New technology could secure credit cards, key cards, and pallets of goods in warehouses.
Researchers at MIT and Texas Instruments have developed a new type of radio frequency identification (RFID) chip that is virtually impossible to hack.
If such chips were widely adopted, it could mean that an identity thief couldn’t steal your credit card number or key card information by sitting next to you at a café, and high-tech burglars couldn’t swipe expensive goods from a warehouse and replace them with dummy tags.
Texas Instruments has built several prototypes of the new chip, to the researchers’ specifications, and in experiments the chips have behaved as expected. The researchers presented their research this week at the International Solid-State Circuits Conference, in San Francisco.
According to Chiraag Juvekar, a graduate student in electrical engineering at MIT and first author on the new paper, the chip is designed to prevent so-called side-channel attacks. Side-channel attacks analyze patterns of memory access or fluctuations in power usage when a device is performing a cryptographic operation, in order to extract its cryptographic key.
“The idea in a side-channel attack is that a given execution of the cryptographic algorithm only leaks a slight amount of information,” Juvekar says. “So you need to execute the cryptographic algorithm with the same secret many, many times to get enough leakage to extract a complete secret.”
One way to thwart side-channel attacks is to regularly change secret keys. In that case, the RFID chip would run a random-number generator that would spit out a new secret key after each transaction. A central server would run the same generator, and every time an RFID scanner queried the tag, it would relay the results to the server, to see if the current key was valid.
Such a system would still, however, be vulnerable to a “power glitch” attack, in which the RFID chip’s power would be repeatedly cut right before it changed its secret key. An attacker could then run the same side-channel attack thousands of times, with the same key. Power-glitch attacks have been used to circumvent limits on the number of incorrect password entries in password-protected devices, but RFID tags are particularly vulnerable to them, since they’re charged by tag readers and have no onboard power supplies.
Two design innovations allow the MIT researchers’ chip to thwart power-glitch attacks: One is an on-chip power supply whose connection to the chip circuitry would be virtually impossible to cut, and the other is a set of “nonvolatile” memory cells that can store whatever data the chip is working on when it begins to lose power.
For both of these features, the researchers — Juvekar; Anantha Chandrakasan, who is Juvekar’s advisor and the Vannevar Bush Professor of Electrical Engineering and Computer Science; Hyung-Min Lee, who was a postdoc in Chandrakasan’s group when the work was done and is now at IBM; and TI’s Joyce Kwong, who did her master’s degree and PhD with Chandrakasan — use a special type of material known as a ferroelectric crystals.
As a crystal, a ferroelectric material consists of molecules arranged into a regular three-dimensional lattice. In every cell of the lattice, positive and negative charges naturally separate, producing electrical polarization. The application of an electric field, however, can align the cells’ polarization in either of two directions, which can represent the two possible values of a bit of information.
When the electric field is removed, the cells maintain their polarization. Texas Instruments and other chip manufacturers have been using ferroelectric materials to produce nonvolatile memory, or computer memory that retains data when it’s powered off.
A ferroelectric crystal can also be thought of as a capacitor, an electrical component that separates charges and is characterized by the voltage between its negative and positive poles. Texas Instruments’ manufacturing process can produce ferroelectric cells with either of two voltages: 1.5 volts or 3.3 volts.
The researchers’ new chip uses a bank of 3.3-volt capacitors as an on-chip energy source. But it also features 571 1.5-volt cells that are discretely integrated into the chip’s circuitry. When the chip’s power source — the external scanner — is removed, the chip taps the 3.3-volt capacitors and completes as many operations as it can, then stores the data it’s working on in the 1.5-volt cells.
When power returns, before doing anything else the chip recharges the 3.3-volt capacitors, so that if it’s interrupted again, it will have enough power to store data. Then it resumes its previous computation. If that computation was an update of the secret key, it will complete the update before responding to a query from the scanner. Power-glitch attacks won’t work.
Because the chip has to charge capacitors and complete computations every time it powers on, it’s somewhat slower than conventional RFID chips. But in tests, the researchers found that they could get readouts from their chips at a rate of 30 per second, which should be more than fast enough for most RFID applications.
“In the age of ubiquitous connectivity, security is one of the paramount challenges we face,” says Ahmad Bahai, chief technology officer at Texas Instruments. “Because of this, Texas Instruments sponsored the authentication tag research at MIT that is being presented at ISSCC. We believe this research is an important step toward the goal of a robust, low-cost, low-power authentication protocol for the industrial Internet.”
Learn more: Hack-proof RFID chips
The Latest on: Hack-proof RFID chips
[google_news title=”” keyword=”Hack-proof RFID chips” num_posts=”10″ blurb_length=”0″ show_thumb=”left”]
via Google News
The Latest on: Hack-proof RFID chips
- What is RFID Blocking (and Why You Don’t Really Need It)on November 14, 2023 at 4:00 pm
Once you do, you might feel a little better the next time you step out the door. An RFID chip is used to exchange information with an RFID reader using radio waves. Depending on the RFID chip — active ...
- I’m a McDonald’s megafan & you must try my hack for salt and pepper chips – you’ll never eat plain nuggets & fries againon October 25, 2023 at 6:38 am
“I won't be able to eat plain chicken nuggets and chips the same anymore. “It was a bit spicy, but it was so worth it. “If you try this hack, let me know what you think.” The TikTok ...
- What is RFID Technologyon December 17, 2021 at 4:42 am
An RFID Tag is a chip connected to an antenna that increases its reading distance. The most common format of RFID Tags is a label, also called wet inlay. But RFID Tags can be integrated into stronger ...
- Rfid Symbol stock illustrationson May 11, 2021 at 2:15 pm
Symbol of nfc. Wave pass to terminal from card in hand. Wireless reader on pos terminal. Chip in credit card for paypass. Vector. rfid symbol stock illustrations Icon pay. Contactless payment logo.
- Rfid Chip Illustrations stock illustrationson April 11, 2021 at 7:15 pm
Choose from Rfid Chip Illustrations stock illustrations from iStock. Find high-quality royalty-free vector images that you won't find anywhere else. Video Back Videos home Signature collection ...
- Mini RFID Chipson August 16, 2020 at 9:54 pm
Description: Alternative Parts (Cross-Reference): Cross Category: RF/IF and RFID Packaging: Tape and Reel Manufacturer: Mini-Circuits Frequency: 5MHz ~ 1GHz Coupling Factor: 10.3 ± 0.5dB Applications: ...
- side channel attack | Breaking Cybersecurity News | The Hacker Newson July 30, 2020 at 5:00 pm
' RSA Key Extraction via Low-Bandwidth Acoustic Cryptanalysis ', is an interesting paper recently published by Three Israeli Security Researchers at Tel Aviv University . They claimed that, they have ...
- RFID Chips Informationon February 11, 2018 at 6:52 am
RFID chips use radio signals to transmit data over short distances. They are used typically for security, tracking, and identification purposes. RFID chips can be paired with other circuitry to create ...
- ATtiny Chip Abused In RFID Applicationon January 5, 2018 at 5:19 am
As a show of its ability to thrive under adverse conditions, [Trammell Hudson] was able to shoehorn an ATtiny into an RFID circuit in a way that tests the limits of the chip design. The RFID ...
- rfid chipon June 26, 2009 at 5:00 pm
[pc486] sent in his hack that uses an ATtiny85 to act like an EM4102, a chip used for RFID tags. Minimally, all that is needed is the AVR and a coil, but he recommends some filtering capacitors.
via Bing News