SKINNY-Based RFID Lightweight Authentication Protocol

Liang Xiao; He Xu; Feng Zhu; Ruchuan Wang; Peng Li

doi:10.3390/s20051366

SKINNY-Based RFID Lightweight Authentication Protocol

Sensors ◽

10.3390/s20051366 ◽

2020 ◽

Vol 20 (5) ◽

pp. 1366 ◽

Cited By ~ 2

Author(s):

Liang Xiao ◽

He Xu ◽

Feng Zhu ◽

Ruchuan Wang ◽

Peng Li

Keyword(s):

Radio Frequency Identification ◽

Low Cost ◽

Rapid Development ◽

Denial Of Service ◽

Mutual Authentication ◽

Security Analysis ◽

Authentication Protocol ◽

Security Requirements ◽

Iot Devices ◽

Lightweight Authentication

With the rapid development of the Internet of Things and the popularization of 5G communication technology, the security of resource-constrained IoT devices such as Radio Frequency Identification (RFID)-based applications have received extensive attention. In traditional RFID systems, the communication channel between the tag and the reader is vulnerable to various threats, including denial of service, spoofing, and desynchronization. Thus, the confidentiality and integrity of the transmitted data cannot be guaranteed. In order to solve these security problems, in this paper, we propose a new RFID authentication protocol based on a lightweight block cipher algorithm, SKINNY, (short for LRSAS). Security analysis shows that the LRSAS protocol guarantees mutual authentication and is resistant to various attacks, such as desynchronization attacks, replay attacks, and tracing attacks. Performance evaluations show that the proposed solution is suitable for low-cost tags while meeting security requirements. This protocol reaches a balance between security requirements and costs.

Download Full-text

A Novel Lightweight Authentication Scheme for RFID-Based Healthcare Systems

Sensors ◽

10.3390/s20174846 ◽

2020 ◽

Vol 20 (17) ◽

pp. 4846

Author(s):

Feng Zhu ◽

Peng Li ◽

He Xu ◽

Ruchuan Wang

Keyword(s):

Radio Frequency Identification ◽

Low Cost ◽

Security Analysis ◽

Healthcare Systems ◽

Authentication Scheme ◽

Security Requirements ◽

Security And Privacy ◽

Proper Solution ◽

Asset Tracking ◽

Lightweight Authentication

The Internet of Things (IoT) has been integrated into legacy healthcare systems for the purpose of improving healthcare processes. As one of the key technologies of IoT, radio frequency identification (RFID) technology has been applied to offer services like patient monitoring, drug administration, and medical asset tracking. However, people have concerns about the security and privacy of RFID-based healthcare systems, which require a proper solution. To solve the problem, recently in 2019, Fan et al. proposed a lightweight RFID authentication scheme in the IEEE Network. They claimed that their scheme can resist various attacks in RFID systems with low implementation cost, and thus is suitable for RFID-based healthcare systems. In this article, our contributions mainly consist of two parts. First, we analyze the security of Fan et al.’s scheme and find out its security vulnerabilities. Second, we propose a novel lightweight authentication scheme to overcome these security weaknesses. The security analysis shows that our scheme can satisfy the necessary security requirements. Besides, the performance evaluation demonstrates that our scheme is of low cost. Thus, our scheme is well-suited for practical RFID-based healthcare systems.

Download Full-text

Hash-Chain Fog/Edge: A Mode-Based Hash-Chain for Secured Mutual Authentication Protocol Using Zero-Knowledge Proofs in Fog/Edge

Sensors ◽

10.3390/s22020607 ◽

2022 ◽

Vol 22 (2) ◽

pp. 607

Author(s):

Mayuresh Sunil Pardeshi ◽

Ruey-Kai Sheu ◽

Shyan-Ming Yuan

Keyword(s):

