Strong Authentication and Strong Integrity (SASI) Is Not That Strong


Avoine G., Carpent X., Martin B.

6th Workshop on Radio Frequency Identification Security, İstanbul, Turkey, 8 - 09 June 2010, vol.6370, pp.50-64 identifier

  • Publication Type: Conference Paper / Full Text
  • Volume: 6370
  • City: İstanbul
  • Country: Turkey
  • Page Numbers: pp.50-64

Abstract

In this work, we present a practical passive attack on SASI, an ultra-lightweight mutual authentication protocol for RFID. This attack can be used to reveal with overwhelming probability the secret ID of the prover by eavesdropping about 2(17) authentications. The result dismantles SASI and, more generally, provides a new approach that threatens ultra-lightweight authentication protocols.