Title: WiSense Seminar #92, Improving Security and Usability of Low Cost RFID Tags, Ali Noman, 7 Feb 2013
Location: uOttawa, SITE Building (800 King Edward) room #5084
Title: Improving Security and Usability of Low Cost RFID Tags
Abstract: Low cost RFID tags pose unique security challenges. Data tampering is one of such challenges that need to be addressed. In this talk, we mainly focus on the data tampering problem of RFID tags and its solution. More precisely, here we discuss a watermarking based tamper detection solution for the EPC-Class1 Generation2 tag (a low cost passive RFID tag) based on a cryptographic PRNG (a pseudo random number generator for low cost RFID tags) function called LAMED and the Skew Tent chaotic map. Most of the existing solutions can only detect tampering in some portions (e.g. the OC or the EM field of EPC tag) of an RFID tag; in contrast, our solution can detect and discriminate tampering anywhere in the RFID tag. Moreover, unlike the existing tamper detection solutions, our proposal also includes a solution for cloning detection and offers better security. Managing passwords for each individual tag is one of the main challenges for adopting security solutions in RFID applications, such as supply chain management; we address this issue in our solution by dramatically minimizing the load of password management and thus our solution becomes quite feasible for existing low cost RFID applications. Last, but not least, our proposed solution is compatible with the EPC Tag Data Standards for EPC Class1 Gen2 tags proposed by the EPCglobal and GS1 (Global Standardization Body).
Bio: Ali Noman is a PhD student at University of Ottawa conducting research in the field of cryptography and network security in general and cloud computing security in particular, under the supervision of Professor Carlisle Adams. He received his M.Sc. degree in Information and Communication Systems Security from Royal Institute of Technology (KTH), Sweden in 2007. He had the opportunity to conduct research in security domain at several universities (e.g., University of Trento, Staffordshire University, University of Ulster) in Europe. During his stay as an academic visitor of Staffordshire University, he conducted a survey on RFID Security and Privacy in 2010- which later on motivated him to come up with a number of security solutions for RFID applications. He has about 5 years of experience in doing formal verification of internet security protocols using AVISPA and has authored/co-authored 9 international conference and journal papers. He has also supervised/co-supervised several undergraduate projects/theses.
Start Time: 10:00
End Time: 12:00