APP: An Ultralightweight Scheme to Authenticate ONS and Protect EPC Privacy without Cryptography in EPCglobal Networks

EPCglobal network is used to share product data between trading partners, which was proposed by EPCglobal. Object Name Service (ONS) in EPCglobal framework raises two critical security risks: the authenticity of IP addresses for Physical Markup Language (PML) servers and the privacy of Electronic Product Codes (EPCs). Existing work considers either the IP address authentication or the EPC privacy. In addition, that work mainly relies on cryptographic tools, in which key distribution is not a trivial task and also causes a large amount of computation overhead. In this paper, we make the first attempt to solve those two security risks together without relying cryptography. We propose a scheme, namely, APP (authenticate ONS and protect EPC privacy), to guarantee the authenticity of IP addresses for PML servers as well as EPC privacy and to maintain ultralightweight computation cost. Moreover, we give formal definition of the authenticity and the privacy in ONS context. The security achievements are strictly analyzed and proved. The extensive analysis results justify the applicability of the proposed scheme.

[1]  Aaas News,et al.  Book Reviews , 1893, Buffalo Medical and Surgical Journal.

[2]  Oliver Günther,et al.  Distributed ONS and its Impact on Privacy , 2007, 2007 IEEE International Conference on Communications.

[3]  Ari Juels,et al.  Defining Strong Privacy for RFID , 2007, PerCom Workshops.

[4]  Robert H. Deng,et al.  On two RFID privacy notions and their relations , 2008, TSEC.

[5]  Jing Sun,et al.  Lightweight Public Key Infrastructure and Service Relation Model for Designing a Trustworthy ONS , 2009, 2009 Eighth IEEE/ACIS International Conference on Computer and Information Science.

[6]  Marc Langheinrich,et al.  A survey of RFID privacy approaches , 2009, Personal and Ubiquitous Computing.

[7]  Benjamin Fabian,et al.  Implementing Secure P2P-ONS , 2009, 2009 IEEE International Conference on Communications.

[8]  Robert H. Deng,et al.  SecDS: a secure EPC discovery service system in EPCglobal network , 2012, CODASPY '12.

[9]  Patrick Schmitz,et al.  Comparison of DNSSEC and DNSCurve securing the Object Name Service (ONS) of the EPC Architecture Framework , 2010 .

[10]  Alexander Zeier,et al.  Securing EPCglobal Object Name Service - Privacy Enhancements for Anti-counterfeiting , 2011, 2011 Second International Conference on Intelligent Systems, Modelling and Simulation.

[11]  Oliver Günther,et al.  Security challenges of the EPCglobal network , 2009, CACM.

[12]  Robert H. Deng,et al.  RFID privacy: relation between two notions, minimal condition, and efficient construction , 2009, CCS.

[13]  Stanislav Kurkovsky,et al.  Continuous RFID-Enabled Authentication: Privacy Implications , 2011, IEEE Technology and Society Magazine.