RFID - RSA, The Security Division of EMC: Security Solutions for ...


Published on

Published in: Business, Technology
  • Be the first to comment

  • Be the first to like this

No Downloads
Total Views
On Slideshare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide

RFID - RSA, The Security Division of EMC: Security Solutions for ...

  1. 1. RFID: Security and Privacy for Five-Cent Computers Ari Juels Principal Research Scientist RSA Laboratories USENIX Security 2004 5 ¢
  2. 2. What is a R adio- F requency Id entification (RFID) tag? <ul><li>In terms of appearance… </li></ul>Chip (IC) Antenna
  3. 3. What is an RFID tag? <ul><li>You may own a few RFID tags… </li></ul><ul><ul><li>Proximity cards (contactless physical-access cards) </li></ul></ul><ul><ul><li>ExxonMobil Speedpass </li></ul></ul><ul><ul><li>EZ Pass </li></ul></ul><ul><li>RFID in fact denotes a spectrum of devices: </li></ul>
  4. 4. <ul><li>You may own a few RFID tags… </li></ul><ul><ul><li>Proximity cards (contactless physical-access cards) </li></ul></ul><ul><ul><li>ExxonMobil Speedpass </li></ul></ul><ul><ul><li>EZ Pass </li></ul></ul><ul><li>RFID in fact denotes a spectrum of devices: </li></ul>What is an RFID tag? SpeedPass Mobile phone EZ Pass Basic RFID Tag
  5. 5. <ul><li>Characteristics: </li></ul><ul><ul><li>Passive device – receives power from reader </li></ul></ul><ul><ul><li>Range of up to several meters </li></ul></ul><ul><ul><li>In effect a “smart label”: simply calls out its (unique) name and/or static data </li></ul></ul>What is a basic RFID tag? “ 74AB8” “ 5F8KJ3” “ Plastic #3”
  6. 6. The capabilities of a basic RFID tag <ul><li>Little memory </li></ul><ul><ul><li>Static 64-to-128-bit identifier in current ultra-cheap generation (five cents / unit) </li></ul></ul><ul><ul><li>Hundreds of bits soon </li></ul></ul><ul><ul><li>Maybe writeable under good conditions </li></ul></ul><ul><li>Little computational power </li></ul><ul><ul><li>A few thousand gates </li></ul></ul><ul><ul><li>Static keys for read/write permission </li></ul></ul><ul><ul><li>No real cryptographic functions available </li></ul></ul>
  7. 7. The grand vision: RFID as next-generation barcode Barcode RFID tag Line-of-sight Radio contact Specifies object type Uniquely specifies object Fast, automated scanning Provides pointer to database entry for every object, i.e., unique, detailed history
  8. 8. Some applications <ul><li>Better supply-chain visibility -- #1 compelling application </li></ul><ul><li>U.S. DHS: Passports </li></ul><ul><li>U.S. FDA: Pharmaceuticals, anti-counterfeiting </li></ul><ul><li>Libraries </li></ul><ul><li>Housepets – approx. 50 million </li></ul><ul><li>Parenting logistics </li></ul><ul><ul><li>Water-park with tracking bracelet </li></ul></ul><ul><li>RFID in Euro banknotes (?) </li></ul>
  9. 9. There is an impending explosion in RFID-tag use <ul><li>EPCglobal </li></ul><ul><ul><li>Joint venture of UCC and EAN </li></ul></ul><ul><ul><li>Wal-Mart, Gillette, Procter & Gamble, etc. </li></ul></ul><ul><ul><li>Spearheading EPC (electronic product code) data standard for tags </li></ul></ul><ul><ul><li>Putting finishing touches on basic-tag standard (Class 1 Gen 2) this week </li></ul></ul><ul><li>Wal-Mart requiring top 100 suppliers to start deploying RFID in 2005 </li></ul><ul><li>Other retailers and DoD following Wal-Mart lead </li></ul><ul><li>Pallet and case tagging first -- item-level retail tagging seems years away </li></ul><ul><li>Estimated costs </li></ul><ul><ul><ul><li>2005: $0.05 per tag; hundreds of dollars per reader </li></ul></ul></ul><ul><ul><ul><li>2008: $0.01 per tag; several dollars per reader (?) </li></ul></ul></ul><ul><li>A broader vision: “Extended Internet” </li></ul>
  10. 10. The Problems of Privacy and Security
