Illegal Interrogation Detectable Products Distribution Scheme in RFID-Enabled Supply Chains

Kentaroh TOYODA  Iwao SASASE  

IEICE TRANSACTIONS on Communications   Vol.E99-B   No.4   pp.820-829
Publication Date: 2016/04/01
Online ISSN: 1745-1345
DOI: 10.1587/transcom.2015ADP0008
Type of Manuscript: Special Section PAPER (Special Section on Autonomous Decentralized Systems Technologies and Applications for Next-Generation Social Infrastructure)
RFID-enabled supply chains,  security,  honeypot,  

Full Text: PDF>>
Buy this Article

In RFID-enabled supply chains, it is necessary to protect the contents of EPCs (Electronic Product Code) since an EPC contains sensitive information such as the product code and serial number and could be used for counterfeits. Although many protection schemes have been proposed, no scheme can limit the number of illegal attempts for discovering EPCs or notice whether an attacker exists. In this paper, we propose an illegal interrogation detectable products distribution scheme for RFID-enabled supply chains. The idea is to detect the attacker by forcing him/her to access an authentication server. Our scheme masks EPCs with random sequences. Masked EPCs are written into genuine tags on products while random sequences are placed on an authentication server with an access code. An access code is divided into shares with a secret sharing scheme and they are written into genuine tags. We also write bogus shares into extra off-the-shelf tags that are not attached to any products. Since an attacker who wants to know genuine EPCs may obtain a large number of access code candidates and must try each on the authentication server, the server can detect the attacker.