Strong Authentication and Strong Integrity (SASI) Is Not That Strong

Avoine G., Carpent X., Martin B.

6th Workshop on Radio Frequency Identification Security, İstanbul, Türkiye, 8 - 09 Haziran 2010, cilt.6370, ss.50-64 identifier

  • Cilt numarası: 6370
  • Basıldığı Şehir: İstanbul
  • Basıldığı Ülke: Türkiye
  • Sayfa Sayıları: ss.50-64


In this work, we present a practical passive attack on SASI, an ultra-lightweight mutual authentication protocol for RFID. This attack can be used to reveal with overwhelming probability the secret ID of the prover by eavesdropping about 2(17) authentications. The result dismantles SASI and, more generally, provides a new approach that threatens ultra-lightweight authentication protocols.