Title :
Security Vulnerabilities of the NDEF Signature Record Type
Author :
Roland, Michael ; Langer, Josef ; Scharinger, Josef
Author_Institution :
NFC Res. Lab. Hagenberg, Upper Austria Univ. of Appl. Sci., Hagenberg, Austria
Abstract :
The NFC Forum has released a first candidate for their Signature Record Type Definition. This specification adds digital signatures to the NFC Data Exchange Format (NDEF), which is a standardized format for storing formatted data on NFC (Near Field Communication) tags and for transporting data across a peer-to-peer links between NFC devices. With an increasing number of applications of the NFC and NDEF technology, more and more security threats became apparent. The signature record type is supposed to increase security for NDEF application by providing authenticity and integrity to the NDEF data. This paper takes a close look on the recently published Signature Record Type Definition and discusses its various security aspects. First, we introduce the signature record type and its usage. After that, we analyze the security aspects of the current signature method. Finally, we disclose multiple security vulnerabilities of the current Signature Record Type Definition and propose measures to avoid them.
Keywords :
digital signatures; electronic data interchange; peer-to-peer computing; telecommunication security; NDEF signature record type; NFC Data Exchange Format; digital signatures; peer-to-peer links; security vulnerabilities; Context; Digital signatures; Internet; Payloads; Receivers; Strontium; Attack; Digital signature; NFC Data Exchange Format (NDEF); Near Field Communication (NFC); Record Type Definition (RTD); Security;
Conference_Titel :
Near Field Communication (NFC), 2011 3rd International Workshop on
Conference_Location :
Hagenberg
Print_ISBN :
978-1-61284-176-2