  11. 11. RFID means a world with billions of ant-sized, five-cent computers <ul><li>Highly mobile </li></ul><ul><li>Contain personal information </li></ul><ul><li>Subject to surreptitious scanning </li></ul><ul><li>Again, no cryptography… </li></ul><ul><li>Access control difficult to achieve </li></ul><ul><li>Data privacy difficult to achieve </li></ul>
  12. 12. The consumer privacy problem Here’s Mr. Jones in 2020… 1500 Euros in wallet Serial numbers: 597387,389473… Wig model #4456 (cheap polyester) 30 items of lingerie Das Kapital and Communist-party handbook Replacement hip medical part #459382
  13. 13. …and the tracking problem <ul><li>Mr. Jones pays with a credit card; his RFID tags now linked to his identity; determines level of customer service </li></ul><ul><ul><li>Think of car dealerships using drivers’ licenses to run credit checks… </li></ul></ul><ul><li>Mr. Jones attends a political rally; law enforcement scans his RFID tags </li></ul><ul><li>Mr. Jones wins Turing Award; physically tracked by paparazzi via RFID </li></ul>Wig serial #A817TS8
  14. 14. Early examples of consumer backlash <ul><li>42% of Google results on “RFID” include word “privacy” </li></ul><ul><li>CASPIAN (Consumers Against Supermarket Privacy Invasion and Numbering) </li></ul><ul><ul><li>Diatribes on RFID at: </li></ul></ul><ul><ul><ul><li>Spychips.com </li></ul></ul></ul><ul><ul><ul><li>BoycottGillette.com </li></ul></ul></ul><ul><ul><ul><li>BoycottBenetton.com </li></ul></ul></ul><ul><ul><li>National news coverage: NY Times , Time , etc. </li></ul></ul><ul><li>Wal-Mart “smart-shelf project” cancelled </li></ul><ul><li>Benetton RFID plans (purportedly) withdrawn </li></ul>
  15. 15. Some problems you don’t hear about <ul><li>Corporate espionage: Privacy is not just a consumer issue </li></ul><ul><ul><li>Eavesdropping on warehouse transmissions </li></ul></ul><ul><ul><li>Scanning of shelves for turnover rates </li></ul></ul><ul><li>Tag counterfeiting </li></ul><ul><ul><li>Automation means dependence! </li></ul></ul><ul><ul><li>Think about RFID-enabled medicine cabinets… </li></ul></ul><ul><li>Special demands of U.S. Department of Defense </li></ul><ul><ul><li>“ DoD would be like Wal-Mart… if Christmas were a random event every five years, and a stockout meant that everyone in the store could die…” - Nicholas Tsougas, DoD </li></ul></ul>
  16. 16. Some proposed solutions to the privacy problem
  17. 17. Approach 1: Cover RFID tags with protective mesh or foil Problems: (1) Makes locomotion difficult (2) Shops don’t like distributing tools for theft
  18. 18. Approach 2: “Kill” RFID tags Problem: RFID tags are much too useful in “live” state… We already have SpeedPass, etc., and then…
  19. 19. Tomorrow’s consumer applications <ul><li>Tagged products </li></ul><ul><ul><li>Clothing, appliances, CDs, etc. tagged for store returns and locatable in house </li></ul></ul><ul><li>“ Smart” appliances </li></ul><ul><ul><li>Refrigerators that automatically create shopping lists and when milk expires </li></ul></ul><ul><ul><li>Closets that tell you what clothes you have available, and search the Web for advice on current styles, etc. </li></ul></ul><ul><ul><li>Washing machines that detect improper wash cycle </li></ul></ul><ul><li>“ Smart” print </li></ul><ul><ul><li>Airline tickets that indicate your location in the airport </li></ul></ul><ul><ul><li>Business cards </li></ul></ul><ul><li>Aids for cognitively impaired, e.g., “smart” medicine cabinets </li></ul><ul><ul><li>Project at Intel </li></ul></ul><ul><li>Recovery of stolen goods (?) </li></ul><ul><li>Recycling </li></ul><ul><ul><li>Plastics that sort themselves </li></ul></ul><ul><li>Prada, Soho NYC </li></ul><ul><ul><li>Personalization / accessorization </li></ul></ul>Consumers will not want their tags “killed,” but should still have a right to privacy!
