A practical implementation attack on weak pseudorandom number generator designs for EPC Gen2 tags

Joan Melià-Seguí, Joaquin Garcia-Alfaro, Jordi Herrera-Joancomartí

Producción científica: Contribución a una revistaArtículoInvestigaciónrevisión exhaustiva

22 Citas (Scopus)

Resumen

The Electronic Product Code Generation 2 (EPC Gen2) is an international standard that proposes the use of Radio Frequency Identification (RFID) in the supply chain. It is designed to balance cost and functionality. As a consequence, security on board of EPC Gen2 tags is often minimal. It is, indeed, mainly based on the use of on board pseudorandomness, used to obscure the communication between readers and tags; and to acknowledge the proper execution of password-protected operations. In this paper, we present a practical implementation attack on a weak pseudorandom number generator (PRNG) designed specifically for EPC Gen2 tags. We show that it is feasible to eavesdrop a small amount of pseudorandom values by using standard EPC commands and using them to determine the PRNG configuration that allows to predict the complete output sequence. © 2010 Springer Science+Business Media, LLC.
Idioma originalInglés
Páginas (desde-hasta)27-42
PublicaciónWireless Personal Communications
Volumen59
N.º1
DOI
EstadoPublicada - 1 jul 2011

Huella

Profundice en los temas de investigación de 'A practical implementation attack on weak pseudorandom number generator designs for EPC Gen2 tags'. En conjunto forman una huella única.

Citar esto