Cryptology ePrint Archive: Report 2010/059

A New Framework for RFID Privacy

Robert H. Deng, Yingjiu Li, Andrew C. Yao and Moti Yung and Yunlei Zhao

Abstract: Formal RFID security and privacy frameworks are fundamental to the design and analysis of robust RFID systems. In this paper, we develop a new definitional framework for RFID privacy in a rigorous and precise manner. Our framework is based on a zero-knowledge (ZK) formulation [7, 5] and incorporates the notions of adaptive completeness and mutual authentication. We provide meticulous justification of the new framework and contrast it with existing ones in the literature. In particular, we prove that our framework is stronger than the ind-privacy model of [14], which answers an open question posed in [14] for developing stronger RFID privacy models. Along the way we also try to clarify certain confusions and rectify several defects in the existing frameworks.

Based on the protocol of [16], we propose an efficient RFID mutual authentication protocol and analyze its security and privacy. The methodology used in our analysis is of independent interest and can be applied to analyze other RFID protocols within the new framework.

Category / Keywords: cryptographic protocols /

Publication Info: Extended abstract appeared at ESORICS 2010.

Date: received 3 Feb 2010, last revised 24 Jan 2011

Contact author: ylzhao at fudan edu cn

Available format(s): PDF | BibTeX Citation

Note: Section 5.4 is added.

Version: 20110125:060315 (All versions of this report)

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]