a privacy restoring mechanism for offline rfid systems
play

A Privacy-Restoring Mechanism for Offline RFID Systems Gildas - PowerPoint PPT Presentation

Oct 25, 2023 •645 likes •1.08k views

A Privacy-Restoring Mechanism for Offline RFID Systems Gildas Avoine Iwen Coisel Tania Martin Universit e catholique de Louvain Belgium April 16, 2012 [WiSec12, Tucson, AZ, USA] Goal of our Paper Authentication protocol that

  1. A Privacy-Restoring Mechanism for Offline RFID Systems Gildas Avoine Iwen Coisel Tania Martin Universit´ e catholique de Louvain Belgium April 16, 2012 [WiSec’12, Tucson, AZ, USA]

  2. Goal of our Paper Authentication protocol that restores privacy in case of compromised readers in offline RFID systems G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 2

  3. Offline RFID Systems Online system Offline system Fixed readers Handheld readers Always connected to BE Operate without BE Readers do not store data Readers must store all to authenticate tags data to authenticate tags i.e. all tags’ secrets BE BE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 3

  4. Compromised Readers in Offline RFID Systems Tag corruption A steals secrets of the corrupted tag vs. Compromised reader in offline RFID systems A steals all tags’ secrets stored by reader G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 4

  5. Privacy in RFID Malicious traceability An adversary A can distinguish two (challenge) tags over their different protocol executions G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 5

  6. Privacy in RFID Malicious traceability An adversary A can distinguish two (challenge) tags over their different protocol executions Tag corruption We consider that tags do not share secrets A can trace this corrupted tag G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 5

  7. Privacy in RFID Malicious traceability An adversary A can distinguish two (challenge) tags over their different protocol executions Tag corruption We consider that tags do not share secrets A can trace this corrupted tag Compromised readers in offline RFID systems A can trace all tags ⇒ More powerful attack than tag corruption G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 5

  8. Outline 1 Our Protocol 2 Privacy Analysis 3 Efficiency Analysis 4 Implementation G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 6

  9. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 7

  10. Our Protocol: Principle CORRUPT G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 7

  11. Our Protocol: Principle CORRUPT G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 7

  12. Our Protocol: Principle I can differentiate them!!! Tag 1 Tag 2 Tag 3 G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 7

  13. Our Protocol: Principle What can we do against this problem of traceability? Solution Repair the compromised reader Spread this info of repaired reader via tags’ mobility G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 8

  14. Our Protocol: Design Choices Challenge/response authentication protocol • Based on Needham-Schroeder [ACM-Comm-1978] Public-key crypto • For authentication − Cryptosystem (Enc/Dec) for T ’s answer − Signature scheme (Sign/Verif) for R ’s identity ⇒ via C R certificate • For privacy-restoring mechanism − Signature scheme (Sign/Verif) for info about repaired readers ⇒ via NewC R / NewC T certificates Secret-key crypto to personalize tags’ secrets • Unique secret key s TR by pair ( T , R ) G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 9

