Affordable Access

The Bussard-Bagga and Other Distance-Bounding Protocols under Attacks

Authors
  • Kutyłowski, M.
  • Yung, M.
  • Bay, Asli
  • Boureanu, Ioana Cristina
  • Mitrokotsa, Aikaterini
  • Spulber, Iosif-Daniel
  • Vaudenay, Serge
Publication Date
Jan 01, 2012
Source
Infoscience @ EPFL
Keywords
License
Unknown
External links

Abstract

The communication between an honest prover and an honest verifier can be intercepted by a malicious man-in-the-middle (MiM), without the legitimate interlocutors noticing the intrusion. The attacker can simply relay messages from one party to another, eventually impersonating the prover to the verifier and possibly gaining the privileges of the former. This sort of simple relay attacks are prevalent in wireless communications (e.g., RFID-based protocols) and can affect several infrastructures from contactless payments to remote car-locking systems and access-control verification in high-security areas. As the RFID/NFC technology prevails, a practical and increasingly popular countermeasure to these attacks is given by distance-bounding protocols. Yet, the security of these protocols is still not mature. Importantly, the implications of the return channel (i.e., knowing whether the protocol finished successfully or not) in the security of some distance-bounding protocols have not been fully assessed. In this paper, we demonstrate this by a series of theoretical and practical attacks.

Report this publication

Statistics

Seen <100 times