Abstract
This work aims to identify the algebraic problems which enable many attacks on RFID protocols. Toward this goal, three emerging types of attacks on RFID protocols, concerning authentication, untraceability, and secrecy are discussed. We demonstrate the types of attacks by exhibiting previously unpublished vulnerabilities in several protocols and referring to various other flawed protocols. The common theme in these attacks is the fact that the algebraic properties of operators employed by the protocols are abused. While the methodology is applicable to any operator with algebraic properties, the protocols considered in this paper make use of xor, modular addition, and elliptic curve point addition.
Original language | English |
---|---|
Title of host publication | Information Security Theory and Practice |
Subtitle of host publication | Smart Devices, Pervasive Systems, and Ubiquitous Networks - Third IFIPWG 11.2 International Workshop, WISTP2009 Brussels, Belgium, September 1-4, 2009. Proceedings |
Editors | Olivier Markowitch, Angelos Bilas, Jaap-Henk Hoepman , Chris J. Mitchell, Jean-Jacques Quisquater |
Place of Publication | Berlin |
Publisher | Springer Verlag |
Pages | 38-51 |
Number of pages | 14 |
ISBN (Print) | 9783642039430 |
DOIs | |
Publication status | Published - 2009 |
Event | 3rd Workshop in Information Security Theory and Practices: "Smart Devices, Pervasive Systems, Ubiquitous Networks" - NH Hotel du Grand Sablon, Brussels, Belgium Duration: 1 Sept 2009 → 4 Sept 2009 http://wistp2009.wistp.org/ (Link to Workshop website) |
Publication series
Name | Lecture Notes in Computer Science |
---|---|
Volume | 5746 |
ISSN (Print) | 0302-9743 |
ISSN (Electronic) | 1611-3349 |
Workshop
Workshop | 3rd Workshop in Information Security Theory and Practices |
---|---|
Abbreviated title | WISTP 2009 |
Country/Territory | Belgium |
City | Brussels |
Period | 1/09/09 → 4/09/09 |
Internet address |
|
Keywords
- Algebraic methods
- Attacks
- Formal verification
- RFID
- Security protocols
ASJC Scopus subject areas
- Theoretical Computer Science
- General Computer Science