Skip to Main content Skip to Navigation
New interface
Conference papers

A Vulnerability in the Song Authentication Protocol for Low-Cost RFID Tags

Abstract : In this paper, we describe a vulnerability against one of the most efficient authentication protocols for low-cost RFID tags proposed by Song. The protocol defines a weak attacker as an intruder which can manipulate the communication between a reader and tag without accessing the internal data of a tag. It has been claimed that the Song protocol is able to resist weak attacks, such as denial of service (DoS) attack; however, we found that a weak attacker is able to desynchronise a tag, which is one kind of DoS attack. Moreover, the database in the Song protocol must use a brute force search to retrieve the tag’s records affecting the operational performance of the server. Finally, we propose an improved protocol which can prevent the security problems in Song protocol and enhance the server’s scalability performance.
Document type :
Conference papers
Complete list of metadata

Cited literature [9 references]  Display  Hide  Download
Contributor : Hal Ifip Connect in order to contact the contributor
Submitted on : Thursday, February 9, 2017 - 5:24:35 PM
Last modification on : Thursday, February 9, 2017 - 5:37:18 PM
Long-term archiving on: : Wednesday, May 10, 2017 - 2:39:42 PM


Files produced by the author(s)


Distributed under a Creative Commons Attribution 4.0 International License



Sarah Abughazalah, Konstantinos Markantonakis, Keith Mayes. A Vulnerability in the Song Authentication Protocol for Low-Cost RFID Tags. 28th Security and Privacy Protection in Information Processing Systems (SEC), Jul 2013, Auckland, New Zealand. pp.102-110, ⟨10.1007/978-3-642-39218-4_8⟩. ⟨hal-01463848⟩



Record views


Files downloads