A new technical framework for security, trust and privacy (STP) of RFID system / Mohd Faizal Mubarak

Mubarak, Mohd Faizal (2015) A new technical framework for security, trust and privacy (STP) of RFID system / Mohd Faizal Mubarak. PhD thesis, Universiti Teknologi MARA.

[img]
Preview
Text
TP_MOHD FAIZAL MUBARAK CS 15_5.pdf

Download (1MB) | Preview

Abstract

Future trend of RFID system is moving towards integration with other devices, and hence making it more pervasive. Even though RFID technology brings numerous benefits, it also comes with potential security and privacy threats. In this thesis, we investigate how the integration and interconnection of RFID system with other devices introduce security vulnerabilities which could be exploited by attackers and adversary systems equipped with advanced techniques and attacking tools to achieve their evil objectives. We examined past works on RFID with privacy-preserving solutions dealing with issues on system integrity and availability. We found out that these unprotected RFID system without integrity verification could also be subjected to malicious code attacks and impersonation attacks. We found a solution that could exactly protect the RFID system in three main protection areas, namely security, trust, and privacy (STP). We believe that we have used a unique approach in our research study because we have taken .into account all potential issues and we tackle them in a unified and integrated way. Our main contribution is that we proposed a unified STP protection in RFID framework which protected against unauthorized access and adversary attacks. We call this framework as MF-JaSa2 RFID framework. The framework offers enhanced unified STP features in RFID system advanced techniques such as encrypted-based attestation, integrity verification techniques with respect to protect user privacy, utilization of Trusted Platform Module (TPM), a tamper proof hardware to provide integrity verification for RFID system and utilization of MJS-Watcher as runtime integrity-checker, elliptic curve cryptography (ECC) for security protection and anonymizer for privacy-preserving protection. Based on formal method analysis, we proved that MF-JaSa2 RFID protocol always maintains its platforms in trusted and secured mode and keeps tags anonymous. Based on experiments, we proved MF-JaSa2 framework is able to protect RFID system against any attack especially the runtime-based attack and impersonation attack. Finally, MF-JaSa2 RFID framework is considered as trusted, secured and privacy-preserved RFID system.

Item Type: Thesis (PhD)
Uncontrolled Keywords: Technical Framework; Security; Trust; Privacy (STP); RFID System
Subjects: T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Radio frequency identification systems
Divisions: Faculty of Computer and Mathematical Sciences
Depositing User: Staf Pendigitalan 5
Date Deposited: 13 Mar 2017 03:04
Last Modified: 13 Mar 2017 03:04
URI: http://ir.uitm.edu.my/id/eprint/16241

Actions (login required)

View Item View Item

Downloads

Downloads per month over past year