Sage Journals: Discover world-class research

Abstract

The prevalence of Radio Frequency Identification (RFID) technology requires Privacy-Preserving Authentication (PPA) protocols to prevent privacy leakage during authentication. Existing PPA protocols employ the per-tag authentication, in which the reader has to sequentially authenticate the tags within the detecting region. Such a processing pattern becomes a bottleneck in current RFID enabled systems, especially for those batch-type processing applications. In this paper, we propose an efficient authentication protocol, which leverages the collaboration among multiple tags for accelerating the authentication speed. We also find that the collision, usually being considered as a negative factor, is helpful media to enable collaborative authentication among tags. Our protocol, termed as Multiple-tags privacy-preserving Authentication Protocol (MAP), authenticates a batch of tags concurrently with strong privacy and high efficiency. The analytical and simulation results show that the efficiency of MAP is better than O( $\log N$ ) and asymptotically approaches O(1).

1. Introduction

RFID technology has been involved in many daily applications [1]. RFID tags can be embedded in passports, ID cards, credit cards, and logistical labels to perform remote identification, as well as facilitate applications such as device-free activity monitoring [2] and fast inventory [3]. RFID tags usually contain or relate to sensitive information of the tag owners or carriers. If the sensitive information on a tag is exposed, the privacy of the tag holder will be jeopardized. Recently, Privacy-Preserving Authentication (PPA) protocols [4–6] are proposed to enable authentication for tags without leaking private information. Generally, each tag shares some secrets with the reader. During authentication, the reader interrogates a tag with a nonce. The tag responds with a message computed with the shared secrets and the nonce to authenticate itself to the reader. Upon this response, the reader searches in the backend database to find a match record for the tag and determine the validity of the tag. If the tag is legitimate, the reader emits a message to authenticate itself to the tag. Utilizing cryptographic functions and nonces, PPA protocols can strengthen privacy protection.

Most PPA approaches are designed for the per-tag scenario, where a reader can only authenticate one tag at each time. Due to cost concern, an RFID tag is usually designed to be extremely resource limited, even with less power than in sensor-based data collection applications [7]. Thus, the tag cannot afford complex cryptographic functions, such as asymmetric cryptographic functions. Thus, current RFID tags usually adopt relatively low-cost cryptographic algorithms, for example, the lightweight hash functions [8] or HB protocols [9], to perform the authentication. However, it is proven that a large system with strong indistinguishable privacy and constant complexity requires public key cryptography in [10], where the indistinguishable privacy (ind-privacy) means that none can link a tag and its behavior without learning its internal states. The proof also implies that the authentication complexity of PPA protocols is at least $O (N)$ if utilizing symmetric cryptographic functions to achieve strong privacy, where N is the number of tags in the system. As a result, existing PPA protocols, although achieving $O (\log N)$ or even $O (1)$ complexity, have the penalty of privacy degrading.

The above dilemma motivates us to change the perspective of enhancing privacy and improving efficiency for PPA protocols. Before presenting our protocol, we report the following important observations. (a)

Essentially, batch-type authentication pattern is more suitable for current RFID applications. Many RFID applications have urgent requirements for batch processing. For example, in port logistics applications, items are usually arranged in containers. The customs authorities need to check or even real-timely monitor the cargos to avoid hiding of dangerous goods. It would be impractical and time consuming to open the containers and authenticate the goods one by one. What is more, the tags on goods may have sensitive business information unwilling to be leaked. These needs also arise when express companies deliver valuable goods, where privacy leakage may cause reputation defamation of the customers. If batch-type PPA protocols are available, the urgent needs of efficient and private authentication can be satisfied.

(b)

When facing multiple tags, an RFID reader needs an anticollision process for communicating and dealing with each individual tag. Although being efficient, existing anticollision approaches cannot meet the requirement of privacy protection. Thus, the anticollision process should be performed anonymously. The result of the anonymized anticollision process, however, is helpless to the authentication process. Simply combining these two processes is inefficient for real RFID systems. In addition, a large number of operations are redundant for processing multiple tags if employing PPA protocols with the per-tag pattern, which also incurs a time waste, as will be shown in Section 3.1.

(c)

To resist the tracking attack, it is an intuitive way to employ multiple tags for confusing the attackers, as will be shown in Section 6.1. But we cannot fully utilize this feature if adopting the per-tag authentication pattern. If we can allow multiple tags to collaboratively protect themselves in PPA authentication, their privacy can be enhanced.

With the above observations, we introduce the concept of tag collaboration to RFID systems. A group of tags can cooperate to obtain better privacy protection. Furthermore, the collaboration can improve the efficiency of RFID authentication. We thereby propose a protocol to allow a batch of tags to collaboratively authenticate themselves to the reader. The protocol also meets the urgent need from real RFID applications. Our protocol, termed as Multiple tags privacy-preserving Authentication Protocol (MAP), has three major merits. (1)

MAP allows multiple tags to perform collaborative authentication. Particularly, we leverage the collision, which is commonly considered as a negative impact on RFID authentication, to perform collaboration. The collaboration accelerates the authentication process and hides each individual tag in the group.

(2)

MAP can effectively defend against compromising attack, in which an adversary tries to distinguish uncompromised tags based on the secret information obtained from compromised tags and provide strong privacy for multiple tags. We define a notion of m-strong-ind-privacy, as a refinement of ind-privacy, to evaluate the privacy strength of multiple tags' authentication. We prove that MAP can provide m-strong-ind-privacy. With this feature, the possibility that adversaries successfully break the indistinguishable privacy of tags is mitigated to be negligible. Therefore, our scheme provides strong privacy protection for practical RFID applications.

(3)

MAP also provides security and privacy protection in terms of confidentiality, cloning resistance, tracking resistance, timing-based attack resistance, and forward secrecy.

(4)

We present the theoretical upper bound, lower bound, and mean time cost of MAP's authentication efficiency. The results show that the authentication efficiency of MAP is better than $O (\log N)$ , which is the upper bound of most PPA approaches. In particular, the efficiency asymptotically approaches to $O (1)$ as the size of the tag set enlarges.

The rest of this paper is organized as follows. We discuss the related works in Section 2. In Section 3, we present our observations and motivations in authenticating multiple tags. We present the details in the design of MAP in Section 4. In Section 5, we discuss the performance of MAP. In Section 6, we present the security and privacy analysis. In Section 7, we provide some possible variants and improvements. At last, we conclude the work.

2. Related Works

2.1. Existing PPA Protocols and Their Limitations

Recently, Privacy-Preserving Authentication (PPA) protocols [4–6] are proposed to protect private information for RFID users. Those approaches aim to provide authentication for tags without leaking their private information, for example, the IDs stored in tags.

Early PPA protocols organize tags (or keys of the tags) in a linear structure [11, 12]. The linear structure results in $O (N)$ search efficiency, where N is the number of tags in the system. In large-scale systems that usually have millions of tags, however, $O (N)$ is insufficient to meet the need of fast processing. In [13], the authors employ a time-space tradeoff to provide $O (N^{2 / 3})$ search efficiency [14], but their work is still inefficient for large-scale systems. Later, a number of synchronization protocols are proposed to utilize precomputed records to accelerate the search procedure. In [15–17], the reader synchronizes with tags for fast authentication. Although the synchronization approaches can provide $O (1)$ search efficiency, they are vulnerable to desynchronization attacks. In such attacks, an adversary keeps interrogating a tag until the counter of the tag goes beyond a predefined threshold. In this case, the protocol would be improperly broken and the tag can be either unacceptable by legitimate readers or trackable to attackers. In [18], the authors propose a protocol which combines the synchronization method with exhaustive search. Such a combination can achieve efficient authentication with high privacy protection when the protocol utilizes synchronization method but suffers from $O (N)$ search efficiency when the synchronization method is not applicable.

Besides the linear organization, tags can be organized in a virtual tree-based structure [19, 20]. In a tree-based approach, each tag is attached to a leaf node. Each node in the tree keeps a random key. A tag holds the keys on the path from the root to the corresponding leaf node. During an authentication, the reader sends a query and the tag generates ciphers using its keys. Upon the ciphers, the reader performs a Depth-First-Search (DFS) in the key tree for locating a path with correct keys that can successfully match those ciphers, and hence authenticating the tag. In this way, the reader can authenticate a tag with an $O (\log N)$ search efficiency, where N is the number of tags. Tree-based protocols are efficient, but they suffer from the compromising attack. In tree-based approaches, compromising attack is the most serious threat because the tags share keys with each other. The adversary can recognize an uncompromised tag via some of the keys obtained from compromised tags. For example, in a binary tree-based system with 2²⁰ tags, compromising 20 tags can achieve a nearly 95.5% probability of successfully tracking a tag [21]. Many protocols are proposed to resist compromising attack by utilizing key-updating mechanism [21] or balancing the tradeoff between time, space, and privacy [22]. Those protocols, although mitigating the affect of compromising attacks, still cannot provide strong ind-privacy [23] with less than O(N) complexity. In [9], a protocol employing lightweight HB protocol instead of cryptographic hash function is proposed to achieve efficient authentication. This design, based on tree architecture, also suffers from compromising attack.

