|
|
|
|
cryptanalysis of r2ap, an ultralightweight authentication protocol for rfid
|
|
|
|
|
|
|
|
نویسنده
|
safkhani masoumeh
|
|
منبع
|
journal of electrical and computer engineering innovations - 2018 - دوره : 6 - شماره : 1 - صفحه:107 -114
|
|
چکیده
|
To overcome the security flaw of rapp authentication protocol, zhuang et al. proposed a novel ultralightweight rfid mutual authentication protocol, called r2ap. in this paper, we first propose a new desynchronization attack against this protocol that succeeds with the probability almost 1 and requires an adversary to initiate 1829 sessions of the protocol with the tag. on the other hand, the protocol updates the tag and the reader secretes to provide the tag holder privacy. however, it is shown that a passive adversary who eavesdrops only two sessions of the protocol can trace the tag with the probability of 0.921. in addition, passive attack for which the adversary can extract the secret id of the tag is presented assuming that the adversary eavesdropped 128 sessions of the protocol, its success probability would be 0.387. to extract the secret id, linear cryptanalysis is used, which is a tool mostly for attack block ciphers.
|
|
کلیدواژه
|
rfid ,authentication ,r2ap ,linear attack ,traceability attack ,secret disclosure attack ,desynchronization attack
|
|
آدرس
|
shahid rajaee teacher training university, faculty of computer engineering, computer engineering department, iran
|
|
پست الکترونیکی
|
safkhani@sru.ac.ir
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Authors
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|