  20. 20. <ul><li>Undoutedly helpful if thought through well, but… </li></ul>Approach 3: Policy and legislation <ul><li>Retailer’s guarantee means little since tags may be read by anyone! </li></ul><ul><li>FTC Section 5 (“Deceptive practices”) and the like are similarly limited </li></ul><ul><li>“ Good Housekeeping” seal </li></ul>
  21. 21. Another possible use of RFID <ul><li>More efficient mugging </li></ul>Whom will the FTC prosecute now? “ Just in case you want to know, she’s got 700 Euro and a Rolex…”
  22. 22. Three take-home messages of this talk <ul><li>Deployed naïvely, embedding of RFID tags in consumer items can present a serious danger to privacy and security of consumers and enterprises alike in the future. </li></ul><ul><li>RFID is a technology with high promise. It would be unfortunate if security problems scotched it. </li></ul><ul><li>As technologists we must help to achieve a good balance of PRIVACY/SECURITY and UTILITY. </li></ul>
  23. 23. Technical Approaches to Enhancing RFID Privacy
  24. 24. Cryptographers’ view of device security – emphasis on “oracle” access Welcome to Hell IT Department 011001010010
  25. 25. A basic RFID tag cannot survive… Welcome to Hell IT Department 011001010010
  26. 26. For RFID, we can consider different and weakened adversarial assumptions <ul><li>Adversary is not present 24 hours a day </li></ul><ul><ul><li>Adversary must be physically close to tag to scan it </li></ul></ul><ul><li>We can deploy security protocols on physical channels – not just logical ones </li></ul><ul><li>External, higher-capability devices can help protect tags </li></ul>
  27. 27. First approach [Juels, SCN ’04] : Minimalist cryptography <ul><li>Key observation: Adversary must have physical proximity to tag to interact with it </li></ul><ul><li>Key assumption: Adversary can query tag only limited number of times in given attack session </li></ul><ul><li>Example: Passive eavesdropping </li></ul><ul><ul><li>Adversary only hears queries made by legitimate readers </li></ul></ul><ul><li>Example: Building access </li></ul><ul><ul><li>Adversary has limited time to query tags in parking lot before employees authenticate to door readers </li></ul></ul><ul><li>Example: Readers scattered around city </li></ul><ul><ul><li>Pedestrians within range of reader for limited time </li></ul></ul>
  28. 28. Pseudonym rotation <ul><li>Set of pseudonyms known only by trusted verifier </li></ul><ul><li>Pseudonyms stored on tag </li></ul><ul><ul><ul><li>Limited storage means at most, e.g., 10 pseudonyms </li></ul></ul></ul><ul><li>Tag cycles through pseudonyms </li></ul>“ 74AB8” “ MMW91” = ?
  29. 29. Strengthening the approach <ul><li>Strengthen restriction on adversarial queries using “throttling” </li></ul><ul><ul><li>Tag enforces pattern of query delays via, e.g., capacitor-discharge timing </li></ul></ul><ul><li>Pseudonym refresh </li></ul><ul><ul><li>Trusted reader provides new pseudonyms </li></ul></ul><ul><ul><li>Pseudonyms must be protected against eavesdropping and tampering using encryption, but tags cannot do standard cryptography! </li></ul></ul><ul><ul><li>Can load up tag with one-time pads – assuming adversary is not always present, some pads will be secret! </li></ul></ul><ul><li>Not for retail items, which must include basic item information. Perhaps for prox. cards, tickets, etc.? </li></ul>
  30. 30. Second Approach [Juels, Rivest, & Szydlo CCS ‘03]: The “Blocker” Tag
  31. 31. “ Blocker” Tag Blocker simulates all (billions of) possible tag serial numbers!! 1,2,3, …, 2023 pairs of sneakers and… (reading fails)…
  32. 32. “Tree-walking” anti-collision protocol for RFID tags 000 001 010 011 100 101 110 111 00 01 10 11 0 1 ?
