NIST RFID Security Guidelines and Recommendations

NIST provides guidelines for security of RFID technology. ... A sample of their recommendations are organized by phase of RFID implementation - initiation (prior to design), acquisition and development, implementation, operations and maintenance, and, finally, disposition. In the initiation phase, NIST recommends performing risk assessment to understand threats posed by RFID to the organizations assets. A usage policy should be created that defines assets that should be tagged with RFID and who has the authority to determine what assets get tagged. A transparent privacy policy for RFID should be establised. The organization's information security policy should be updated with regard to the introduction of RFID technology. A training program should be established for the users of the RFID solution that emphasizes security and privacy. Document the RFID standards that you comply with. Disable or destroy RFID tags upon disosal. Other recommendations are in the reference report (PDF). ...

... "RFID devices send and/or receive radio signals to transmit identifying information such as product model or serial numbers. They come in a wide variety of types and sizes, from the size of a grain of rice or printed on paper to much larger devices with built in batteries. Unlike bar coding systems, RFID devices can communicate without requiring a line of sight and over longer distances for faster batch processing of inventory and can be outfitted with sensors to collect data on temperature changes, sudden shocks, humidity or other factors affecting products. As RFID devices are deployed in more sophisticated applications from matching hospital patients with laboratory test results to tracking systems for dangerous materials, concerns have been raised about protecting such systems against eavesdropping and unauthorized uses. " ...

NIST Issues Guidelines for Ensuring RFID Security

RFID Localization ...

NIST supports research into RFID localization ...

... "An interdisciplinary team of researchers at the National Institute of Standards and Technology (NIST) is studying whether RFID technology can be used as a low cost, reliable means to track firefighters and other first responders inside buildings and help them navigate under hazardous conditions. " ...

RFID Localization: RFID Assisted Localization and Communication: Via Technology News Daily ...

RFID-Assisted Localization and Communication for First Responders: "The RFID-Assisted Localization and Communication for First Responders project will determine the feasibility of using RFID-assisted localization in combination with an ad-hoc wireless communication network to provide reliable tracking of first responders in stressed indoor RF environments, where GPS-based localization and links to external communication systems are known to be unreliable. The research will also consider the means and potential for embedding critical building/occupant information in specific on-site RFID tags to enhance the safety and efficiency of the first responders' mission as well as to minimize dependence upon communication with external building databases. "

RFID-Assisted Localization ...

NIST Advanced Technology Program (ATP) is enabling this research project to explore the application of detection of an RFID device in a known, fixed location by a moving reader. This technique provides a precise indication of location and can be leveraged in a first-response situation. ...

Via NIST: RFID-Assisted Localization and Communication for First Responders

... "The RFID-Assisted Localization and Communication for First Responders project will determine the feasibility of using RFID-assisted localization in combination with an ad-hoc wireless communication network to provide reliable tracking of first responders in stressed indoor RF environments, where GPS-based localization and links to external communication systems are known to be unreliable. " ...

NIST RFID Communication Capability ...

NIST is evaluating the role of RFID in communication during emergency response events. ...

NIST RFID Communication Capability: Via GovExec: NIST works on standards for emergency personnel ...

... "NIST also is working on the durability and communication capabilities of tags using radio-frequency identification technology, or RFID, that first responders could use. " ...

RFID Global Trade Standards: Interoperability ...

RFID Global Trade Standards: Interoperability: Standards in Trade Workshop Program - NIST

... "2005 Standards In Trade (SIT) Workshop: RFID Standards in the Changing Marketplace - China, Proposed Date: July 2005, Location: NIST, Gaithersburg, Maryland, Overview: Radio Frequency Identification (RFID) standards are becoming an increasingly significant issue in the marketplace. This workshop will address current RFID developments and standards issues in China and the U.S. Workshop Objectives Recognizing the potential of RFID technology in enabling global trade and the role of standards and conformity assessment in ensuring global interoperability. " ...

RFID-Assisted Localization Communication ...

