Formal Analysis and Verification for an Ultralightweight Authentication Protocol RAPP of RFID
Radio Frequency Identification (RFID) technique, as the core of Internet of Things, is facing security threats. It is critical to protect information security in RFID system. Ultralightweigh authentication protocols are an important class of RFID lightweight authentication protocols. RAPP is a recently proposed ultralightweight authentication protocol, which is different from any other existing protocols due to the use of permutation. Formal methods are vital for ensuring the security and reliability of software systems, especially safety-critical systems. A protocol abstract modeling method is presented to build abstract interaction model of RAPP which can be formalized by extracting interaction features. Due to the complexity of fundamental cryptograph operations in RAPP, the proposed method overcomes the limitation which is inconvenient to discuss security of RAPP directly with formal method. Using SPIN, authenticity and consistency of RAPP properties is verified. Analysis and verification result shows that RAPP is vulnerable against desynchronization attack. The proposed modeling method above has great significance in formal analysis of similar ultralightweight authentication protocols of RFID.
KeywordsRFID authentication protocol RAPP Model checking Protocol abstract modeling Desynchronization attack
This work is supported by National Natural Science Foundation of China (NSFC) under grant of No. 61163005 and 61562026, the Natural Science Foundation of Jiangxi Province of China under grant of No. 20161BAB202063, and the Foreign Science Technology Cooperation Project of Jiangxi Province (No. 20151BDH80005).
- 1.Bruce, N., Kim, H., Kang, Y., Lee, Y., Lee, H.: On modeling protocol-based clustering tag in RFID systems with formal security analysis. In: 2015 IEEE 29th International Conference on Advanced Information Networking and Applications (AINA), pp. 498–505 (2015). doi: 10.1109/AINA.2015.227
- 2.Qian, Q., Jia, Y.L., Zhang, R.: A lightweight RFID security protocol based on elliptic curve crytography. Int. J. Netw. Secur. 18(2), 354–361 (2016)Google Scholar
- 3.López, P.P., Castro, D.D.J.C.H., Garnacho, D.D.A.R.: Lightweight cryptography in radio frequency identification (RFID) systems. Computer Science Department, Carlos III University of Madrid (2008)Google Scholar
- 5.Peris-Lopez, P., Hernandez-Castro, J.C., Tapiador, J.M.E., Ribagorda, A.: Advances in ultralightweight cryptography for low-cost RFID tags: Gossamer protocol. In: Chung, K., Sohn, K., Yung, M. (eds.) WISA 2008. LNCS, vol. 5379, pp. 56–68. Springer, Heidelberg (2009). doi: 10.1007/978-3-642-00306-6_5 CrossRefGoogle Scholar
- 13.Qingling, C., Yiju, Z., Yonghua, W.: A minimalist mutual authentication protocol for RFID system & BAN logic analysis. In: ISECS International Colloquium on Computing, Communication, Control, and Management, CCCM 2008, vol. 2, pp. 449–453. IEEE (2008). doi: 10.1109/CCCM.2008.305
- 15.Yuan, G., Long, S.: Formal verification of RFID protocols using nuXmv. In: 2016 10th IEEE International Conference on Anti-counterfeiting, Security, and Identification (ASID), pp. 58–62. IEEE (2016). doi: 10.1109/ICASID.2016.7873917
- 16.Bagheri, N., Safkhani, M., Peris-Lopez, P., Tapiador, J.E.: Cryptanalysis of RAPP, an RFID authentication protocol. IACR Cryptology ePrint Archive, p. 702 (2012)Google Scholar
- 17.Shao-hui, W., Zhijie, H., Sujuan, L., Dan-wei, C.: Security analysis of RAPP an RFID authentication protocol based on permutation. College of computer, Nanjing University of Posts and Telecommunications, Nanjing, 210046 (2012)Google Scholar
- 19.Bruce, N., Kim, H., Kang, Y., Lee, Y., Lee, H.: On modeling protocol-based clustering tag in RFID systems with formal security analysis. In: 2015 IEEE 29th International Conference on Advanced Information Networking and Applications (AINA), pp. 498–505. IEEE (2015). doi: 10.1109/aina.2015.227