An Enhanced Authentication Protocol Suitable for Constrained RFID Systems

RFID technology offers an affordable and user-friendly solution for contactless identification of objects and individuals. However, the widespread adoption of RFID systems raises concerns regarding security and privacy. Vulnerabilities such as message tampering, interception, and eavesdropping pose significant risks to the integrity of the system. This study examines the effectiveness of two recently proposed ultra-lightweight RFID authentication protocols, URASP and KUAJB, in addressing these security challenges. Surprisingly, our findings reveal that both URASP and KUAJB protocols are susceptible to secret disclosure attacks, despite their claims of providing robust security. Consequently, the development of a truly ultra-lightweight protocol that ensures adequate security becomes a formidable task. As a potential solution, the enhancement of the URASP protocol through the integration of a simple cryptographic primitive is suggested to bolster its security measures.