rfid security and privacy
play

RFID Security and Privacy Gildas Avoine Information Security Group - PowerPoint PPT Presentation

Feb 16, 2024 •245 likes •729 views

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011, Corua, Spain RFID Primer RFID Primer Definition Radio frequency identification'' (RFID) means the use of electromagnetic radiating waves

  1. RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011, Coruña, Spain

  2. RFID Primer

  3. RFID Primer Definition  “Radio frequency identification'' (RFID) means the use of electromagnetic radiating waves or reactive field coupling in the radio frequency portion of the spectrum to communicate to or from a tag through a variety of modulation and encoding schemes to uniquely read the identity of a radio frequency tag or other data stored on it.” [European Commission Recommendation, 12.5.2009]

  4. RFID Primer Examples: Basic RFID Applications  Supply chain.  Track boxes, palettes, etc.  Eg: EPC Global Inc.  Libraries. Source: www.dclogistics.com  Improve book borrowing procedure and inventory.  Pet identification.  Replace common identification Source: www.rfid-library.com tattoo by electronic one.  Will become mandatory in the EU. Source: www. flickr.com

  5. RFID Primer Examples: Evolved RFID Applications  Building access control.  Automobile ignition keys.  Passports.  Electronic passports since 2004.  Public transportation.  Eg. Brussels, Boston, Paris, London.

  6. RFID Primer Capabilities power frequency active ultra-high frequency high frequency communication passive low frequency distance cm dm m no 10 cents UID pwd 50 cents sym 1 KB crypto asym computation euros crypto capabilities 40 KB memory capabilities cost

  7. RFID Primer Capabilities power frequency active ultra-high frequency high frequency communication passive low frequency distance cm dm m no 10 cents UID pwd 50 cents sym 1 KB crypto asym computation euros crypto capabilities 40 KB memory capabilities cost Supply chain

  8. RFID Primer Capabilities power frequency active ultra-high frequency high frequency communication passive low frequency distance cm dm m no 10 cents UID pwd 50 cents sym 1 KB crypto asym computation euros crypto capabilities 40 KB Access control memory capabilities cost Supply chain

  9. RFID Primer Looking Inside Source : jp.digikey.com

  10. RFID Primer Looking Inside Source : jp.digikey.com Who would be able to read this tag (by the end of this talk)?

  11. RFID Primer Looking Inside Source : jp.digikey.com Source : www.sirlepaper.com

  12. RFID Primer Looking Inside Source : jp.digikey.com Source : www.sirlepaper.com Source : lirent.net

  13. RFID Primer RFID Security Specificities  Wireless.  Easy to skim and eavesdrop.  Low-capabilities.  Calculation, Memory, Bandwidth.  Answer without holder’s agreement / awareness.  Easier to skim, Attack not detected.

  14. RFID Primer Security Threat Classification Impersonation Information Leakage

  15. Impersonation

  16. Impersonation Several Approaches  Impersonation: A fake tag is authenticated as a genuine one.  Three approaches to impersonate a tag.  Clone a genuine tag.  Modified a genuine tag.  Create a fake tag from scratch.  Examples:  Clone an access control card.  Modify your mass transportation pass.  Create a fake passport.

  17. Impersonation Authentication Protocol  Authentication can be done using:  A symmetric cipher, a keyed-hash function, a public-key cipher, a signature scheme, or a devoted authentication protocol.  Example: Challenge-Response Protocol.  ISO 9798-4 defines authentication protocols based on a MAC. n R Reader Tag ID T , MAC k ( n R , n T ) , n T  We know how to design a secure authentication scheme.

  18. Impersonation Weaknesses  Cost of the solution.  Require lightweight algorithms (wired logic).  Implementation issues.  Both sides: readers and tags.  Miss-understanding of the standards.  Architecture of the solution.  Building blocks are not enough: the whole solution must be secure.

  19. Impersonation Attack on TI DST  TI: Texas Instruments.  DST: Digital Signature Transponder.  More than 100 million DST modules sold around the world.  Car ignition key (eg. Ford) and payment cards.

  20. Impersonation Video: Texas Instrument DST Reader (k) r Tag (k) E k ( r ) Adversary goal: retrieve the secret k in order to make a clone. 1. Query once the car’s key (tag inside). 2. Try all the possible keys k until finding the one that correctly decipher E k ( r ). | k | = 40 bits. E revealed. 3. Steal the car simulating the car’s key.

  21. Impersonation Attack on NXP Mifare Classic Attack on Mifare Classic  Philips Semiconductors (NXP) introduced the Mifare commercial denomination (1994) that includes the Mifare Classic product.  Applications: public transportation, access control, ticketing…  Memory read & write access are protected by some keys.  Several 100 million Mifare Classic tags sold up to now.

