Security and Privacy in RFID Evolving Application Spaces for Edge Security

Transcription

1 1

2 Security and Privacy in RFID Evolving Application Spaces for Edge Security Chris Hanebeck, VP Product Management & Marketing Revere Security

3 First, Allow Me to Scare Everyone

4 And It Gets Worse Lockheed Martin Cyber Crime Monitoring On January 25, 2003 hackers infected the Davis-Besse nuclear power plant in Ohio with a worm. The virus entered through a secure T1 line for an external consulting firm. While the infection did not harm the plant, which had been off-line during the worm attack, it caused the Safety Parameter Display System to be down for five hours and the plant process computer for six. WSJ, Sept Four years later, IBM researcher Scott Lunsford hacked into a nuclear power plant and claimed that entering through the SCADA network turned out to be one of the easiest penetration tests I'd ever done Source: Forbes, America s Hackable Backbone, Oct. 2007

5 Typical RFID Systems Edge Security Traditional Security Data Capture Event Management Information Sharing Real-Time Decisions Reporting & Data Analysis RFID Tags, Readers and Antennae Barcode Scanner iphone or Camera Phone Device Mgt Layer Data Filtering & Smoothing Complex Event Processing Rules Engine User Input via Web Software as a Service AJAX Web 2.0 Data Push to Devices Rule-Based Decision- Making Alert & Notification Based Decision- Making Performance Data Behavioral Data Event Statistics System Statistics

6 Types of Attacks on RFID Physical Attacks (Breaks) Active Attacks (Communicating) Passive Attacks (Eavesdropping) Denial of Service Malware Insertion Key Extraction Cloning / Counterfeiting What needs to be protected is (a) identity and (b) data Track & Trace Replay Data Extraction

7 Attacks on RFID

8 Key RFID Vulnerabilities Privacy Process Data-rich

9 Second, There Are Solutions

10 Levels of RFID Security I. II. No Security 16-bit Security The tag is not protected from cyber treats and can be read by anyone with understanding of the Gen2 protocol. The tag is protected through a 32-bit password. A brute force attack will expose the password in less than two hours. III. IV. V. 32-bit Security 64-bit Security 80-bit Security The tag is protected through a 64-bit password. A brute force attack will expose the password in a couple of weeks. The tag is protected through a 128-bit password. A brute force attack will expose the password in a couple of months. The tag is protected through the RSA 1024 cipher. A brute force attack will expose the password in up to ten years. VI. VII. 128-bit Security Best Security The tag is protected through the HB-2 cipher. A brute force attack will expose the password in several million years. The tag is stored in a secure bank vault and cannot be read from the outside world. It is very secure, yet also unusable.

11 Aero DOD HazM Auto Pharmaceuticals Supply Chain Applications Tolling & EVR Access Restricted Tag Access Data Encryption Mutual Authentication ID Agility Tag Cloaking Levels of RFID Security Security Level Capabilities Application Requirements I. No Security II. 16-bit Security III. 32-bit Security IV. 64-bit Security V. 80-bit Security VI. 128-bit Security

12 What Do We Really Need? Cloaking the ability to render information carriers such as microprocessors or RFID tags invisible ID Agility information carriers respond to each ping with a different ID, which renders traceability impossible Mutual Authentication the ability to validate that sender and receiver really are who they say they are

13 Initially developed for the Department of Homeland Security in an effort to secure industrial controllers Designed specifically for small, resource-constrained devices. Hummingbird is a patented word-based cipher Inspired by rotor-based encryption Encrypts in 16 bit blocks Maintains a state Hardware and software friendly Enables an efficient patent-pending protocols for Secured identification Mutual authentication Anonymous communications Cloaking Forms the basis for a simple key management system Highly Scalable Real time revocation Low Overhead, Highly Efficient

14 Key Management RedBox Key Handling Cryptographic key usage and distribution Secure Com Custom Local DB Local cache, custom application features

15 Example It s Been Implemented On Microchips Hummingbird 4-clock Implementation Hummingbird 20- clock Implementation

16 Third, You Can Implement Today

17 Typical Project Revere Security Solution Design Best-Practices Rely on Revere Security s extensive knowledge in Edge Security Assess Analyze Distill assessment findings into meaningful information and derive conclusions for the solution phase. Assess your overall strategy, current systems environment, hardware and software systems and business processes. Design Recommend Based on all findings, we recommend the best course of action for our clients. Design the security architecture, identify business process changes and hardware as well as software requirements. We also build a business case for the most desirable option(s). Decide Client Decision Deploy

18 Secure RFID System Architecture Physical RFID System Design Mutual Authentication Mutual Authentication Mutual Authentication Tag Antenna Reader CryptoServer LAN Data Encryption Pass Through Data Decryption or Pass Through Data Decryption or Pass Through Software App Data Decryption or Pass Through Use of Cryptography Hummingbird HB-2, Passerine Traditional Security

19 Crypto Protocols for RFID Gen2 Secure ID and Mutual Auth. Gen2 Tag Cloaking, Sec ID and MA Secure ID and MA Tag Cloaking, Sec ID and MA

20 Typical Applications For Secure RFID Aerospace Access Control Defense Pharmaceuticals Tolling /EVR Healthcare HazMat Anti-Counterfeits

21 UHF Applications Aerospace Authentication Applications: Inventory Control Parts100% Lifecycle Mgt Attestation Maintenance Records Oxygen & Life Vests Industry Requirements High Memory UHF Long memory life- 20 yrs Standards Based Frequency Interop- EPC Metal mount form factor

22 Requirements for Security at the Edge Short Messages e.g. 16-bit Cipher Built-in MAC Little Code Space Required Fits on a 4-bit Chip Anonymous Communications Easy to Integrate Lower Power Requirement Mutual Authentication Protocol Simple, Scalable Key Management System

23 At Last, The End

24 We Need Change!

25 Find The Right Partners! Not all security innovation is equal the key is to identify the pretenders early on!

26 Don t Wait! The key to winning is getting to where the puck is going to be next. The Great One

27 Questions? Chris Hanebeck (214) Security and Privacy in RFID Evolving Application Spaces for Edge Security

28 28