Radio Frequency Identification Transponder Security
First Claim
1. A radio frequency identification transponder configured to respond, on detecting an interrogation attempt, by providing an output which is an identifier, the identifier being, or being based upon, a leaf or a node of a hash tree of at least binary order, wherein the identifier which is provided is different for every detected interrogation attempt.
1 Assignment
0 Petitions
Accused Products
Abstract
Security and privacy of tag information in an RFID-based system can be achieved through the usage of pseudonyms generated based on one-way hash functions. A system based on binary one-way trees allows for the scalable generation and decoding of authentication keys to obtain access to tag identities. The apparatus and methods described can also be adapted to provide limited access for readers to tag information.
-
Citations
8 Claims
- 1. A radio frequency identification transponder configured to respond, on detecting an interrogation attempt, by providing an output which is an identifier, the identifier being, or being based upon, a leaf or a node of a hash tree of at least binary order, wherein the identifier which is provided is different for every detected interrogation attempt.
-
2. A radio frequency identification transponder configured to respond, on detecting an interrogation attempt, by providing an output which is an identifier, the identifier being, or being based upon, a leaf or a node of a hash tree of at least binary order, wherein the identifier which is provided is different for every detected interrogation attempt, and which provides, in response to each of a sequence of detected interrogation attempts, one identifier of a predetermined sequence of identifiers which sequence is or is based on a predetermined sequence of leaves of the hash tree.
-
7. A system for providing a reader of RFID transponders with the right to read a particular transponder for only a predetermined multiplicity of read attempts, the system comprising:
-
the reader;
an authorisation means; and
a radio frequency identification transponder configured to respond, on detecting an interrogation attempt, by providing an output which is an identifier, the identifier being, or being based upon, a leaf or a node of a hash tree of at least binary order, wherein the identifier which is provided is different for every detected interrogation attempt;
the authorisation means and the transponder sharing knowledge of the hash tree of the tag which knowledge is not known to the reader;
wherein the reader is;
(i) configured to interrogate the transponder, to obtain an identifier output by the transponder;
(ii) arranged to contact the authorisation means and to reveal its own identity and the obtained identifier;
the authorisation means being arranged to check the entitlement of the reader to read the transponder and, if the reader is entitled to read the transponder, to provide to the reader information about the hash tree to permit the reader to read the transponder over/for the predetermined multiplicity of a interrogation attempts.
-
-
8. A method for providing a reader of radio frequency identification transponders with the right to read a particular transponder for only a predetermined multiplicity of read attempts, the transponder being configured to respond, on detecting an interrogation attempt, by providing an output which is an identifier, the identifier being, or being based upon, a leaf or a node of a hash tree of at least binary order, wherein the identifier which is provided is different for every detected interrogation attempt, the method comprising:
-
(i) interrogating the transponder with the reader to obtain an identifier output by the transponder;
(ii) providing, from the reader, an authorisation authority with the identity of the reader and the obtained transponder identifier;
(iii) the authorisation authority checking the entitlement of the reader to read the transponder and, if the reader is entitled to read the transponder, providing to the reader information about the hash tree to permit the reader to read the transponder over/for the predetermined multiplicity of a interrogation attempts.
-
Specification