RFID-Assisted Localization Communication: RFID-Assisted Localization and Communication for First Responders

... "The RFID-Assisted Localization and Communication for First Responders project will determine the feasibility of using RFID-assisted localization in combination with an ad-hoc wireless communication network to provide reliable tracking of first responders in stressed indoor RF environments, where GPS-based localization and links to external communication systems are known to be unreliable. The research will also consider the means and potential for embedding critical building/occupant information in specific on-site RFID tags to enhance the safety and efficiency of the first responders' mission as well as to minimize dependence upon communication with external building databases. " ...

RFID Autonomous Construction Systems

RFID Autonomous Construction Systems: BFRL: 2005 Project Information

... "Recent efforts in the IACJS road-mapping initiative have identified approximately twenty-five critical research areas as ranked by leading industry representatives from DOW, Black & Veatch, Fluor, Intel, GSA, CH2MHill, and others. Construction object recognition and tracking is a component of at least ten of these research areas. The combination of LADAR scanning technology, real-time object recognition, automatic identification (RFID), and tracking technologies (e.g. UWB, GPS) provide powerful potential mechanisms for assessing real-time status of construction site operations and lay ground work for autonomous construction systems. " ...

Radio Frequency Identification: RFID Hardware

Radio Frequency Identification: RFID: MEP Source For Manufacturers

... "RFID systems consist of hardware and software. The hardware includes RFID tags, which can be active (i.e., they have a battery-operated transmitting device on board) or passive (the tag only transmits its data when energized by antenna radiation). RFID tags come in many shapes and sizes and broadcast in different frequencies, depending upon the application. RFID readers are matched to the tag types, and translate the information on the tag into digital form that is converted for use in software. The software sends the information to the business system, which stores the information in a database or displays it on a screen for human decision making. " ...

Construction Metrology RFID Automation ...

BFRL: Construction Metrology and Automation Group

... "Construction Metrology and Automation group developed a prototype system of integrated hardware and software to measure the position and orientation of steel frame components and sub-assemblies at the job site and to allow for web-based interactive information entry and query while at a component's location. This prototype implementation is a web-based system for rapid tracking of construction components with compact, field-rugged sensors and computers, interoperability protocols for data transmission, and 3D site simulators that reflect the instant state of tracked components on the construction site. The approach involves the use of RFID and bar code identification systems, 3D long range coordinate measurement technologies, local data processing, wireless communications, high speed networking, temporal project databases, web-based data analysis, and 3D user interfaces to provide real-time access to part status updates at the jobsite. " ...

RFID-Assisted Localization and Communication ...

RFID-Assisted Localization and Communication for First Responders

... "The RFID-Assisted Localization and Communication for First Responders project will determine the feasibility of using RFID-assisted localization in combination with an ad-hoc wireless communication network to provide reliable tracking of first responders in stressed indoor RF environments, where GPS-based localization and links to external communication systems are known to be unreliable. The research will also consider the means and potential for embedding critical building/occupant information in specific on-site RFID tags to enhance the safety and efficiency of the first responders' mission as well as to minimize dependence upon communication with external building databases. " ...

ACLU RFID Passport Computer Chips ...

American Civil Liberties Union : ACLU Seeks Information On Government Tests of Controversial Passport Computer Chips

... "At issue are Radio Frequency Identification (RFID) tags, which the government is planning on embedding in all U.S. passports in the coming year. These RFID tags (sometimes called contactless integrated circuits) will allow anyone with a RFID reader to access and duplicate the contents of passports that come within range of a reader." ...

The FOIA requests to the State Department and NIST, as well as a report on documents obtained through a previous request, are available at www.aclu.org/passports.

RFID Investment Highlights

FY 2006 Technology Administration Budget Highlights

... "Interoperability and security for emerging scientific systems (+$2 million). Sophisticated scientific information systems are critical to the continued competitive advantage of the United States. The systems that underlie the nation's research advances in science and engineering the cyberinfrastructure are rapidly expanding in all directions. Individual information devices from radio-frequency ID (RFID) tags to smart dust to microelectromechanical systems (MEMS) are becoming ever smaller, more capable, and more ubiquitous. " ...

