Yet Another Ultralightweight Authentication Protocol That Is Broken

Avoine, Gildas; Carpent, Xavier

doi:10.1007/978-3-642-36140-1_2

Cited by 22 publications

(16 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since 2006, numerous UMAPs have been proposed for the EPC C1G2 identification system. However, most of these protocols were very weak and were found to be vulnerable within one year of their introduction [19,42,43]. The reason behind this hasty failure was lack of compact security analysis of the protocol at the design stage.…”

Section: Cryptanalysis Models For Umapsmentioning

confidence: 99%

Ultralightweight RFID Authentication Protocols for Low-Cost Passive RFID Tags

Khalid

Mujahid

Najam-ul-Islam

2019

Security and Communication Networks

View full text Add to dashboard Cite

The field of pervasive computing especially the Internet of Things (IoT) network is evolving due to high network speed and increased capacity offered by the 5G communication system. The IoT network identifies each device before giving it access to the network. The RFID system is one of the most prominent enabling technologies for the node identification. Since the communication between the node and the network takes place over an insecure wireless channel, an authentication mechanism is required to avoid the malicious devices from entering the network. This paper presents a brief survey on the authentication protocols along with the prominent cryptanalysis models for the EPC C1G2 RFID systems. A comparative analysis is provided to highlight the common weaknesses of the existing authentication algorithms and to emphasize on the lack of security standardization for the resource constraint IoT network perception layer. This paper is concluded by proposing an ultralightweight protocol that provides Extremely Good Privacy (EGP). The proposed EGP protocol avoids all the pitfalls highlighted by the cryptanalysis of the existing authentication protocols. The incorporation of the novel ultralightweight primitives, Per-XOR ( ) and Inverse Per-XOR ( −1 ), makes the protocol messages more robust and irreversible for all types of adversaries. A comprehensive security analysis illustrates that the proposed protocol proves to be highly resistive against all possible attack scenarios and ensures the security optimally.Radio Frequency Identification (RFID) system is emerging as an enabling technology for the node discovery due to the features such as high speed, long range, and nonline of sight scanning [4]. The RFID enabled IoT networks are being preferred in various surveillance, monitoring, and healthcare applications. Table 1 highlights some of the prominent applications reported in the literature.The architecture of the RFID enabled IoT network is composed of three components: the RFID system, the IoT middleware, and the Internet [15]. The RFID system facilitates the node identification and the data collection. The data gathered from the environment under observation is processed by the IoT middleware. The IoT middleware also acts as a gateway to the external Internet [16].The architecture of the RFID system embedded in an IoT network consists of three main components; the Electronic Product Code (EPC) tag, the reader, and the database. The tag is a low-cost electronic chip with the unique identification number ( ). The reader identifies each tag associated with

show abstract

Section: Cryptanalysis Models For Umapsmentioning

confidence: 99%

Ultralightweight RFID Authentication Protocols for Low-Cost Passive RFID Tags

Khalid

Mujahid

Najam-ul-Islam

2019

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…In the period shortly after the introduction of this paper, three papers were presented that they penetrated to this approach. In [2] traceability attack is carried out. In [3] Disclosure attack was carried out and [4] proved RAPP protocol is not resistance against DE synchronization attack.…”

Section: Rated Workmentioning

confidence: 99%

“…Suppose that are the bases for L and are the set of vectors for L. Can be written any wj for lattice as follows: (2) In above equation all coefficients are the integer number. Both available bases of L lattice are interrelated and interdependent with a matrix has integer numbers elements and determinant.…”

Section: A Mathematically Definedmentioning

confidence: 99%

A Novel Mutual RFID Authentication Protocol with Low Complexity and High Security

Rostampour

Namin²,

Hosseinzadeh³

2014

IJMECS

View full text Add to dashboard Cite

-Radio Frequency Identification (RFID) is a method for automated identifying objects. One of the problems of this technology is its security. RFID tags include resource limitation; therefore, the system designers cannot implement complex circuits to enhance their security. Usually the symmetric and asymmetric encryption methods increase resources and cost. Because it is believed to increasing security is inconsistent with the simplicity, the researchers mostly use one-way encryption methods. In this paper, we propose a mutual authentication protocol based on public key cryptography. The used encryption method includes high security and low complexity. This protocol performs in few steps and is suitable for portable devices with power limitation. In terms of security, the proposed protocol is robust against known attacks. In addition, we prove the protocol is secure by an analytical method.

show abstract

“…The first one [12] is a traceability attack which exploits Hamming weight-invariant property of the foregoing permutation. The next one [13] is an active full disclosure attack which requires about 2 30 counterfeit authentication session with the victim tag.…”

Section: Introductionmentioning

confidence: 99%

Desynchronization attack on RAPP ultralightweight authentication protocol

Ahmadian¹,

Salmasizadeh²,

Aref³

2013

Information Processing Letters

View full text Add to dashboard Cite

Abstract-RAPP (RFID Authentication Protocol with Permutation) is a recently proposed efficient ultralightweight authentication protocol. The operation used in this protocol is totally different from the other existing ultralightweight protocols due to the use of new introduced data dependent permutations and avoidances of modular arithmetic operations and biased logical operations such as AND and OR. The designers of RAPP claimed that this protocol resists against desynchronization attacks since the last messages of the protocol is sent by the reader and not by the tag. This letter challenges this assumption and shows that RAPP is vulnerable against desynchronization attack. This attack has a remarkable probability of success and is effective whether Hamming weight-based or modular-based rotations are used by the protocol.

show abstract

Yet Another Ultralightweight Authentication Protocol That Is Broken

Cited by 22 publications

References 8 publications

Ultralightweight RFID Authentication Protocols for Low-Cost Passive RFID Tags

Ultralightweight RFID Authentication Protocols for Low-Cost Passive RFID Tags

A Novel Mutual RFID Authentication Protocol with Low Complexity and High Security

Desynchronization attack on RAPP ultralightweight authentication protocol

Contact Info

Product

Resources

About