TY - JOUR
T1 - A practical implementation attack on weak pseudorandom number generator designs for EPC Gen2 tags
AU - Melià-Seguí, Joan
AU - Garcia-Alfaro, Joaquin
AU - Herrera-Joancomartí, Jordi
PY - 2011/7/1
Y1 - 2011/7/1
N2 - The Electronic Product Code Generation 2 (EPC Gen2) is an international standard that proposes the use of Radio Frequency Identification (RFID) in the supply chain. It is designed to balance cost and functionality. As a consequence, security on board of EPC Gen2 tags is often minimal. It is, indeed, mainly based on the use of on board pseudorandomness, used to obscure the communication between readers and tags; and to acknowledge the proper execution of password-protected operations. In this paper, we present a practical implementation attack on a weak pseudorandom number generator (PRNG) designed specifically for EPC Gen2 tags. We show that it is feasible to eavesdrop a small amount of pseudorandom values by using standard EPC commands and using them to determine the PRNG configuration that allows to predict the complete output sequence. © 2010 Springer Science+Business Media, LLC.
AB - The Electronic Product Code Generation 2 (EPC Gen2) is an international standard that proposes the use of Radio Frequency Identification (RFID) in the supply chain. It is designed to balance cost and functionality. As a consequence, security on board of EPC Gen2 tags is often minimal. It is, indeed, mainly based on the use of on board pseudorandomness, used to obscure the communication between readers and tags; and to acknowledge the proper execution of password-protected operations. In this paper, we present a practical implementation attack on a weak pseudorandom number generator (PRNG) designed specifically for EPC Gen2 tags. We show that it is feasible to eavesdrop a small amount of pseudorandom values by using standard EPC commands and using them to determine the PRNG configuration that allows to predict the complete output sequence. © 2010 Springer Science+Business Media, LLC.
KW - Attack implementation
KW - Eavesdropping
KW - EPC Gen2
KW - PRNG
KW - RFID
KW - Security
U2 - 10.1007/s11277-010-0187-1
DO - 10.1007/s11277-010-0187-1
M3 - Article
SN - 0929-6212
VL - 59
SP - 27
EP - 42
JO - Wireless Personal Communications
JF - Wireless Personal Communications
IS - 1
ER -