13. August 2010
22:29
by: Alex Oberhauser

RFID Two Way Access Control System

On the base of the SmartCard Handler library I have development a simple access control system. The major idea behind the library is that additional to the UID (that should be unique for each card) a SHA-512 hash value of a random generated passphrase is stored on the card. For the developing I use Mifare 1K card and as reader my HID Omnikey 5321v2.

The additional security effect is gained through the idea that not the card nor the server (computer with attached reader) has all information available in clear text.

The following information are stored on the entities:

  • Server: sha512(cardUID) and passphrase
  • Card: cardUID and sha512(passphrase)

The implemented library that uses the presented approach offers a method for the passphrase change. During the call a random generated token (random are not only the characters, but also the length) is written into the servers database and the SHA-512 hash value to the card. That makes it possible to change on every access (or from time to time) the passphrase.

The approach adds a additional layer of security to RFID authentication mechanism that is only base on the UID of the cards. Although I can not give a guarantee that the approach is under all circumstances secure. For example the random generate is only pseudo random and the database should be protected against intruder. Another point is that the whole system has to be implemented in a secure way. If the initiating of new card is public available for the user the whole mechanism breaks.

If you found a major security flaw on the approach (or on the implementation) please let me know. In the meantime the library is only a simple way yo protect non critical areas and a example how to use the SmartCard Handler.

Published as package in the SmartCard Library.

About Alex Oberhauser

Alex Oberhauser’s current private and professional interests are Research and Development in the area of Semantic Web and Service Oriented Architecture with the focus on the applicability of new technologies in real world scenarios. He is founder of the meta project Networld and the Crisis Information Platform Sigimera (http://www.sigimera.org).



Fork me on GitHub
Category(s): Development
Tags: , , , , ,

5 Responses to RFID Two Way Access Control System

    Janisa says:
    27. July 2011 at 08:32

    Woah nelly, how about them apepls!

    Reply
    Zarya says:
    28. July 2011 at 17:31

    Woot, I will cretianly put this to good use!

    Reply
    Staysha says:
    27. July 2011 at 08:17

    It’s wnoedfrul to have you on our side, haha!

    Reply
    Meadow says:
    28. July 2011 at 17:28

    This could not pssiolby have been more helpful!

    Reply
    Jock says:
    28. July 2011 at 17:29

    Glad I’ve finally found somehitng I agree with!

    Reply

One Response in another blog

  1. Tweets that mention RFID Two Way Access Control System | Networld -- Topsy.com
    14. August 2010 at 22:46

    [...] This post was mentioned on Twitter by Stanciu Corneliu, Alex Oberhauser. Alex Oberhauser said: Networld Post: RFID Two Way Access Control System – http://networld.to/?p=453 [...]

Leave a Reply

Your email address will not be published. Required fields are marked *

*

CAPTCHA Image

*

 

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>