Mutual Authentication Protocol for Role-Based Access Control Using Mobile RFID

Chen, Bing-Chang; Yang, Cheng‐Ta; Yeh, Her-Tyan; Lin, Ching-Chao

doi:10.3390/app6080215

Cited by 13 publications

(7 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…There have also been studies on mobile RFID networks, such as constructing a hierarchical wireless master‐slave RFID reader architecture for smart home service systems [13], proposing localization algorithms for tracking humans [12] or objects [14] in specific areas, suggesting anti‐collision solutions for interrogation between readers and tags in high‐density areas [15,16], and ensuring the security of mobile RFID systems based on authentication [17]. However, there have been very few studies related to data cleaning, particularly clustering‐based data filtering in mobile RFID networks.…”

Section: Related Workmentioning

confidence: 99%

Model of dynamic clustering‐based energy‐efficient data filtering for mobile RFID networks

Lê

2021

ETRI Journal

View full text Add to dashboard Cite

Data filtering is an essential task for improving the energy efficiency of radiofrequency identification (RFID) networks. Among various energy-efficient approaches, clustering-based data filtering is considered to be the most effective solution because data from cluster members can be filtered at cluster heads before being sent to base stations. However, this approach quickly depletes the energy of cluster heads. Furthermore, most previous studies have assumed that readers are fixed and interrogate mobile tags in a workspace. However, there are several applications in which readers are mobile and interrogate fixed tags in a specific area. This article proposes a model for dynamic clustering-based data filtering (DCDF) in mobile RFID networks, where mobile readers are re-clustered periodically and the cluster head role is rotated among the members of each cluster. Simulation results show that DCDF is effective in terms of balancing energy consumption among readers and prolonging the lifetime of the mobile RFID networks.

show abstract

Section: Related Workmentioning

confidence: 99%

Model of dynamic clustering‐based energy‐efficient data filtering for mobile RFID networks

Lê

2021

ETRI Journal

View full text Add to dashboard Cite

show abstract

“…In this way, the model had no solution to deal with this problem. There are more examples of RBAC and ABAC merger as well as RBAC with other systems in which the researcher proposed some fascinating techniques in the form of hybrid models [10,11,26,27].…”

Section: Rbac and Abac Mergermentioning

confidence: 99%

Permission-Based Separation of Duty in Dynamic Role-Based Access Control Model

et al. 2019

View full text Add to dashboard Cite

A major development in the field of access control is the dominant role-based access control (RBAC) scheme. The fascination of RBAC lies in its enhanced security along with the concept of roles. In addition, attribute-based access control (ABAC) is added to the access control models, which is famous for its dynamic behavior. Separation of duty (SOD) is used for enforcing least privilege concept in RBAC and ABAC. Moreover, SOD is a powerful tool that is used to protect an organization from internal security attacks and threats. Different problems have been found in the implementation of SOD at the role level. This paper discusses that the implementation of SOD on the level of roles is not a good option. Therefore, this paper proposes a hybrid access control model to implement SOD on the basis of permissions. The first part of the proposed model is based on the addition of attributes with dynamic characteristics in the RBAC model, whereas the second part of the model implements the permission-based SOD in dynamic RBAC model. Moreover, in comparison with previous models, performance and feature analysis are performed to show the strength of dynamic RBAC model. This model improves the performance of the RBAC model in terms of time, dynamicity, and automatic permissions and roles assignment. At the same time, this model also reduces the administrator’s load and provides a flexible, dynamic, and secure access control model.

show abstract

“…The HBEC protocol overcomes the security flaws in EECC protocol to provide high security, even though the extra hash function adds more overhead to the computation, which should be addressed for the network scalability. B.Chen [14] proposed a role-based access control (RBAC) protocol for mobile RFID, to enable user privacy, role, and access control through the back-end server based on a certification mechanism. RBAC assigns role classes as keys to control the information and the number of times each reader can read a tag.…”

Section: Simple-weight Protocolsmentioning

confidence: 99%

SLEC: A Novel Serverless RFID Authentication Protocol Based on Elliptic Curve Cryptography

Baashirah

Abuzneid

2019

Electronics

View full text Add to dashboard Cite

Internet of Things (IoT) is a new paradigm that has been evolving into the wireless sensor networks to expand the scope of networked devices (or things). This evolution drives communication engineers to design secure and reliable communication at a low cost for many network applications such as radio frequency identification (RFID). In the RFID system, servers, readers, and tags communicate wirelessly. Therefore, mutual authentication is necessary to ensure secure communication. Normally, a central server supports the authentication of readers and tags by distributing and managing the credentials. Recent lightweight RFID authentication protocols have been proposed to satisfy the security features of RFID networks. Using a serverless RFID system is an alternative solution to using a central server. In this model, both the reader and the tag perform mutual authentication without the need for the central server. However, many security challenges arise from implementing lightweight authentication protocols in serverless RFID systems. We propose a new secure serverless RFID authentication protocol based on the famous elliptic curve cryptography (ECC). The protocol also maintains the confidentiality and privacy of the messages, tag information, and location. Although most of the current serverless protocols assume secure channels in the setup phase, we assume an insecure environment during the setup phase between the servers, readers, and tags. We ensure that the credentials can be renewed by any checkpoint server in the mobile RFID network. Thus, we implement ECC in the setup phase (renewal phase), to transmit and store the communication credentials of the server to multiple readers so that the tags can perform the mutual authentication successfully while far from the server. The proposed protocol is compared with other serverless frameworks proposed in the literature in terms of computation cost and attacks resistance.

show abstract

Mutual Authentication Protocol for Role-Based Access Control Using Mobile RFID

Cited by 13 publications

References 11 publications

Model of dynamic clustering‐based energy‐efficient data filtering for mobile RFID networks

Model of dynamic clustering‐based energy‐efficient data filtering for mobile RFID networks

Permission-Based Separation of Duty in Dynamic Role-Based Access Control Model

SLEC: A Novel Serverless RFID Authentication Protocol Based on Elliptic Curve Cryptography

Contact Info

Product

Resources

About