• Home

  • Documents

  • On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented...
20
On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Tags:

Embed Size (px)

Citation preview

Page 1: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

On The Untraceability of Anonymous RFID

Authentication Protocol with Constant Key-Lookup

Presented By Professor LI Yingjiu

Page 2: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

2

Outline

• Background

• Review the BMM protocol in AsiaCCS’08

• Crack the Protocol by three-run interleave attack

• Crack the supply chain based on our attack

• Improve the BMM protocol

• Conclusion

Page 3: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Background

• It is still a challenge to balance the security and scalability.

• For example,– The OSK protocol needs O(N) hash

calculation.– Numerous protocols based on tree-structure

suffers from de-synchronization attack and compromising attack.

• It is emergent to setup a protocol balancing both the security and scalability.

3

Page 4: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

BMM protocol in AsiaCCS’08

• Burmester, Medeiros and Motta (BMM) proposed an RFID authentication protocol with constant key-lookup to balance the security requirement and scalability.

• The protocol is based on challenge-response technique.

• Guarantee spoofing attack, replay attack, de-synchronization attack, etc..

4

Page 5: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Overview of BMM Protocol

5

Page 6: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Initiate System

6

Page 7: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Mutual Authentication

• Tag Reader

7

Page 8: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Update Process

• Tag Reader

8

Page 9: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Three-run Interleave Attack

• This attack can trace the same tag by ‘ps=r’.

• The reason is updating ‘ps’ inappropriately.

• Include three steps.

9

Page 10: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Three-run Interleave Attack---Run 1

10

Page 11: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Three-run Interleave Attack---Run 2

11

Not Update ‘r’

Page 12: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Three-run Interleave Attack---Run 3

12

Page 13: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Discussion

• Note that in the third run, a different challenge c’’ could be used by a trusted reader to challenge the tag. As long as the ‘r’ value is not updated in the second run, the ‘ps’ value is still the same as the one in the first run.

13

Page 14: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Crack the Whole Supply Chain

• Three assumptions:– Trusted zone– One-time authentication– Sticky adversary

• Two attack strategies:– Trace a single tag– Trace multiple tags

14

Page 15: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Crack a Supply Chain System Based on BMM Protocol

15

Page 16: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Trace a Single Tag

16

Page 17: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Trace Multiple Tags

• Adversary’s database for tracing multiple tags

17

Page 18: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Improve BMM Protocol

18

Page 19: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

Conclusion

• Under a weak adversary model, an attacker can launch a three-run interleave attack to trace and identify a tag.

• Attackers can crack the whole supply chain using BMM protocol.

• We improve BMM protocol to prevent tags from tracing.

• The improved Protocol is same efficient as BMM protocol.

19

Page 20: On The Untraceability of Anonymous RFID Authentication Protocol with Constant Key-Lookup Presented By Professor LI Yingjiu

20


Calorie Lookup

Calorie Lookup

Documents
Anonymous Networks · Overview - What is an anonymous network ? - Motivations for anonymous networks - Examples of anonymous networks - Attacks on Anonymous network and solutions

Anonymous Networks · Overview - What is an anonymous network ? - Motivations for anonymous networks - Examples of anonymous networks - Attacks on Anonymous network and solutions

Documents
Lookup Transformation Overview

Lookup Transformation Overview

Documents
24360514 Lookup Transformation Overview

24360514 Lookup Transformation Overview

Documents
Lookup Tranformation

Lookup Tranformation

Documents
R Environment and Variable Lookup Apr. 2012 1. R Environment and Variable Lookup Outline R Environment and Variable Lookup R Byte-Code Interpreter

R Environment and Variable Lookup Apr. 2012 1. R Environment and Variable Lookup Outline R Environment and Variable Lookup R Byte-Code Interpreter

Documents
Intercluster Lookup Service

Intercluster Lookup Service

Documents
Excel using V-lookup and H-lookup › ... › training-manuals › EXCEL-VLOOKUP-AN… · Relative Formulas ... Excel using V-lookup and H-lookup N:\IT Training\ Excel using V-lookup

Excel using V-lookup and H-lookup › ... › training-manuals › EXCEL-VLOOKUP-AN… · Relative Formulas ... Excel using V-lookup and H-lookup N:\IT Training\ Excel using V-lookup

Documents
Usage of SOAP Lookup and RFC Lookup in a Single Mapping Program

Usage of SOAP Lookup and RFC Lookup in a Single Mapping Program

Documents
Anonymous women? Gamblers Anonymous and gender

Anonymous women? Gamblers Anonymous and gender

Government & Nonprofit
Belajar Excel Lookup

Belajar Excel Lookup

Documents
On if,countif,countifs,sumif,countifs,lookup,v lookup,index,match

On if,countif,countifs,sumif,countifs,lookup,v lookup,index,match

Education
Salesforce Lookup Transformation

Salesforce Lookup Transformation

Documents
BCC Lookup(1)

BCC Lookup(1)

Documents
Using Lookup Services 1.What are Lookup Services 2.How Clients use lookup services 3.How Services use lookup services 4.Using events

Using Lookup Services 1.What are Lookup Services 2.How Clients use lookup services 3.How Services use lookup services 4.Using events

Documents
Training Records Lookup

Training Records Lookup

Documents
Training Course: Lookup. Agenda Overview of the Lookup Screen –Icon across the Top & Down the side Performing a Basic Lookup –Fields –Operands –“What”

Training Course: Lookup. Agenda Overview of the Lookup Screen –Icon across the Top & Down the side Performing a Basic Lookup –Fields –Operands –“What”

Documents
Dynamic Lookup Cache

Dynamic Lookup Cache

Documents
Informatica Dynamic Lookup

Informatica Dynamic Lookup

Documents
Pitch deck LookUp

Pitch deck LookUp

Investor Relations
HLR Lookup - Service Manual

HLR Lookup - Service Manual

Documents
Function Lookup

Function Lookup

Documents
(anonymous)...(anonymous) ... 2020

(anonymous)...(anonymous) ... 2020

Documents
Recursive Server - Internet Societyws.edu.isoc.org/.../180846294540d6a670ca20a/3-Recursive-Server.pdf · Recursive Server •Used to lookup ... •anonymous login •cd domain •get

Recursive Server - Internet Societyws.edu.isoc.org/.../180846294540d6a670ca20a/3-Recursive-Server.pdf · Recursive Server •Used to lookup ... •anonymous login •cd domain •get

Documents
fungsi lookup

fungsi lookup

Documents
Lookup Table’s Functionality within Color Spaces and ... · Lookup Table’s Functionality within Color Spaces and Motion ... Lookup Table’s functionality within color ... kombinerat

Lookup Table’s Functionality within Color Spaces and ... · Lookup Table’s Functionality within Color Spaces and Motion ... Lookup Table’s functionality within color ... kombinerat

Documents
Avtaleforvalter sender og innhenter svar · Vaktmestertjenester Vaktmestertjenester Fullføringstidspunkt E-postadresse anonymous anonymous anonymous anonymous anonymous anonymous

Avtaleforvalter sender og innhenter svar · Vaktmestertjenester Vaktmestertjenester Fullføringstidspunkt E-postadresse anonymous anonymous anonymous anonymous anonymous anonymous

Documents
Domain Whois Lookup

Domain Whois Lookup

Internet
Data Stage LookUp Transformation

Data Stage LookUp Transformation

Documents
P2P Lookup Protocols

P2P Lookup Protocols

Education