Abstract
This paper proposes an improved two-way security authentication protocol to improve the security level of Radio Frequency Identification (RFID) system. In the proposed protocol, tags calculate hash value, which is divided into two parts. The left half is used to verify the identity of the tags, and the right half is used to verify the identity of the reader, which will reduce the tag’s computation and storage. By updating the tag’s secret key value and random number, the protocol can prevent most attacks existing in RFID systems such as data privacy, replay attack, fake attack, position tracking and asynchronous attack. The correctness of the protocol is proved by using Burrows-Abadi-Needham (BAN) logic analysis. The evaluation results show that the scalability of the protocol proposed is achieved with acceptable response time limits. The simulation results indicate that the protocol has significant advantages on performance efficiency for many tags, which provides a reliable approach for RFID system application in practice.
Highlights
Radio Frequency Identification (RFID) is a non-contact automatic identification technology, and it has been widely used in logistics, identity, electronic tickets, public transport, and other fields
There are three major types of RFID security protocols based on unidirectional hash functions: Hash-Lock protocol [1], randomized Hash-Lock protocol [2]
To solve the problem mentioned above, this paper proposes an improved two-way security authentication protocol for RFID systems
Summary
RFID is a non-contact automatic identification technology, and it has been widely used in logistics, identity, electronic tickets, public transport, and other fields. Hash-lock protocol was proposed by Sarma to avoid information disclosure and tracking [1]. To solve the problem of location tracking in the Hash-Lock protocol, Weis et al proposed a Randomized Hash-Lock protocol using a pseudo-random number generator This protocol can avoid tracking the same response value for each tag because their response message is different from the last one [2]. To solve the problem mentioned above, this paper proposes an improved two-way security authentication protocol for RFID systems. By dynamically updating the tag’s secret key for each authentication round, the protocol can prevent most of attacks existing in RFID systems such as data privacy, replay attack, fake attack, position tracking and asynchronous attack.
Sign-in/Register to view highlights & summary 
Published Version (
Free)
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call