NDLI Club)	Queries related to NDLI Club formation, support, user awareness program, seminar/symposium, collaboration, social media, promotion, and outreach	clubsupport@ndl.gov.in
8	Digital Preservation Centre (DPC)	Assistance with digitizing and archiving copyright-free printed books	dpc@ndl.gov.in
9	IDR Setup or Support	Queries related to establishment and support of Institutional Digital Repository (IDR) and IDR workshops	idr@ndl.gov.in

Strengthening the Security of EPC C-1 G-2 RFID Standard

Security Analysis and Strengthening of an RFID Lightweight Authentication Protocol Suitable for VANETs

Security analysis of two lightweight RFID authentication protocols

Tree-LSHB+: An LPN-Based Lightweight Mutual Authentication RFID Protocol

Improvement of the Hash-Based RFID Mutual Authentication Protocol

Cryptanalysis of a Hash Based Mutual RFID Tag Authentication Protocol

Security Problems in an RFID System

Hardware Cost Measurement of Lightweight Security Protocols

Scalability and Security Conflict for RFID Authentication Protocols

Security Analysis and Improvement on Two RFID Authentication Protocols

Similar Documents

Strengthening the Security of EPC C-1 G-2 RFID Standard

Security Analysis and Strengthening of an RFID Lightweight Authentication Protocol Suitable for VANETs

Security analysis of two lightweight RFID authentication protocols

Tree-LSHB+: An LPN-Based Lightweight Mutual Authentication RFID Protocol

Improvement of the Hash-Based RFID Mutual Authentication Protocol

Cryptanalysis of a Hash Based Mutual RFID Tag Authentication Protocol

Security Problems in an RFID System

Hardware Cost Measurement of Lightweight Security Protocols

Scalability and Security Conflict for RFID Authentication Protocols

Security Analysis and Improvement on Two RFID Authentication Protocols