An Enhanced Authentication Protocol Suitable for Constrained RFID Systems

Mehdi Hosseinzadeh; Mohammad Reza Servati; Amir Masoud Rahmani; Masoumeh Safkhani; Jan Lansky; Renata Janoscova; Omed Hassan Ahmed; Jawad Tanveer; Sang-Woong Lee

doi:10.1109/ACCESS.2024.3364690

IEEE Access (Jan 2024)

An Enhanced Authentication Protocol Suitable for Constrained RFID Systems

Mehdi Hosseinzadeh,
Mohammad Reza Servati,
Amir Masoud Rahmani,
Masoumeh Safkhani,
Jan Lansky,
Renata Janoscova,
Omed Hassan Ahmed,
Jawad Tanveer,
Sang-Woong Lee

Affiliations

Mehdi Hosseinzadeh: ORCiD; Institute of Research and Development, Duy Tan University, Da Nang, Vietnam
Mohammad Reza Servati: ORCiD; Department of Computer Engineering, Shahid Rajaee Teacher Training University, Tehran, Iran
Amir Masoud Rahmani: Future Technology Research Center, National Yunlin University of Science and Technology, Douliou, Yunlin, Taiwan
Masoumeh Safkhani: ORCiD; Department of Computer Engineering, Shahid Rajaee Teacher Training University, Tehran, Iran
Jan Lansky: ORCiD; Department of Computer Science and Mathematics, Faculty of Economic Studies, University of Finance and Administration, Prague, Czech Republic
Renata Janoscova: ORCiD; Department of Computer Science and Mathematics, Faculty of Economic Studies, University of Finance and Administration, Prague, Czech Republic
Omed Hassan Ahmed: Department of Information Technology, University of Human Development, Sulaymaniyah, Iraq
Jawad Tanveer: ORCiD; Department of Computer Science and Engineering, Sejong University, Seoul, South Korea
Sang-Woong Lee: ORCiD; Department of AI Software, Pattern Recognition and Machine Learning Laboratory, Gachon University, Seongnam-si, South Korea

DOI: https://doi.org/10.1109/ACCESS.2024.3364690
Journal volume & issue: Vol. 12
pp. 61610 – 61628

Abstract

Read online

RFID technology offers an affordable and user-friendly solution for contactless identification of objects and individuals. However, the widespread adoption of RFID systems raises concerns regarding security and privacy. Vulnerabilities such as message tampering, interception, and eavesdropping pose significant risks to the integrity of the system. This study examines the effectiveness of two recently proposed ultra-lightweight RFID authentication protocols, URASP and KUAJB, in addressing these security challenges. Surprisingly, our findings reveal that both URASP and KUAJB protocols are susceptible to secret disclosure attacks, despite their claims of providing robust security. Consequently, the development of a truly ultra-lightweight protocol that ensures adequate security becomes a formidable task. As a potential solution, the enhancement of the URASP protocol through the integration of a simple cryptographic primitive is suggested to bolster its security measures.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords