{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,26]],"date-time":"2025-09-26T00:11:32Z","timestamp":1758845492258,"version":"3.41.0"},"reference-count":37,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2008,12,26]],"date-time":"2008-12-26T00:00:00Z","timestamp":1230249600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100005049","name":"Science and Engineering Research Council, Agency for Science, Technology and Research","doi-asserted-by":"publisher","award":["082 101 0022"],"award-info":[{"award-number":["082 101 0022"]}],"id":[{"id":"10.13039\/501100005049","id-type":"DOI","asserted-by":"publisher"}]},{"DOI":"10.13039\/501100001809","name":"National Natural Science Foundation of China","doi-asserted-by":"publisher","award":["61070217"],"award-info":[{"award-number":["61070217"]}],"id":[{"id":"10.13039\/501100001809","id-type":"DOI","asserted-by":"publisher"}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Inf. Syst. Secur."],"published-print":{"date-parts":[[2011,12]]},"abstract":"\n Privacy of RFID systems is receiving increasing attention in the RFID community. Basically, there are two kinds of RFID privacy notions in the literature: one based on the indistinguishability of two tags, denoted as ind-privacy, and the other based on the unpredictability of the output of an RFID protocol, denoted as unp-privacy. In this article, we first revisit the existing unpredictability-based RFID privacy models and point out their limitations. We then propose a new RFID privacy model, denoted as unp\n *<\/jats:sup>\n -privacy, based on the indistinguishability of a real tag and a virtual tag. We formally clarify its relationship with the ind-privacy model. It is proven that ind-privacy is weaker than unp\n *<\/jats:sup>\n -privacy. Moreover, the minimal (necessary and sufficient) condition on RFID tags to achieve unp\n *<\/jats:sup>\n -privacy is determined. It is shown that if an RFID system is unp\n *<\/jats:sup>\n -private, then the computational power of an RFID tag can be used to construct a pseudorandom function family provided that the RFID system is complete and sound. On the other hand, if each tag is able to compute a pseudorandom function, then the tags can be used to construct an RFID system with unp\n *<\/jats:sup>\n -privacy. In this sense, a pseudorandom function family is the minimal requirement on an RFID tag's computational power for enforcing RFID system privacy. Finally, a new RFID mutual authentication protocol is proposed to satisfy the minimal requirement.\n <\/jats:p>","DOI":"10.1145\/2043628.2043631","type":"journal-article","created":{"date-parts":[[2011,12,27]],"date-time":"2011-12-27T15:22:22Z","timestamp":1324999342000},"page":"1-23","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":6,"title":["On two RFID privacy notions and their relations"],"prefix":"10.1145","volume":"14","author":[{"given":"Yingjiu","family":"Li","sequence":"first","affiliation":[{"name":"Singapore Management University, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Robert H.","family":"Deng","sequence":"additional","affiliation":[{"name":"Singapore Management University, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Junzuo","family":"Lai","sequence":"additional","affiliation":[{"name":"Singapore Management University, Singapore"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Changshe","family":"Ma","sequence":"additional","affiliation":[{"name":"South China Normal University, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2008,12,26]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1102120.1102134"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1007\/11693383_20"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-74735-2_31"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.csi.2006.04.004"},{"volume-title":"Proceedings of the Cryptographers' Track of the RSA Conference. 318--332","author":"Damg\u00e4rd I.","key":"e_1_2_1_6_1"},{"volume-title":"Proceedings of the Symposium on Cryptography and Information Security.","author":"Duc D. N.","key":"e_1_2_1_7_1"},{"key":"e_1_2_1_8_1","doi-asserted-by":"publisher","DOI":"10.1109\/MDT.2007.178"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1049\/ip-ifs:20055006"},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1109\/MSP.2005.78"},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/6490.6503"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-88313-5_18"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.5555\/647097.717000"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-30598-9_11"},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1109\/JSAC.2005.861395"},{"volume-title":"Proceedings of the USENIX Security Symposium. 75--90","author":"Juels A.","key":"e_1_2_1_16_1"},{"key":"e_1_2_1_17_1","doi-asserted-by":"publisher","DOI":"10.1145\/948109.948126"},{"key":"e_1_2_1_18_1","doi-asserted-by":"publisher","DOI":"10.1007\/11535218_18"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/PERCOMW.2007.37"},{"key":"e_1_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.1145\/1102219.1102229"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/11761679_6"},{"volume-title":"Proceedings of the Conference on RFID Security. 141--152","author":"Konidala D. M.","key":"e_1_2_1_22_1"},{"key":"e_1_2_1_23_1","unstructured":"Kumar S. and Paar C. 2006. Are standards compliant elliptic curve cryptosystems feasible on RFID? In Proceedings of the Workshop on RFID Security. Kumar S. and Paar C. 2006. Are standards compliant elliptic curve cryptosystems feasible on RFID? In Proceedings of the Workshop on RFID Security."},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1145\/1653662.1653670"},{"key":"e_1_2_1_25_1","doi-asserted-by":"publisher","DOI":"10.1145\/1030083.1030112"},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-88313-5_17"},{"volume-title":"Proceedings of the International Conference on Ubiquitous Computing\u2014Ubicomp","author":"Ohkubo M.","key":"e_1_2_1_27_1"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1145\/1368310.1368352"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/11872153_14"},{"volume-title":"Proceedings of the Workshop on RFID Security.","author":"Peris-Lopez P.","key":"e_1_2_1_30_1"},{"key":"e_1_2_1_31_1","unstructured":"Samarati P. and Sweeney L. 1998. Protecting privacy when disclosing information: k-anonymity and its enforcement through generalization and suppression. Tech. rep. SRI International. Samarati P. and Sweeney L. 1998. Protecting privacy when disclosing information: k-anonymity and its enforcement through generalization and suppression. Tech. rep. SRI International."},{"key":"e_1_2_1_32_1","first-page":"2","article-title":"Radio-frequency identification: Security risks and challenges","volume":"6","author":"Sarma S. E.","year":"2003","journal-title":"Crytobytes, RSA Labs."},{"key":"e_1_2_1_33_1","doi-asserted-by":"crossref","unstructured":"Spiekermann S. and Evdokimov S. 2009. Privacy enhancing technologies for RFID\u2014A critical investigation of state of the art research. IEEE Priv. Sec. Spiekermann S. and Evdokimov S. 2009. Privacy enhancing technologies for RFID\u2014A critical investigation of state of the art research. IEEE Priv. Sec.","DOI":"10.1109\/MSP.2009.31"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1109\/PERCOMW.2006.152"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.5555\/1779330.1779334"},{"key":"e_1_2_1_36_1","unstructured":"van Deursen T. and Radomirovic S. 2008. Attacks on RFID protocols. Cryptology ePrint Archive Report 2008\/310. http:\/\/eprint.iacr.org\/. van Deursen T. and Radomirovic S. 2008. Attacks on RFID protocols. Cryptology ePrint Archive Report 2008\/310. http:\/\/eprint.iacr.org\/."},{"key":"e_1_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ipl.2009.10.007"},{"key":"e_1_2_1_38_1","doi-asserted-by":"publisher","DOI":"10.5555\/1781454.1781461"}],"container-title":["ACM Transactions on Information and System Security"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2043628.2043631","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2043628.2043631","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T09:54:19Z","timestamp":1750240459000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2043628.2043631"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2008,12,26]]},"references-count":37,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2011,12]]}},"alternative-id":["10.1145\/2043628.2043631"],"URL":"https:\/\/doi.org\/10.1145\/2043628.2043631","relation":{},"ISSN":["1094-9224","1557-7406"],"issn-type":[{"type":"print","value":"1094-9224"},{"type":"electronic","value":"1557-7406"}],"subject":[],"published":{"date-parts":[[2008,12,26]]},"assertion":[{"value":"2010-06-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2011-07-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2008-12-26","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}