Sciweavers

CARDIS
2010
Springer

Modeling Privacy for Off-Line RFID Systems

14 years 3 months ago
Modeling Privacy for Off-Line RFID Systems
This paper establishes a novel model for RFID schemes where readers are not continuously connected to the back office, but only periodically. Furthermore, adversaries are not only capable of compromising tags, but also of compromising readers. This more properly models large scale deployment of RFID technology such as in public transport ticketing systems and supply-chain management systems. In this model we define notions of security (only legitimate tags can authenticate) and of privacy (no adversary is capable of tracking legitimate tags). We show that privacy is always lost at the moment that a reader is compromised and we develop notions of forward and backward privacy with respect to reader corruption. This models the property that tags cannot be traced, under mild additional assumptions, for the time slots before and after reader corruption. We exhibit two protocols that only use hashing that achieve these security and privacy notions and give proofs in the random oracle model.
Flavio D. Garcia, Peter van Rossum
Added 02 Sep 2010
Updated 02 Sep 2010
Type Conference
Year 2010
Where CARDIS
Authors Flavio D. Garcia, Peter van Rossum
Comments (0)