  15. Our Protocol: Principle REPAIR • ( P new R , K new R ) • C new R , v new R • Tab new = {∀ T : ( ID T , s new TR ) } R • NewC new R G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  16. Our Protocol: Principle REPAIR • ( P new R , K new R ) • C new R , v new R • Tab new = {∀ T : ( ID T , s new TR ) } R • NewC new R G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  17. Our Protocol: Principle • Picks a nonce n R C R , n R − − − − − − − − → • Checks C R • s T R = MAC( k T || ID R || v R ) • E = Enc P R ( ID R || n R || s T R ) • Sends NewC T E ← − − − − − − − − NewC T • ID R || n R || s T R = Dec K R ( E ) • Authenticates T if s T R ∈ Tab R • Checks NewC T → Updates its values • Sends NewC R if newer than NewC T NewC R − − − − − − − − → • Checks NewC R → Updates its values G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  18. Our Protocol: Principle UPDATE • Picks a nonce n R C R , n R − − − − − − − − → • Checks C R • s T R = MAC( k T || ID R || v R ) • E = Enc P R ( ID R || n R || s T R ) • Sends NewC T E ← − − − − − − − − NewC T • ID R || n R || s T R = Dec K R ( E ) • Authenticates T if s T R ∈ Tab R • Checks NewC T → Updates its values • Sends NewC R if newer than NewC T NewC R − − − − − − − − → • Checks NewC R → Updates its values G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  19. Our Protocol: Principle UPDATE • Picks a nonce n R C R , n R − − − − − − − − → • Checks C R • s T R = MAC( k T || ID R || v R ) • E = Enc P R ( ID R || n R || s T R ) • Sends NewC T E ← − − − − − − − − NewC T • ID R || n R || s T R = Dec K R ( E ) • Authenticates T if s T R ∈ Tab R • Checks NewC T → Updates its values • Sends NewC R if newer than NewC T NewC R − − − − − − − − → • Checks NewC R → Updates its values G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  20. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  21. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  22. Our Protocol: Principle UPDATE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  23. Our Protocol: Principle UPDATE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  24. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  25. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  26. Our Protocol: Principle UPDATE UPDATE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  27. Our Protocol: Principle UPDATE UPDATE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  28. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  29. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  30. Our Protocol: Principle UPDATE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  31. Our Protocol: Principle UPDATE G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  32. Our Protocol: Principle G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  33. Our Protocol: Principle I cannot differentiate them anymore!!! ?? ?? ?? G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 10

  34. Outline 1 Our Protocol 2 Privacy Analysis 3 Efficiency Analysis 4 Implementation G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 11

  35. Privacy Analysis Privacy experiment (from Juels and Weis’ model [Percom-2007]) 1 The challenger C initializes the RFID system S . 2 A interacts with the whole system. A chooses two challenge tags T and T ′ , and gives them to C . 3 C chooses a random bit b , and assigns T b = T and T b ⊕ 1 = T ′ . 4 Then C gives back T b and T b ⊕ 1 to A . A interacts with the whole system. 5 A outputs a guess bit b ′ . 6 A wins if b = b ′ . Adversary classes STANDARD [ A can corrupt any tag (except challenge tags)] FORWARD [ A can corrupt any tag] CORRUPT [ A can corrupt any reader] • CORRUPT is composable with STANDARD and FORWARD ⇒ 4 possible adversaries G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 12

  36. Privacy Analysis When the system is stable FORWARD-privacy CORRUPT-STANDARD-privacy During the system update We define the average probability τ ( t ) to trace 1 tag When t ր then τ ( t ) ց “ 1 ”“ u ( t ) ”“ u ( t ) − 1 ” τ ( t ) = 2 + ǫ ( s ) n n − 1 “ u ( t ) 1 − u ( t ) 1 − u ( t ) 1 − u ( t ) “ ”“ ” ”“ ” + + 2 n − 1 n − 1 n n where u ( t ) = number of updated tags at time t G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 13

  37. Outline 1 Our Protocol 2 Privacy Analysis 3 Efficiency Analysis 4 Implementation G. Avoine, I. Coisel, T. Martin – A Privacy-Restoring Mechanism for Offline RFID Systems 14

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Mobile Networks - Module H2 Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; privacy preserving routing in ad hoc networks; Slides adapted from Security and

909 views • 55 slides
Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT 15 TH November 2003 By Rakesh Kumar Wipro Technologies India Privacy Consumers Perspective Privacy can be defined as customers ability to

284 views • 17 slides
Privacy Challenges in RFID-Systems Marc Langheinrich ETH Zurich, Switzerland

Privacy Challenges in RFID-Systems Marc Langheinrich ETH Zurich, Switzerland

Privacy Challenges in RFID-Systems Marc Langheinrich ETH Zurich, Switzerland http://www.inf.ethz.ch/~langhein/ joint work with Chris Floerkemeier and Roland Schneider The Ubicomp Vision DIMACS WUPSS The most profound technologies are

