Title :
How to improve security and reduce hardware demands of the WIPR RFID protocol
Author :
Wu, Jiang ; Stinson, Douglas R.
Author_Institution :
David R. Cheriton Sch. of Comput. Sci., Univ. of Waterloo, Waterloo, ON
Abstract :
In this paper, we analyze and improve WIPR, an RFID identification scheme based on public key techniques with efficient hardware implementation. First we analyze the security and privacy features of WIPR. We show that a reduced version of WIPR is vulnerable to short padding attacks and WIPR needs a random number generator with certain properties to withstand reset attacks. We discuss countermeasures to avoid these attacks. Then we propose two variants of WIPR, namely WIPR-SAEP and WIPR-RNS, to improve its security and to further reduce its hardware cost. Using an additional hash function, WIPR-SAEP achieves provable security in the sense that violating the security properties leads to solving the integer factoring problem. WIPR-RNS uses a residue number system (RNS) for computation, and reduces the hardware costs of WIPR. WIPR-RNS provides a better security guarantee than WIPR in that it does not use a non-standard cryptographic primitive in WIPR. WIPR-SAEP and WIPR-RNS can be combined into one scheme.
Keywords :
cryptographic protocols; public key cryptography; radiofrequency identification; random number generation; residue number systems; WIPR RFID protocol; hardware demands; hardware implementation; hash function; integer factoring problem; public key techniques; radio frequency identification; random number generator; residue number system; short padding attacks; Authentication; Costs; Hardware; Polynomials; Privacy; Protocols; Public key cryptography; RFID tags; Radiofrequency identification; Security;
Conference_Titel :
RFID, 2009 IEEE International Conference on
Conference_Location :
Orlando, FL
Print_ISBN :
978-1-4244-3337-7
Electronic_ISBN :
978-1-4244-3338-4
DOI :
10.1109/RFID.2009.4911191