  22. Bad Example: NXP Mifare Classic  Several attacks in 2008, Hoepman, Garcia, de Koning Gans, et al. reverse-engineered the cipher Crypto1: every Mifare Classic tag broken in a few minutes.

  23. Impersonation Relay Attacks Relay Attacks

  24. Impersonation Relay Attacks

  25. Impersonation Relay Attacks

  26. Impersonation Relay Attacks Adv Adv 10’000 km

  27. Impersonation Relay Attacks: Timing  Reader starts a timer when sending a message.  To avoid half-opened connections.  ISO 14443 “Proximity Cards”.  Used in most secure applications.  Default timer is around 4 ms.  Tag can require more time, up to…

  28. Impersonation Relay Attacks: Feasibility  Radio link over 50 meters (G. Hancke 05).  With some locally-connected ACR122 (A. Laurie 09).  With Nokia cell phones (A. Laurie 10).  Over Internet (libNFC 10).

  29. Information Leakage

  30. Information Leakage Classification  Information leakage: some personal information is revealed without the person’s agreement (belongs to privacy).  Information meaningful by itself.  Information meaningful when associated with a database.

  31. Information Leakage Information meaningful by itself When the data sent by the tag reveals information intrinsic to the tagged object or the holder of the object.

  32. Top-priced Wig Information Leakage Information Meaningful by Itself Viagra Credit : Ari Juels (modified image to fit this presentation)

  33. Top-priced Wig Information Leakage Information Meaningful by Itself Viagra Credit : Ari Juels (modified image to fit this presentation)

  34. Information Leakage Information Meaningful by Itself Passport 04BC4487 Mr. John Smith Born on Sept. 27, 68 Credit : Ari Juels (modified image to fit this presentation)

  35. Information Leakage Information Meaningful by Itself Subway 22/09/10, 9:04am Line 4 Stop Coruña Credit : Ari Juels (modified image to fit this presentation) Train Station

  36. Information Leakage Information Meaningless by Itself 09983974091 Credit : Ari Juels (modified image to fit this presentation)

  37. Information Leakage Information meaningful when associated to a database

  38. Information Leakage Information meaningful when associated to a database 34568311 435345 10327 9345658 Credit : Ari Juels (modified image to fit this presentation)

  39. Information Leakage Why should Manufacturers Deal with this Issue?  Economical.  Required by the customers and activists.  Liability due to personal data theft.  Incentive not to kill the tag.  Legal.  EU and national regulations.  Privacy-related laws.

  40. Information Leakage Encryption of the data #8-Jd%&l2ba¦$à,$ .we,mxc Credit : Ari Juels (modified image to fit this presentation)

  41. Information Leakage Require authentication before delivering data Credit : Ari Juels (modified image to fit this presentation)

  42. Conclusion

  43. Conclusion Palliative Solutions  Kill-command (Eg: EPC Gen 2 requires a 32-bit kill command.)  Faraday cages.  Removable antenna.  US Patent 7283035 - RF data communications device with selectively removable antenna portion and method.  Blocker tags, RFID Guardian.

  44. Conclusion Privacy and Security from the Outset  Because of its potential to be both ubiquitous and practically invisible, particular attention to privacy and data protection issues is required in the deployment of RFID. Consequently, privacy and information security features should be built into RFID applications before their widespread use (principle of security and privacy by design). [Viviane Reding, EC Recommendation, 12.5.2009]

  45. Conclusion Reasons of Information Leakage  More and more data collected: “logphilia”. Do we really need to store all these data?  Conservative assumption: Information may eventually leak.  Encrypt the sensitive data.

  46. Conclusion What about the Future?  Building blocks available in the tags are more secure in recent products (lightweight implementation of standardized algorithms)  Secure building blocks do not make themselves secure applications.  The security of the whole application must be considered.  Many SMEs involved in RFID.

  47. Conclusion RFID Security: A Large Body of Literature http://sites.uclouvain.be/security/ gildas.avoine@uclouvain.be

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011, Rennes, France Summary RFID Primer. Examples. Capabilities. Particularities. Authentication in RFID. Theory. Practical

934 views • 64 slides
Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de

Privacy Challenges in RFID Gildas Avoine Information Security Group Universit e catholique de Louvain Belgium SUMMARY Background about RFID Privacy: Information Leakage Privacy: Malicious Traceability Is Privacy a Research Challenge?

