Title

A proposed formula for comparing kill password effectiveness in single password RFID systems

Document Type

Conference Proceeding

Publisher

ECU Security Research Insitute

Faculty

Faculty of Computing, Health and Science

School

School of Computer and Security Science

RAS ID

14875

Comments

This article was originally published as: Bolan, C. M. (2012). A proposed formula for comparing kill password effectiveness in single password RFID systems. Proceedings of The 10th Australian Information Security Management Conference. (pp. 117-124). Western Australia. Perth, Western Australia. ECU Security Research Institute. Original article available here.

Abstract

The Electronic Product Code standard for RFID systems plays a significant role in worldwide RFID implementations. A feature of the RFID standards has been the RFID Kill command which allows for the "permanent" destruction of an RFID tag through the issuing of a simple command. Whilst the inclusion of this command may be vital for user privacy it also opens up significant avenues for attack. Whilst such attacks may be well documented there has been little to no discussion of the efficacy of the differing mitigation approaches taken. A simple formula to calculate the full timing of such an attack on differing RFID setups is presented. The formula allows for users to model the effect that altering such aspects as timeout or transmission response time will have on RFID security.

DOI

10.4225/75/57b55b44cd8dc

Access Rights

free_to_read

Share

 
COinS