Security analysis of two lightweight RFID authentication protocols

Wang, Shaohui; Han, Zhijie; Liu, Sujuan; Chen, Danwei

doi:10.1007/s12243-013-0361-z

Cited by 13 publications

(19 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…More specifically, we first demonstrate an efficient structural attack in Section 3.2, then, in Section 3.3, algebraic attacks that give a far more precise security estimate regarding the feasibility of such attacks against the primitive than the claims in [12]. In Section 3.4.3 we debunk the claim made in [36] of having broken the Dusart-Traoré primitive; in fact we demonstrate that the attack in [36] is not an attack at all. In addition to this analysis, we try to answer the question whether components of the Dusart-Traoré primitive can be salvaged for the design of future light-weight primitives by suggesting potential countermeasures in Section 3.4.4 and conducting a comparative efficiency estimation in Section 3.4.5.…”

Section: Introductionmentioning

confidence: 85%

See 1 more Smart Citation

Light-weight primitive, feather-weight security

Banciu

Hoerder

Page

2013

Proceedings of the Workshop on Embedded Systems Security

View full text Add to dashboard Cite

In [12], the authors present a new light-weight cryptographic primitive which supports an associated RFID-based authentication protocol. The primitive has some structural similarities to AES, but is presented as a keyed one-way function using a 128-bit key. Although a security analysis is included, this is at a high-level only. To provide a more concrete idea as to the security of this primitive, we therefore make three contributions: first, a structural attack requiring Op2 5 q plaintext/ciphertext pairs (and hence effort online) plus Op2 21 q effort offline, second algebraic attacks on round reduced versions of the primitive which requires only a single plaintext/ciphertext pair, and, third debunk the claimed attack of [36] on the same primitive. Our structural attack completely breaks the primitive and the algebraic attack highlights a crucial weakness of the primitive; we conclude that although one can consider countermeasures against these specific attacks, the design in general is questionable and should therefore be avoided.

show abstract

Section: Introductionmentioning

confidence: 85%

“…‚ We conclude the Section by considering what the DusartTraoré primitive actually is (since it cannot be a oneway function), explain why the attack of [36] does not work, and assessing whether further study of some components may lead to secure light-weight primitives in the future.…”

Section: Security Analysismentioning

confidence: 99%

Light-weight primitive, feather-weight security

Banciu

Hoerder

Page

2013

Proceedings of the Workshop on Embedded Systems Security

View full text Add to dashboard Cite

show abstract

“…In [3,4,[8][9][10][11][12][13][14] ultralightweight authentication mutual protocols for RFID systems have been proposed with several variations in design and primitives but cryptanalysis performed in [5][6][7][19][20][21][22][23][24][25][26][27][28][29][30] highlighted the security loop holes and vulnerabilities in the abovementioned protocols. This raises the need of a new secure and robust ultralightweight mutual authentication protocol to combat against all types of malicious activities.…”

Section: Related Workmentioning

confidence: 99%

RCIA: A New Ultralightweight RFID Authentication Protocol Using Recursive Hash

Mujahid

Najam-ul-Islam

Shami

2015

International Journal of Distributed Sensor Networks

View full text Add to dashboard Cite

RFID is one of the most protuberant systems in the field of ubiquitous computing. Since RFID tags have limited computation capabilities, numerous ultralightweight authentication protocols have been proposed to provide privacy and security. However all the previously proposed ultralightweight mutual authentication protocols have some security apprehensions and are vulnerable to various desynchronization and full disclosure attacks. This paper proposes a new ultralightweight mutual authentication protocol to provide robust confidentiality, integrity, and authentication (RCIA) in a cost effective manner. RCIA introduces a new ultralightweight primitive recursive hash, which efficiently detects the message tempering and also avoids all possible desynchronization attacks. RCIA involves only bitwise operations such as XOR, AND, left rotation, and recursive hash. Performance evaluation illustrates that RCIA requires less resources on tag in terms of on-chip memory, communication cost, and computational operations.

show abstract

“…In [2] traceability attack is carried out. In [3] Disclosure attack was carried out and [4] proved RAPP protocol is not resistance against DE synchronization attack. Paper [5] designed a new attack on RFID systems and introduced a new protocol called ACSP.…”

Section: Rated Workmentioning

confidence: 99%

A Novel Mutual RFID Authentication Protocol with Low Complexity and High Security

Rostampour

Namin²,

Hosseinzadeh³

2014

IJMECS

View full text Add to dashboard Cite

-Radio Frequency Identification (RFID) is a method for automated identifying objects. One of the problems of this technology is its security. RFID tags include resource limitation; therefore, the system designers cannot implement complex circuits to enhance their security. Usually the symmetric and asymmetric encryption methods increase resources and cost. Because it is believed to increasing security is inconsistent with the simplicity, the researchers mostly use one-way encryption methods. In this paper, we propose a mutual authentication protocol based on public key cryptography. The used encryption method includes high security and low complexity. This protocol performs in few steps and is suitable for portable devices with power limitation. In terms of security, the proposed protocol is robust against known attacks. In addition, we prove the protocol is secure by an analytical method.

show abstract

Security analysis of two lightweight RFID authentication protocols

Cited by 13 publications

References 19 publications

Light-weight primitive, feather-weight security

Light-weight primitive, feather-weight security

RCIA: A New Ultralightweight RFID Authentication Protocol Using Recursive Hash

A Novel Mutual RFID Authentication Protocol with Low Complexity and High Security

Contact Info

Product

Resources

About