Change search
ReferencesLink to record
Permanent link

Direct link
Evaluation of Current Practical Attacks Against RFID Technology
Linnaeus University, Faculty of Technology, Department of Computer Science.
2014 (English)Independent thesis Basic level (degree of Bachelor), 10 credits / 15 HE creditsStudent thesis
Abstract [en]

Radio Frequency Identification (RFID) is a technology that has been around for three decades now. It is being used in various scenarios in technologically modern societies around the world and becoming a crucial part of our daily life. But we often forget how the inner technology is designed to work, or even if it is as trustable and secure as we think. While the RFID technology and protocols involved with it has been designed with an acceptable level of security in mind, not all implementations and use cases are as secure as consumers believe. A majority of implementations and products that are deployed suffer from known and critical security issues.

     This thesis work starts with an introduction to RFID standards and how the technology works. Followed by that a taxonomy of known attacks and threats affecting RFID is presented, which avoids going through too much of technical details but provides references for farther research and study for every part and attack. Then RFID security threats are reviewed from risk management point of view, linking introduced attacks to the security principle they affect. We also review (lack thereof) security standards and guidelines that can help mitigating introduced threats. Finally to demonstrate how practical and serious these threats are, three real-world case studies are presented, in which we break security of widely used RFID implementations. At the end we also review and highlight domains in RFID security that can be researched farther, and what materials we are currently missing, that can be used to raise awareness and increase security of RFID technology for consumers.

     The goal of this thesis report is to familiarize readers with all of the publicly documented and known security issues of RFID technology, so that they can get a sense about the security state of their systems. Without getting involved with too much technical details about every attack vector, or going throw tens of different books and papers, readers can use this report as a comprehensive reference to educate themselves about all known attacks against RFID, published to the date of writing this report. 

Place, publisher, year, edition, pages
2014. , 81 p.
Keyword [en]
RFID, Security, RFID Attacks, RFID Security, Security Evaluation, Computer Security
National Category
Computer Science
URN: urn:nbn:se:lnu:diva-37766OAI: diva2:757354
Subject / course
Computer Science
Educational program
Network Security Programme, 180 credits
Available from: 2014-10-22 Created: 2014-10-22 Last updated: 2014-10-22Bibliographically approved

Open Access in DiVA

fulltext(3457 kB)913 downloads
File information
File name FULLTEXT01.pdfFile size 3457 kBChecksum SHA-512
Type fulltextMimetype application/pdf

Search in DiVA

By author/editor
Kashfi, Hamid
By organisation
Department of Computer Science
Computer Science

Search outside of DiVA

GoogleGoogle Scholar
Total: 913 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

Total: 7876 hits
ReferencesLink to record
Permanent link

Direct link