Existing PPA protocols are designed for authenticating a single tag at a time, which is suitable for per-tag scenario. The per-tag pattern, however, can hardly provide high efficiency and privacy simultaneously, which implies a need of adopting public key cryptography [10]. Unfortunately, the adoption of public key cryptography is prohibitively expensive for most tags due to the capability and resource limitations. Some researchers suggest weaker privacy models for per-tag authentication [23, 24].

Recently, some works emerged dealing with multiple tags' identification and thus are related to this work [25–28]. Yang et al. [25] propose to aggregate the responses from a batch of tags on corresponding readers, and then the aggregated responses enable probabilistic verification for the batch of tags. Bianchi [26] extends this approach and employs Bloom Filter to achieve a more general framework. These two works focuses on the reader-to-server process procedure, while our approach focus on the searching process for authenticating tags with privacy concern. Zheng and Li [27] propose a fast tag searching protocol which is efficient and scalable for multiple tags. However, this work focuses on tag identification other than authentication. Sheng and Tan [28] study the group authentication problem with heterogeneous RFID network. In this work, more advanced computational RFID tags are introduced helping regular tags to be authenticated to the reader.

2.2. Existing Anticollision Algorithms and Limitations

On the other hand, many anticollision algorithms, such as [29–32], have been proposed to arbitrate collisions of multiple tags. There are two major categories of anticollision algorithms, framed-slot-based approaches (also known as ALOHA-based approaches), and tree-based approaches. In an ALOHA-based approach, a reader first sends query command claiming how many slots in a detecting frame. Then each tag randomly selects a slot and transmits the ID within the chosen slot. In some slots, a collision may inevitably happen. The reader will repeatedly launch the detecting process until every tag can be identified without collisions. The tree-based anticollision protocols allow the reader to actively declare a filter. According to the filter, a set of tags are required to report their IDs in a slot, and others keep silent. In this way, the reader can decode responses and identify tags. In [29], historical information obtained from the last identification process is used in current identification process to decrease collisions. In [30, 31], a counter facilitates tags to evade collisions. The tags with a counter 0 respond the query and choose a value, for example, 0 or 1, for their counters in the next round if they collide. In [32], the authors propose a method for multiple readers to interrogate tags with near-optimal number of time slots.

Being effective in collision arbitration, the above designs, however, are unsuitable for protecting privacy, since the IDs are all in plain text during the anticollision process. Although the authors in [33] propose a pseudo-identifier to enable private anticollision, the pseudo IDs cannot help the reader to know the real ID of the tags. Thus the reader has to conduct another search procedure for locating the tags and getting their keys needed for authentication.

3. Observations and Motivation

3.1. Observations on Redundancy and Possible Treatments

In real RFID applications, it is common that a batch of tags is within the detecting region of a reader. The reader employs an anticollision process to distinguish those tags and then communicates with each of them for performing PPA authentication. Indeed, the combination of anticollision and authentication is inefficient.

Firstly, current PPA protocols are mainly designed for per-tag scenarios, where the searching process for different tags' keys contains many redundant computation and comparison operations. We demonstrate this fact via an example of a typical tree-based authentication protocol [20]. The keys are arranged in a key tree, as illustrated in Figure 1. The protocol is performed as shown in Figure 2. In Figure 1, $T_{1}$ 's keys are ( $k_{1, 0}$ , $k_{2, 1}$ , $k_{3, 2}$ ). $N_{R}$ and $N_{T}$ are two nonces, $r = N_{R} | | N_{T}$ is their conjunction, and $F_{k_{1,0}} (r)$ , $F_{k_{2,1}} (r)$ , and $F_{k_{3,2}} (r)$ are three hash values computed by using r and the three keys ( $k_{1,0}$ , $k_{2,1}$ , $k_{3,2}$ ) of $T_{1}$ , respectively. The hash value with the inputs of r and tag $T_{i}$ 's jth level key $k_{j}^{i}$ is $F_{k_{j}^{i}}^{} (r)$ . The reader then checks the hash values at level j to determine the jth branch that the tag lies in. Continuing this process, the reader can eventually identify and authenticate a tag. For the example in Figure 1, the reader will travel along the path root → $M_{1}$ → $M_{2}$ → $T_{1}$ to reach the leaf node $T_{1}$ . In this way, the reader can authenticate a tag with $O (\log N)$ efficiency.

Figure 1

Tree-based architecture.

Figure 2

Typical tree-based protocol.

In Figure 1, if $T_{1}$ and $T_{2}$ are both in the batch, the reader has to check ( $k_{1,0}$ , $k_{2,1}$ , $k_{3,2}$ ) to authenticate $T_{1}$ and check ( $k_{1,0}$ , $k_{2,1}$ , $k_{3,3}$ ) for $T_{2}$ . The checking for $k_{1,0}$ and $k_{2,1}$ is redundant. Previous works pay little attentions to the redundant operations in PPA authentication, because they mainly focus on the interaction between the individual tag and reader in the per-tag's authentication. If those redundant operations are well arranged, a nontrivial improvement on the authentication efficiency can be achieved in the batch-type process.

Secondly, the anticollision and authentication processes are generally conducted separately. In the existing works, the result of anticollision cannot be reused by the authentication process. Since existing anticollision mechanisms are designed without considering privacy protection, if a tag uses its real identifier in the anticollision process, the privacy will be broken. To meet the need of privacy, a tag can only use anonymized ID, for example, a pseudo-identifier, in the anticollision process. Nevertheless, the reader cannot leverage anonymized ID to locate the tag in the database in the PPA authentication process. If the anticollision information is generated and utilized without privacy leakage, the authentication process can be accelerated by reusing the result of anticollision.

3.2. Motivation

Based on above observations, our motivation is to enable the collaboration of multiple tags to concurrently achieve privacy-preserving collision arbitration and fast authentication.

We still employ the example in Figure 1 to explain our strategy. Consider two tags $T_{2}$ and $T_{3}$ . If simultaneously queried by a single reader with a timestamp r, they will emit messages for the reader's verification, as defined in the PPA protocols. These messages are computed using the r and their keys. According to the collision resistance property of cryptographic hash functions, the keys in different branches will produce different outputs. Thus, the two hash values will be different at some bits. We call those bits as different collision bits and their positions as collision positions. Indeed, these collisions provide us a possible way to privately differentiate tags.

In fact, a legitimate reader knows the keys of all tags; that is, it knows the keys at each branch in the key tree. This fact allows us to leverage precomputed results to accelerate the authentication. In Figure 1, with these known parameters, R can compute the possible hash values of $T_{2}$ and $T_{3}$ at level 1 in advance. Then R can compare these two hash values to obtain the possible positions of collision bits. R can just query the first collision bit to check if there is a difference. If a collision is detected at a virtual node in the binary key tree, each of its branches contains at least one tag in the detecting region. Figure 3 illustrates an example for $T_{2}$ and $T_{3}$ . At level $x - 1$ , R pre-computes hash values $h (k_{x}^{2}, r_{y}) = 10110$ and $h (k_{x}^{3}, r_{y}) = 10000$ , where $h (k_{x}^{j}, r_{y})$ is computed with $T_{j}$ 's xth key and the timestamp $r_{y}$ for this current sessionas inputs. The two hash values differ at the 3rd bit, then R sends out a query ( $r_{y}$ , 1, 3), where 1 denotes a value for collision bit at level $x - 2$ denoting node $M_{1}$ , and 3 is the collision position of level x. Upon the query, $T_{2}$ and $T_{3}$ compute responses, where (10110)₃ = 1, (10000)₃ = 0, and ${(v)}_{u}$ is the uth bit in v. Then $T_{3}$ responds “1” at time slot 0 and $T_{2}$ responds “1” at time slot 1. In this way, ONE bit transmission is adequate in each time slot for tag's response. At level x, R receives the responses and chooses a branch, which is related to slot 1 in this example. R also pre-computes and sends out the message to continue the depth-first-search. With this message, R moves to the node related to $T_{2}$ at next level and $T_{3}$ enters the “holding” status, in which $T_{3}$ will keep silent until its turn for any action. In this way, tags collaboratively conduct the anticollision. R can verify a tag's unique information when it moves to the leaf level to complete the authentication for this tag. Note that, even if a collision happens due to the existence of multiple tags in a slot, R can still conduct the anticollision process because R only requires the information that whether a branch contains tag instead of recovering individual responses from tags.

