The information exchange between RFID tags and the reader is not secure due to much inherent vulnerabilities of RF links. Moreover, these tags are typically energy constrained thus limiting the implementation of complex security algorithms. Energy depleted RFID tags are source of potential attacks from intruders with malicious intent. In this paper, we present a solution that helps securing both RFID tags and the information exchange. To this end, we have developed a communication strategy where a tag periodically communicates its security status to the reader and is authenticated. The information exchange between the tags and the reader is secured using AES encryption. Also, we use PUF circuit and a power sensing circuit to identify malicious readers and tags. In addition, we introduce a concept of semi-active tags, whereby an RFID tag whose energy is depleted can use neighboring tags to communicate its security status and be authenticated by the reader. Analysis shows the benefits of our approach.
[1]
D. Engels,et al.
Security and Privacy : Modest Proposals for Low-Cost RFID Systems #
,
2004
.
[2]
Urban Bilstrup,et al.
An architecture comparison between a wireless sensor network and an active RFID system
,
2004,
29th Annual IEEE International Conference on Local Computer Networks.
[3]
Jian Huang,et al.
An approach to security and privacy of RFID system for supply chain
,
2004,
IEEE International Conference on E-Commerce Technology for Dynamic E-Business.
[4]
Philippe Oechslin,et al.
RFID Traceability: A Multilayer Problem
,
2005,
Financial Cryptography.
[5]
M. Aigner.
Secure Symmetric Authentication for RFID Tags
,
2005
.
[6]
J.R. Tuttle,et al.
Traditional and emerging technologies and applications in the radio frequency identification (RFID) industry
,
1997,
1997 IEEE Radio Frequency Integrated Circuits (RFIC) Symposium. Digest of Technical Papers.