343 views • 32 slides
Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in

Privacy Protection privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; Security and Cooperation in Wireless Networks Georg-August University Gttingen Chapter outline 1 Important privacy related

1.12k views • 33 slides
Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location

Mobile Networks - Module H2 Privacy in Wireless Networks privacy notions and metrics; privacy in RFID systems; location privacy in vehicular networks; privacy preserving routing in ad hoc networks; Slides adapted from Security and

909 views • 55 slides
Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT 15 TH November 2003 By Rakesh Kumar Wipro Technologies India Privacy Consumers Perspective Privacy can be defined as customers ability to

284 views • 17 slides
RFID Security and Privacy Gildas Avoine, UCL Belgium These slides will be soon available at

RFID Security and Privacy Gildas Avoine, UCL Belgium These slides will be soon available at

RFID Security and Privacy Gildas Avoine, UCL Belgium These slides will be soon available at http://sites.uclouvain.be/security/publications.html Lecturer Presentation Lecturer Presentation: University Prof. Gildas Avoine. Universit

1.12k views • 90 slides
29.09.2007 No Shortage of Public Fears RFID and Privacy The risk [RFID] poses to humanity

29.09.2007 No Shortage of Public Fears RFID and Privacy The risk [RFID] poses to humanity

29.09.2007 No Shortage of Public Fears RFID and Privacy The risk [RFID] poses to humanity is on Marc Langheinrich Institute for Pervasive Computing a par with nuclear weapons. Dr. Katherine Albrecht Katherine Albrecht,

315 views • 4 slides
A New Framework for RFID Privacy Robert H. Deng, Yingjiu Li, Moti Yung, Yunlei Zhao ESORICS 2010

A New Framework for RFID Privacy Robert H. Deng, Yingjiu Li, Moti Yung, Yunlei Zhao ESORICS 2010

A New Framework for RFID Privacy Robert H. Deng, Yingjiu Li, Moti Yung, Yunlei Zhao ESORICS 2010 Outline Introduction. Model of RFID Systems. Adaptive Completeness and Mutual Authentication. zk-Privacy: Formulation, Clarifications

456 views • 35 slides
A Case Against Currently Used Hash Functions in RFID Protocols Workshop on RFID Security 2006

A Case Against Currently Used Hash Functions in RFID Protocols Workshop on RFID Security 2006

VLSI Institute for Applied Information Processing and Communications (IAIK) VLSI & Security A Case Against Currently Used Hash Functions in RFID Protocols Workshop on RFID Security 2006 RFIDSec06 July 13-14, 2006, Graz, Austria

232 views • 21 slides
Formal verification of privacy (for RFID protocols) Stphanie Delaune quipe EMSEC (IRISA),

Formal verification of privacy (for RFID protocols) Stphanie Delaune quipe EMSEC (IRISA),

Formal verification of privacy (for RFID protocols) Stphanie Delaune quipe EMSEC (IRISA), CNRS, France Tuesday, September 13th, 2016 Security protocols everywhere ! Cryptographic protocols small programs designed to secure

923 views • 56 slides
Some Recent Development Some Recent Development in RFID Privacy Models Robert H. Deng School of

Some Recent Development Some Recent Development in RFID Privacy Models Robert H. Deng School of

Some Recent Development Some Recent Development in RFID Privacy Models Robert H. Deng School of Information Systems y Singapore Management University 2010/12/6 1 Introduction RFID tags are low-cost electronic devices, from which

547 views • 17 slides
The Blocker Tag: Selective Blocking of RFID Tags for Consumer Privacy Ari Juels Ron Rivest

The Blocker Tag: Selective Blocking of RFID Tags for Consumer Privacy Ari Juels Ron Rivest

The Blocker Tag: Selective Blocking of RFID Tags for Consumer Privacy Ari Juels Ron Rivest Mike Szydlo MIT CSAIL RSA Laboratories RSA Laboratories What is a R adio- F requency Id entification (RFID) tag? In terms of appearance Chip

678 views • 26 slides
Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing

Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing

T Labs Usability Colloquium June 25, 2007 Privacy and RFID Irreconcilable Differences? Marc Langheinrich Institute for Pervasive Computing ETH Zurich, Switzerland C.A.S.P.I.A.N. Consumers against supermarket privacy invasions and

451 views • 25 slides
Designing Low-Cost Untraceable Authentication Protocols for RFID Dave Singele IFIP WG 11.2

Designing Low-Cost Untraceable Authentication Protocols for RFID Dave Singele IFIP WG 11.2

Designing Low-Cost Untraceable Authentication Protocols for RFID Dave Singele IFIP WG 11.2 Seminar Istanbul June 07, 2010 Outline of the talk n Introduction n RFID authentication protocols n Security requirements n Privacy requirements n

344 views • 31 slides
RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia for IPTS IFIP/FIDIS Summerschool Karlstad - 2007 Overview RFID Technologies RFID Markets RFID Privacy issues Conclusions 2

734 views • 19 slides
Smartcards and RFID Security in Organisations Erik Poll Digital Security University of Nijmegen

Smartcards and RFID Security in Organisations Erik Poll Digital Security University of Nijmegen

Smartcards and RFID Security in Organisations Erik Poll Digital Security University of Nijmegen 1 Goals of today What are smartcards and RFID tags? what can they do? what security can they provide? and what are the limits here?

