[IP] more on A Secure RFID System

To: ip@xxxxxxxxxxxxxx
Subject: [IP] more on A Secure RFID System
From: David Farber <dave@xxxxxxxxxx>
Date: Thu, 24 Aug 2006 16:35:52 -0400
List-help: <http://v2.listbox.com/doc/help_sub?list_name=ip@v2.listbox.com>
List-id: <ip@xxxxxxxxxxxxxx>
List-software: listbox.com v2.0
List-subscribe: <mailto:subscribe-ip@v2.listbox.com>, <http://v2.listbox.com/subscribe/?listname=ip@v2.listbox.com>
List-unsubscribe: <mailto:unsubscribe-ip@v2.listbox.com>, <http://v2.listbox.com/member/unsubscribe/?listname=ip@v2.listbox.com>
References: <6.2.0.14.2.20060824131849.03fc3bc0@xxxxxxxxxxxxxxxxxxxxxxx>
Reply-to: dave@xxxxxxxxxx



Begin forwarded message:

From: Ross Stapleton-Gray <ross@xxxxxxxxxxxxxxxxxx>
Date: August 24, 2006 4:26:05 PM EDT
To: dave@xxxxxxxxxx, Brian Randell <Brian.Randell@xxxxxxxxx>
Subject: Re: [IP] A Secure RFID System

At 11:48 AM 8/24/2006, Brian Randell <Brian.Randell@xxxxxxxxx> passedalong:

So here is what the product is all about: transfer of control tothe owner of the tag - when a consumer buys a tagged product, thenfull control of the tag can be transferred to her at the POS andfrom that point on it is up to him to decide who is granted accessto (the data on) the chip multimodality; the tag can operate invarious modes, suited to the needs of the environment of use in therelevant phase of the lifecycle of a tagged product. Therefore, thetag can provide security and control and trust in both B2B and B2Cenvironments. robust security; through encryption, one- stepauthentication, and a specific protocol for communications withreader devices.

But... this then requires that the retailer maintain a knowledge ofcorresponding passwords for each and every tag, in order to ensurethat it and only it can make that handshake to transfer control; thatthat knowledge needs to passed along, from the tagging manufacturer(or whoever first keys the tag) down supply chain; and that such acapability (to rekey the tag/transfer ownership) exists at point ofsale.

I'm skeptical that many supply chains will be re-engineered to allowfor the close coupling of physical goods and encryption keys, in waysthat aren't then rife for exploitation. But the more immediate issueis that lots of points of sale won't have the technology (orinclination... these processes ain't free) to transfer custody.Every mom & pop retailer, for example. And anywhere that the processwill take any time/impose any clerk inconvenience.


Ross



----
Ross Stapleton-Gray, Ph.D.
Stapleton-Gray & Associates, Inc.
http://www.stapleton-gray.com
http://www.sortingdoor.com






-------------------------------------
You are subscribed as roessler@xxxxxxxxxxxxxxxxxx
To manage your subscription, go to
 http://v2.listbox.com/member/?listname=ip

Archives at: http://www.interesting-people.org/archives/interesting-people/

Prev by Date: more on : The Odds -- Re: [IP] more on apple recall ..
Next by Date: [IP] The Odds -- Re: Dell & Apple recall ..
Previous by thread: more on : The Odds -- Re: [IP] more on apple recall ..
Next by thread: [IP] The Odds -- Re: Dell & Apple recall ..
Index(es):
- Date
- Thread