Protecting NFC data exchange against eavesdropping with encryption record type definition

NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium Pub Date : 2016-04-25 DOI:10.1109/NOMS.2016.7502861

S. Hameed, Usman Murad Jamali, Adnan Samad

{"title":"Protecting NFC data exchange against eavesdropping with encryption record type definition","authors":"S. Hameed, Usman Murad Jamali, Adnan Samad","doi":"10.1109/NOMS.2016.7502861","DOIUrl":null,"url":null,"abstract":"Near Field Communication (NFC) is inherently vulnerable to eavesdropping and proximity hijacking attacks. NFC standards itself lack built-in security features against eavesdropping for all the modes of communication in NFC-ecosystem. This drives the application developers to implement customize security features on their own. These non-standard solutions in turn result in the system's security against vulnerabilities being subject to the developer's capability of designing a secure solution. Clearly, this model is a limiting factor in the widespread adoption and deployment of NFC applications. In this paper we propose a standard Encryption Record Type Definition (ERTD) to provide confidentiality to NFC Data Exchange format (NDEF). Subsequently, we develop a fully compliant prototype of our ERTD as a lightweight plug and play confidentiality middleware in the existing NFC communication architecture. Finally, we perform an in-depth performance evaluation, of different confidentiality related primitives that focuses on processing latency and data overheads.","PeriodicalId":344879,"journal":{"name":"NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium","volume":"58 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2016-04-25","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"11","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/NOMS.2016.7502861","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 11

Abstract

Near Field Communication (NFC) is inherently vulnerable to eavesdropping and proximity hijacking attacks. NFC standards itself lack built-in security features against eavesdropping for all the modes of communication in NFC-ecosystem. This drives the application developers to implement customize security features on their own. These non-standard solutions in turn result in the system's security against vulnerabilities being subject to the developer's capability of designing a secure solution. Clearly, this model is a limiting factor in the widespread adoption and deployment of NFC applications. In this paper we propose a standard Encryption Record Type Definition (ERTD) to provide confidentiality to NFC Data Exchange format (NDEF). Subsequently, we develop a fully compliant prototype of our ERTD as a lightweight plug and play confidentiality middleware in the existing NFC communication architecture. Finally, we perform an in-depth performance evaluation, of different confidentiality related primitives that focuses on processing latency and data overheads.

查看原文本刊更多论文

使用加密记录类型定义保护NFC数据交换免受窃听

近场通信(NFC)本身就容易受到窃听和近距离劫持攻击。对于NFC生态系统中的所有通信模式，NFC标准本身缺乏内置的防止窃听的安全功能。这促使应用程序开发人员自己实现自定义的安全特性。这些非标准的解决方案反过来导致系统对漏洞的安全性受制于开发人员设计安全解决方案的能力。显然，这种模式是限制NFC应用广泛采用和部署的一个因素。在本文中，我们提出了一个标准的加密记录类型定义(ERTD)来为NFC数据交换格式(NDEF)提供保密性。随后，我们开发了一个完全兼容的ERTD原型，作为现有NFC通信体系结构中的轻量级即插即用保密中间件。最后，我们对不同的机密性相关原语进行了深入的性能评估，重点关注处理延迟和数据开销。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

NOMS 2016 - 2016 IEEE/IFIP Network Operations and Management Symposium

自引率

0.00%

发文量