Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags"

Shao Cheng Huang; Chia Wei Tsai; Tzonelih Hwang

doi:10.1145/3239283.3239300

Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags"

Shao Cheng Huang, Chia Wei Tsai, Tzonelih Hwang

Department of Computer Science and Information Engineering

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

3 Citations (Scopus)

Abstract

To protect the security of IoT devices, Tewari and Gupta proposed an ultralightweight mutual-authentication protocol for an RFID system. In the protocol, only two simple bitwise operations (XOR and rotation) are used to achieve two-pass mutual authentication. Although the protocol is efficient, we observe that the protocol has a security vulnerability. This security weakness could cause the leaking of all secrets in RFID tags. Compared with other researches that also proposed attacks for Tewari and Gupta's protocol, our attack needs less time and smaller space complexity to implement. The time complexity of our attack is O(1), and the attack can successfully crack the protocol with 100% probability.

Original language	English
Title of host publication	Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018
Publisher	Association for Computing Machinery
Pages	23-27
Number of pages	5
ISBN (Electronic)	9781450365215
DOIs	https://doi.org/10.1145/3239283.3239300
Publication status	Published - 2018 Jul 20
Event	2018 International Conference on Data Science and Information Technology, DSIT 2018 - Singapore, Singapore Duration: 2018 Jul 20 → 2018 Jul 22

Publication series

Name	ACM International Conference Proceeding Series

Other

Other	2018 International Conference on Data Science and Information Technology, DSIT 2018
Country/Territory	Singapore
City	Singapore
Period	18-07-20 → 18-07-22

All Science Journal Classification (ASJC) codes

Software
Human-Computer Interaction
Computer Vision and Pattern Recognition
Computer Networks and Communications

Access to Document

10.1145/3239283.3239300

Cite this

Huang, S. C., Tsai, C. W., & Hwang, T. (2018). Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags". In Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018 (pp. 23-27). (ACM International Conference Proceeding Series). Association for Computing Machinery. https://doi.org/10.1145/3239283.3239300

Huang, Shao Cheng ; Tsai, Chia Wei ; Hwang, Tzonelih. / Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags". Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018. Association for Computing Machinery, 2018. pp. 23-27 (ACM International Conference Proceeding Series).

@inproceedings{999f2c2e2e2d4039849c5e6c47c17107,

title = "Comment on {"}cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags{"}",

abstract = "To protect the security of IoT devices, Tewari and Gupta proposed an ultralightweight mutual-authentication protocol for an RFID system. In the protocol, only two simple bitwise operations (XOR and rotation) are used to achieve two-pass mutual authentication. Although the protocol is efficient, we observe that the protocol has a security vulnerability. This security weakness could cause the leaking of all secrets in RFID tags. Compared with other researches that also proposed attacks for Tewari and Gupta's protocol, our attack needs less time and smaller space complexity to implement. The time complexity of our attack is O(1), and the attack can successfully crack the protocol with 100% probability.",

author = "Huang, {Shao Cheng} and Tsai, {Chia Wei} and Tzonelih Hwang",

note = "Funding Information: The authors would like to thank the Ministry of Science and Technology, Taiwan for their financial support for that research work under Contract No. NSC 105-2221-E-006 -162 -MY2. Publisher Copyright: {\textcopyright} 2018 Association for Computing Machinery.; 2018 International Conference on Data Science and Information Technology, DSIT 2018 ; Conference date: 20-07-2018 Through 22-07-2018",

year = "2018",

month = jul,

day = "20",

doi = "10.1145/3239283.3239300",

language = "English",

series = "ACM International Conference Proceeding Series",

publisher = "Association for Computing Machinery",

pages = "23--27",

booktitle = "Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018",

}

Huang, SC, Tsai, CW & Hwang, T 2018, Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags". in Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018. ACM International Conference Proceeding Series, Association for Computing Machinery, pp. 23-27, 2018 International Conference on Data Science and Information Technology, DSIT 2018, Singapore, Singapore, 18-07-20. https://doi.org/10.1145/3239283.3239300

Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags". / Huang, Shao Cheng; Tsai, Chia Wei; Hwang, Tzonelih.
Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018. Association for Computing Machinery, 2018. p. 23-27 (ACM International Conference Proceeding Series).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags"

AU - Huang, Shao Cheng

AU - Tsai, Chia Wei

AU - Hwang, Tzonelih

N1 - Funding Information: The authors would like to thank the Ministry of Science and Technology, Taiwan for their financial support for that research work under Contract No. NSC 105-2221-E-006 -162 -MY2. Publisher Copyright: © 2018 Association for Computing Machinery.

PY - 2018/7/20

Y1 - 2018/7/20

N2 - To protect the security of IoT devices, Tewari and Gupta proposed an ultralightweight mutual-authentication protocol for an RFID system. In the protocol, only two simple bitwise operations (XOR and rotation) are used to achieve two-pass mutual authentication. Although the protocol is efficient, we observe that the protocol has a security vulnerability. This security weakness could cause the leaking of all secrets in RFID tags. Compared with other researches that also proposed attacks for Tewari and Gupta's protocol, our attack needs less time and smaller space complexity to implement. The time complexity of our attack is O(1), and the attack can successfully crack the protocol with 100% probability.

AB - To protect the security of IoT devices, Tewari and Gupta proposed an ultralightweight mutual-authentication protocol for an RFID system. In the protocol, only two simple bitwise operations (XOR and rotation) are used to achieve two-pass mutual authentication. Although the protocol is efficient, we observe that the protocol has a security vulnerability. This security weakness could cause the leaking of all secrets in RFID tags. Compared with other researches that also proposed attacks for Tewari and Gupta's protocol, our attack needs less time and smaller space complexity to implement. The time complexity of our attack is O(1), and the attack can successfully crack the protocol with 100% probability.

UR - http://www.scopus.com/inward/record.url?scp=85055692762&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85055692762&partnerID=8YFLogxK

U2 - 10.1145/3239283.3239300

DO - 10.1145/3239283.3239300

M3 - Conference contribution

AN - SCOPUS:85055692762

T3 - ACM International Conference Proceeding Series

SP - 23

EP - 27

BT - Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018

PB - Association for Computing Machinery

T2 - 2018 International Conference on Data Science and Information Technology, DSIT 2018

Y2 - 20 July 2018 through 22 July 2018

ER -

Huang SC, Tsai CW, Hwang T. Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags". In Proceedings of the 2018 International Conference on Data Science and Information Technology, DSIT 2018. Association for Computing Machinery. 2018. p. 23-27. (ACM International Conference Proceeding Series). doi: 10.1145/3239283.3239300

Comment on "cryptanalysis of a novel ultralightweight mutual authentication protocol for IoT devices using RFID tags"

Abstract

Publication series

Other

All Science Journal Classification (ASJC) codes

Access to Document

Other files and links

Fingerprint

Cite this