Time-stamp based mutual authentication protocol for mobile RFID system

Abstract

Recently, there are many information security and privacy issues related to the Radio Frequency Identification (RFID) system, hence further pervasive application is seriously restricted. Recently two RFID authentication protocols named ESAP and WISP for RFID security authentication are designed based on the monotonically increasing time-stamp. Message exchange becomes much more dynamical and anonymous in these two protocols because of the time-stamp. However they are vulnerable to the timing attack and the counterfeit attacks. Inspired by the monotonically increasing time-stamp mechanism in the two protocols, we present a novel mutual security authentication protocol TMAP which can resist tag counterfeit attack, reader counterfeit attack, replay attack and de-synchronization attack, especially the timing attack. The protocol TMAP provides mutual authentication for the server and the reader, decreases the computation both of the tag and the server and operates in the mobile RFID systems, which is promising practical application especially in the mobile Internet and cloud computing developing rapidly nowadays.