Figure 3

Anticollision with one bit.

Based on the above analysis, we find that combining private anticollision and authentication processes is feasible. In particular, the length of each tag's response message to the reader can be minimized to one bit.

4. MAP Design

4.1. Overview

The MAP has four components: system initialization, tags authentication, updating, and system maintenance.

MAP also initializes a virtual tree to organize keys for tags. Except the root, each virtual node in the tree contains a key. Each leaf node is assigned to a tag. Hence, the depth of the tree is $O (\log N)$ , where N is the total number of tags in the system. The reader maintains the key tree and keeps it secret.

To enable concurrent authentication for multiple tags, the authentication of MAP contains two phases, anticollision of multiple tags and authentication of individual tags. During the former phase, tags return one-bit responses to the reader. If more than one branch replies, the reader splits the entire tree (or a branch of the tree) into two subtrees (or subbranches). The reader then informs the tags on one subtree (or subbranch) to continue performing the MAP protocol, and the tags on the other subtrees (or subbranches) to hold.

For each subtree (or sub branch), the reader recursively executes the MAP protocol. When arriving at a leaf node in the virtual tree, MAP launches its authentication component, in which the reader mutually authenticates a tag.

After a successful mutual authentication between the reader and a tag, the keys of the tag will be updated and hence synchronized at both the tag and the reader. When updating the keys, MAP employs a cryptographic hash function with the current key and two random nonces as inputs to generate a new key.

In addition, MAP provides maintenance function to deal with tags' joining and leaving. Utilizing this component, the expired tags can also be renewed.

4.2. System Initialization

MAP employs a sparse tree, denoted as S, to initialize and maintain the keys for all tags. We use δ and d to denote the branching factor (2 for binary tree) and depth of S, respectively. For the simplicity of explanation, we choose the branching factor of 2. As shown in Figure 1, assuming there are N tags ${T_{i}}$ , $1 \leq i \leq N$ , and a reader R, in the RFID system, the reader R assigns N tags to N leaf nodes in S. In the key tree, each virtual node except the root contains a secret key. As a result, each tag has d keys, which form a path from the root of the responding leaf node in S. Initially, each key is randomly generated. The cryptographic hash function used by R and all tags is $h (\cdot)$ . A counter $c_{p}$ is stored in each tag, recording the anticollision sequence of the tag. Each tag $T_{i}$ also has a timestamp timestamp _i.

When initializing a tag $T_{i}$ , R first dispatches d keys to $T_{i}$ and sets the $c_{p}$ of $T_{i}$ to 0. R also sets the value of an internal counter $c_{0}$ = 0. The counters denote the “holding” sequence for later remounting. The keys are corresponding to a path from the root of S to the tag. For example, in Figure 1, the keys stored in tag $T_{1}$ are $k_{1,0}$ , $k_{2,1}$ , and $k_{3,2}$ . We denote the secret keys of $T_{i}$ as ( $k_{1}^{i}, k_{2}^{i}, \dots, k_{d}^{i}$ ). We define $k_{x}^{i}$ as the xth key of $T_{i}$ , corresponding to the depth x. R then sets the timestamp _i of $T_{i}$ to the current time.

4.3. Tags Authentication

The tags authentication of MAP is different from existing protocols. This component has two phases: anticollision of multiple tags and authentication of individual tags, as illustrated in Algorithm 1. On the reader side, the corresponding authentication is recursively executed on the key tree, as performing a depth-first-search (DFS). This is supported by the remount subcomponent.

Algorithm 1: Tags authentication in MAP.

//Anti-collision sub-component.

// At non-leaf depth $x - 1$ :

R randomly selects a branch, sends ( $r_{y}$ , $P_{C}$ , $V_{C}^{'}$ , $c_{y}$ );

R records ( $c_{y}, x - 1$ ), $c_{y}$ ++;

Tags which match $V_{C}^{'}$ choose time slot ${(h (k_{x}^{i}, r_{y}))}_{P_{C}}$

Tags not match wait and record $c_{y}$ in $c_{p}$ ;

Go to depth x;

// Authentication sub-component plus updating.

if $x = d$ // At leaf level:

R sends a timestamp $R_{1}$ to $T_{i}$ ;

$T_{i}$ checks $R_{1}$ and delay $t_{\max}$ /( $t h r e s h o l d - R_{1} + 1$ );

then replies ( $R_{2}$ , I), where $I = h (1, k_{d}^{i}, R_{1}, R_{2})$ ;

R computes a hash value for $T_{i}$ to check I;

if match

R accepts $T_{i}$ , and sends $M = h (2, k_{d}^{i}, R_{1}, R_{2})$ ;

R updates $k_{d}^{i}$ to $h (3, k_{d}^{i}, R_{1}, R_{2})$ ; // update R

else if not match

R sends M as a random number; // if match

$T_{i}$ gets M and computes a value to check M;

if M matches the computed value by $T_{i}$

$T_{i}$ accepts R;

$T_{i}$ updates $k_{d}^{i}$ to $h (3, k_{d}^{i}, R_{1}, R_{2})$ ; // update $T_{i}$

// Remount

R chooses the max $c_{y^{'}}$ stored, as $c_{\max}$ in ( $c_{y^{'}}$ , $p o s_{y^{'}}$ );

While exists such $c_{\max}$

R sends to tags ( $c_{\max}$ , $r_{y^{'}}$ , $P_{C}$ );

$T_{j}$ with $c_{\max}$ chooses slot $(h (k_{x^{'} + 1}^{j}, r_{y^{'}}))_{P_{C}}$ ;

R deletes the pair stored related to $c_{\max}$ ;

R continues to tags-authentication at

depth $x^{'} + 1$ in the sub-tree which roots at $p o s_{y^{'}}$ ;

4.3.1. Anticollision

The anticollision process starts from the root of the key tree. At each virtual node, the reader R conducts one round of communication with the tags in its detecting range. In the anticollision process, prior works usually require a tag to respond with the whole hash value computed using its key and ID. Instead, MAP requests the tag to reply with only ONE bit in each round of interaction, as illustrated in Figure 3. The requested bit is in the highest position of those bits that differ. Algorithm 1 illustrates the interactive communication. We use $P_{C}$ to denote the highest position of the possible collision bits and $V_{C}$ to denote the value of bit on this position. Since the outputs of cryptographic hash function in MAP are 64 bits long hash values, the length of $P_{C}$ can be 6 bits. The whole anticollision is executed in S as follows.

At each non leaf depth $x - 1$ , $1 \leq x \leq d - 1$ (for the root, $x = 1$ ), R has two tasks: choosing the branch denoted by $V_{C}^{'}$ for the anticollision process at level $x - 2$ , which is related to a node n at level $x - 1$ , and pre-computing $P_{C}$ using the keys on n's branches at level x. The value of $V_{C}^{'}$ is computed using the branch keys at depth $x - 1$ .

To choose a branch related at depth $x - 1$ , R randomly chooses a collision value $V_{C}^{'}$ based on the tags' responses, where $V_{C}^{'}$ is computed using the branch keys at depth $x - 1$ . To generate $P_{C}$ , R creates a timestamp $r_{y}$ , where y is an integer counter. R uses the keys of n's two children nodes to compute two hash values in the form of $h (k_{x}^{i}, r_{y})$ . R then compares these two hash values and records the highest position of the possible collision bits as $P_{C}$ . R then sends a query, with four parameters, $r_{y}$ , $V_{C}^{'}$ , $P_{C}$ , and $c_{y}$ , where $c_{y}$ is a counter.

Upon receiving the query, a tag $T_{i}$ , which responded in depth $x - 2$ , checks whether the timestamp is posterior to the one it holds. If yes, $T_{i}$ believes the query is a new request and checks if $V_{C}^{'}$ matches its last response. If yes, $T_{i}$ computes $V_{C}$ related to $P_{C}$ of level x and chooses the $V_{C}$ th time slot to respond with bit “1.” Otherwise, if not match, $T_{i}$ enters the “holding” status and stores $c_{y}$ in $c_{p}$ . If more than one branch replies, R also records the pair of $(c_{y}, n_{y})$ , where $n_{y}$ denotes the sibling node related to the $V_{C}^{'}$ at level $x - 1$ . If $T_{i}$ 's timestamp is larger than the one in the query, it randomly chooses a slot to respond with bit “1.”

The anticollision is an important part of authentication process, processing multiple tags at the same time. Based on this, MAP provides multiple tags style authentication, other than sequential authentication in which the authentication procedure for each tag does not overlap.

4.3.2. Authentication

When arriving at a leaf node, R starts the authentication subcomponent with $T_{i}$ . R and $T_{i}$ authenticate each other via this subcomponent. At this point, R has exploited the path from the root to the leaf node related to $T_{i}$ . The subcomponent includes four steps, as shown in Algorithm 1.

