AIM Global Publishes RFID Data Access Security Guideline
December 16, 2007 // Published as a news service by IHS
| |
| Electronics & Telecom Docs |
IHS sells a full selection of standards documents & collections from the industry's top organizations.
To learn more, and for a free quote, please complete the form below. |
|
The Association for Automatic Identification and Mobility (AIM) Global RFID Experts Group (REG) constructed a document for AIM Global and chapter members who are system designers and other industry technologists as they assess radio frequency identification (RFID) systems and the potential vulnerabilities to the data communications.
The document looks at systemic solutions that prevent unauthorized or inadvertent access to data on an RFID tag and in an RFID system.
It provides guidance to users and systems designers on potential threats to data security and countermeasures available to provide RFID data security, said AIM Global.
Determining the appropriate approach to RFID data security is dependent on the specific application, the type of possible threat, the intended use of the tag and the type of data on the tag, said AIM Global.
Therefore, this document cannot and does not provide specific recommendations for the number of permutations but offers sufficient guidance to enable users or developers to assess potential risks and determine appropriate responses, said AIM Global.
For the purpose of this AIM Global document, the RFID system is divided into modules that each has security elements. These modules are:
- Tag.
- Tag to reader.
- Reader.
- Reader to host.
- Host (back-end enterprise) system.
The scope of this document is restricted to the security aspects of the tag and tag-to-reader communication and is designed to provide some guidance to systems designers to help them determine potential threats and appropriate countermeasures for these modules. This document is not intended to specifically address consumer privacy concerns, said AIM Global.
However, since data and personal privacy depend on the use of appropriate security measures, privacy is addressed in general terms. Data access security provides a measure of personal privacy protection by mitigating the potential for unauthorized reading of data on a tag, said AIM Global.
RFID-Guidelines on data access security is available at https://www.aimglobal.org/estore/ProductDetails.aspx?productID=568.
Source: Association for Automatic Identification and Mobility (AIM) Global.