Paper 2019/073

Destructive Privacy and Mutual Authentication in Vaudenay's RFID Model

Cristian Hristea and Ferucio Laurentiu Tiplea

Abstract

With the large scale adoption of the Radio Frequency Identification (RFID) technology, a variety of security and privacy risks need to be addressed. Arguably, the most general and used RFID security and privacy model is the one proposed by Vaudenay. It considers concurrency, corruption (with or without destruction) of tags, and the possibility to get the result of a protocol session on the reader side. Security in Vaudenay's model embraces two forms, unilateral (tag) authentication and mutual (tag and reader) authentication, while privacy is very flexible and dependent on the adversary class. The construction of destructive private RFID schemes in Vaudenay's model was left open when the model was initially proposed. It was solved three years later in the context of unilateral authentication. In this paper we propose a destructive private and mutual authentication RFID scheme in Vaudenay's model. The security and privacy of our scheme are rigorously proved. We also show that the only two RFID schemes proposed so far that claimed to achieve destructive privacy and mutual authentication are not even narrow forward private. Thus, our RIFD scheme is the first one to achieve this kind of privacy and security. The paper also points out some privacy proof flaws that have been met in previous constructions.

Metadata
Available format(s)
PDF
Category
Cryptographic protocols
Publication info
Preprint. MINOR revision.
Keywords
RFID schemesecurityprivacy
Contact author(s)
cristi hristea @ gmail com
fltiplea @ gmail com
History
2019-07-11: revised
2019-01-25: received
See all versions
Short URL
https://ia.cr/2019/073
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2019/073,
      author = {Cristian Hristea and Ferucio Laurentiu Tiplea},
      title = {Destructive Privacy and Mutual Authentication in Vaudenay's {RFID} Model},
      howpublished = {Cryptology {ePrint} Archive, Paper 2019/073},
      year = {2019},
      url = {https://eprint.iacr.org/2019/073}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.