(1) R sends a query to $T_{i}$ with the timestamp $R_{1}$ .

(2) Upon this query, $T_{i}$ checks if $R_{1}$ is acceptable, and delay $t_{\max} / (threshold - R_{1} + 1)$ , where $t_{\max}$ is a predefined maximum delay and threshold, is a predefined maximum counter value. The value of $t_{\max}$ and threshold can be initialized empirically and adjusted in real application. Then $T_{i}$ replies with a random nonce $R_{2}$ and a hash value $I = h (1, R_{1}, R_{2}, k_{d}^{i})$ .

(3) R compares I to the hash value computed using corresponding key stored in the database. If the two hash values are identical, the reader accepts the tag as a legitimate one. Otherwise, R treats the tag as illegal. For a legal tag, the reader sends $M = h (2, R_{1}, R_{2}, k_{d}^{i})$ as an authentication message and then launches the updating component on the reader side. For an illegal tag, the reader only sends a random bit string with the same length of $h (\cdot)$ .

Note that the key in the leaf node may not match the corresponding tag's key. In this case, R has to search through the entire database to check if a matching key can be found. If such a key is found, the tag is accepted as legitimate. In this way, even a tag which is desynchronization attacked and thus has a big timestamp can also be authenticated. This can prevent attackers from distinguishing tags by whether they can be accepted.

(4) Upon M, $T_{i}$ computes the hash value based on the key stored in it. If they are matched, $T_{i}$ takes R as a legitimate one. $T_{i}$ then launches the updating on the tag side if R is legitimate.

A collision may happen when two tags choose an identical leaf node. At this time, there is more than one tag responding to the reader. Their signals will collide and cannot be correctly decoded. This can happen when a tag's random choices match the path of the other tag from root to leaf. The possibility is $2^{- d}$ where d is the depth of the key tree. While the possibility is negligible, we just take these collided messages as a random message and complete the routine processes of authentication and updating. As each tag has a unique leaf key which will be updated involving the random nonces during authentication, the possibility they collide again at the leaf node will still be negligible, we will process the colliding tags in the next round of entire tags-authentication process.

4.3.3. Remount

After authentication and updating of a tag, the whole tag authentication process is remounted for unprocessed tags according to their “holding” sequence in descending order. R finds out the max counter $c_{\max}$ in the $(c_{y^{'}}, {p o s}_{y^{'}})$ pairs stored in the reader, where $y^{'}$ is an integer. If there exists such a $c_{\max}$ , R computes $P_{C}$ for the branches of ${p o s}_{y^{'}}$ and starts the anticollision subcomponent in the subtree rooted at ${p o s}_{y^{'}}$ . To do this, the reader sends a recursive query command $r e c Q u e r y_{y^{'}}$ , with $c_{\max}$ , $P_{C}$ , and a new timestamp $r_{y^{'}}$ . Upon this query, each tag checks its internal counter $c_{p}$ . The tags that have a matched $c_{\max}$ respond with the corresponding $V_{C}$ . If no such a $c_{\max}$ exists, the reader terminates the current round of MAP and launches a new round. The reader iteratively performs the authentication process until all tags are processed or the number of rounds exceeds a predefined threshold threshold. In MAP, if there are some tags moving into the detecting region of R in current round, R will treat them as newly coming tags in the next round.

We illustrate the above process by using the example of authenticating $T_{1}$ , $T_{2}$ , and $T_{3}$ in Figure 1. Assume the reader chooses the left branch each time. Then there is no collision at depth 0, and the entire authentication procedure goes to the subtree rooted at the node related to $k_{1,0}$ at depth 1. The $V_{C}$ values related to keys at depth 2 will collide. R moves down to the left branch related to $k_{2, 0}$ and $k_{3,0}$ . R puts $T_{2}$ and $T_{1}$ in a holding state at this point. R also records the anticollision sequence and the node related to $k_{2,1}$ . As there is no more collision for $T_{3}$ , R completes the authentication of $T_{3}$ and goes back to the holding tags. R requests $V_{C}$ related to the keys at depth 3. The responses of $T_{2}$ and $T_{1}$ fall in different branches. Then R puts $T_{2}$ to holding state and authenticates $T_{1}$ . After that, the reader R authenticates $T_{2}$ .

4.4. Updating

After a successful mutual authentication between the tag and reader, the updating process follows, as illustrated in Algorithm 1. MAP only updates the leaf keys for multiple tags environments, where a leaf key is the key on the leaf node. There are two reasons. First, in our protocol the keys on nonleaf nodes are only used for navigation. Second, as analyzed in [22], updating keys for tags without changing the sharing relationship of keys among tags will not increase the difficulty for adversaries to successfully conduct compromising attacks. We also allow a tag to be renewed in the system maintenance component, as an updating method which also updates the tag's location and the corresponding keys in the virtual tree for better privacy.

R updates the keys for a tag after a successful authentication of the tag. At the corresponding leaf node, a new leaf key is generated as ${k_{d}^{i}}^{'} = h (3, R_{1}, R_{2}, k_{d}^{i})$ for $T_{i}$ . $T_{i}$ updates its leaf key only after a successful authentication of R by checking M.

4.5. System Maintenance

Users may want to insert, renew, or withdraw their tags. The system maintenance component deals with these requests.

If a new tag joins in the system, R initializes it by assigning it to an empty leaf node and generates the necessary keys for it. If a tag is withdrawn, R simply deletes the information on corresponding nodes related to the tag from S.

We also allow a tag to be renewed for better security and privacy. The permission is controlled by the manager. When a tag is permitted to be renewed, it is first withdrawn by the reader. Then the reader treats the tag like a new one and inserts it into the system. After being renewed, the new keys and related path in the key tree have no relation with the old ones.

5. Performance Analysis

In this section, we analyze the performance of MAP, considering both communication and computation costs. We theoretically analyze the costs and give the corresponding upper bound, lower bound, and mean value. We also launch a simulation. Then we compare the performance of MAP with two combination solutions.

5.1. Theoretical Analysis

In MAP multiple tags are authenticated concurrently; thus, we care about the average time costs derived from costs for all tags divided by the number of tags. In Section 5, when we mention a cost for each tag, we are meaning such an average time cost for each tag.

There are cases when the tags to be authenticated cover the least branches. Then paths of these tags cover a full subtree and a single path from the root of this subtree to the root of system tree S, as $T_{1}$ and $T_{2}$ in Figure 4(a). In these cases, arbitrations and hash computations are shared by the most tags. Thus it is possible that both the communication and compute cost for each tag are the least in these cases.

Figure 4

The different sharing scenarios.

Contrarily, when the tags cover the most branches, respecting no path being shared, as $T_{3}$ itself in Figure 4(b), then it is possible that both communication and compute cost for each tag are the largest, as arbitrations and hash computes are shared by the least tags.

For theoretic comprehensibility, we consider time cost for transferring hash values in communication cost. For compute cost, we consider only cost for computing hash values at both reader end and tag end. For the overall cost considering overheads, we give a simulation result in Section 5.2.

When tags cover the least branches, the minimum communication and compute cost are computed as follows. Theoretically, they are the lower bound of MAP in terms of time cost. Indeed, both of them are in O(1) complexity:

\begin{matrix} Com m_{\min} = t_{auth} + 2 t_{query} + t_{reply} - \frac{(t_{query} + t_{reply})}{N} \\ \approx t_{auth} + 2 t_{query} + t_{reply}, \\ {Comp}_{\min} = (2 - \frac{1}{N}) t_{t comp} + (3 - \frac{2}{N_{A}}) t_{r comp} \\ \approx 2 t_{t comp} + 3 t_{r comp}, \end{matrix}

(1)

where the d is the height of the system tree S, N is the number of tags in the system,

N_{A}

is the number of tags to be authenticated and

N_{A} = N

in this case,

t_{query}

is the time for a reader R to send out a query,

t_{reply}

is the time for each tag on both branches to reply their related 1 bit

V_{C}

values in the two time slots,

t_{auth}

is the time for a tag to send the hash value of its leaf node,

t_{t comp}

is the time for a tag to compute a hash value, and

t_{r comp}

is the time for R to compute a hash value. Note that we suppose sending the request commands needs the same time as the

t_{query}

When each tag covers the most branches, there is only one tag to be authenticated. Thus, we get the maximum costs. We denote the maximum communication and compute cost as ${Comm}_{\max}$ and ${Comp}_{\max}$ , respectively. The theoretical upper bound cost of MAP is given by

\begin{matrix} {Comm}_{\max} = t_{auth} + d \times t_{reply} + (d + 1) t_{query}, \\ {Comp}_{\max} = (d + 1) t_{r comp} + (2 d + 1) t_{r comp}, \end{matrix}

(2)

where d is the height of the system tree S. We can find that both the maximum costs have an

O (\log N)

complexity.

