Abstract
The implementation of RFID technology has globally impacted several industries and this revolution has improved the aspects of service delivery in many sectors, such as logistics, supply chain visibility, access control, military, and agri-food sector. RFID provides several security services to protect the data transmitted between a tag and a reader in the IoT environment. However, these advantages do not prevent an attacker to access this communication and remaining various security and privacy issues in these systems. Furthermore, with the rapid growth of IoT, there is an urgent need of security authentication and confidential data protection. Authentication protocols based on cryptographic primitives were widely investigated and implemented to guarantee protection against various attacks that can suffer an RFID system. Among those cryptosystems is the Elliptic Curve Integrated Encryption Scheme (ECIES), which can be found in several cryptographic standards. It offers mutual authentication and data integrity that has become highly employed in RFID applications. In this paper, we present a novel secure ECC-based RFID authentication protocol that meets the security needs of existing published protocols and ensures data confidentiality and privacy. Beforehand, we present an overview of some ECC-based RFID authentication protocols and highlight their security weaknesses against server spoofing, tracking, and impersonation attacks. After that, a comparative study with existing protocols in terms of computational performance and security strength is performed. Finally, our protocol is analyzed and verified with the Automated Validation of Internet Security Protocols and Applications (AVISPA) analysis tool after being modeled in High Level Protocol Specification Language (HLPSL).
Highlights
With the convergence of multiple information and communication technologies, such as machine learning, embedded systems, and sensors, the field of Internet of Things (IoT) evolved [1], [2]
IoT constitute a combination of sensors and Radio Frequency Identification (RFID) technology interacting with different devices through a wireless network
RELATED WORK In recent years, several RFID authentication protocols have been using cryptosystems based on Elliptic Curves Cryptography (ECC)
Summary
With the convergence of multiple information and communication technologies, such as machine learning, embedded systems, and sensors, the field of Internet of Things (IoT) evolved [1], [2]. Due to the constraints imposed by RFID tags in terms of hardware resources and consumption, most RFID applications resort to use lightweight cryptographic primitives [29]–[34] These solutions present major security limitations and weaknesses against the various wireless attacks. Elliptic Curve Cryptography (ECC) is one of the most powerful PKC that require little computational effort, in terms of resources, to meet the limited requirements of small devices [39] These advantages make ECCs more widely used to implement RFID authentication protocols. The comparative study performed by [44] found that the protocol of Zheng et al [45] presents one of the most efficient protocols in terms of computing and communication costs and ensures security against most wireless attacks.
Sign-in/Register to view highlights & summary 
Published Version (
Free)
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call