Cryptanalysis of the David-Prasad RFID Ultralightweight Authentication Protocol

Hernandez-Castro, Julio Cesar; Peris-Lopez, Pedro; Phan, Raphael C. -W.; Tapiador, Juan M. E.

doi:10.1007/978-3-642-16822-2_3

Julio Cesar Hernandez-Castro¹⁷,
Pedro Peris-Lopez¹⁸,
Raphael C. -W. Phan¹⁹ &
…
Juan M. E. Tapiador²⁰

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 6370))

Included in the following conference series:

International Workshop on Radio Frequency Identification: Security and Privacy Issues

1270 Accesses
15 Citations

Abstract

In September 2009, David and Prasad proposed at MobiSec’09 an interesting new ultralightweight mutual authentication protocol for low-cost RFID tags. In this paper, we present a quite powerful cryptanalytic attack against their proposal: we start with a traceability attack, then describe how it can be extended to leak long-term stored secrets, and finally present a full disclosure attack (named Tango attack) where all the secrets that the protocol is designed to conceal are shown to be retrievable, even by a passive attacker after eavesdropping only a small number of authentication sessions. These results imply that very realistic attack scenarios are completely possible. The Tango attack constitutes a new, simple, yet powerful technique of cryptanalysis which is based on the computation and full exploitation of multiple approximations to the secret values, using Hamming distances and the representation of variables in an n-dimensional space.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Chien, H.-Y.: SASI: A New Ultralightweight RFID Authentication Protocol Providing Strong Authentication and Strong Integrity. IEEE Trans. Dependable Secur. Comput. 4(4), 337–340 (2007)
Article Google Scholar
David, M., Prasad, N.R.: Providing Strong Security and High Privacy in Low-Cost RFID Networks. In: Proc. of Security and Privacy in Mobile Information and Communication Systems, MobiSec 2009, pp. 172–179. Springer, Heidelberg (2009)
Chapter Google Scholar
EPCglobal: Class-1 Generation 2 UHF Air Interface Protocol Standard Version 1.2.0: Gen 2. (2008), http://www.epcglobalinc.org/standards/
Juels, A., Weis, S.: Defining strong privacy for RFID. In: Proc. of PerCom 2007, pp. 342–347. IEEE Computer Society Press, Los Alamitos (2007)
Google Scholar
Klimov, A., Shamir, A.: New Applications of T-Functions in Block Ciphers and Hash Functions. In: Gilbert, H., Handschuh, H. (eds.) FSE 2005. LNCS, vol. 3557, pp. 18–31. Springer, Heidelberg (2005)
Chapter Google Scholar
Peris-Lopez, P., Hernandez-Castro, J.C., Estevez-Tapiador, J.M., Ribagorda, A.: Advances in ultralightweight cryptography for low-cost RFID tags: Gossamer protocol. In: Chung, K.-I., Sohn, K., Yung, M. (eds.) WISA 2008. LNCS, vol. 5379, pp. 56–68. Springer, Heidelberg (2009)
Chapter Google Scholar
Peris-Lopez, P., Hernandez-Castro, J.C., Estevez-Tapiador, J., Ribagorda, A.: LMAP: A Real Lightweight Mutual Authentication Protocol for Low-cost RFID tags. In: Hand. of RFIDSec (2006)
Google Scholar
Peris-Lopez, P., Hernandez-Castro, J.C., Estevez-Tapiador, J., Ribagorda, A.: M2AP: A Minimalist Mutual-Authentication Protocol for Low-cost RFID Tags. In: Ma, J., Jin, H., Yang, L.T., Tsai, J.J.-P. (eds.) UIC 2006. LNCS, vol. 4159, pp. 912–923. Springer, Heidelberg (2006)
Chapter Google Scholar
Peris-Lopez, P., Hernandez-Castro, J.C., Estevez-Tapiador, J.M., Ribagorda, A.: EMAP: An efficient mutual-authentication protocol for low-cost RFID tags. In: Meersman, R., Tari, Z., Herrero, P. (eds.) OTM 2006 Workshops. LNCS, vol. 4277, pp. 352–361. Springer, Heidelberg (2006)
Chapter Google Scholar
Phan, R.: Cryptanalysis of a new ultralightweight RFID authentication protocol - SASI. IEEE Transactions on Dependable and Secure Computing (2008), doi: 10.1109/TDSC.2008.33
Google Scholar

Download references

Author information

Authors and Affiliations

School of Computing, University of Portsmouth,
Julio Cesar Hernandez-Castro
Security Lab, Faculty of EEMCS, Delft University of Technology,
Pedro Peris-Lopez
Department of Electronic and Electrical Engineering, Loughborough University,
Raphael C. -W. Phan
Department of Computer Science, University of York,
Juan M. E. Tapiador

Authors

Julio Cesar Hernandez-Castro
View author publications
You can also search for this author in PubMed Google Scholar
Pedro Peris-Lopez
View author publications
You can also search for this author in PubMed Google Scholar
Raphael C. -W. Phan
View author publications
You can also search for this author in PubMed Google Scholar
Juan M. E. Tapiador
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

Faculty of Electrical and Electronics Engineering, Department of Electronics and Communication Engineering, Istanbul Technical University, 34469, Istanbul, Turkey
Siddika Berna Ors Yalcin

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Hernandez-Castro, J.C., Peris-Lopez, P., Phan, R.C.W., Tapiador, J.M.E. (2010). Cryptanalysis of the David-Prasad RFID Ultralightweight Authentication Protocol. In: Ors Yalcin, S.B. (eds) Radio Frequency Identification: Security and Privacy Issues. RFIDSec 2010. Lecture Notes in Computer Science, vol 6370. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-16822-2_3

Download citation

DOI: https://doi.org/10.1007/978-3-642-16822-2_3
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-16821-5
Online ISBN: 978-3-642-16822-2
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics