50 Ways to break RFID privacy

IFIP Advances in Information and Communication Technology

Volumn 352 AICT, Issue , 2011, Pages 192-205

  Van Deursen, Ton ^a  

^a UNIVERSITY OF LUXEMBOURG   (Luxembourg)

Author keywords

attacks; privacy; RFID; taxonomy; untraceability

Indexed keywords

DATA PRIVACY; NETWORK LAYERS; RADIO FREQUENCY IDENTIFICATION (RFID); TAXONOMIES;

APPLICATION LAYERS; ATTACKS; COMMUNICATION LAYERS; PHYSICAL LAYERS; PUBLIC TRANSPORTATION SYSTEMS; REALISTIC SCENARIO; RFID PROTOCOLS; UN TRACEABILITYS;

ELECTRONIC DOCUMENT IDENTIFICATION SYSTEMS;

EID: 79958007947     PISSN: 18684238     EISSN: None     Source Type: Book Series    
DOI: 10.1007/978-3-642-20769-3_16     Document Type: Conference Paper

References (29)

1. Hoepman, J.-H., Hubbers, E., Jacobs, B., Oostdijk, M., Schreur, R.W.: Crossing borders: Security and privacy issues of the european e-passport. In: Yoshiura, H., Sakurai, K., Rannenberg, K., Murayama, Y., Kawamura, S.-i. (eds.) IWSEC 2006. LNCS, vol. 4266, pp. 152-167. Springer, Heidelberg (2006)
2. Pfitzmann, A., Hansen, M.: A terminology for talking about privacy by data minimization: Anonymity, unlinkability, undetectability, unobservability, pseudonymity, and identity management, v0.34 (2010)
3. Damgård, I., Pedersen, M.Ø.: RFID security: Tradeoffs between security and efficiency. In: CT-RSA, pp. 318-332 (2008)
4. Juels, A.: RFID security and privacy: a research survey. IEEE Journal on Selected Areas in Communications 24(2), 381-394 (2006)
5. Langheinrich, M.: A Survey of RFID Privacy Approaches. Personal and Ubiquitous Computing 13(6), 413-421 (2009)
6. Kim, I.J., Choi, E.Y., Lee, D.H.: Secure mobile RFID system against privacy and security problems. In: SecPerU 2007 (2007)
7. Zimmermann, H.: OSI reference model - The ISO model of architecture for open systems interconnection. IEEE Transactions on Communications 28(4), 425-432 (1980)
8. Avoine, G., Oechslin, P.: RFID traceability: A multilayer problem. In: S. Patrick, A., Yung, M. (eds.) FC 2005. LNCS, vol. 3570, pp. 125-140. Springer, Heidelberg (2005)
9. Hancke, G.P.: Eavesdropping Attacks on High-Frequency RFID Tokens. In: Workshop on RFID Security - RFIDSec 2008 (2008)
10. Hancke, G.P.: Practical attacks on proximity identification systems (short paper). In: IEEE Symposium on Security and Privacy, pp. 328-333 (2006)
11. ISO/IEC 14443: Identification cards - Contactless integrated circuit(s) cards - proximity cards (2001)
12. Danev, B., Heydt-Benjamin, T.S., Čapkun, S.: Physical-layer identification of RFID devices. In: USENIX, pp. 125-136 (2009)
13. van Deursen, T., Radomirović, S.: Algebraic attacks on RFID protocols. In: Markowitch, O., Bilas, A., Hoepman, J.-H., Mitchell, C.J., Quisquater, J.-J. (eds.) WISTP 2009. LNCS, vol. 5746, pp. 38-51. Springer, Heidelberg (2009)
14. Henrici, D., Müller, P.: Hash-based enhancement of location privacy for radiofrequency identification devices using varying identifiers. In: PerCom Workshops, pp. 149-153 (2004)
15. Avoine, G.: Adversary model for radio frequency identification. Technical Report LASEC-REPORT-2005-001, EPFL (2005)
16. Chothia, T., Smirnov, V.: A Traceability Attack against e-Passports. In: Sion, R. (ed.) FC 2010. LNCS, vol. 6052, pp. 20-34. Springer, Heidelberg (2010)
17. Garcia, F.D., van Rossum, P.: Modeling privacy for off-line RFID systems. In: Gollmann, D., Lanet, J.-L., Iguchi-Cartigny, J. (eds.) CARDIS 2010. LNCS, vol. 6035, pp. 194-208. Springer, Heidelberg (2010)
18. Garcia, F.D., de Koning Gans, G., Muijrers, R., van Rossum, P., Verdult, R., Schreur, R.W., Jacobs, B.: Dismantling MIFARE classic. In: Jajodia, S., Lopez, J. (eds.) ESORICS 2008. LNCS, vol. 5283, pp. 97-114. Springer, Heidelberg (2008)
19. Garcia, F.D., van Rossum, P., Verdult, R., Schreur, R.W.: Wirelessly pickpocketing a MIFARE classic card. In: IEEE Security and Privacy, pp. 3-15 (2009)
20. Teepe, W.: In sneltreinvaart je privacy kwijt (in Dutch). Privacy & Informatie (October 2008)
21. Swenson, C., Manes, G., Shenoi, S.: Imaging and analysis of GSM SIM cards. In: IFIP Int. Conf. Digital Forensics, pp. 205-216 (2005)
22. Boyd, C., Forster, P.: Time and date issues in forensic computing - A case study. Digital Investigation 1(1), 18-23 (2004)
23. + - A provably secure lightweight authentication protocol. Cryptology ePrint Archive, Report 2005/237 (2005)
24. van Deursen, T., Radomirović, S.: EC-RAC: Enriching a capacious RFID attack collection. In: Ors Yalcin, S.B. (ed.) RFIDSec 2010. LNCS, vol. 6370, pp. 75-90. Springer, Heidelberg (2010)
25. Eckersley, P.: How unique is your web browser? In: Atallah, M.J., Hopper, N.J. (eds.) PETS 2010. LNCS, vol. 6205, pp. 1-18. Springer, Heidelberg (2010)
26. Department of Transport Statistics: Table nts0201: Full car driving licence holders by age and gender: Great Britain, 1975/76 to 2009 (2009), http://www.dft.gov.uk/pgr/statistics/datatablespublications/nts/
27. Office of Fair Trading: Personal current accounts in the UK (2008), http://www.oft.gov.uk/OFTwork/markets-work/completed/personal/
28. Bosworth, M.H.: Loyalty cards: Reward or threat? (2005), http://consumeraffairs.com/news04/2005/loyalty-cards.html
29. TNS Worldpanel: Tesco share turnaround (plus an update on grocery price inflation) (2009), http://www.tnsglobal.com/news/news- 56F59E8A99C8428989E9BE66187D5792.asp%x