Cryptanalysis of a New Ultralightweight RFID Authentication ProtocolaSASI

Since RFID tags are ubiquitous and at times even oblivious to the human user, all modern RFID protocols are designed to resist tracking so that the location privacy of the human RFID user is not violated. Another design criterion for RFIDs is the low computational effort required for tags, in view t...

Full description

Saved in:
Bibliographic Details
Published in:IEEE transactions on dependable and secure computing 2009-01, Vol.6 (4)
Main Author: Phan, RC-W
Format: Article
Language:English
Subjects:
Arithmetic
Authentication
Computation
Human
Radio frequency identification
Security
Tags
Tracking
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Since RFID tags are ubiquitous and at times even oblivious to the human user, all modern RFID protocols are designed to resist tracking so that the location privacy of the human RFID user is not violated. Another design criterion for RFIDs is the low computational effort required for tags, in view that most tags are passive devices that derive power from an RFID reader's signals. Along this vein, a class of ultralightweight RFID authentication protocols has been designed, which uses only the most basic bitwise and arithmetic operations like exclusive-OR, OR, addition, rotation, and so forth. In this paper, we analyze the security of the SASI protocol, a recently proposed ultralightweight RFID protocol with better claimed security than earlier protocols. We show that SASI does not achieve resistance to tracking, which is one of its design objectives.
ISSN:1545-5971
DOI:10.1109/TDSC.2008.33