Enhanced RFID tag authentication

US 9,940,490 B1
Filed: 12/13/2013
Issued: 04/10/2018
Est. Priority Date: 11/30/2011
Status: Active Grant

First Claim

Patent Images

1. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising:

sending a first command to the tag;

receiving from the tag at least an identifier and an encrypted version of the first parameter;

determining a key using the received identifier;

recovering the first parameter from the encrypted version using the key;

sending, at a first time, to the tag a single second command including the first parameter and a tag instruction; and

causing the tag to execute the tag instruction upon verifying the first parameter.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An authentication method includes RFID tags authenticating RFID readers. A tag sends a tag identifier and a reader challenge to a reader in response to one or more commands from the reader. The reader then either derives a response to the reader challenge itself or has a verification authority derive the response. The response may be derived from parameter(s) in the reader challenge, and may be derived using a cryptographic key. The reader then sends the response to the tag along with another command. The tag verifies the response before executing instruction(s) included in the command.

Citations

20 Claims

1. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising:
- sending a first command to the tag;
  
  receiving from the tag at least an identifier and an encrypted version of the first parameter;
  
  determining a key using the received identifier;
  
  recovering the first parameter from the encrypted version using the key;
  
  sending, at a first time, to the tag a single second command including the first parameter and a tag instruction; and
  
  causing the tag to execute the tag instruction upon verifying the first parameter.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 10)
- - 2. The method of claim 1, wherein the first parameter is not based on the tag instruction.
  - 3. The method of claim 1, wherein the second command further includes a command code indicating the tag instruction.
  - 4. The method of claim 1, further comprising:
    - sending the encrypted version of the first parameter to a verification authority; and
      
      receiving a derived second parameter from the verification authority, wherein the verification authority determines the key and recovers the first parameter from the encrypted version.
  - 5. The method of claim 1, further comprising:
    - sending a random number to the tag with the first command;
      
      receiving a cryptographic function of the random number from the tag;
      
      verifying an authenticity of the tag using the random number; and
      
      sending the second command to the tag only if the authenticity of the tag is verified.
  - 6. The method of claim 1, wherein the tag instruction includes at least one of:
    - reading from a tag memory;
      
      writing to a tag memory;
      
      adjusting a tag counter value;
      
      adjusting a pointer to a memory location;
      
      adjusting a pointer to a key;
      
      adjusting a value of a key; and
      
      causing the tag to change state.
  - 7. The method of claim 1, wherein causing the tag to execute the tag instruction includes at least one of:
    - sending the second command;
      
      sending a third command; and
      
      specifying a trigger event.
  - 10. The method of claim 4, further comprising:
    - sending the encrypted version of the first parameter to a verification authority; and
      
      receiving the derived second parameter from the verification authority, wherein the verification authority determines the key, recovers the first parameter from the encrypted version, and derives the second parameter from the first parameter.

8. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising:
- sending a first command to the tag;
  
  receiving from the tag at least an identifier and an encrypted version of the first parameter;
  
  determining a key using the received identifier;
  
  recovering the first parameter from the encrypted version using the key;
  
  deriving a second parameter from the first parameter using a deriving operation that includes one of;
  
  setting the second parameter equal to the first parameter;
  
  incorporating the first parameter into a string; and
  
  computing an arithmetic function of at least the first parameter;
  
  sending, at a first time, to the tag a single second command including the second parameter and a tag instruction, wherein the first parameter and the second parameter are independent of the tag instruction; and
  
  causing the tag to, upon verifying the second parameter using the deriving operation and the first parameter, execute the tag instruction.
- View Dependent Claims (9, 11, 12, 13, 14)
- - 9. The method of claim 8, wherein the second command further includes a command code indicating the tag instruction.
  - 11. The method of claim 8, further comprising:
    - sending a random number to the tag with the first command;
      
      receiving a cryptographic function of the random number from the tag;
      
      verifying an authenticity of the tag using the random number; and
      
      sending the second command to the tag only if the authenticity of the tag is verified.
  - 12. The method of claim 11, wherein verifying the authenticity of the tag comprises:
    - sending the cryptographic function and the random number to a verification authority; and
      
      receiving an indication of tag authenticity from the verification authority.
  - 13. The method of claim 8, wherein the tag instruction includes at least one of:
    - reading from a tag memory;
      
      writing to a tag memory;
      
      adjusting a tag counter value;
      
      adjusting a pointer to a memory location;
      
      adjusting a pointer to a key;
      
      adjusting a value of a key; and
      
      causing the tag to change state.
  - 14. The method of claim 8, wherein causing the tag to execute the tag instruction includes at least one of:
    - sending the second command;
      
      sending a third command; and
      
      specifying a trigger event.

15. A method for a Radio Frequency Identification (RFID) system to cause an RFID tag having a first parameter to execute an instruction, the method comprising:
- sending a first command to the tag;
  
  receiving from the tag at least an identifier and an encrypted version of the first parameter;
  
  determining a key using the received identifier;
  
  recovering the first parameter from the encrypted version using the key;
  
  deriving a second parameter from the first parameter;
  
  sending, at a first time, to the tag a single second command including the second parameter and a tag instruction, wherein the first parameter and the second parameter are independent of the tag instruction; and
  
  causing the tag to, upon verifying the second parameter using the deriving operation and the first parameter, execute the tag instruction.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The method of claim 15, wherein the second command further includes a command code indicating the tag instruction.
  - 17. The method of claim 15, further comprising:
    - sending the encrypted version of the first parameter to a verification authority; and
      
      receiving the derived second parameter from the verification authority, wherein the verification authority determines the key, recovers the first parameter from the encrypted version, and derives the second parameter from the first parameter.
  - 18. The method of claim 15, further comprising:
    - sending a random number to the tag with the first command;
      
      receiving a cryptographic function of the random number from the tag;
      
      verifying an authenticity of the tag using the random number; and
      
      sending the second command to the tag only if the authenticity of the tag is verified.
  - 19. The method of claim 15, wherein the tag instruction includes at least one of:
    - reading from a tag memory;
      
      writing to a tag memory;
      
      adjusting a tag counter value;
      
      adjusting a pointer to a memory location;
      
      adjusting a pointer to a key;
      
      adjusting a value of a key; and
      
      causing the tag to change state.
  - 20. The method of claim 15, wherein causing the tag to execute the tag instruction includes at least one of:
    - sending the second command;
      
      sending a third command; and
      
      specifying a trigger event.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Impinj, Inc.
Original Assignee
Impinj, Inc.
Inventors
Robshaw, Matthew, Heinrich, Harley, Maguire, Yael, Stanford, Theron, Diorio, Christopher J., Cooper, Scott A.
Primary Examiner(s)
Zimmerman, Brian
Assistant Examiner(s)
SAMSON, SARA B

Application Number

US14/106,522
Time in Patent Office

1,579 Days
Field of Search

None
US Class Current
CPC Class Codes

G06K 7/10257   arrangements for protecting...

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

H04L 9/3273   for mutual authentication n...

Enhanced RFID tag authentication

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Enhanced RFID tag authentication

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links