When tags cover all branches, supposing the cover probability is unique, we get the mean communication and computing costs as follows:

\begin{array}{l} {Comm}_{mean} = t_{auth} + t_{query} \\ + (t_{query} + t_{reply}) (2 + d - \log_{2} N_{A} - \frac{1}{N_{A}}) \\ \approx t_{auth} + t_{query} + (t_{query} + t_{reply}) \\ \times (2 + d - \log_{2} N_{A}), \\ {Comp}_{mean} = (2 + d - \log_{2} N_{A} - \frac{1}{N_{A}}) t_{t comp} \\ + 2 (1 + d - \log_{2} N_{A} - \frac{1}{N_{A}}) t_{r comp} \\ \approx (2 + d - \log_{2} N_{A}) t_{t comp} \\ + 2 (1 + d - \log_{2} N_{A}) t_{r comp} . \end{array}

(3)

Both Comm_mean and Comp_mean are strict monotonic functions of $N_{A}$ . When $N_{A}$ is big enough, they approach the constant value of $O (1)$ .

Considering the minimum authentication cost, without anticollision or updating, for a single tag in traditional tree-based protocol, it will need to compute, transmit, and verify at least $\log_{δ} N$ ciphers, where δ is the branching factor of the key tree. When the tag lies at the first-reach leaf, the cost is minimum with message length and computation times of about $\log_{δ} N$ . When the tag lies at the last-reach leaf, the cost is maximum with the computation times enlarged to about $δ \times \log_{δ} N$ . The average computation cost is about $(1 + δ) / 2 \times \log_{δ} N$ . Thus, MAP protocol outperforms the traditional tree-based protocol theoretically.

5.2. Simulation

We compared the average processing time of MAP to two simple combination solutions. Both the two solutions use the slot-count (Q) selection algorithm in EPC C1G2 UHF Air Interface Protocol Standard [31] for anticollision. The PPA protocols for these two solutions are the typical tree-based protocol [20] and RWP protocol [22] with O(1) complexity. In all protocols, both tag side and reader side employ SQUASH (SQUaring haSH), which is proposed by Shamir in [8], to compute hash values. SQUASH needs only several hundred gate equivalents (GEs) and is appropriate for low cost RFID tags. We consider the overall time cost including communication cost and search cost. The communication cost includes the cost for transmitting commands and data with overheads such as wait time, time out, frame sync, and preamble. Note that, compared to other kinds of wireless communication such as WiFi, the messages exchanged between the reader and tags are very short. Thus, the overheads are not negligible. All the command formats, data formats, and link timing follow the standard. In search cost, we consider compute cost for hash values by both reader and tags. We assume the reader can process 2²³ times 64 bits SQUASH in a second in average. For the tag, we assume it can process one time SQUASH in 67.75 us and 242 us. We make these two assumptions based on the link timing requirements specified in the standard.

In our simulation, the forward data rate is 40 Kbps and the backward data rate is 320 Kbps. We suppose that there are 2²⁰ tags in the system. We choose tags randomly and repeat the whole process 100 times for average results.

In Figure 5, we give the result for 1000 tags. The simulation result shows that MAP gains a better efficiency than typical tree-based protocol. The average time cost of tree-based protocols is about 2.2 times to 4.2 times that of MAP. The efficiency of MAP asymptotically approaches the RWP protocol with O(1) complexity as the size of the tag set approaches 1000. The simulation result is in accordance with the theoretical analysis. That is because in MAP computing and communication are shared between all tags. Moreover, during anticollision subcomponent tags respond with only 1 bit to save communication cost. That is why MAP outperforms typical tree-based protocol when tag size is small.

Figure 5

Comparison on performance for 1–1000 tags.

According to the performance result in [26], for 1000 tags in a system with 10⁵ tags at 40 Kbps forward rate, achieving 1% erroneous decision, the SEBA approach [25] needs 41 minutes, while the SEBA+ approach [26] needs about 4 minutes. Utilizing MAP, it takes about 1000 × 10^4.05 × 10⁻⁶ s = 11.22 s. which is less than SEBA and more than SEBA+. However, the result in [26] considers only the message transmission time, leaving out the nonnegligible computation time and the communication overheads such as wait time, time out, frame sync, and preamble. Moreover, MAP provides accurate authentication with no error probability. Thus, MAP is a good choice in performance for the authentication of multiple tags.

6. Security and Privacy Analysis

In this section, we analyze the security and privacy characters of MAP. Because our approach is tree based, we focus on resistance to compromising attack which has the most serious impact on conventional tree-based approaches [23]. We prove that MAP is m-strong-ind-private, showing that MAP satisfies strong privacy protection in multiple tags scenario. We also show the abilities of MAP in terms of confidentiality, cloning resistance, tracking resistance, timing-based attack resistance, and forward secrecy.

6.1. Compromising Attack

Compromising attack is the most effective way for crashing tree-based protocols. That is because tags organized in tree-based structures share keys with each other. When an adversary A compromises some tags and thus obtain their secret keys, A can deduce the secret keys of other tags. In conventional tree-based protocols, a legitimate reader splits a tag from other possible ones level by level and finally authenticates it on the leaf, using its keys on related levels. An adversary can also distinguish tags and further track them in this way with keys from the compromised tags. For detailed analysis, please refer to [14, 21].

Our analysis is based on the works in [10, 14, 18, 21, 23, 34]. The notion of strong ind-privacy defined in [23], which is equivalent to the destructive-privacy defined in [34], is very similar to the strong privacy provided by MAP, except that MAP focuses on privacy protection for multiple tags. The existing privacy models are designed for one-tag-one-reader authentication scheme and focus on distinguishability privacy between TWO tags only. They are not fit for the multiple tags scenario in MAP, where the reader cannot communicate to a tag before anticollision subcomponent.

We define a new model for multiple tags environments, including four oracles, Request(·, ·, ·), Send(·,·), Relay(·,·), and Compromise(·) to formulate the attacks to the tag sets and reader. Assume we have a tag set $N_{S}$ . Any attack on R or $N_{S}$ can be represented by calling on its oracles.

Request( $N_{S}, m_{1}, m_{3}$ ): A queries the tag set $N_{S}$ by a query message $m_{1}$ and receives the responses. Then A sends another message $m_{3}$ to $N_{S}$ , including the collision arbitration and R's authentication data.

Send(R, $m_{2}$ ): A sends a message $m_{2}$ , representing the tag set's reply and authentication messages, to R and receives a response.

Relay( $N_{S}$ , R): A relays the messages between $N_{S}$ and R. A can arbitrarily modify the messages from one side to another.

Compromise( $N_{C}$ ): A compromises tags in set $N_{C}$ and obtains their secret keys, where $N_{C}$ is a tag set A obtains. The compromised tags are broken and cannot be used any further.

The compromising attack on MAP, denoted by ${CA}_{A}^{MAP} [k_{0}, N_{A}]$ , is performed with the following steps.

Step 1.

The adversary A compromises $k_{0}$ tags and obtains their secret keys.

Step 2.

A chooses a target tag T that has not been compromised. A can query T or act as a man-in-the-middle between T and the reader R polynomial times. Note that A cannot compromise T. According to the secret keys A gains in Step 1, A can compute outputs of these keys and compare to them T's outputs. In this way A can determine which of T's keys equal to A's known keys.

Step 3.

The system gives a tag set $N_{S}$ with $N_{O}$ tags, including T. Then $N_{S}$ is divided into two subsets $N_{S, 1}$ and $N_{S, 2}$ . For the simplicity we assume each subset contains $N_{A}$ tags. Or else we can define the smaller set contains $N_{A}$ tags, which will not affect the result of analysis but complex the analysis process. A randomly picks a subset $N_{S, b}$ , where b = 0 or b = 1, and determines if T is in this subset. A can pick both subsets. If $N_{S, b}$ contains T, A can proceed tracking T by tracking $N_{S, b}$ , otherwise $N_{S, (1 - b)}$ . A can send queries to the tag set or act as a man-in-the-middle between the tag set and the reader R polynomial times, but cannot compromise those tags.

We denote

\begin{matrix} P_{MAP} = P_{r} [{CA}_{A}^{MAP} [k_{0}, N_{A}] = 1] \end{matrix}

(4)

as the possibility A definitely knows whether tag set

N_{S, b}

includes T. A succeeds if A definitely knows which tag set includes T. Then the possibility that A succeeds is

\begin{matrix} P_{MAP} = P_{r} [{CA}_{A}^{MAP} [k_{0}, N_{A}] = 1] = 1 - {(1 - P_{0})}^{2}, \end{matrix}

(5)

where

P_{0}

is the possibility that A succeeds in either subset in a system employing MAP.

