ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
The blocker tag: selective blocking of RFID tags for consumer privacy
Full text PdfPdf (223 KB)
Source Conference on Computer and Communications Security archive
Proceedings of the 10th ACM conference on Computer and communications security table of contents
Washington D.C., USA
SESSION: Privacy/anonymity table of contents
Pages: 103 - 111  
Year of Publication: 2003
ISBN:1-58113-738-9
Authors
Ari Juels  RSA Laboratories, Bedford, MA
Ronald L. Rivest  MIT, Cambridge, MA
Michael Szydlo  RSA Laboratories, Bedford, MA
Sponsor
ACM: Association for Computing Machinery
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 67,   Downloads (12 Months): 404,   Citation Count: 38
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/948109.948126
What is a DOI?

ABSTRACT

We propose the use of "selective blocking" by "blocker tags" as a way of protecting consumers from unwanted scanning of RFID tags attached to items they may be carrying or wearing.While an ordinary RFID tag is a simple, cheap (e.g. five-cent) passive device intended as an "electronic bar-code" for use in supply-chain management, a blocker tag is a cheap passive RFID device that can simulate many ordinary RFID tags simultaneously. When carried by a consumer, a blocker tag thus "blocks" RFID readers. It can do so universally by simulating all possible RFID tags. Or a blocker tag can block selectively by simulating only selected subsets of ID codes, such as those by a particular manufacturer, or those in a designated "privacy zone.We believe that this approach, when used with appropriate care, provides a very attractive alternative for addressing privacy concerns raised by the potential (and likely) widespread use of RFID tags in consumer products.We also discuss possible abuses arising from blocker tags, and means for detecting and dealing with them.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
Benetton undecided on use of 'smart tags'. Associated Press, 8 April 2003.
 
2
D.L. Brock. The electronic product code (EPC): A naming scheme for objects. Technical Report MIT-AUTOID-WH-002, MIT Auto ID Center, 2001. Available from http://www.autoidcenter.org.
 
3
Security technology: Where's the smart money? The Economist, pages 69--70. 9 February 2002.
 
4
D.M. Ewatt and M. Hayes. Gillette razors get new edge: RFID tags. Information Week, 13 January 2003. Available at http://www.informationweek.com/story/IWK20030110S0028.
 
5
S. Garfinkel. An RFID Bill of Rights. Technology Review, page~35, October 2002.
 
6
P. Golle, M. Jakobsson, A. Juels, and P. Syverson. Universal re-encryption for mixnets, 2002. In submission.
 
7
A. Juels and R. Pappu. Squealing Euros: Privacy protection in RFID-enabled banknotes. In R. Wright, editor, Financial Cryptography '03. Springer-Verlag, 2003. To appear.
 
8
D. McCullagh. RFID tags: Big Brother in small packages. CNet, 13 January 2003. Available at http://news.com.com/2010-1069-980325.html.
 
9
mCloak: Personal / corporate management of wireless devices and technology, 2003. Product description at www.mobilecloak.com.
 
10
R. Pappu, 2003. Personal communication.
 
11
Prada's smart tags too clever? Wired News, 27 October 2002.
 
12
Sanjay E. Sarma , Stephen A. Weis , Daniel W. Engels, RFID Systems and Security and Privacy Implications, Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems, p.454-469, August 13-15, 2002
 
13
S. E. Sarma, S. A. Weis, and D.W. Engels. RFID systems, security and privacy implications. Technical Report MIT-AUTOID-WH-014, AutoID Center, MIT, 2002.
 
14
S. E. Sarma, S. A. Weis, and D.W. Engels. Radio-frequency-identification security risks and challenges. CryptoBytes, 6(1), 2003.
 
15
S.E. Sarma. Towards the five-cent tag. Technical Report MIT-AUTOID-WH-006, MIT Auto ID Center, 2001. Available from http://www.autoidcenter.org.
 
16
R. Shim. Benetton to track clothing with ID chips. CNET, 11 March 2003. URL: http://news.com.com/2100-1019-992131.html.
 
17
Kazuo Takaragi , Mitsuo Usami , Ryo Imura , Rei Itsuki , Tsuneo Satoh, An Ultra Small Individual Recognition Security Chip, IEEE Micro, v.21 n.6, p.43-49, November 2001  [doi>10.1109/40.977757]
 
18
S. A. Weis, S. Sarma, R. Rivest, and D. Engels. Security and privacy aspects of low-cost radio frequency identification systems. In First International Conference on Security in Pervasive Computing, 2003. To appear.
 
