Cryptology ePrint Archive: Report 2010/634

ROTIV: RFID Ownership Transfer with Issuer Verification

Kaoutar Elkhiyaoui and Erik-Oliver Blass and Refik Molva

Abstract: RFID tags travel between partner sites in a supply chain. For privacy reasons, each partner “owns” the tags present at his site, i.e., the owner is the only entity able to authenticate his tags. However, when passing tags on to the next partner in the supply chain, ownership of the old partner is “transferred” to the new partner. In this paper, we propose ROTIV, a protocol that allows for secure ownership transfer against some malicious owners. Furthermore, ROTIV offers issuer verification to prevent malicious partners from injecting fake tags not originally issued by some trusted party. As part of ownership, ROTIV provides a constant-time, privacy-preserving authentication. ROTIV’s main idea is to combine an HMAC-based authentication with tag key and state updates during ownership transfer. To assure privacy, ROTIV implements tag state re-encryption techniques and key update techniques, performed on the reader. ROTIV is designed for lightweight tags – tags are only required to evaluate a hash function.

Category / Keywords: cryptographic protocols / RFID, ownership transfer, issuer verification.

Date: received 13 Dec 2010, last revised 9 Jun 2011

Contact author: kaoutar elkhiyaoui at eurecom fr

Available format(s): PDF | BibTeX Citation

Version: 20110609:101459 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]