Definition 1.

The advantage of adversary A in the compromising attack is defined as

\begin{matrix} {adv}_{A}^{MAP} (k_{0}, N_{A}) = | (P_{MAP} + \frac{1}{2} (1 - P_{MAP})) - \frac{1}{2} | = \frac{P_{MAP}}{2}, \end{matrix}

(6)

where the probability is the advantage of A correctly guess against randomly guess which subset T is in.

Definition 2 (M-strong $(ε, k_{0}, N_{A})$ -ind-privacy).

An RFID protocol PRO is m-strong( $ε, k_{0}, N_{A}$ )-ind-private if when $N_{A}$ approaches N, the advantage ${adv}_{A}^{PRO} (k_{0}, N_{A})$ is at most ε in polynomial time. Where $N_{A} < N$ , ε is an infinitesimal when N approaches infinity.

M-weak(ε, $k_{0}$ , $N_{A}$ )-ind-privacy is defined the same as m-strong $(ε, k_{0}, N_{A})$ -ind-privacy except that $k_{0}$ = 0.

The above two privacy notions can be simply denoted as m-strong-ind-privacy (MSIP) and m-weak-ind-privacy (MWIP), where the letter “m” is the abbreviation of multiple tags. When $N_{A}$ = 1, the MSIP (MWIP) equals the strong-privacy (weak-privacy) in Juels's model [23] and the destructive-privacy (weak-privacy) in Vaudenay's model [34]. At this time, the case of a tag lying in a set is identical to the case of the target tag being a particular tag in traditional privacy model with two tags. Thus, our multiple tags privacy model is a generalized version of existing privacy models [23, 34]. On the contrary, the existing privacy models are special cases of multiple tags privacy where each tag set has only one tag. Then, we can define 8 different levels of privacy, by generalizing Vaudenay's model for multiple tags scenarios, as illustrated in Figure 6.

Figure 6

The privacy levels.

The above model is dedicated for classifying the privacy protection in multiple tags scenarios. Intuitively, it is easier for a tag to hide in a set than to behavior indistinguishably to another tag. Thus, the above model is a model weaker than the privacy models for one-reader-one-tag scenarios.

However, if the authentication protocol does not take this advantage, then the protocol cannot provide better privacy in scenarios with multiple tags than in one-reader-one-tag scenarios, no matter how many tags are there to be authenticated. For example, in the OSK [12] protocol, one desynchronized tag cannot be accepted by a legitimate reader. Thus, a desynchronized tag can still be distinguished in a tag set, saying nothing of hiding in the set. As a result, the OSK method cannot provide m-strong-ind-privacy or m-weak-ind-privacy.

In the tree for MAP, when A is not aware of all keys in both branches, A does not know the $P_{C}$ and has to randomly guess one for navigation and conduct the searching process. When the guess fails, A sends out a position that has no collisions. Then A cannot split the tags. Only when A knows all the keys in the branches related to T, A can send out the correct $P_{C}$ and proceed on tracking. That is the main reason why MAP performs better than traditional tree-based protocols in defending against compromising attacks. In fact, the MAP protocol is m-strong-ind-private as will be proven in the bellowing.

Theorem 3.

The MAP protocol is MSIP private.

Proof.

We perform the compromising attack with MAP protocol as follows.

We denote tags in $N_{S, b}$ by $T^{'}$ . We denote keys in T and $T^{'}$ with ( $k e y_{0}, k e y_{1}, \dots, k e y_{d}$ ) and ( $k e y_{0}^{'}, k e y_{1}^{'}, \dots, k e y_{d}^{'}$ ), respectively, where d is the depth of the tree. Considering at level x where $k e y_{x}$ is in a subtree, we use $K_{x}$ to denote the set of known keys by A in this subtree, and $k_{x}$ to denote the number of keys in $K_{x}$ . And $k_{0}$ is the number of tags compromised. There are three cases to be considered at level x.

Case 1. A does not succeed in previous $x - 1$ levels, and there is exactly one key $k e y_{x}^{'}$ equal to $k e y_{x}$ . A definitely knows $N_{S, b}$ includes T. The possibility is

\begin{matrix} P_{r} (C_{x}^{1}) = \prod_{j = 0}^{δ - 1} (\frac{δ^{x - 1} k_{x} - j}{δ^{x} - j}) \times \frac{k_{x}}{δ} \times \frac{1}{δ^{x}} \times {(1 - \frac{1}{δ^{x}})}^{N_{A} - 1} . \end{matrix}

(7)

Case 2. A does not succeed in previous $x - 1$ levels, and there's no key $k e y_{x}^{'}$ equals to $k e y_{x}$ . A definitely knows that $N_{S, b}$ does not include T. The possibility is

\begin{matrix} P_{r} (C_{x}^{2}) = \prod_{j = 0}^{δ - 1} (\frac{δ^{x - 1} k_{x} - j}{δ^{x} - j}) \times \frac{k_{x}}{δ} \times {(1 - \frac{1}{δ^{x}})}^{N_{A}} . \end{matrix}

(8)

Case 3. A does not succeed in previous $x - 1$ levels, and more than one key $k e y_{x}^{'}$ equals $k e y_{x}$ . In this case, A fails at level x and should move to level $x + 1$ . The possibility is

\begin{matrix} P_{r} (C_{x}^{3}) = \prod_{j = 0}^{δ - 1} (\frac{δ^{x - 1} k_{x} - j}{δ^{x} - j}) \times \frac{k_{x}}{δ} - P_{r} (C_{x}^{1}) - P_{r} (C_{x}^{2}) . \end{matrix}

(9)

The overall probability of A definitely knows whether $N_{S, b}$ includes T is

\begin{array}{l} P_{0} = P_{r} (C_{1}^{1} \lor C_{1}^{2}) + \sum_{x = 2}^{d} (P_{r} (C_{x}^{1} \lor C_{x}^{2}) \times \prod_{y = 1}^{x - 1} P_{r} (C_{y}^{3})) \\ = {(1 - \frac{1}{δ})}^{N_{A} - 1} \frac{k_{1}}{δ} \prod_{j = 0}^{δ - 1} \frac{k_{1} - j}{δ - j} \\ + \sum_{x = 2}^{d} ({(1 - \frac{1}{δ^{x}})}^{N_{A} - 1} \frac{k_{x}}{δ} P (k e y_{x}) \\ \times \prod_{y = 1}^{x - 1} (P (k e y_{y}) \frac{k_{y}}{δ} (1 - {(1 - \frac{1}{δ^{y}})}^{N_{A} - 1}))),    \end{array}

(10)

where

\begin{matrix} P (k e y_{x}) = \prod_{j = 0}^{δ - 1} \frac{(δ^{x - 1} k_{x} - j) (δ - j)}{{(δ^{x} - j)}^{2}}, \\ k_{1} = δ (1 - {(1 - \frac{1}{δ})}^{k_{0}}), \\ k_{x} = δ (1 - {(1 - \frac{1}{δ})}^{g (k_{x})}), (2 \leq x \leq d), \\ g (k_{x}) = k_{0} \prod_{y = 1}^{x - 1} \frac{1}{k_{y}} . \end{matrix}

(11)

The possibility A succeeds in either subset is $P_{0}$ which is a monotonically decreasing function of $N_{A}$ , so is $P_{MAP}$ . The advantage of A is $P_{MAP}$ , which decreases exponentially to 0 as $N_{A}$ increases to be big enough.

Considering that $k_{x} \leq δ$ and $δ \geq 2$ , we have the following derivations:

\begin{array}{l} {(1 - \frac{1}{δ})}^{N_{A} - 1} \frac{k_{1}}{δ} \prod_{j = 0}^{δ - 1} \frac{k_{1} - j}{δ - j} \\ \leq {(\frac{1}{2})}^{N_{A} - 1} \frac{k_{1}}{δ} \frac{k_{1}}{δ} \frac{k_{1} - 1}{δ - 1} \\ \leq {(\frac{1}{2})}^{N_{A} - 1}, \\ \prod_{y = 1}^{x - 1} (P (k e y_{y}) \frac{k_{y}}{δ} (1 - {(1 - \frac{1}{δ^{y}})}^{N_{A} - 1})) \\ < \prod_{y = 1}^{x - 1} (P (k e y_{y}) \times 1 \times 1) \\ = \prod_{y = 1}^{x - 1} P (k e y_{y}) . \end{array}

(12)

Then, we have the following deduction:

\begin{array}{l} P_{0} < {(\frac{1}{2})}^{N_{A} - 1} \\ + \sum_{x = 2}^{d} ({(1 - \frac{1}{δ^{x}})}^{N_{A} - 1} \frac{k_{x}}{δ} P (k e y_{x}) \prod_{y = 1}^{x - 1} P (k e y_{y})) \\ < {(\frac{1}{2})}^{N_{A} - 1} + \sum_{x = 2}^{d} {(1 - \frac{1}{δ^{x}})}^{N_{A} - 1} \\ < {(\frac{1}{2})}^{N_{A} - 1} + d {(1 - \frac{1}{δ^{2}})}^{N_{A} - 1} . \end{array}

(13)

The right part of the inequality is a monotonically decreasing function of $N_{A}$ . For example, it can be deduced that $P_{0} < {(1 / 2)}^{N_{A} - 1} + d {(3 / 4)}^{N_{A} - 1}$ , when $δ = 2$ . Then, $P_{0}$ is an infinitesimal as $N_{A}$ approaches N, so is $P_{MAP}$ . According to Definition 2, MAP is m-strong-ind-private.

