Practical attacks on a mutual authentication scheme under the EPC Class-1 Generation-2 standard

Pedro Peris-Lopez; Tieyan Li; Julio C. Hernandez-Castro; Juan M.E. Tapiador

首页> 外文期刊>Computer Communications >Practical attacks on a mutual authentication scheme under the EPC Class-1 Generation-2 standard

【24h】

Practical attacks on a mutual authentication scheme under the EPC Class-1 Generation-2 standard

机译：在EPC Class-1 Generation-2标准下对相互认证方案的实际攻击

获取原文

获取原文并翻译 | 示例

掌桥外文数据库（机构版） >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

The EPC Class-1 Generation-2 RFID standard provides little security, as has been shown in previous works such as [S. Karthikeyan, M. Nesterenko, RFID security without extensive cryptography, in: Proceedings of the 3rd ACM Workshop on Security of Ad Hoc and Sensor Networks, 2005, pp. 63-67; D.N. Duc, J. Park, H. Lee, K. Kim, Enhancing security of EPCglobal Gen-2 RFID tag against traceability and cloning, in: The 2006 Symposium on Cryptography and Information Security, 2006; H.Y. Chien, C.H. Chen, Mutual authentication protocol for RFID conforming to EPC Class 1 Generation 2 standards, Computer Standards & Interfaces 29 (2007) 254-259; P. Peris-Lopez, J.C. Hernandez-Castro, J.M. Estevez-Tapiador, A. Ribagorda, Cryptanalysis of a novel authentication protocol conforming to EPC-C1G2 standard, in: Proceedings of Int'l Conference on RFID Security (RFIDSec)'07, Jul 2007; T.L. Lim, T. Li, Addressing the weakness in a lightweight RFID tag-reader mutual authentication scheme, in Proceedings of the IEEE Int'l Global Telecommunications Conference (GLOBECOM) 2007, Nov 2007, pp. 59-63]. In particular, the security of an RFID tag's access and kill passwords is almost non-existent. Konidala and Kim recently proposed a new mutual authentication scheme [D.M. Konidala, Z. Kim, K. Kim, A simple and cost-effective RFID tag-reader mutual authentication scheme, in: Proceedings of Int'l Conference on RFID Security (RFIDSec)'07, Jul 2007, pp. 141-152] - an improved version of their first attempt [D.M. Konidala, K. Kim, RFID tag-reader mutual authentication scheme utilizing tag's access password, Auto-ID Labs White Paper WP-HARDWARE-033, Jan 2007] - in which a tag's access and kill passwords are used for authentication. In this paper, we show that the new scheme continues to present serious security flaws. The 16 least significant bits of the access password can be obtained with probability 2~(-2), and the 16 most significant bits with a probability greater than 2~(-5). Finally, we show how an attacker can recover the entire kill password with probability 2~(-2).

机译：EPC Class 1 Generation-2 RFID标准几乎没有提供安全性，如先前的著作[S. Karthikeyan，M. Nesterenko，没有广泛密码学的RFID安全性，见：第3届ACM临时和传感器网络安全性研讨会论文集，2005年，第63-67页； D.N. Duc，J。Park，H。Lee，K。Kim，“增强EPCglobal Gen-2 RFID标签的可追溯性和克隆性安全性”，发表于：2006年密码学和信息安全研讨会，2006年。 H.Y. Chien C.H. Chen，符合EPC 1类第2代标准的RFID相互认证协议，计算机标准和接口29（2007）254-259； P. Peris-Lopez，JC Hernandez-Castro，JM Estevez-Tapiador，A。Ribagorda，对符合EPC-C1G2标准的新型身份验证协议的密码分析，在：国际RFID安全会议（RFIDSec）'07上， 2007年7月； T.L. Lim，T. Li，在2007年11月IEEE国际全球电信会议（GLOBECOM）会议录，2007年11月，第59-63页中解决轻型RFID标签阅读器相互认证方案中的弱点。尤其是，几乎不存在RFID标签访问和杀死密码的安全性。 Konidala和Kim最近提出了一种新的相互认证方案[D.M. Konidala，Z。Kim，K。Kim，一种简单且经济高效的RFID标签读取器相互认证方案，在：2007年7月国际RFID安全会议（RFIDSec）会议录，第141-152页] -首次尝试的改进版本[DM Konidala，K. Kim，利用标签访问密码的RFID标签阅读器相互认证方案，Auto-ID Labs白皮书WP-HARDWARE-033，2007年1月]-其中，标签的访问密码和终止密码用于认证。在本文中，我们表明，新方案继续存在严重的安全漏洞。可以以2〜（-2）的概率获得访问密码的16个最低有效位，并且以大于2〜（-5）的概率获得16个最高有效位。最后，我们展示了攻击者如何以2〜（-2）的概率恢复整个kill密码。