Wireless Ad Hoc Networks Use Smart Sensor ...

Wireless Ad Hoc Networks: Smart Sensor Networks

... "A wireless ad hoc sensor network consists of a number of sensors spread across a geographical area. Each sensor has wireless communication capability and some level of intelligence for signal processing and networking of the data. Some examples of wireless ad hoc sensor networks are the following: Military sensor networks to detect and gain as much information as possible about enemy movements, explosions, and other phenomena of interest. Sensor networks to detect and characterize Chemical, Biological, Radiological, Nuclear, and Explosive (CBRNE) attacks and material. " ...

Smart Sensor Network ...

Project: Smart Sensor Network

... "Wireless Networks: The second component of a smart sensor network is the wireless communications network used to relay the sensor information. In essentially all of the work discussed above, the initialization, routing, and reconfiguration details of this network are not considered. The effect of the distributed algorithm on the use of networking resources is often not examined. When it has been examined, the effects of lost or corrupted messages on the performance of the detection or estimation algorithm have been typically neglected." ...

Zigbee Project Information

BFRL: 2005 Project Information

... "Wireless technology has grabbed a foothold with the public in telecommunications and Internet applications. One area in which wireless communications hold promise for building applications is through the rapid deployment of wireless sensors. These sensors can be incorporated into control systems to save energy, improve occupant comfort, mitigate unhealthy conditions, and provide notice of catastrophic events to occupants. While standards have sped the adoption of wireless Internet usage, standards for interoperability between wireless sensors are still in the developmental stages. This lack of standards is one reason that the sensors have not been adopted in a more widespread manner. This project will identify the self-identification needs of sensors that are deployed for building monitoring. Existing standards such as IEEE 1451, IEEE 802.15.4, ZigBee, SensorML, and BACNet will be examined and utilized when appropriate to develop protocols for identifying sensors and the information that is produced at the sensor nodes for the rest of the sensor network." ...

Smart Card Activities and Background ...

Smart Card Activities of the National Institute of Standards and Technology, TESTIMONY by Ben Wu before The Committee on Veterans� Affairs, October 6, 2004

... "Smart cards provide opportunities for improving security of our critical infrastructure, both from a physical and logical perspective. Because they are capable of performing cryptographic functions, they can perform important security services such as securely storing digital signatures, holding public key credentials, and authenticating a claimed identity based on biometric data. As such, smart cards are a crucial element in a range of current and expected critical applications and programs. They are also the underlying foundation for the standard required by Hspd-12. NIST's smart card program dates back to 1988. Recognizing the potential for smart cards to improve the security of Federal IT systems and our national information infrastructure, NIST chose to invest significant research effort in smart card technology at an early stage. The NIST smart card program produced many early innovations in the area such as a generic authentication interface for smart cards, the first cards to implement the Data Encryption Algorithm and the Digital Signature Algorithm, and the first reprogrammable smart card. These innovations are integral to modern smart cards. Many Federal agencies have a longstanding interest in smart card technology. However, large-scale deployment of smart cards has proven challenging. " ...

Smart Card Standards and Research ...

NIST Smart Card Standards and Research

... "GSC-IS(v2.1) replaces v2.0. Some highlights of GSC-Isv2.1 include a card interface for contactless smart cards, support for repeating tags, and general improvements to the contact card interface chapters. GSC-IS(v2.1) will be submitted for formal standardization to INCITS B10, the U.S. TAG to ISO/IEC JTC 1/SC17." ...

Smart Card Interoperability Is A Challenge ...

NIST Smart Card Home

... "Smart cards provide greatly increased security for multiple applications. A smart card's usefulness is based on its intrinsic portability and security. A typical smart card has the same dimensions as a standard credit card and appears to be very similar with the exception of a set of gold contacts. When inserted into a reader, these contacts provide power to a microprocessor located on the smart card; the smart card is thus able to store and process information, in particular cryptographic keys and algorithms for providing digital signatures and for use with other encryption. A major impediment to the widespread use of smart cards has been interoperability: the majority of smart cards from different vendors are not interoperable and therefore must use specific software and smart card readers. " ...