Assume a RFID system of 2²⁰ tags with $δ = 2$ and $d = 20$ . Figure 7 demonstrates possibilities A successfully tracks a tag by compromising 200 tags, employing MAP or tree-based protocol such as [20].

Figure 7

Comparisons on defending against compromising attack.

We can find that for both protocols the possibilities that A succeeds reduces when $N_{A}$ increases. For MAP, the possibility reduce rapidly, while for traditional balance tree-based PPA it reduces slowly. For MAP protocol, when $N_{A} > 8$ , $P_{MAP} < 0.05$ , saying A can definitely distinguish and know which tag set includes T with low possibility even the set size is small. This is an acceptable result as environments with at least 8 tags are common. Moreover, the successful tracking probability asymptotically approaches to 0 as the size of the tag set to be authenticated arises. For tree-based protocol, A always has a successful possibility larger than 0.8 with tag set size smaller than 200.

6.2. Confidentiality

In MAP, all information from a tag is sent as the value of a cryptographic hash function or a part of such a hash value. According to the preimage resistance property of cryptographic hash functions, the adversary cannot know the origin information.

6.3. Cloning Resistance

In cloning attack, an adversary records responses from a tag and replay them to fool legitimate readers. In MAP, the $V_{C}$ values are only used for navigation and each tag uses its unique leaf key for the final authentication. The tag generates the hash values of the leaf key with a timestamp from R and a nonce from the tag as inputs. Both the timestamp and the nonce are the session tokens of the conversation. Therefore, authentication messages from a given tag will change in different conversations due to the different session tokens. The navigation bits can be replayed; however, they cannot help to fool R because the adversary does not know the authentication message at the leaf node. The replayed messages cannot be acceptable by legitimate readers according to the protocol.

6.4. Tracking Resistance

In Section 6.1, we focus on tags' path keys and present that MAP can resist compromising attack in scenarios with multiple tags. For any leaf key, it uniquely belongs to an individual tag. The adversary A never knows a tag's leaf key unless compromising it. When performing authentication subcomponent, a tag computes a hash value with its leaf key and the session tokens. This authentication message varies each time, and A cannot link the messages to a tag without knowing its leaf key.

MAP resists against compromising attack in multiple tags scenarios. However, when a batch only has a few tags, $P_{MAP}$ is not negligible. According to the results shown in Figure 7, when the number of tags is larger than 8, the probability of multiple tags exposing to attackers will not exceed 0.05, which is acceptable for most RFID applications. Therefore, we recommend to select MAP when the number of tags is larger than 8, otherwise choosing time consuming per-tag authentication to prevent the tracking attack.

An adversary A may launch the Denial of Service (DoS) attack between a legitimate reader and tags. In this attack A firstly exhausts the timestamp in a tag. Then A can relay the tag's response to a legitimate reader to see if the tag is accepted and further track the tag by observing the result. This attack is not feasible to MAP because desynchronized tags can also be accepted employing MAP, as presented in Section 4.3.2. Besides, we recommend the system to thwart the response speed of the tags which are under attack. Then, a counter with an acceptable bit length is enough to avoid the timestamps of the tags run over a predefined threshold.

6.5. Timing-Based Attack Resistance

An adversary may time the processing cost of a tag to identify the status of this tag and further distinguish it from other tags [35]. This kind of attack is a new general attack which can even break the privacy of proven private RFID authentication protocols. MAP can defend against such attack. The reason is that the authentication process for each tag in MAP corresponds to the same procedure. From root to leaf, each branch selection corresponds to no sequential computation of tags. Instead, the tags do concurrent computation at each level. In this way, the observable behavior of each tag is hard to distinguish. The problem in traversing the traditional binary tree, which causes different searching cost, does not happen in MAP. On the other hand, the thwart method used in MAP does not raise rapid increase in the response. Thus, the thwarted tag's behavior is hard to distinguish, especially when the tag set is large and the predefined threshold is big enough.

6.6. Forward Secrecy

An adversary A can record the messages sent by R or tags. And A can compromise tags to obtain their current keys. Forward secrecy requires that the information in previous messages will never be revealed. In MAP, the leaf keys are updated after each successful authentication. The forward secrecy is thereby guaranteed. For the nonleaf keys, they are not used for data transfer but only for navigation. In addition, they will be updated when a tag is renewed. Thus, MAP does not update the nonleaf keys at each authentication and such a process does not damage the forward secrecy.

7. Possible Variants and Improvements

The storage requirement of MAP for a system larger than 2¹⁶ tags may be larger than 1 k bits. This cost is practical for nowadays RFID tags. For ultra-low storage, path keys can be computed employing SQUASH with the unique leaf key and identifier of the tag as inputs. This would decrease the storage requirement to $O (1)$ but double the average computation time. It can be easily deduced that the performance of MAP is still better than the tree-based protocol in large-scale systems.

MAP focuses on the interaction between tags and reader, as well as reader-server side search accelerating. On the other hand, the SEBA [25, 26] like protocols focuses on the reader-to-server communication, as well as the server side probabilistic verification. Thus, a possible future work is to combine and gain profit from both of the two styles of multiple tags protocols.

8. Conclusions and Future Work

In this work we propose a Multiple tags privacy-preserving Authentication Protocol, MAP, to authenticate multiple tags concurrently. By enabling anticollision functionality in authentication process, MAP eliminates the redundant efforts wasted in anticollision processes and authenticating tags. Tags in MAP respond concurrently with 1 bit to conduct the authentication for better privacy. MAP is m-strong-ind-private, which is a variant of ind-privacy we define for multiple tags scenarios. MAP can effectively mitigate the impact of compromising attack, in multiple tags scenarios, to an acceptable extent. Employing MAP, the successful tracking probability of adversaries for tag set larger than 8 is below 0.05 and will deduce rapidly to 0 as the size of the tag set enlarges. The efficiency of MAP is better than $O (\log N)$ and asymptotically approaches $O (1)$ as the number of tags in the tag set to be authenticated increases, as proven in theoretical analysis and shown in the simulation. The proposed protocol in our work, MAP, is dedicated for authenticating multiple tags. One prospective direction may be building protocols for both single tag and multiple tags to provide high efficiency and strong privacy at the same time.

Footnotes

Acknowledgments

The authors would like to thank Ling Zhu and Xingjing Wang for the efforts paid in coding for the simulations. This work is supported by Program for Changjiang Scholars and Innovative Research Team in University (IRT1078), the Key Program of NSFC-Guangdong Union Foundation (U1135002), National Natural Science Foundation of China (61303221 and 61373175), the Fundamental Research Funds for the Central Universities (K5051303021), and the Scientific Research Startup Foundation for Young Teachers of Donghua University (13D211205). Part of this work has been presented at IEEE International Conference on Mobile Ad-hoc and Sensor Systems (IEEE MASS), October 17–22, 2011, Valencia, Spain.

References

Roussos

Kostakos

RFID in pervasive computing: state-of-the-art and outlook

Pervasive and Mobile Computing 2009 5 1 110 131

2-s2.0-58649098157

10.1016/j.pmcj.2008.11.004

Liu

Chen

Pei

Chen

Zhao

Mining frequent trajectory patterns for activity monitoring using radio frequency tag arrays

Proceedings of the 5th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '07)

March 2007

White Plains, NY, USA

37 46

2-s2.0-34547638948

10.1109/PERCOM.2007.23

Qian

Ngan

Liu

Cardinality estimation for large-scale RFID systems

Proceedings of the 6th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '08)

March 2008

Hong Kong, China

30 39

2-s2.0-49149086533

10.1109/PERCOM.2008.77

Avoine

Bibliography on security and privacy in RFID systems

2013, http://www.avoine.net/rfid/download/bib/bibliography-rfid.pdf

Juels

RFID security and privacy: a research survey

IEEE Journal on Selected Areas in Communications 2006 24 2 381 394

2-s2.0-33144457479

10.1109/JSAC.2005.861395

Tsudik

A family of dunces: trivial RFID identification and authentication protocols

Privacy Enhancing Technologies 2007

Berlin, Germany

Springer

45 61 Lecture Notes in Computer Science

10.1007/978-3-540-75551-7_4

X. Y.

Mao

Tang

Wang

A delay-efficient algorithm for data aggregation in multihop wireless sensor networks

IEEE Transactions on Parallel and Distributed Systems 2011 22 1 163 175

2-s2.0-78649821231

10.1109/TPDS.2010.80

Shamir

SQUASH—a new MAC with provable security properties for highly constrained devices such as RFID tags

Fast Software Encryption 2008

Berlin, Germany

Springer

144 157 Lecture Notes in Computer Science

10.1007/978-3-540-71039-4_9

Halevi

Saxena

Halevi

Using HB family of protocols for privacy-preserving authentication of RFID tags in a population

Proceedings of the Workshop on RFID Security (RFIDSec '09)

2009

10.

