Browse Prior Art Database

Light-weight Method of 2-way Secured Authentication between NFC Tag and Reader

IP.com Disclosure Number: IPCOM000241118D
Publication Date: 2015-Mar-27
Document File: 4 page(s) / 181K

Publishing Venue

The IP.com Prior Art Database

Related People

Pei Sin Ng: INVENTOR [+3]

Abstract

There is disclosed a light-weight two-way authentication procedure, i.e. a procedure for mutual authentication between two devices. The procedure may be used for any application for which high security is not necessary, but basic device authentication may be required (e.g. interactive gaming token and toys, cold-chain logistics, pharmaceutical and medical applications, video and audio streaming).

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 53% of the total text.

Page 01 of 4

Title of the invention:

Light-weight Method of 2-way Secured Authentication between NFC Tag and

Reader

Inventors' name(s):

Pei Sin Ng, Zhengjun Feng and Michael Bolt.

Abstract of the invention:

There is disclosed a light-weight two-way authentication procedure,
i.e. a procedure for mutual authentication between two devices. The procedure may be used for any application for which high security is not necessary, but basic device authentication may be required (e.g. interactive gaming token and toys, cold-chain logistics, pharmaceutical and medical applications, video and audio streaming).

Detailed description of the invention

Background of the invention

High-security application typically uses NFC tags with cryptography support (and cost more), while application that doesn't need secure prefers low-cost NFC tags. However, there exists applications where good-enough security with low-cost NFC tags (without cryptography) adds value.

2-way Authentication between NFC readers and tags are necessary before exchanging of sensitive data. High-security methods typically require hardware-assisted cryptographic engines or moderate computing capability.

This ID proposes a light-weight method of 2-ways secured authentication between devices, e.g. NFC reader and NFC Smart Tag.

Problems or disadvantages overcome by the invention

This ID proposes a light-weight, secured method of 2-ways authentication, which uses similar security schemes and standard hash algorithm, yet reduce computation requirement to enable it to be deployed on modest performance smart tags.

1


Page 02 of 4

The essential feature(s) of the invention

This ID proposes:

• a light-weight method of 2-ways authentication, such that o Secret key is not exposed over-the-air during the negotiation/authentication

o Only one round of hash is necessary on both devices

Detailed description of how to build and use the invention

We propose a light-weight 2-way secured authentication of devices as follows:

1. The use of a light-weight hashing algorithm, e.g. MD5, SHA1 to transform plain-text 'password' into Secret Key

2. Secret Key is securely stored on both devices and never expose over-the-air in its natural form

3. The use of a random seed to randomise the authentication, preventing a "record-and-playback"...