Cryptology ePrint Archive: Report 2012/490

Desynchronization Attack on RAPP Ultralightweight Authentication Protocol

Zahra Ahmadian, Mahmoud Salmasizadeh, and Mohammad Reza Aref

Abstract: RAPP (RFID Authentication Protocol with Permutation) is a recently proposed efficient ultralightweight authentication protocol. The operation used in this protocol is totally different from the other existing ultralightweight protocols due to the use of new introduced data dependent permutations and avoidances of modular arithmetic operations and biased logical operations such as AND and OR. The designers of RAPP claimed that this protocol resists against desynchronization attacks since the last messages of the protocol is sent by the reader and not by the tag. This letter challenges this assumption and shows that RAPP is vulnerable against desynchronization attack. This attack has a remarkable probability of success and is effective whether Hamming weight-based or modular-based rotations are used by the protocol.

Category / Keywords: cryptographic protocols / RAPP, RFID security, Ultralightweight protocols, desynchronization attack.

Date: received 24 Aug 2012, last revised 6 Sep 2012

Contact author: zahraahmadian at yahoo com

Available format(s): Postscript (PS) | Compressed Postscript (PS.GZ) | PDF | BibTeX Citation

Version: 20120906:085436 (All versions of this report)

Discussion forum: Show discussion | Start new discussion


[ Cryptology ePrint archive ]