Abstract
LMAP++ is an ultra-lightweight mutual authentication protocol designed for resource-constrained system such as RFID. The protocol is designed using only logical operator XOR and modular 296 addition. In this paper, a passive attack on LMAP++ protocol is given after constructing the distinguisher for the random numbers used in the protocol. The attack shows the protocol cannot resist passive attack, and after eavesdropping about 480 authentication messages, the adversary can deduce the static identifier and two secrets with high probability.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Preview
Unable to display preview. Download preview PDF.
References
Juels, A.: RFID Security and Privacy: A Research Survey. IEEE Journal on Selected Areas in Communications 24(2), 381–394 (2006)
Yuan, S.-g., Dai, H.-y., Lai, S.-l.: RFID authentication protocol based on Hash functions. Computer Engineering 34(12), 141–143
Sadighian, A., Jalili, R.: Afmap: Anonymous forward-secure mutual authentication protocols for RFID systems. In: The Third IEEE International Conference on Emerging Security Information, Systems and Technologies (SECURWARE 2009), pp. 31–36 (2009)
Vajda, I., Buttyan, L.: Light weight authentication protocols for low-cost RFID tags. In: Proceedings of Workshop on Security in Ubiquitous Computing (2003), http://www.hit.bme.hu/~buttyan/publications/VajdaB03suc.pdf
Juels, A.: Minimalist Cryptography for Low-Cost RFID Tags. In: Blundo, C., Cimato, S. (eds.) SCN 2004. LNCS, vol. 3352, pp. 149–164. Springer, Heidelberg (2005)
Peris-Lopez, P., Hernandez-Castro, J.C., Estevez- Tapiador, J., Ribagorda, A.: LMAP: A real lightweight mutual authentication protocol for low-cost RFID tags. In: Proceedings of the 2nd Workshop on RFID Security (2006), http://events.iaik.tugraz.at/RFIDSec06/Program/papers/013-LightweightMutualAuthentication.pdf
Li, T., Wang, G.: SLMAP - A secure ultra-lightweight RFID mutual authentication protocol. In: Chinacrypt 2007, pp. 19–22 (2007)
Li, T., Wang, G.: Security Analysis of Two ultra-Lightweight RFID Authentication Protocols. In: 22 IFIP International Information Security and Privacy, South Africa, pp. 65–78 (2007)
Barasz, M., Boros, B., Ligeti, P., et al.: Breaking LMAP. In: Proc. of RFIDSec 2007, pp. 11–16 (2007)
Wang, S., Zhang, W.-w.: Passive attack on SLMAP authentication protocol. Journal of Nanjing University of Posts and Telecommunications (submitted)
Li, T.: Employing lightweight primitives on low-cost rfid tags for authentication. In: VTC Fall, pp. 1–5 (2008)
Bagheri, N., Safkhani, M., et al.: Security Analysis of LMAP++, an RFID Authentication Protocol, http://www.eprint.iacr.org/2011/193.pdf
Chien, H.-Y.: SASI: A New Ultra-lightweight RFID Authentication Protocol Providing Strong Authentication and Strong Integrity. IEEE Transactions on Dependable and Secure Computing 4(4), 337–340 (2007)
Peris-Lopez, P., Hernandez-Castro, J.C., Estevez- Tapiador, J., Ribagorda, A.: Advances in Ultralightweight Cryptography for Low-Cost RFID Tags: Gossamer Protocol. In: Chung, K.-I., Sohn, K., Yung, M. (eds.) WISA 2008. LNCS, vol. 5379, pp. 56–68. Springer, Heidelberg (2009)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Wang, Sh., Zhang, Ww. (2011). Passive Attack on RFID LMAP++ Authentication Protocol. In: Lin, D., Tsudik, G., Wang, X. (eds) Cryptology and Network Security. CANS 2011. Lecture Notes in Computer Science, vol 7092. Springer, Berlin, Heidelberg. https://doi.org/10.1007/978-3-642-25513-7_14
Download citation
DOI: https://doi.org/10.1007/978-3-642-25513-7_14
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-642-25512-0
Online ISBN: 978-3-642-25513-7
eBook Packages: Computer ScienceComputer Science (R0)