1.17k views • 80 slides
Applications at JLab A. Margaryan A. Margaryan, YerPhI Seminar@JLab June 28, 2007 1 Contents

Applications at JLab A. Margaryan A. Margaryan, YerPhI Seminar@JLab June 28, 2007 1 Contents

RF Time Measuring Technique With Picosecond Resolution and Its Possible Applications at JLab A. Margaryan A. Margaryan, YerPhI Seminar@JLab June 28, 2007 1 Contents Introduction RF time measuring technique: Principles and experimental

466 views • 34 slides
Erik Dahlman Ericsson Research

Erik Dahlman Ericsson Research

Erik Dahlman Ericsson Research A Heterogeneous Network Technology Use cases

517 views • 13 slides
EXPERIMENTAL UPPER LIMITS ON (ULTRA) HIGH-FREQUENCY GRAVITATIONAL WAVES AND PROSPECTS FOR MORE:

EXPERIMENTAL UPPER LIMITS ON (ULTRA) HIGH-FREQUENCY GRAVITATIONAL WAVES AND PROSPECTS FOR MORE:

EXPERIMENTAL UPPER LIMITS ON (ULTRA) HIGH-FREQUENCY GRAVITATIONAL WAVES AND PROSPECTS FOR MORE: MAGNETIC CONVERSION DETECTORS AND CORRELATED INTERFEROMETRY Hartmut Grote, Cardiff University ICTP workshop, Trieste 14/10/2019 Work in

862 views • 36 slides
Propagation of signals from indoor small cells at ultra-high frequencies. Hayley Wragg

Propagation of signals from indoor small cells at ultra-high frequencies. Hayley Wragg

Introduction Theoretical work Numerical results Propagation of signals from indoor small cells at ultra-high frequencies. Hayley Wragg Supervisors: Prof. C. J. Budd, Dr. R. Watson Industrial supervisors: Dr. K. Briggs, Dr. M. Fitch

231 views • 22 slides
5G Radio Access Technology Kumar Balachandran Principal Research Engineer Ericsson Research 5G

5G Radio Access Technology Kumar Balachandran Principal Research Engineer Ericsson Research 5G

5G Radio Access Technology Kumar Balachandran Principal Research Engineer Ericsson Research 5G Wireless Access A wide range of requirements and capabilities More than just enhanced mobile broadband Very high traffic capacity High

180 views • 13 slides
CANTO Conference Trinidad and Tobago, February 2018 Veena Rawat Senior Spectrum Advisor, GSMA

CANTO Conference Trinidad and Tobago, February 2018 Veena Rawat Senior Spectrum Advisor, GSMA

5G and WRC-19 CANTO Conference Trinidad and Tobago, February 2018 Veena Rawat Senior Spectrum Advisor, GSMA 5G USE CASES AND POSSIBILITIES FOR AFRICA 5G ENABLES DIGITAL TRANSFORMATION ACROSS GOVERNMENT AND MULTIPLE INDUSTRIES: eMBB Enhanced

451 views • 13 slides
Nanometer-Scale I nGaAs Field-Effect Transistors for THz and CMOS Technologies J. A. del Alamo

Nanometer-Scale I nGaAs Field-Effect Transistors for THz and CMOS Technologies J. A. del Alamo

Nanometer-Scale I nGaAs Field-Effect Transistors for THz and CMOS Technologies J. A. del Alamo Microsystems Technology Laboratories, MIT ESSDERC-ESSCIRC 2013 Bucharest, Romania, September 16-20, 2013 Acknowledgements: D. Antoniadis, A.

489 views • 38 slides
BeamCurrentMonitors JeanClaudeDenard (SynchrotronSOLEIL)

BeamCurrentMonitors JeanClaudeDenard (SynchrotronSOLEIL)

BeamCurrentMonitors JeanClaudeDenard (SynchrotronSOLEIL) DITANETSchoolonBeamDiagnosticTechniques 30March 3April2009 RoyalHollowayUniversityofLondon(UK) Summary Electromagnetic

628 views • 25 slides

More recommend