Security considerations in the design and peering of RFID Discovery Services

Author

Burbridge, Trevor ; Harrison, Mark

Author_Institution

British Telecommun. plc., Ipswich

fYear

2009

fDate

27-28 April 2009

Firstpage

249

Lastpage

256

Abstract

There is growing interest in discovery services for locating RFID and supply chain data between companies globally, to obtain product lifecycle information for individual objects. Discovery services are heralded as a means to find serial-level data from previously unknown parties, however more realistically they provide a means to reduce the communications load on the information services, the network and the requesting client application. Attempts to design a standardised discovery service will not succeed unless security is considered in every aspect of the design. In this paper we clearly show that security cannot be bolted-on in the form of access control, although this is also required. The basic communication model of the discovery service critically affects who shares what data with whom, and what level of trust is required between the interacting parties.

Keywords

access control; radiofrequency identification; telecommunication security; RFID discovery services; access control; product lifecycle information; radiofrequency identification; serial-level data; telecommunication security; Access control; Business; Data security; Information resources; Information security; Product codes; RFID tags; Radiofrequency identification; Standards development; Supply chains; RFID; confidentiality; discovery; security; supply chain;

fLanguage

English

Publisher

ieee

Conference_Titel

RFID, 2009 IEEE International Conference on

Conference_Location

Orlando, FL

Print_ISBN

978-1-4244-3337-7

Electronic_ISBN

978-1-4244-3338-4

Type

conf

DOI

10.1109/RFID.2009.4911171

Filename

4911171