  33. 33. In a nutshell <ul><li>“ Tree-walking” protocol for identifying tags recursively asks question: </li></ul><ul><ul><li>“ What is your next bit?” </li></ul></ul><ul><li>Blocker tag always says both ‘0’ and ‘1’ ! </li></ul><ul><ul><li>Makes it seem like all possible tags are present </li></ul></ul><ul><ul><li>Reader cannot figure out which tags are actually present </li></ul></ul><ul><ul><li>Number of possible tags is huge (at least a billion billion), so reader stalls </li></ul></ul>
  34. 34. Privateway Supermarkets Blocker tag system should protect privacy but still avoid blocking unpurchased items Two bottles of Merlot #458790
  35. 35. Consumer privacy + commercial security <ul><li>Blocker tag can be selective: </li></ul><ul><ul><li>Privacy zones: Only block certain ranges of RFID-tag serial numbers </li></ul></ul><ul><ul><li>Zone mobility : Allow shops to move items into privacy zone upon purchase </li></ul></ul><ul><li>Example: </li></ul><ul><ul><li>Tags might carry a “privacy bit” </li></ul></ul><ul><ul><li>Blocker blocks all identifiers with privacy bit on </li></ul></ul><ul><ul><li>Items in supermarket have privacy bit off </li></ul></ul><ul><ul><li>On checkout, leading bit is flipped from off to on </li></ul></ul><ul><ul><ul><li>PIN required, as for “kill” operation </li></ul></ul></ul>
  36. 36. Polite blocking <ul><li>We want reader to scan privacy zone when blocker is not present </li></ul><ul><ul><li>Aim of blocker is to keep functionality active – when desired by owner </li></ul></ul><ul><li>But if reader attempts to scan when blocker is present, it will stall! </li></ul>Your humble servant requests that you not scan the privacy zone <ul><li>Polite blocking: Blocker informs reader of its presence </li></ul>
  37. 37. More about blocker tags <ul><li>Blocker tag can be cheap </li></ul><ul><ul><li>Essentially just a “yes” tag and “no” tag with a little extra logic </li></ul></ul><ul><ul><li>Can be embedded in shopping bags, etc. </li></ul></ul><ul><li>With multiple privacy zones, sophisticated, e.g., graduated policies are possible </li></ul><ul><li>Works for ALOHA anti-collision too </li></ul>
  38. 38. An Example: The R X A Pharmacy
  39. 39. RFID-tagged bottle + “Blocker” bag
  40. 40. RFID-tagged bottle + “Blocker” bag
  41. 41. “Soft” Blocking <ul><li>Idea : Implement polite blocking only – no hardware blocking </li></ul><ul><ul><li>A little like P3P… </li></ul></ul><ul><li>External audit possible: Can detect if readers scanning privacy zone </li></ul><ul><li>Advantages : </li></ul><ul><ul><li>“ Soft blocker” tag is an ordinary RFID tag </li></ul></ul><ul><ul><li>Flexible policy: </li></ul></ul><ul><ul><ul><li>“ Opt-in” now possible </li></ul></ul></ul><ul><ul><ul><li>e.g., “Medical deblocker” now possible </li></ul></ul></ul><ul><li>Weaker privacy, but can combine with “hard” blocker </li></ul>[Juels and Brainard WPES ‘03]
  42. 42. Third approach: Personal Simulator or Proxy for RFID <ul><li>Nokia mobile-phone RFID kit available in 2004 </li></ul><ul><ul><li>Readers will be compact, available in personal devices </li></ul></ul><ul><li>We might imagine a simulation lifecycle: </li></ul><ul><ul><li>Mobile phone “acquires” tag when in proximity </li></ul></ul><ul><ul><li>Mobile phone deactivates tags or imbues with changing pseudonyms </li></ul></ul><ul><ul><li>Mobile phone simulates tags to readers, enforcing user privacy policy </li></ul></ul><ul><ul><li>Mobile phone “releases” tags when tags about to exit range </li></ul></ul>
