RFID-enabled Extensible Authentication Framework and Its ...

More documents

Recommendations

Info

= Identity is jointly used. M sends Type[k]-Request where k ∈ {0, 4 : 255}, k = i, and k = j. If M has received Nak message, k ∈ T ypeSet and k = j. (7) T sends corresponding Type[k]-Response to (6). Depending on the Type[k], (6)-(7) is more than one round trip. (8) If authentication fails in the middle of authentication, M sends Failure-Notification immediately. If authentication ends successfully, M sends Success-Notification. In a session, if T receives Type[l]-Request with the same identifier before finishing Type[j] or Type[k] authentication, T drops the received Type[l]-Request, where l = j and l = k. Beacuse REAF supports bulk-reading using identifier and the timer, it is suitable for RFID applications. Also, REAF packet format is designed as compact as possible to support resource-constraint RFID tags. As a result, REAF can support multiple authentication methods only with 4-byte overhead. 25
IV. REAF Methods and Applications In order to use our proposed authentication framework, specific REAF methods are required. Existing 3-party protocols can be transformed to REAF-conforming methods with our packet format as long as readers act as pass-through agents in the protocols. In this chapter we present typical authentication methods as examples, using two different cryptographic primitives such as a hash function and a block cipher al- gorithm. Although our methods are designed for REAF, they can be independently adoptable to RFID applications regardless of the adop- tion of REAF. Our REAF methods can be used in the heterogeneous RFID applications. For example, we can authenticate daily necessaries with a REAF-HF or a REAF-BC-TA method while expensive valuables are authenticated with a REAF-BC-OA1 or a REAF-BC-OA2 method. 4.1 REAF-HF In this section, we propose a REAF method using a hash function, where HF ∈ {MD4, MD5, SHA-1, SHA-256, · · · }. Any affordable hash functions for RFID tags can be used as REAF-HF methods. For example, REAF-SHA1 means an authentication method using SHA-1 which conforms to REAF specification. 4.1.1 Protocol The REAF-HF authentication method is designed based on EAP-MD5. It needs a pre-distributed shared secret (e.g. a password). Figure 4.1 shows REAF-HF authentication method flow, where len(IDT ) = 96 26
Page 1 and 2: A Thesis for the Degree of Master R
Page 3 and 4: RFID-enabled Extensible Authenticat
Page 5 and 6: M.S. 20042055 Abstract Sungbae Ji R
Page 7 and 8: Contents Abstract i Contents iii Li
Page 9 and 10: List of Figures 3.1 REAF Message Pa
Page 11 and 12: DB Database List of Abbreviations E
Page 13 and 14: EK(str) Block cipher encryption of
Page 15 and 16: 1.1 Motivation and Objectives (1) A
Page 17 and 18: encryptions at the tag side which m
Page 19 and 20: II. Preliminaries 2.1 Security and
Page 21 and 22: Table 2.1: RFID Applications Applic
Page 23 and 24: GEs, 8,400 GEs, and 7,300 GEs respe
Page 25 and 26: tags against cloning. The EnhancedT
Page 27 and 28: the inventory response is contradic
Page 29 and 30: An RFID reader relays messages betw
Page 31 and 32: Moreover, readers and APs are the i
Page 33 and 34: 0 1 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5
Page 35 and 36: authentication is done successfully
Page 37: packets between the tag and the mid
Page 41 and 42: Table 4.1: Comparison with other Ha
Page 43 and 44: On receiving BC-OA1-Response, M dec
Page 45 and 46: Table 4.2: Security Properties of R
Page 47 and 48: 4.3 Applications In this section, w
Page 49 and 50: V. Conclusion In this thesis, we pr
Page 51 and 52: RFID 시스템을 위한 확장가
Page 53 and 54: References 1. EPCglobal Inc, EPC Ra
Page 55 and 56: quency Identification Systems, Secu
Page 57 and 58: Acknowledgement This thesis is the
Page 59 and 60: Name : Sungbae Ji Date of Birth : O
Page 61 and 62: Publications (1) 2007.02 지성배,

RFID-enabled Extensible Authentication Framework and Its ...

Create successful ePaper yourself

Delete template?

Save as template?