Cargando…
IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function”
With the exponential increase of Internet of things (IoT) connected devices, important security risks are raised as any device could be used as an attack channel. This preoccupation is particularly important with devices featuring limited processing power and memory capabilities for security purpose...
| Autores principales: | , , , |
|---|---|
| Formato: | Online Artículo Texto |
| Lenguaje: | English |
| Publicado: |
MDPI
2018
|
| Materias: | |
| Acceso en línea: | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6308613/ https://www.ncbi.nlm.nih.gov/pubmed/30558323 http://dx.doi.org/10.3390/s18124444 |
| _version_ | 1783383230193336320 |
|---|---|
| author | Bendavid, Ygal Bagheri, Nasour Safkhani, Masoumeh Rostampour, Samad |
| author_facet | Bendavid, Ygal Bagheri, Nasour Safkhani, Masoumeh Rostampour, Samad |
| author_sort | Bendavid, Ygal |
| collection | PubMed |
| description | With the exponential increase of Internet of things (IoT) connected devices, important security risks are raised as any device could be used as an attack channel. This preoccupation is particularly important with devices featuring limited processing power and memory capabilities for security purposes. In line with this idea, Xu et al. (2018) proposed a lightweight Radio Frequency Identification (RFID) mutual authentication protocol based on Physical Unclonable Function (PUF)—ensuring mutual tag-reader verification and preventing clone attacks. While Xu et al. claim that their security protocol is efficient to protect RFID systems, we found it still vulnerable to a desynchronization attack and to a secret disclosure attack. Hence, guidelines for the improvements to the protocol are also suggested, for instance by changing the structure of the messages to avoid trivial attacks. In addition, we provide an explicit protocol for which our formal and informal security analysis have found no weaknesses. |
| format | Online Article Text |
| id | pubmed-6308613 |
| institution | National Center for Biotechnology Information |
| language | English |
| publishDate | 2018 |
| publisher | MDPI |
| record_format | MEDLINE/PubMed |
| spelling | pubmed-63086132019-01-04 IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” Bendavid, Ygal Bagheri, Nasour Safkhani, Masoumeh Rostampour, Samad Sensors (Basel) Article With the exponential increase of Internet of things (IoT) connected devices, important security risks are raised as any device could be used as an attack channel. This preoccupation is particularly important with devices featuring limited processing power and memory capabilities for security purposes. In line with this idea, Xu et al. (2018) proposed a lightweight Radio Frequency Identification (RFID) mutual authentication protocol based on Physical Unclonable Function (PUF)—ensuring mutual tag-reader verification and preventing clone attacks. While Xu et al. claim that their security protocol is efficient to protect RFID systems, we found it still vulnerable to a desynchronization attack and to a secret disclosure attack. Hence, guidelines for the improvements to the protocol are also suggested, for instance by changing the structure of the messages to avoid trivial attacks. In addition, we provide an explicit protocol for which our formal and informal security analysis have found no weaknesses. MDPI 2018-12-15 /pmc/articles/PMC6308613/ /pubmed/30558323 http://dx.doi.org/10.3390/s18124444 Text en © 2018 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/). |
| spellingShingle | Article Bendavid, Ygal Bagheri, Nasour Safkhani, Masoumeh Rostampour, Samad IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” |
| title | IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” |
| title_full | IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” |
| title_fullStr | IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” |
| title_full_unstemmed | IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” |
| title_short | IoT Device Security: Challenging “A Lightweight RFID Mutual Authentication Protocol Based on Physical Unclonable Function” |
| title_sort | iot device security: challenging “a lightweight rfid mutual authentication protocol based on physical unclonable function” |
| topic | Article |
| url | https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6308613/ https://www.ncbi.nlm.nih.gov/pubmed/30558323 http://dx.doi.org/10.3390/s18124444 |
| work_keys_str_mv | AT bendavidygal iotdevicesecuritychallengingalightweightrfidmutualauthenticationprotocolbasedonphysicalunclonablefunction AT bagherinasour iotdevicesecuritychallengingalightweightrfidmutualauthenticationprotocolbasedonphysicalunclonablefunction AT safkhanimasoumeh iotdevicesecuritychallengingalightweightrfidmutualauthenticationprotocolbasedonphysicalunclonablefunction AT rostampoursamad iotdevicesecuritychallengingalightweightrfidmutualauthenticationprotocolbasedonphysicalunclonablefunction |