Desynchronization Attack on Hash-Based RFID Mutual Authentication Protocol
A Radio Frequency IDentification (RFID) system is a promising automatic identification technology that uses communication via radio waves to identify and track moving objects. Privacy and security concerns inhibit the fast adaption of RFID technology for many applications. Although many EPCgen2 compliant protocols have been proposed in a quest to ensure security of low cost tags, still more the optimum security is not achieved as many protocols are found prone to well-known attacks. Recently, Cho et al. proposed a hash-based RFID mutual authentication protocol and the protocol is secure. However, this paper shows that Cho et al.'s protocol is weak against desynchronization attack and provides remedy for it.