  43. 43. The Privacy Debate VeriChip™ Paying for drinks with wave of the hand Club-goers in Spain get implanted chips for ID, payment purposes WorldNetDaily, 14 April 2004
  44. 44. NEW Subdermal Biochip Implant for Cashless Transactions - is it the Mark? The mark is a microchip assembly which will be implanted under the skin of the right hand.  Later on, the mark will be implanted under the forehead, so people who have no right hand could also have the mark. The microchip assembly, called radio frequency identification (RFID) is already used in animals.  In dogs,  the RFID is placed between the shoulder blades, and in birds it is implanted under the wing.  Now there is a one for humans called VeriChip™ . www.rapturechrist.com/666.htm
  45. 45. <ul><ul><li>“ Unlike a bar code, [an RFID tag] can be read from a distance, right through your clothes, wallet, backpack or purse -- without your knowledge or consent -- by anybody with the right reader device. In a way, it gives strangers x-ray vision powers to spy on you, to identify both you and the things you're wearing and carrying.” </li></ul></ul>www.spychips.com, www.stoprfid.com
  46. 46. RFID realities <ul><li>Deployers can scarcely get RFID working at all! </li></ul><ul><li>UHF tags hard to read near liquids, like water </li></ul><ul><ul><li>You are salt water so… </li></ul></ul><ul><ul><li>If you’re worried about your sweater being scanned, wear it! </li></ul></ul><ul><li>And even when range is good… </li></ul><ul><ul><li>In NCR automated point-of-sale trials, participants paid for groceries of people behind them… </li></ul></ul><ul><li>Consumer goods manufacturers and retailers don’t want to drive customers away </li></ul><ul><li>Corporations and governments don’t make very effective use of data anyway </li></ul>
  47. 47. <ul><li>“ Given the potentially huge benefits to consumers from wide-scale deployment of RFID, including higher productivity and lower prices, the privacy community knows that the only way they can stop RFID at the consumer level is to make all sorts of outlandish claims about the Orwellian uses of RFID , which either can’t happen or are so unlikely as to be a non-issue.” </li></ul>Robert Atkinson, Progressive Policy Institute
  48. 48. Admonitions to privacy naysayers <ul><li>The technology will improve in ways we may not expect </li></ul><ul><ul><li>Industry has an incentive to overcome obstacles </li></ul></ul><ul><ul><li>Tag power, reader sensitivity, antenna </li></ul></ul><ul><li>Standards and legacy systems stick around for years – we should try to build flexibility and safeguards in early </li></ul><ul><li>An RFID tag is not like a cookie – psychologically more potent </li></ul><ul><ul><li>If people think there’s a privacy problem, then there’s a problem </li></ul></ul><ul><li>Security and privacy are enabling </li></ul><ul><li>Let us not forget the salutary warning of the 9/11 Commission: “Failure of imagination” </li></ul>
  49. 49. Open avenues of research <ul><li>PIN distribution </li></ul><ul><ul><li>Cross-enterprise data flows </li></ul></ul><ul><li>Broken crypto </li></ul><ul><ul><li>“Shrinking generators” analyzed in weaker adversarial model </li></ul></ul><ul><li>Adversarial models </li></ul><ul><li>Anti-cloning </li></ul><ul><ul><li>Sports memorabilia, FDA, etc. </li></ul></ul>
  50. 50. for more information: www.rfid-security.com (unofficial URL)
  1. A particular slide catching your eye?

    Clipping is a handy way to collect important slides you want to go back to later.