A new technical framework for security, trust and privacy (STP) of RFID system / Mohd Faizal Mubarak

Mubarak, Mohd Faizal (2015) A new technical framework for security, trust and privacy (STP) of RFID system / Mohd Faizal Mubarak. PhD thesis, Universiti Teknologi MARA (UiTM).

Abstract

Future trend of RFID system is moving towards integration with other devices, and hence making it more pervasive. Even though RFID technology brings numerous benefits, it also comes with potential security and privacy threats. In this thesis, we investigate how the integration and interconnection of RFID system with other devices introduce security vulnerabilities which could be exploited by attackers and adversary systems equipped with advanced techniques and attacking tools to achieve their evil objectives. We examined past works on RFID with privacy-preserving solutions dealing with issues on system integrity and availability. We found out that these unprotected RFID system without integrity verification could also be subjected to malicious code attacks and impersonation attacks. We found a solution that could exactly protect the RFID system in three main protection areas, namely security, trust, and privacy (STP). We believe that we have used a unique approach in our research study because we have taken .into account all potential issues and we tackle them in a unified and integrated way. Our main contribution is that we proposed a unified STP protection in RFID framework which protected against unauthorized access and adversary attacks. We call this framework as MF-JaSa2 RFID framework. The framework offers enhanced unified STP features in RFID system advanced techniques such as encrypted-based attestation, integrity verification techniques with respect to protect user privacy, utilization of Trusted Platform Module (TPM), a tamper proof hardware to provide integrity verification for RFID system and utilization of MJS-Watcher as runtime integrity-checker, elliptic curve cryptography (ECC) for security protection and anonymizer for privacy-preserving protection. Based on formal method analysis, we proved that MF-JaSa2 RFID protocol always maintains its platforms in trusted and secured mode and keeps tags anonymous. Based on experiments, we proved MF-JaSa2 framework is able to protect RFID system against any attack especially the runtime-based attack and impersonation attack. Finally, MF-JaSa2 RFID framework is considered as trusted, secured and privacy-preserved RFID system.

Metadata

Item Type: Thesis (PhD)
Creators:
Creators
Email / ID Num.
Mubarak, Mohd Faizal
2010972323
Contributors:
Contribution
Name
Email / ID Num.
Thesis advisor
Yahya, Saadiah
UNSPECIFIED
Subjects: T Technology > TK Electrical engineering. Electronics. Nuclear engineering > Radio frequency identification systems
Divisions: Universiti Teknologi MARA, Shah Alam > Faculty of Computer and Mathematical Sciences
Programme: Doctor of Philosophy
Keywords: Technical framework, security, trust, privacy (STP), RFID system
Date: January 2015
URI: https://ir.uitm.edu.my/id/eprint/16241
Edit Item
Edit Item

Download

[thumbnail of 16241.pdf] Text
16241.pdf

Download (156kB)

Digital Copy

Digital (fulltext) is available at:

Physical Copy

Physical status and holdings:
Item Status:
On Shelf

ID Number

16241

Indexing

Statistic

Statistic details