Burmester

de Medeiros

Motta

Robust, anonymous RFID authentication with constant key-lookup

Proceedings of the ACM Symposium on Information, Computer and Communications Security (ASIACCS '08)

March 2008

Tokyo, Japan

283 291

2-s2.0-77952345634

10.1145/1368310.1368351

11.

Weis

S. A.

Sarma

S. E.

Rivest

R. L.

Engels

D. W.

Security and privacy aspects of low-cost radio frequency identification systems

Security in Pervasive Computing 2003 201 212 Lecture Notes in Computer Science

10.1007/978-3-540-39881-3_18

12.

Ohkubo

Suzuki

Kinoshita

Efficient hash-chain based RFID privacy protection scheme

Proceedings of the ACM Ubicomp Workshops

2004

13.

Henrici

Müller

Providing security and privacy in RFID systems using triggered hash chains

Proceedings of the 6th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '08)

March 2008

Hong Kong, China

50 59

2-s2.0-49149085742

10.1109/PERCOM.2008.67

14.

Avoine

Dysli

Oechslin

Reducing time complexity in RFID systems

Selected Areas in Cryptography 2005

Berlin, Germany

Springer

291 306 Lecture Notes in Computer Science

10.1007/11693383_20

15.

Henrici

Müller

Hash-based enhancement of location privacy for radio-frequency identification devices using varying identifiers

Proceedings of the 2nd IEEE Annual Conference on Pervasive Computing and Communications Workshops (PerCom '04)

March 2004

149 153

2-s2.0-2942625823

10.1109/PERCOMW.2004.1276922

16.

Juels

Minimalist cryptography for low-cost RFID tags (extended abstract)

Proceedings of the 4th International Conference on Security in Communication Networks (SCN '04)

September 2004

Amalfi, Italy

149 164

2-s2.0-23944476196

17.

Ren

Lou

A privacy-preserving lightweight authentication protocol for low-cost RFID tags

Proceedings of the Military Communications Conference (MILCOM '07)

October 2007

Orlando, Fla, USA

1 7

2-s2.0-47949110430

10.1109/MILCOM.2007.4454918

18.

Deng

R. H.

RFID privacy: relation between two notions, minimal condition, and efficient construction

Proceedings of the 16th ACM Conference on Computer and Communications Security (CCS'09)

November 2009

New York, NY, USA

54 65

2-s2.0-74049095938

10.1145/1653662.1653670

19.

Molnar

Soppera

Wagner

A scalable, delegatable pseudonym protocol enabling ownership transfer of RFID tags, selected areas in cryptography

Selected Areas in Cryptography 2005

Berlin, Germany

Springer

276 290 Lecture Notes in Computer Science

10.1007/11693383_19

20.

Dimitriou

A secure and efficient RFID protocol that could make big brother (partially) obsolete

Proceedings of the 4th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '06)

March 2006

Pisa, Italy

269 274

2-s2.0-33750353849

10.1109/PERCOM.2006.5

21.

Han

Liu

L. M.

Dynamic key-updating: privacy-preserving authentication for RFID systems

Proceedings of the 5th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '07)

March 2007

White Plains, NY, USA

13 22

2-s2.0-34547617482

10.1109/PERCOM.2007.13

22.

Yao

Han

Zhao

Liu

Randomizing RFID private authentication

Proceedings of the 7th Annual IEEE International Conference on Pervasive Computing and Communications (PerCom '09)

March 2009

Galveston, Tex, USA

2-s2.0-70349337026

10.1109/PERCOM.2009.4912773

23.

Juels

Weis

S. A.

Defining strong privacy for RFID

ACM Transactions on Information and System Security 2009 13 1 1 23

2-s2.0-72449181354

10.1145/1609956.1609963

24.

Liu

X.-Y.

Refresh: weak privacy model for RFID systems

Proceedings of the IEEE INFOCOM

March 2010

San Diego, Calif, USA

1 9

2-s2.0-77953302294

10.1109/INFCOM.2010.5462153

25.

Yang

Han

Liu

Identification-free batch authentication for RFID tags

Proceedings of the 18th IEEE International Conference on Network Protocols (ICNP'10)

October 2010

Kyoto, Japan

154 163

2-s2.0-79957668373

10.1109/ICNP.2010.5762764

26.

Bianchi

Revisiting an RFID identification-free batch authentication approach

IEEE Communications Letters 2011 15 6 632 634

2-s2.0-79959573865

10.1109/LCOMM.2011.041411.110283

27.

Zheng

Fast tag searching protocol for large-scale RFID systems

Proceedings of the 19th IEEE International Conference on Network Protocols (ICNP '11)

October 2011

Vancouver, Canada

363 372

2-s2.0-84055181444

10.1109/ICNP.2011.6089075

28.

Sheng

Tan

C. C.

Group authentication in heterogeneous RFID networks

Proceedings of the IEEE Conference on Technologies for Homeland Security (HST '12)

November 2012

Waltham, Mass, USA

167 172

10.1109/THS.2012.6459844

29.

Myung

Lee

Adaptive splitting protocols for RFID tag collision arbitration

Proceedings of the 7th ACM International Symposium on Mobile Ad Hoc Networking and Computing (MOBIHOC '06)

May 2006

Florence, Italy

202 213

2-s2.0-33748075808

30.

Information technology automatic identification and data capture techniques—radio frequency identification for item management air interface—part 6: parameters for air interface communications at 860–960 MHZ

ISO/IEC FDIS 2003 18000-6

31.

EPCglobal

EPC radio-frequency identity protocols class-1 generation-2 UHF RFID protocol for communications at 860 MHz–960 MHz version 1. 2. 0

May 2008

32.

Zhou

Gupta

Das

S. R.

Zhu

Slotted scheduled tag access in multi-reader RFID systems

Proceesings of the 15th IEEE International Conference on Network Protocols (ICNP '07)

October 2007

Beijing, China

61 70

2-s2.0-48349129475

10.1109/ICNP.2007.4375837

33.

Auto-ID

Draft protocol specification for a 900 MHz class 0 radio frequency identification tag

2003, http://www.epcglobalinc.org/

34.

Vaudenay

On privacy models for RFID

Advances in Cryptology—ASIACRYPT 2007 2007

Berlin, Germany

Springer

68 87 Lecture Notes in Computer Science

10.1007/978-3-540-76900-2_5

35.

Yao

Han

Yang

Liu

Privacy leakage in access mode: revisiting private RFID Authentication protocols

Proceedings of the 40th International Conference on Parallel Processing (ICPP '11)

September 2011

Taipei City, Taiwan

713 721

2-s2.0-80155154092

MAP: Towards Authentication for Multiple Tags

Abstract

1. Introduction

2. Related Works

2.1. Existing PPA Protocols and Their Limitations

2.2. Existing Anticollision Algorithms and Limitations

3. Observations and Motivation

3.1. Observations on Redundancy and Possible Treatments

3.2. Motivation

4. MAP Design

4.1. Overview

4.2. System Initialization

4.3. Tags Authentication

Algorithm 1: Tags authentication in MAP.

4.3.1. Anticollision

4.3.2. Authentication

4.3.3. Remount

4.4. Updating

4.5. System Maintenance

5. Performance Analysis

5.1. Theoretical Analysis

5.2. Simulation

6. Security and Privacy Analysis

6.1. Compromising Attack

Step 1.

Step 2.

Step 3.

Definition 1.

Definition 2 (M-strong ( ε , k 0 , N A ) -ind-privacy).

Theorem 3.

Proof.

6.2. Confidentiality

6.3. Cloning Resistance

6.4. Tracking Resistance

6.5. Timing-Based Attack Resistance

6.6. Forward Secrecy

7. Possible Variants and Improvements

8. Conclusions and Future Work

Footnotes

Acknowledgments

References

Definition 2 (M-strong $(ε, k_{0}, N_{A})$ -ind-privacy).