著录项

来源
《Computer Communications》 |2009年第10期|1185-1193|共9页
作者
Pedro Peris-Lopez; Tieyan Li; Julio C. Hernandez-Castro; Juan M.E. Tapiador;
展开▼
作者单位

Delft University of Technology (TU-Delft), Faculty of Electrical Engineering, Mathematics, and Computer Science (EEMCS), Information and Communication Theory group (ICT), P.O. Box 5031 2600 GA, Delft. The Netherlands;

Institute for Infocomm Research, A_*STAR Singapore, Singapore;

School of Computing Science, Buckingham Building, Lion Terrace, Portsmouth PO1 3HE, United Kingdom;

Department of Computer Science, University of York, Heslington, York YO10 5DD, United Kingdom;

展开▼
收录信息美国《科学引文索引》(SCI);美国《工程索引》(EI);
原文格式 PDF
正文语种 eng
中图分类
关键词
RFID; security; attacks; EPC-C1G2 standard;

机译：RFID;安全;攻击EPC-C1G2标准;

相似文献

外文文献
中文文献
专利

1. Cryptanalysis of an EPC Class-1 Generation-2 standard compliant authentication protocol [J] . Pedro Peris-Lopez, Julio C. Hernandez-Castro, Juan M.E. Tapiador, Engineering Applications of Artificial Intelligence . 2011,第6期

机译：符合EPC Class-1 Generation-2标准的身份验证协议的密码分析
2. A Fast Anticollision Algorithm for the EPCglobal UHF Class-1 Generation-2 RFID Standard [J] . Chen W. Communications Letters, IEEE . 2014,第9期

机译：EPCglobal UHF Class 1 Generation-2 RFID标准的快速防冲突算法
3. Cryptanalysis of a new EPC class-1 generation-2 standard compliant RFID protocol [J] . Nasour Bagheri, Masoumeh Safkhani, Majid Naderi Neural computing & applications . 2014,第3a4期

机译：对符合EPC 1类2代标准的新RFID协议进行密码分析
4. An improved mutual authentication scheme complaint to EPC Class-1 Generation-2 standard [C] . Leng Shiwei, Tang Minghao, Jiang Xueqin, 2011 International Conference on Consumer Electronics, Communications and Networks . 2011

机译：对EPC Class-1 Generation-2标准的一种改进的相互认证方案投诉
5. Identifying the Strengths and Weaknesses of Over-the-Shoulder Attack Resistant Prototypical Graphical Authentication Schemes [D] . Cain, Ashley Allison. 2019

机译：识别过肩部攻击抗性原型图形认证方案的优势和弱点
6. A Secure Mutual Batch Authentication Scheme for Patient Data Privacy Preserving in WBAN [O] . Martin Konan, Wenyong Wang 2019

机译：WBAN中用于保留患者数据隐私的安全的相互批认证方案
7. An Efficient Mutual Authentication Scheme for EPCglobal Class-1 Generation-2 RFID System [O] . N. W. Lo, Kuo-Hui Yeh -1

机译：EPCGlobal Class-1代2 RFID系统的高效相互认证方案

Practical attacks on a mutual authentication scheme under the EPC Class-1 Generation-2 standard

摘要

著录项

相似文献

相关主题

期刊订阅