RFID (Radio-Frequency IDentification) is a wireless identification technology poised to sweep over the commercial world. A basic RFID device, often known as an “RFID tag,” consists of a tiny, inexpensive chip that transmits a uniquely identifying number over a short distance to a reading device, and thereby permits rapid, automated tracking of objects. In this article, we provide an overview of the privacy issues that RFID gives rise to. While technically slanted, our discussion aims primarily to educate the non-specialist. We focus here on basic RFID tags of the type poised to supplant optical barcodes over the coming years, initially in industrial settings, and ultimately in consumer environments. We describe the challenges involved in simultanteously protecting the privacy of users and supporting the many beneficial functions of RFID. In particular, we suggest that straightforward approaches like “killing” and encryption will likely prove inadequate. We advance instead the notion of a “privacy bit,” effectively an on/off data-privacy switch that supports several technical approaches to RFID privacy enforcement.
[1]
David A. Wagner,et al.
Privacy and security in library RFID: issues, practices, and architectures
,
2004,
CCS '04.
[2]
Ronald L. Rivest,et al.
The blocker tag: selective blocking of RFID tags for consumer privacy
,
2003,
CCS '03.
[3]
Min Wang,et al.
A Flexible, Low-Overhead Ubiquitous System for Medication Monitoring
,
2003
.
[4]
Ari Juels,et al.
Soft blocking: flexible blocker tags on the cheap
,
2004,
WPES '04.
[5]
Daniel W. Engels,et al.
Radio Frequency Identification Systems
,
2015
.
[6]
Ross Stapleton-Gray.
Would Macy's Scan Gimbels? Competitive Intelligence and RFID
,
2003
.