Denial Of Service ◽

Mutual Authentication ◽

Authentication Protocol ◽

Security Requirements ◽

Smart Devices ◽

Property A ◽

Zero Knowledge ◽

Hash Chain ◽

Iot Devices ◽

Mutual Authentication Protocol

Authentication is essential for the prevention of various types of attacks in fog/edge computing. Therefore, a novel mode-based hash chain for secure mutual authentication is necessary to address the Internet of Things (IoT) devices’ vulnerability, as there have been several years of growing concerns regarding their security. Therefore, a novel model is designed that is stronger and effective against any kind of unauthorized attack, as IoT devices’ vulnerability is on the rise due to the mass production of IoT devices (embedded processors, camera, sensors, etc.), which ignore the basic security requirements (passwords, secure communication), making them vulnerable and easily accessible. Furthermore, crackable passwords indicate that the security measures taken are insufficient. As per the recent studies, several applications regarding its requirements are the IoT distributed denial of service attack (IDDOS), micro-cloud, secure university, Secure Industry 4.0, secure government, secure country, etc. The problem statement is formulated as the “design and implementation of dynamically interconnecting fog servers and edge devices using the mode-based hash chain for secure mutual authentication protocol”, which is stated to be an NP-complete problem. The hash-chain fog/edge implementation using timestamps, mode-based hash chaining, the zero-knowledge proof property, a distributed database/blockchain, and cryptography techniques can be utilized to establish the connection of smart devices in large numbers securely. The hash-chain fog/edge uses blockchain for identity management only, which is used to store the public keys in distributed ledger form, and all these keys are immutable. In addition, it has no overhead and is highly secure as it performs fewer calculations and requires minimum infrastructure. Therefore, we designed the hash-chain fog/edge (HCFE) protocol, which provides a novel mutual authentication scheme for effective session key agreement (using ZKP properties) with secure protocol communications. The experiment outcomes proved that the hash-chain fog/edge is more efficient at interconnecting various devices and competed favorably in the benchmark comparison.

Download Full-text

Securing IoT Based RFID Systems: A Robust Authentication Protocol Using Symmetric Cryptography

10.20944/preprints201907.0298.v1 ◽

2019 ◽

Author(s):

Khwaja Mansoor ◽

Anwar Ghani ◽

Shehzad Ashraf Chaudhry ◽

Shahaboddin Shamshirband ◽

Shahbaz Ahmed Khan Ghayyur ◽

...

Keyword(s):

Radio Frequency Identification ◽

Communication Complexity ◽

Low Cost ◽

Denial Of Service ◽

Authentication Protocol ◽

Identification System ◽

Radio Waves ◽

Bar Code ◽

Rfid Systems ◽

Lightweight Authentication

Radio Frequency Identification (RFID) devices use radio waves to relay identifying information to an electronic reader using low-cost RFID Tag. RFID is expected to replace the conventional bar-code identification system due to its advantage like real-time recognition of a considerable number of objects. However, in RFID systems an attacker can get the tag that may lead to various security threats, and the limited computation power of RFID tags can cause delay. Lightweight authentication protocols proposed using cryptographic algorithms (one-way hash function, symmetric key encryption/decryption, and exclusive-OR) in order to cope with these problems. One such lightweight cryptographic protocol has been presented by Gope and Hwang using RFID systems. However, it analyzed in this article that their protocol is infeasible and vulnerable to Collision Attack, Denial-of-service (DoS), and Stolen verifier Attacks. A realistic, lightweight authentication protocol has been presented in this article to ensure protection against the mentioned attacks for IoT based RFID system. The proposed protocol has been formally analyzed using BAN logic and ProVerif as well as also analyzed informally using security requirement. The results show that the proposed protocol outperforms the existing protocols not only in security enhancements but also in terms of computation and communication complexity. Furthermore, the proposed protocol has also been analyzed for storage complexity.

Download Full-text

A Secure Lightweight Mutual Authentication for RFID Systems

Applied Mechanics and Materials ◽

10.4028/www.scientific.net/amm.644-650.4496 ◽

2014 ◽

Vol 644-650 ◽

pp. 4496-4500

Author(s):

Hang Qin ◽

Yi Liu

Keyword(s):

Radio Frequency Identification ◽

Low Cost ◽

Mutual Authentication ◽

Security Analysis ◽

Limited Resource ◽

Authentication Protocol ◽

Security And Privacy ◽

Linear Feedback ◽

Security Issues ◽

Rfid Systems

Radio Frequency Identification (RFID) technology is an automated identification technology which is widely used to identify and track all kind of objects. It is well suitable for many fields and is expected to replace barcodes in the near future. However, it is a challenging task to design an authentication protocol because of the limited resource of low-cost RFID tags. Recently, a lightweight RFID authentication protocol presented by Kulseng et al uses Physically Unclonable Functions (PUFs) and Linear Feedback Shift Registers (LFSRs) which are well known lightweight operations. The number of gates which the protocol require can be significantly decreased. Unfortunately, their protocol faces several serious security issues. In this paper, based PUFs and LFSRs, we suggest a secure mutual authentication for low-cost RFID Systems. Security analysis shows that our protocol owns security and privacy.