19
S.A. Weis. Radio-frequency identification security and privacy. Master's thesis, M.I.T. June 2003 (expected).
 
20
J. Yoshida. Euro bank notes to embed RFID chips by 2005. EE Times, 19 December 2001. Available at http://www.eetimes.com/story/OEG20011219S0016.

CITED BY  38
Jehan Wickramasuriya , Mahesh Datt , Sharad Mehrotra , Nalini Venkatasubramanian, Privacy protecting data collection in media spaces, Proceedings of the 12th annual ACM international conference on Multimedia, October 10-16, 2004, New York, NY, USA
Giuseppe Ateniese , Jan Camenisch , Breno de Medeiros, Untraceable RFID tags via insubvertible encryption, Proceedings of the 12th ACM conference on Computer and communications security, November 07-11, 2005, Alexandria, VA, USA
Hughes Metras, RFID tags for ambient intelligence: present solutions and future challenges, Proceedings of the 2005 joint conference on Smart objects and ambient intelligence: innovative context-aware services: usages and technologies, October 12-14, 2005, Grenoble, France
Ari Juels , John Brainard, Soft blocking: flexible blocker tags on the cheap, Proceedings of the 2004 ACM workshop on Privacy in the electronic society, October 28-28, 2004, Washington DC, USA
Ari Juels, Strengthening EPC tags against cloning, Proceedings of the 4th ACM workshop on Wireless security, September 02-02, 2005, Cologne, Germany
Michael A. Bender , Martin Farach-Colton , Simai He , Bradley C. Kuszmaul , Charles E. Leiserson, Adversarial contention resolution for simple channels, Proceedings of the seventeenth annual ACM symposium on Parallelism in algorithms and architectures, July 18-20, 2005, Las Vegas, Nevada, USA
Simson L. Garfinkel , Ari Juels , Ravi Pappu, RFID Privacy: An Overview of Problems and Proposed Solutions, IEEE Security and Privacy, v.3 n.3, p.34-43, May 2005
Miyako Ohkubo , Koutarou Suzuki , Shingo Kinoshita, RFID privacy issues and technical challenges, Communications of the ACM, v.48 n.9, September 2005
Sindhu Karthikeyan , Mikhail Nesterenko, RFID security without extensive cryptography, Proceedings of the 3rd ACM workshop on Security of ad hoc and sensor networks, November 07-07, 2005, Alexandria, VA, USA
Günter Karjoth , Paul A. Moskowitz, Disabling RFID tags with visible confirmation: clipped tags are silenced, Proceedings of the 2005 ACM workshop on Privacy in the electronic society, November 07-07, 2005, Alexandria, VA, USA
Selwyn Piramuthu, Protocols for RFID tag/reader authentication, Decision Support Systems, v.43 n.3, p.897-914, April, 2007
Melanie R. Rieback , Georgi N. Gaydadjiev , Bruno Crispo , Rutger F. H. Hofman , Andrew S. Tanenbaum, A platform for RFID security and privacy administration, Proceedings of the 20th conference on Large Installation System Administration Conference, p.8-8, December 03-08, 2006, Washington, DC
Yingjiu Li , Xuhua Ding, Protecting RFID communications in supply chains, Proceedings of the 2nd ACM symposium on Information, computer and communications security, March 20-22, 2007, Singapore
Sudarshan S. Chawathe , Venkat Krishnamurthy , Sridhar Ramachandran , Sanjay Sarma, Managing RFID data, Proceedings of the Thirtieth international conference on Very large data bases, p.1189-1195, August 31-September 03, 2004, Toronto, Canada
Dennis Viehland , Aaron Wong, The future of radio frequency identification, Journal of Theoretical and Applied Electronic Commerce Research, v.2 n.2, p.74-81, August 2007
Xiaolan Zhang , Brian King, An anti-counterfeiting RFID privacy protection protocol, Journal of Computer Science and Technology, v.22 n.3, p.438-448, May 2007
A. Soppera , T. Burbridge, Wireless identification -- privacy and security, BT Technology Journal, v.23 n.4, p.54-64, October 2005
Vance Lockton , Richard S. Rosenberg, RFID: The Next Serious Threat to Privacy, Ethics and Information Technology, v.7 n.4, p.221-231, December 2005
Swapna Dontharaju , Shenchih Tung , James T. Cain , Leonid Mats , Marlin H. Mickle , Alex K. Jones, A design automation and power estimation flow for RFID systems, ACM Transactions on Design Automation of Electronic Systems (TODAES), v.14 n.1, p.1-31, January 2009
