Presentation is loading. Please wait.

Presentation is loading. Please wait.

On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu.

Published byChristal Ford Modified over 9 years ago

Similar presentations

Presentation on theme: "On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu."— Presentation transcript:

1 On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

2 2 Outline Background Review the BMM protocol in AsiaCCS’08 Crack the Protocol by three-run interleave attack Crack the supply chain based on our attack Improve the BMM protocol Conclusion

3 Background It is still a challenge to balance the security and scalability. For example, –The OSK protocol needs O(N) hash calculation. –Numerous protocols based on tree-structure suffers from de-synchronization attack and compromising attack. It is emergent to setup a protocol balancing both the security and scalability. 3

4 BMM protocol in AsiaCCS’08 Burmester, Medeiros and Motta (BMM) proposed an RFID authentication protocol with constant key-lookup to balance the security requirement and scalability. The protocol is based on challenge- response technique. Guarantee spoofing attack, replay attack, de-synchronization attack, etc.. 4

5 Overview of BMM Protocol 5

6 Initiate System 6

7 Mutual Authentication Tag Reader 7

8 Update Process Tag Reader 8

9 Three-run Interleave Attack This attack can trace the same tag by ‘ps=r’. The reason is updating ‘ps’ inappropriately. Include three steps. 9

10 Three-run Interleave Attack---Run 1 10

11 Three-run Interleave Attack---Run 2 11 Not Update ‘r’

12 Three-run Interleave Attack---Run 3 12

13 Discussion Note that in the third run, a different challenge c’’ could be used by a trusted reader to challenge the tag. As long as the ‘r’ value is not updated in the second run, the ‘ps’ value is still the same as the one in the first run. 13

14 Crack the Whole Supply Chain Three assumptions: –Trusted zone –One-time authentication –Sticky adversary Two attack strategies: –Trace a single tag –Trace multiple tags 14

15 Crack a Supply Chain System Based on BMM Protocol 15

16 Trace a Single Tag 16

17 Trace Multiple Tags Adversary’s database for tracing multiple tags 17

18 Improve BMM Protocol 18

19 Conclusion Under a weak adversary model, an attacker can launch a three-run interleave attack to trace and identify a tag. Attackers can crack the whole supply chain using BMM protocol. We improve BMM protocol to prevent tags from tracing. The improved Protocol is same efficient as BMM protocol. 19

20 20

Download ppt "On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu."

Similar presentations

Chris Karlof and David Wagner

Chris Karlof and David Wagner
Mitigate Unauthorized Tracking in RFID Discovery Service Qiang Yan 1, Robert H. Deng 1, Zheng Yan 2, Yingjiu Li 1, Tieyan Li 3 1 Singapore Management University,

Mitigate Unauthorized Tracking in RFID Discovery Service Qiang Yan 1, Robert H. Deng 1, Zheng Yan 2, Yingjiu Li 1, Tieyan Li 3 1 Singapore Management University,
1 An Ultra-lightweight Authentication Protocol in RFID Speaker: 魏家惠.

1 An Ultra-lightweight Authentication Protocol in RFID Speaker: 魏家惠.
Time Cost Evaluation for Executing RFID Authentication Protocols Yingjiu Li, Ph.D. Associate Professor School of Information Systems Singapore Management.

Time Cost Evaluation for Executing RFID Authentication Protocols Yingjiu Li, Ph.D. Associate Professor School of Information Systems Singapore Management.
Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, 2010. ICWCSC 2010. International.

Efficient Public Key Infrastructure Implementation in Wireless Sensor Networks Wireless Communication and Sensor Computing, ICWCSC International.
A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen Kim, Kwangjo Kim {divyan, zeenkim, International.

A Simple and Cost-effective RFID Tag-Reader Mutual Authentication Scheme Divyan M. Konidala, Zeen Kim, Kwangjo Kim {divyan, zeenkim, International.
Serverless Search and Authentication Protocols for RFID Chiu C. Tan, Bo Sheng and Qun Li Department of Computer Science College of William and Mary.

Serverless Search and Authentication Protocols for RFID Chiu C. Tan, Bo Sheng and Qun Li Department of Computer Science College of William and Mary.
CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.

CS426Fall 2010/Lecture 81 Computer Security CS 426 Lecture 8 User Authentication.
A lightweight mutual authentication protocol for RFID networks 2005 IEEE Authors : Zongwei Luo, Terry Chan, Jenny S. Li Date : 2006/3/21 Presented by Hung.

A lightweight mutual authentication protocol for RFID networks 2005 IEEE Authors : Zongwei Luo, Terry Chan, Jenny S. Li Date : 2006/3/21 Presented by Hung.
CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.

CSCE 715 Ankur Jain 11/16/2010. Introduction Design Goals Framework SDT Protocol Achievements of Goals Overhead of SDT Conclusion.
CSE331: Introduction to Networks and Security Lectures 26 & 27 Fall 2002.

CSE331: Introduction to Networks and Security Lectures 26 & 27 Fall 2002.
1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.

1 Dynamic Key-Updating: Privacy- Preserving Authentication for RFID Systems Li Lu, Lei Hu State Key Laboratory of Information Security, Graduate School.
Secure Routing in Sensor Networks: Attacks and Countermeasures First IEEE International Workshop on Sensor Network Protocols and Applications 5/11/2003.

Secure Routing in Sensor Networks: Attacks and Countermeasures First IEEE International Workshop on Sensor Network Protocols and Applications 5/11/2003.
Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.

Random Key Predistribution Schemes for Sensor Networks Authors: Haowen Chan, Adrian Perrig, Dawn Song Carnegie Mellon University Presented by: Johnny Flowers.
RFID Security and Privacy Part 2: security example.

RFID Security and Privacy Part 2: security example.
CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 16 Jonathan Katz.
CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.

CMSC 414 Computer and Network Security Lecture 22 Jonathan Katz.
Sencun Zhu Sanjeev Setia Sushil Jajodia Presented by: Harel Carmit

Sencun Zhu Sanjeev Setia Sushil Jajodia Presented by: Harel Carmit
CSE331: Introduction to Networks and Security Lecture 24 Fall 2002.

CSE331: Introduction to Networks and Security Lecture 24 Fall 2002.
RFID Security CMPE 296T -Sankate Sharma -Sangbeom Ryu.

RFID Security CMPE 296T -Sankate Sharma -Sangbeom Ryu.

Similar presentations

Ads by Google