Download Full-text

A Mutual Authentication Protocol with Resynchronisation Capability for Mobile Satellite Communications

Privacy Solutions and Security Frameworks in Information Protection ◽

10.4018/978-1-4666-2050-6.ch003 ◽

2013 ◽

pp. 35-51

Author(s):

Ioana Lasc ◽

Reiner Dojen ◽

Tom Coffey

Keyword(s):

Denial Of Service ◽

Mutual Authentication ◽

Security Analysis ◽

Service Condition ◽

Satellite Communications ◽

Authentication Protocol ◽

Security Protocol ◽

New Type ◽

Mobile Satellite ◽

Mutual Authentication Protocol

Many peer-to-peer security protocols proposed for wireless communications use one-time shared secrets for authentication purposes. This paper analyses online update mechanisms for one-time shared secrets. A new type of attack against update mechanisms, called desynchronisation attack, is introduced. This type of attack may lead to a permanent denial of service condition. A case study demonstrates the effectiveness of desynchronisation attacks against a security protocol for mobile satellite communications. A new mutual authentication protocol for satellite communications, incorporating a resynchronisation capability, is proposed to counter the disruptive effects of desynchronisation attacks. The new protocol has an esynchronisation phase that is initiated whenever desynchronisation is suspected. Thus, the possibility of causing permanent denial of service conditions by mounting desynchronisation attacks is eliminated. A security analysis of the proposed protocol establishes its resistance against attacks like replay attacks, dictionary attacks, and desynchronisation attacks.

Download Full-text

Securing IoT-Based RFID Systems: A Robust Authentication Protocol Using Symmetric Cryptography

Sensors ◽

10.3390/s19214752 ◽

2019 ◽

Vol 19 (21) ◽

pp. 4752 ◽

Cited By ~ 29

Author(s):

Khwaja Mansoor ◽

Anwar Ghani ◽

Shehzad Chaudhry ◽

Shahaboddin Shamshirband ◽

Shahbaz Ghayyur ◽

...

Keyword(s):

Radio Frequency Identification ◽

Denial Of Service ◽

Authentication Protocol ◽

Open Architecture ◽

Attack Model ◽

Rfid Systems ◽

Frequency Identification ◽

The Many ◽

Lightweight Authentication ◽

Exclusive Or

Despite the many conveniences of Radio Frequency Identification (RFID) systems, the underlying open architecture for communication between the RFID devices may lead to various security threats. Recently, many solutions were proposed to secure RFID systems and many such systems are based on only lightweight primitives, including symmetric encryption, hash functions, and exclusive OR operation. Many solutions based on only lightweight primitives were proved insecure, whereas, due to resource-constrained nature of RFID devices, the public key-based cryptographic solutions are unenviable for RFID systems. Very recently, Gope and Hwang proposed an authentication protocol for RFID systems based on only lightweight primitives and claimed their protocol can withstand all known attacks. However, as per the analysis in this article, their protocol is infeasible and is vulnerable to collision, denial-of-service (DoS), and stolen verifier attacks. This article then presents an improved realistic and lightweight authentication protocol to ensure protection against known attacks. The security of the proposed protocol is formally analyzed using Burrows Abadi-Needham (BAN) logic and under the attack model of automated security verification tool ProVerif. Moreover, the security features are also well analyzed, although informally. The proposed protocol outperforms the competing protocols in terms of security.

Download Full-text

A Secure and Efficient Three-Factor Authentication Protocol in Global Mobility Networks

Applied Sciences ◽

10.3390/app10103565 ◽

2020 ◽

Vol 10 (10) ◽

pp. 3565 ◽

Cited By ~ 3

Author(s):

SungJin Yu ◽

JoonYoung Lee ◽

YoHan Park ◽

YoungHo Park ◽

SangWoo Lee ◽

...

Keyword(s):

Mutual Authentication ◽

Security Analysis ◽

Authentication Protocol ◽

Internet Security ◽

Mobile Technologies ◽

Security Requirements ◽

Replay Attacks ◽

Global Mobility ◽

Global Mobility Networks ◽

Three Factor

With the developments in communication and mobile technologies, mobile users can access roaming services by utilizing a mobile device at any time and any place in the global mobility networks. However, these require several security requirements, such as authentication and anonymity, because the information is transmitted over an open channel. Thus, secure and efficient authentication protocols are essential to provide secure roaming services for legitimate users. In 2018, Madhusudhan et al. presented a secure authentication protocol for global mobile networks. However, we demonstrated that their protocol could not prevent potential attacks, including masquerade, session key disclosure, and replay attacks. Thus, we proposed a secure and efficient three-factor authentication protocol to overcome the security weaknesses of Madhusudhan et al.’s scheme. The proposed scheme was demonstrated to prevent various attacks and provided a secure mutual authentication by utilizing biometrics and secret parameters. We evaluated the security of the proposed protocol using informal security analysis and formal security analysis, such as the real-or-random (ROR) model and Burrows–Abadi–Needham (BAN) logic. In addition, we showed that our scheme withstands man-in-the-middle (MITM) and replay attacks utilizing formal security validation automated validation of internet security protocols and applications (AVISPA) simulation. Finally, we compared the performance of our protocol with existing schemes. Consequently, our scheme ensured better security and efficiency features than existing schemes and can be suitable for resource-constrained mobile environments.