177 views • 17 slides
A New Framework for RFID Privacy Robert H. Deng, Yingjiu Li, Moti Yung, Yunlei Zhao ESORICS 2010

A New Framework for RFID Privacy Robert H. Deng, Yingjiu Li, Moti Yung, Yunlei Zhao ESORICS 2010

A New Framework for RFID Privacy Robert H. Deng, Yingjiu Li, Moti Yung, Yunlei Zhao ESORICS 2010 Outline Introduction. Model of RFID Systems. Adaptive Completeness and Mutual Authentication. zk-Privacy: Formulation, Clarifications

456 views • 35 slides
Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de Louvain Belgium SUMMARY Background about RFID Privacy: Information Leakage Privacy: Malicious Traceability Is Privacy a Research Challenge?

343 views • 32 slides
Some Recent Development Some Recent Development in RFID Privacy Models Robert H. Deng School of

Some Recent Development Some Recent Development in RFID Privacy Models Robert H. Deng School of

Some Recent Development Some Recent Development in RFID Privacy Models Robert H. Deng School of Information Systems y Singapore Management University 2010/12/6 1 Introduction RFID tags are low-cost electronic devices, from which

547 views • 17 slides
RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011, Corua, Spain RFID Primer RFID Primer Definition Radio frequency identification'' (RFID) means the use of electromagnetic radiating waves

729 views • 47 slides
Entropy-minimizing Mechanism for Differential Privacy of Discrete-time Linear Feedback Systems

Entropy-minimizing Mechanism for Differential Privacy of Discrete-time Linear Feedback Systems

Entropy-minimizing Mechanism for Differential Privacy of Discrete-time Linear Feedback Systems Yu Wang, Zhenqi Huang, Sayan Mitra and Geir E. Dullerud September 25, 2014 General Question Trade-off between privacy and accuracy: a

587 views • 19 slides
RFID Privacy: from Transportation Payment Systems to Implantable Medical Devices Wayne Burleson

RFID Privacy: from Transportation Payment Systems to Implantable Medical Devices Wayne Burleson

RFID Privacy: from Transportation Payment Systems to Implantable Medical Devices Wayne Burleson University of Massachusetts Amherst burleson@ecs.umass.edu AMD Research Boston wayne.burleson@amd.com This material is based upon work supported

663 views • 63 slides
RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011, Rennes, France Summary RFID Primer. Examples. Capabilities. Particularities. Authentication in RFID. Theory. Practical

934 views • 64 slides
29.09.2007 No Shortage of Public Fears RFID and Privacy The risk [RFID] poses to humanity

29.09.2007 No Shortage of Public Fears RFID and Privacy The risk [RFID] poses to humanity

29.09.2007 No Shortage of Public Fears RFID and Privacy The risk [RFID] poses to humanity is on Marc Langheinrich Institute for Pervasive Computing a par with nuclear weapons. Dr. Katherine Albrecht Katherine Albrecht,

315 views • 4 slides
The Blocker Tag: Selective Blocking of RFID Tags for Consumer Privacy Ari Juels Ron Rivest

The Blocker Tag: Selective Blocking of RFID Tags for Consumer Privacy Ari Juels Ron Rivest

The Blocker Tag: Selective Blocking of RFID Tags for Consumer Privacy Ari Juels Ron Rivest Mike Szydlo MIT CSAIL RSA Laboratories RSA Laboratories What is a R adio- F requency Id entification (RFID) tag? In terms of appearance Chip

678 views • 26 slides
Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing

Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing

T Labs Usability Colloquium June 25, 2007 Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing ETH Zurich, Switzerland C.A.S.P.I.A.N. Consumers against supermarket privacy invasions and

451 views • 25 slides
RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia for IPTS IFIP/FIDIS Summerschool Karlstad - 2007 Overview RFID Technologies RFID Markets RFID Privacy issues Conclusions 2

734 views • 19 slides
Discussion of Privacy as a Tool for Robust Mechanism Design

