RFID Guardian: A Battery-Powered Mobile Device for RFID Privacy Management
RFID tags are tiny, inexpensive, inductively powered computers that are going to replace bar codes on many products, but which have many other uses as well. For example, they will allow smart washing machines to check for incompatible clothes (e.g., white shirts and red socks) and smart refrigerators to check for milk that is too old to be consumed. Subdermal tags with medical information are already being implanted in animals and people. However, a world in which practically everything is tagged and can be read at a modest distance by anyone who wants to buy an RFID reader introduces serious security and privacy issues. For example, women walking down the street may be effectively broadcasting the sizes of their RFID-tagged bras and medical data without realizing it. To protect people in this environment, we propose developing a compact, portable, electronic device called an RFID Guardian, which people can carry with them. In the future, it could be integrated into PDAs or cell phones. The RFID Guardian looks for, records, and displays all RFID tags and scans in the vicinity, manages RFID keys, authenticates nearby RFID readers, and blocks attempted accesses to the user’s RFID tags from unauthorized readers. In this way, people can find out what RFID activity is occuring around them and take corrective action if need be.
KeywordsAccess Control Access Control Mechanism Security Primitive Lightweight Authentication Protocol Hash Lock
Unable to display preview. Download preview PDF.
- 1.c’t magazine, Bauanleitung fur einen simplen rfid-detektor, no. 9 (2004)Google Scholar
- 2.EPCglobal, 13.56 MHz ISM band class 1 radio frequency (RF) identification tag interface specificationGoogle Scholar
- 5.Finkenzeller, K.: RFID Handbook: Fundamentals and applications in contactless smart cards and identification. John Wiley & Sons, Ltd., Chichester (2003)Google Scholar
- 6.Gaubatz, G., Kaps, J.-P., Ozturk, E., Sunar, B.: State of the art in publickey cryptography for wireless sensor networks. In: Proceedings of the Second IEEE International Workshop on Pervasive Computing and Communication Security (2005)Google Scholar
- 7.Hennig, J.E., Ladkin, P.B., Sieker, B.: Privacy enhancing technology concepts for RFID technology scrutinised, Research Report RVS-RR-04-02, University of Bielefeld, D-33501 Bielefeld, Germany (October 2004)Google Scholar
- 8.Juels, A.: Minimalist cryptography for low-cost RFID tags. In: The Fourth International Conference on Security in Communication Networks, September 2004. LNCS. Springer, Heidelberg (2004)Google Scholar
- 9.Juels, A., Rivest, R.L., Szydlo, M.: The blocker tag: Selective blocking of RFID tags for consumer privacy. In: Proceedings of the 10th ACM Conference on Computer and Communications Security. ACM Press, New York (2003)Google Scholar
- 10.Redemske, R.: Tools for RFID testing and measurement (2005)Google Scholar
- 11.Rieback, M.R., Crispo, B., Tanenbaum, A.S.: Keep on blockin’ in the free world: Personal access control for low-cost RFID tags. In: 13th International Workshop on Security Protocols (April 2005)Google Scholar
- 12.Vajda, I., Buttyán, L.: Lightweight authentication protocols for lowcost RFID tags. In: Second Workshop on Security in Ubiquitous Computing (October 2003)Google Scholar