A Scalable and Secure RFID Ownership Transfer Protocol

Mamun, Mohammad Saiful Islam; Miyaji, Atsuko

doi:10.1109/aina.2014.149

Cited by 2 publications

(2 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Mamun et al propose a scalable RFID ownership transfer protocol based on a lightweight Field-LPN problem [16]. The protocol adopts the homomorphic aggregated signature to facilitate transferring ownership of a set of tags together.…”

Section: Performance Comparisonmentioning

confidence: 99%

Cryptanalysis and improvement of two RFID-OT protocols based on quadratic residues

Jin

Zhu

Shi

et al. 2015

2015 IEEE International Conference on Communications (ICC)

View full text Add to dashboard Cite

The ownership transfer of RFID tag means a tagged product changes control over the supply chain. Recently, Doss et al. proposed two secure RFID tag ownership transfer (RFID-OT) protocols based on quadratic residues. However, we find that they are vulnerable to the desynchronization attack. The attack is probabilistic. As the parameters in the protocols are adopted, the successful probability is 93.75%. We also show that the use of the pseudonym of the tag h(TID) and the new secret key K TID are not feasible. In order to solve these problems, we propose the improved schemes. Security analysis shows that the new protocols can resist in the desynchronization attack and other attacks. By optimizing the performance of the new protocols, it is more practical and feasible in the large-scale deployment of RFID tags.

show abstract

Section: Performance Comparisonmentioning

confidence: 99%

Cryptanalysis and improvement of two RFID-OT protocols based on quadratic residues

Jin

Zhu

Shi

et al. 2015

2015 IEEE International Conference on Communications (ICC)

View full text Add to dashboard Cite

show abstract

“…Moreover, the security requirements of an RFID ownership transfer protocol,() where the ownership of a tag needs to be transferred securely, are very close to that of path authentication protocols. () However, in comparison with the ownership transfer protocol, the path authentication protocol demands additional privacy requirements such as forward privacy , where former executions must not be traced by the current owner, and backward privacy , where the succeeding transaction should not be traced by the former owner …”

Section: Introductionmentioning

confidence: 99%

SupAUTH: A new approach to supply chain authentication for the IoT

Mamun

Ghorbani

Miyaji

et al. 2018

Computational Intelligence

Self Cite

View full text Add to dashboard Cite

Recent advances of the Internet of Things (IoT) technologies have enhanced the use of radio‐frequency identification‐based tracking system to be widely deployed in supply chain management covering every step involved in the flow of merchandise from the supplier to the customer to ensure a trustworthy delivery environment. Such authentication system (also known as path authentication) not only guarantees the merchandise to be available in the right destination with no discrepancies and errors but also ensures the route of the merchandise progress to be valid. This paper outlines the current state‐of‐the‐art cryptographic solutions for path authentication, highlights their properties and weakness, and proposes a novel, privacy‐preserving, and efficient solution. Compared with the existing elliptic curve ElGamal re‐encryption–based solution, our homomorphic message authentication code on arithmetic circuit–based solution offers less memory storage (with limited scalability) and no computational requirement on the reader. Moreover, we allow computational ability inside the tag that articulates a new privacy direction to the state‐of‐the‐art path privacy. This privacy notion helps support the confidentiality of the tag movement in the context of IoT‐enabled cross‐organizational tracking environment where the stakeholders can be from different organizations associated together with the merchandise being delivered. As a potential extension to the path authentication protocol, we further propose a polynomial‐based mutual authentication as a security extension and batch initialization as an efficiency extension. Besides our brief security and privacy analysis, our evaluation shows that the proposed solution can significantly reduce memory requirements on tags with marginal computational overhead to ensure transmission path confidentiality. We observe that SupAUTH requires maximum 513‐bit tag memory and 57.3 ms of processing time during evaluation, which is not only practical but also suitable for any suitable low‐cost radio‐frequency identification deployment in IoT.

show abstract

A Scalable and Secure RFID Ownership Transfer Protocol

Cited by 2 publications

References 21 publications

Cryptanalysis and improvement of two RFID-OT protocols based on quadratic residues

Cryptanalysis and improvement of two RFID-OT protocols based on quadratic residues

SupAUTH: A new approach to supply chain authentication for the IoT

Contact Info

Product

Resources

About