Tong-Lee Lim , Tieyan Li , Sze-Ling Yeo, A cross-layer framework for privacy enhancement in RFID systems, Pervasive and Mobile Computing, v.4 n.6, p.889-905, December, 2008
Rajni Goel, Managing RFID Consumer Privacy and Implementation Barriers, Information Systems Security, v.16 n.4, p.217-223, July 2007
Tamara Denning , Kevin Fu , Tadayoshi Kohno, Absence makes the heart grow fonder: new directions for implantable medical device security, Proceedings of the 3rd conference on Hot topics in security, p.1-7, July 29, 2008, San Jose, CA
Daniel V. Bailey , Dan Boneh , Eu-Jin Goh , Ari Juels, Covert channels in privacy-preserving identification systems, Proceedings of the 14th ACM conference on Computer and communications security, October 28-31, 2007, Alexandria, Virginia, USA
Christopher Bolan, Radio Frequency Identification: a review of low cost tag security proposals, International Journal of Information and Computer Security, v.1 n.4, p.391-399, October 2007
Thierry Bodhuin , Rosa Preziosi , Maria Tortorella, Supporting document management by using RFID technology, International Journal of Internet Protocol Technology, v.2 n.3/4, p.165-175, December 2007
Leonid Bolotnyy , Gabriel Robins, Multi-tag RFID systems, International Journal of Internet Protocol Technology, v.2 n.3/4, p.218-231, December 2007
Frédéric Thiesse, RFID, privacy and the perception of risk: A strategic framework, The Journal of Strategic Information Systems, v.16 n.2, p.214-232, June, 2007
Dong-Her Shih , Chin-Yi Lin , Binshan Lin, RFID tags: privacy and security aspects, International Journal of Mobile Communications, v.3 n.3, p.214-230, March 2005
Alexei Czeskis , Karl Koscher , Joshua R. Smith , Tadayoshi Kohno, RFIDs and secret handshakes: defending against ghost-and-leech attacks and unauthorized reads with context-aware communications, Proceedings of the 15th ACM conference on Computer and communications security, October 27-31, 2008, Alexandria, Virginia, USA
Ching-Hsien Hsu , Yi-Min Chen , Heau-Jo Kang, Performance-effective and low-complexity redundant reader detection in wireless RFID networks, EURASIP Journal on Wireless Communications and Networking, v.2008 n.4, p.1-9, January 2008
David M. Wasieleski , Mordechai Gal-Or, An enquiry into the ethical efficacy of the use of radio frequency identification technology, Ethics and Information Technology, v.10 n.1, p.27-40, March 2008
Yang Cui , Kazukuni Kobara , Kanta Matsuura , Hideki Imai, Lightweight Privacy-Preserving Authentication Protocols Secure against Active Attack in an Asymmetric Way, IEICE - Transactions on Information and Systems, v.E91-D n.5, p.1457-1465, May 2008
George Roussos , Vassilis Kostakos, rfid in pervasive computing: State-of-the-art and outlook, Pervasive and Mobile Computing, v.5 n.1, p.110-131, February, 2009
Daewan Han , Daesung Kwon, Vulnerability of an RFID authentication protocol conforming to EPC Class 1 Generation 2 Standards, Computer Standards & Interfaces, v.31 n.4, p.648-652, June, 2009
Albert Jeng , Li-Chung Chang , Sheng-Hui Chen, A Low Cost Key Agreement Protocol Based on Binary Tree for EPCglobal Class 1 Generation 2 RFID Protocol, IEICE - Transactions on Information and Systems, v.E91-D n.5, p.1408-1415, May 2008
Alex X. Liu , LeRoy A. Bailey, PAP: A privacy and authentication protocol for passive RFID tags, Computer Communications, v.32 n.7-10, p.1194-1199, May, 2009
Marc Langheinrich, A survey of RFID privacy approaches, Personal and Ubiquitous Computing, v.13 n.6, p.413-421, August 2009
Sarah Spiekermann, RFID and privacy: what consumers really want and fear, Personal and Ubiquitous Computing, v.13 n.6, p.423-434, August 2009

INDEX TERMS

Primary Classification:
  B. Hardware
  B.4 INPUT/OUTPUT AND DATA COMMUNICATIONS
      B.4.1 Data Communications Devices


General Terms:
Algorithms, Design, Performance, Security, Standardization


Keywords:
RFID tags, barcodes, privacy, tree walking

Collaborative Colleagues:
Ari Juels: colleagues
Ronald L. Rivest: colleagues
Michael Szydlo: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player