AsiaIPEX is a one-stop-shop for players in the IP industry, facilitating IP trade and connection to the IP world. Whether you are a patent owner interested in selling your IP, or a manufacturer looking to buy technologies to upgrade your operation, you will find the portal a useful resource.

Back to search results

RFID Reader Revocation Checking Using Low Power Attached Displays

Technology Benefits: Compared to traditional CRLs, which require communication overhead and storage, this invention has constant communication overhead between the tag and the reader. The invention solves the reader revocation problem that is left unsolved by the prior art. Compared to prior art, this invention provides solid and quantifiable security guarantees for a given time CRL issuance interval.

Technology Application: The invention can be used in many domains where RFID tags carrying private or valuable information. Immediate examples for such uses are RFID-equipped passports, and credit cards.

Detailed Technology Description: Revocation checking of RFID readers is a challenging problem due to the passive nature of RFID tags and cost sensitivity in RFID applications. The lack of constant power and online connection to a trusted server on RFID tags makes them vulnerable against readers with revoked privileges. Today, this problem becomes even more urgent with the use of RFID technology in privacy and security sensitive applications like RFID credit cards or e-passports. The main challenge in solving the revoked reader problem in RFID systems is due to the fact that the RFID tags are passive devices without any self-sustaining power source. In other words, RFID tags are only alive when they are being read and they solely depend on the readers for their view of world (e.g., current time and date). However, this makes the revocation of readers challenging as the RFID tag relies on the reader itself to acquire the current date and be sure that, as of the day of reading, the presented certificate is not expired and it is not listed in the up-to-date revocation list. This opens the door for revoked reader attacks as an expired certificate and/or an old certificate revocation list (CRL) would not be noticed by any tag as long as the reader reports a time in history where both the certificate and the CRL was valid as the current time to the tag. In this invention, a new way of authenticating RFID readers which allows efficient and timely check of revocation status in the process is proposed. The two differentiators of this invention compared to the existing techniques are two fold: (1) An efficient way of checking whether a given certificate is on a CRL or not, with constant communication overhead between a RFID tag and a reader. (2) a new protocol that allows the owner of an RFID tag to verify the current date reported to the tag by the reader is indeed correct. Achievement of the former advantage is made by way of using hash chains and cryptographic signatures and the latter advantage by attaching a low power, flexible and ultra-thin display to the RFID tag, which can easily be powered by the energy absorbed via a RFID antenna without a need for any secondary power source or change in current RFID specifications.

Supplementary Information: Patent Number: US8710952B2
Application Number: US2010876832A
Inventor: Tsudik, Gene | Uzun, Ersin
Priority Date: 8 Sep 2009
Priority Number: US8710952B2
Application Date: 7 Sep 2010
Publication Date: 29 Apr 2014
IPC Current: G05B001900 | H04L002906
US Class: 3400052 | 34000522 | 34000528 | 713151 | 713155 | 713156
Assignee Applicant: The Regents of the University of California
Title: RFID reader revocation checking using low power attached displays
Usefulness: RFID reader revocation checking using low power attached displays
Novelty: Authenticating method for certificate of passive and contactless reader, preferably radio frequency identification (RFID) reader, involves contingently permitting information transmission from tag, preferably RFID tag, of user

Industry: ICT/Telecom

Sub Category: Telecommunication

Application No.: 8710952

Others

Additional Technologies by these Inventors

Transaction Verification On Rfid-Enabled Payment And Transaction Instruments

Tech ID/UC Case

20672/2010-102-0

Related Cases

2010-102-0

*Abstract: A new RFID reader authentication protocol that allows efficient and timely check of revocation status of the reader’s certificate.

*IP Issue Date: Apr 29, 2014

*Principal Investigator: Name: Gene Tsudik
Department:

Name: Ersin Uzun
Department:

Country/Region: USA

For more information, please click Here