Discussion of Privacy as a Tool for Robust Mechanism Design

Discussion of Privacy as a Tool for Robust Mechanism Design in Large Markets Leeat Yariv General Theme Interpret differenAal privacy as a

275 views • 25 slides
PublicKeyCryptographyforRFID Tags

PublicKeyCryptographyforRFID Tags

PublicKeyCryptographyforRFID Tags !" #$ %&! '()* +( "

760 views • 49 slides
ECC on small devices Junfeng Fan Katholieke Universiteit Leuven, Belgium

ECC on small devices Junfeng Fan Katholieke Universiteit Leuven, Belgium

ECC on small devices Junfeng Fan Katholieke Universiteit Leuven, Belgium junfeng.fan@esat.kuleuven.be What is a small device? 2 What is a small device? 3 What is a small device? 4 What is a small device? Trusted Platform

1.34k views • 111 slides
Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and UTwente d UT t Overview Lightweight cryptography - state of the art Comparison Standard vs. Lightweight Comparison Standard vs. Lightweight

599 views • 39 slides
Long Range and Low Powered RFID Tags with Tunnel Diode F. Amato, C. W. Peterson, M. B. Akbar, G.

Long Range and Low Powered RFID Tags with Tunnel Diode F. Amato, C. W. Peterson, M. B. Akbar, G.

Long Range and Low Powered RFID Tags with Tunnel Diode F. Amato, C. W. Peterson, M. B. Akbar, G. D. Durgin School of Electrical and Computer Engineering Georgia Institute of Technology This work was supported, in part, by NSF Grant ECCS

526 views • 33 slides
SYSTEM CALL IN MINIX Zhen Mo What is the MINIX System? Mini Unix (Minix) basically, a UNIX

SYSTEM CALL IN MINIX Zhen Mo What is the MINIX System? Mini Unix (Minix) basically, a UNIX

SYSTEM CALL IN MINIX Zhen Mo What is the MINIX System? Mini Unix (Minix) basically, a UNIX compatible operating system. Open source : intend to be studied in universities Very small (kernel is under 4000 lines) Simple Design

299 views • 17 slides
A RISC-V ISA EXTENSION FOR ULTRA-LOW POWER IOT WIRELESS SIGNAL PROCESSING Carolynn Bernier, Hela

A RISC-V ISA EXTENSION FOR ULTRA-LOW POWER IOT WIRELESS SIGNAL PROCESSING Carolynn Bernier, Hela

A RISC-V ISA EXTENSION FOR ULTRA-LOW POWER IOT WIRELESS SIGNAL PROCESSING Carolynn Bernier, Hela Belhadj Amor, Zdenk Pikryl Oct 1, 2019 ULP WIRELESS DESIGN @ LETI 2003 2005 2010 today RFID Atmel-Starchip VHBR 65nm

380 views • 19 slides
CONTEXT SENSITIVE SERVICES & INFORMATION SYSTEMS IN THE PERGAMON & THE JEWISH MUSEUM

CONTEXT SENSITIVE SERVICES & INFORMATION SYSTEMS IN THE PERGAMON & THE JEWISH MUSEUM

CONTEXT SENSITIVE SERVICES & INFORMATION SYSTEMS IN THE PERGAMON & THE JEWISH MUSEUM BERLIN J.Sieck & INKA - Research Group HTW - University of Applied Sciences Berlin Requirements: Multimedia Guide for the JMB The realisation of

792 views • 32 slides
OpenPCD / OpenPICC Free Software and Hardware for 13.56MHz RFID Nov 24, 2006 FOSS.in, Bangalore

OpenPCD / OpenPICC Free Software and Hardware for 13.56MHz RFID Nov 24, 2006 FOSS.in, Bangalore

OpenPCD / OpenPICC Free Software and Hardware for 13.56MHz RFID Nov 24, 2006 FOSS.in, Bangalore by Harald Welte <laforge@openpcd.org> Milosch Meriac <meriac@openpcd.org> OpenPCD / OpenPICC Introduction Who is speaking to you?

732 views • 26 slides

More recommend