Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management
Unauthorized tracking of RFID tagged assets at the system level, where an adversary tracks movement of RFID tagged assets by eavesdropping network messages or compromising date center servers, has not been well recognized in prior research. Compared to the traditional unauthorized tracking by clande...
Saved in:
| Main Authors: | , , , , |
|---|---|
| Format: | text |
| Language: | English |
| Published: |
Institutional Knowledge at Singapore Management University
2010
|
| Subjects: | |
| Online Access: | https://ink.library.smu.edu.sg/sis_research/637 https://ink.library.smu.edu.sg/context/sis_research/article/1636/viewcontent/PseudonymRFID_2010_pv.pdf |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| Institution: | Singapore Management University |
| Language: | English |
| id |
sg-smu-ink.sis_research-1636 |
|---|---|
| record_format |
dspace |
| spelling |
sg-smu-ink.sis_research-16362022-02-16T07:35:57Z Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management YAN, Qiang DENG, Robert H. YAN, Zheng LI, Yingjiu LI, Tieyan Unauthorized tracking of RFID tagged assets at the system level, where an adversary tracks movement of RFID tagged assets by eavesdropping network messages or compromising date center servers, has not been well recognized in prior research. Compared to the traditional unauthorized tracking by clandestine scanning at the physical level, unauthorized tracking at the system level could be even more harmful as the adversary is able to obtain tracking information on a global scale and without physical presence. This paper analyzes the threat of unauthorized tracking by a semi-trusted RFID Discovery Service which maintains a database of RFID tag location records in the current industrial standard EPCglobal Network. We propose a pseudonym-based design to mitigate this threat. Our design protects against Discovery Service database reading attack and provides efficient key management and access control. The design is backward compatible with the existing communication protocols and database schemas of RFID Discovery Service. 2010-09-01T07:00:00Z text application/pdf https://ink.library.smu.edu.sg/sis_research/637 info:doi/10.1109/ISDPE.2010.9 https://ink.library.smu.edu.sg/context/sis_research/article/1636/viewcontent/PseudonymRFID_2010_pv.pdf http://creativecommons.org/licenses/by-nc-nd/4.0/ Research Collection School Of Computing and Information Systems eng Institutional Knowledge at Singapore Management University Information Security |
| institution |
Singapore Management University |
| building |
SMU Libraries |
| continent |
Asia |
| country |
Singapore Singapore |
| content_provider |
SMU Libraries |
| collection |
InK@SMU |
| language |
English |
| topic |
Information Security |
| spellingShingle |
Information Security YAN, Qiang DENG, Robert H. YAN, Zheng LI, Yingjiu LI, Tieyan Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management |
| description |
Unauthorized tracking of RFID tagged assets at the system level, where an adversary tracks movement of RFID tagged assets by eavesdropping network messages or compromising date center servers, has not been well recognized in prior research. Compared to the traditional unauthorized tracking by clandestine scanning at the physical level, unauthorized tracking at the system level could be even more harmful as the adversary is able to obtain tracking information on a global scale and without physical presence. This paper analyzes the threat of unauthorized tracking by a semi-trusted RFID Discovery Service which maintains a database of RFID tag location records in the current industrial standard EPCglobal Network. We propose a pseudonym-based design to mitigate this threat. Our design protects against Discovery Service database reading attack and provides efficient key management and access control. The design is backward compatible with the existing communication protocols and database schemas of RFID Discovery Service. |
| format |
text |
| author |
YAN, Qiang DENG, Robert H. YAN, Zheng LI, Yingjiu LI, Tieyan |
| author_facet |
YAN, Qiang DENG, Robert H. YAN, Zheng LI, Yingjiu LI, Tieyan |
| author_sort |
YAN, Qiang |
| title |
Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management |
| title_short |
Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management |
| title_full |
Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management |
| title_fullStr |
Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management |
| title_full_unstemmed |
Pseudonym-based RFID discovery service to mitigate unauthorized tracking in supply chain management |
| title_sort |
pseudonym-based rfid discovery service to mitigate unauthorized tracking in supply chain management |
| publisher |
Institutional Knowledge at Singapore Management University |
| publishDate |
2010 |
| url |
https://ink.library.smu.edu.sg/sis_research/637 https://ink.library.smu.edu.sg/context/sis_research/article/1636/viewcontent/PseudonymRFID_2010_pv.pdf |
| _version_ |
1770570629641142272 |