Download Full-text

Efficient Hardware Implementation of KMAP+: An Ultralightweight Mutual Authentication Protocol

Journal of Circuits System and Computers ◽

10.1142/s0218126618500330 ◽

2017 ◽

Vol 27 (02) ◽

pp. 1850033 ◽

Cited By ~ 2

Author(s):

Umar Mujahid ◽

M. Najam-ul-Islam ◽

Madiha Khalid

Keyword(s):

Radio Frequency Identification ◽

Hardware Implementation ◽

Low Cost ◽

Mutual Authentication ◽

Cost Effective ◽

Authentication Protocol ◽

Wireless Channel ◽

Logical Operators ◽

Attack Model ◽

Mutual Authentication Protocol

Internet of Things (IoTs) are becoming one of the integral parts of our lives, as all of the modern devices including pervasive systems use internet for its connectivity with the rest of the world. The Radio Frequency IDentification (RFID) provides unique identification and nonline of sight capabilities, therefore plays a very important role in development of IoTs. However, the RFID systems incorporate wireless channel for communication, therefore have some allied risks to the system from threat agents. In order to prevent the system from malicious activities in a cost effective way, numerous Ultralightweight Mutual Authentication Protocols (UMAPs) have been proposed since last decade. These UMAPs mainly involve simple bitwise logical operators such as XOR, AND, OR, etc., in their designs and can be implemented with extremely low cost RFID tags. However, most of the UMAP designers didn’t provide the proper hardware approximations of their UMAPs and presented only theoretical results which mostly mislead the reader. In this paper, we have addressed this problem by reporting our experiences with FPGA and ASIC-based implementation of UMAP named psuedo Kasami code-based Mutual Authentication Protocol (KMAP[Formula: see text]. Further, we have also improved the structure of the KMAP protocol to overcome the previously highlighted attack model. The hardware implementation results show that KMAP[Formula: see text] successfully conform to EPC-C1G2 tags and can be implemented using less than 4[Formula: see text]K GE (for 32-bit word length).

Download Full-text

Lightweight and Anonymous Mutual Authentication Protocol for IoT Devices With Physical Unclonable Functions

10.21203/rs.3.rs-267155/v1 ◽

2021 ◽

Author(s):

Jin Meng ◽

Xufeng Zhang ◽

Tengfei Cao ◽

Yong Xie

Keyword(s):

Mutual Authentication ◽

Security Analysis ◽

Authentication Protocol ◽

Communication Overhead ◽

It Use ◽

Fuzzy Extractor ◽

Physical Unclonable Functions ◽

Production Methods ◽

Iot Devices ◽

Mutual Authentication Protocol

Abstract The past few years have seen the topic of Internet of Things (IoT) rush into the forefront of various industries, which is changing people’s conventional production methods and lifestyles. Connected to the Internet, the physical devices could be as fluffy as kids’ teddy bears or as balky as driverless cars. However, the security related to the IoT is faced with some serious challenges simultaneously. Confronted with these issues, we propose a mutual authentication protocol for devices in the IoT system. It is lightweight that just hash functions, XORs as well as PUFs are utilized and there is no need to store plenty of pseudo-identities. Furthermore, not only does it use the reverse fuzzy extractor to acclimatize to the noisy environment, but it also introduces the supplementary sub-protocol to enhance the resistance to the desynchronization attack. Besides, the security analysis based on the improved BAN logic by Mao and Boyd presents the higher security and reliability of the proposed protocol, and the performance analysis shows its more comprehensive functions as well as lower computation and communication overhead.

Download Full-text

Design and Analysis of a New Mutual Authentication Protocol for RFID

Advanced Materials Research ◽

10.4028/www.scientific.net/amr.1006-1007.548 ◽

2014 ◽

Vol 1006-1007 ◽

pp. 548-551

Author(s):

Qi Fu ◽

Jun Tan ◽

Hong Li

Keyword(s):

Random Number ◽

Denial Of Service ◽

Mutual Authentication ◽

Authentication Protocol ◽

Security Requirements ◽

Protocol Security ◽

Transmission Of Information ◽

Mutual Authentication Protocol ◽

Rfid Applications

This paper proposes a lightweight mutual authentication protocol for RFID. Based on the simple bit operations, it creates the random number N1 on the tag and the identifier RID on reader to protect the transmission of information, and proves the protocol security at the end. The results show that the proposed protocol can meet the security requirements of confidentiality, integrity, and traceability in RFID applications. Furthermore, the protocol can resist attacks of tracking, eavesdropping, retransmitting and the denial of service, which makes up the security defects mentioned on this paper.

Download Full-text