RFID Standards China Marketplace ...

Standards in Trade Workshop Program - NIST

... "2005 Standards In Trade (SIT) Workshop: RFID Standards in the Changing Marketplace - China

Proposed Date: July 2005

Location: NIST, Gaithersburg, Maryland

Overview: Radio Frequency Identification (RFID) standards are becoming an increasingly significant issue in the marketplace. This workshop will address current RFID developments and standards issues in China and the U.S.

Workshop Objectives

Recognizing the potential of RFID technology in enabling global trade and the role of standards and conformity assessment in ensuring global interoperability, the objectives of this workshop are:

To understand the role and authority of relevant agencies and organizations involved in RFID standards development and conformity assessment activities;
To identify potential areas for future collaboration related to the development of RFID standards and conformity assessment; and
To enable discussions on standards, standards development and conformity assessment related to RFID. " ...

Secure RFID Chips for Payment Card Applications ...

Secure RFID Chips for Payment Card Applications: Texas Instruments to Deliver RFID Solution for MasterCard PayPass

From PR Newswire (press release) ... Texas Instruments today announced plans to deliver ISO/IEC 14443 compliant radio frequency identification (RFID) chips designed to meet the ...

... Texas Instruments today announced plans to deliver ISO/IEC 14443 compliant radio frequency identification (RFID) chips designed to meet the stringent security requirements for MasterCard International's PayPass(TM) line of RFID payment cards and tokens. TI expects to submit this product for MasterCard certification in the second quarter of 2005. Full production is planned to start in the second half of this year TI's new 13.56 MHz RFID chip is the latest to be introduced in a series of solutions based on the company's ISO/IEC 14443 technology platform. This proven platform features products with universally accepted and standardized cryptography, using National Institute of Standards and Technology (NIST) approved crypto algorithms, including Triple DES and SHA-1. ...

Texas Instruments is the world's largest integrated manufacturer of radio frequency identification (RFID) transponders and reader systems. Capitalizing on its competencies in high-volume semiconductor manufacturing and microelectronics packaging, TI is a visionary leader and at the forefront of establishing new markets and international standards for RFID applications. Texas Instruments Incorporated provides innovative DSP and analog technologies to meet our customers' real world signal processing requirements. In addition to Semiconductor, the company's businesses include Sensors & Controls, and Educational & Productivity Solutions. TI is headquartered in Dallas, Texas and has manufacturing, design or sales operations in more than 25 countries. Texas Instruments is traded on the New York Stock Exchange under the symbol TXN.

Additional resources on secure RFID chips for payment card applications ...

RFID Tags and Contactless Smart Card Technology: Comparing and: The on-chip intelligence uniquely enables systems that ... card technology for new secure identification and ... For additional information on how RFID and contactless ...

Infineon Technologies AG: Business Concept ... Secure Mobile Solutions offers an extensive line of ... health insurance cards) and payment cards (debit and ... and customer base with RFID chips for identification ...

DOI Buys 30,000 DESFire Chips: says the government has tested a number of other chips that meet the ... NASA, which began a DESFire-based smart card secure access program at an ...

Smart Card Activities ...

From National Institute of Standards and Technology, TESTIMONY by Ben Wu before The Committee on Veterans Affairs, October 6, 2004 ...

... "Smart cards provide opportunities for improving security of our critical infrastructure, both from a physical and logical perspective. Because they are capable of performing cryptographic functions, they can perform important security services such as securely storing digital signatures, holding public key credentials, and authenticating a claimed identity based on biometric data. As such, smart cards are a crucial element in a range of current and expected critical applications and programs. They are also the underlying foundation for the standard required by Hspd-12. NIST's smart card program dates back to 1988. Recognizing the potential for smart cards to improve the security of Federal IT systems and our national information infrastructure, NIST chose to invest significant research effort in smart card technology at an early stage. The NIST smart card program produced many early innovations in the area such as a generic authentication interface for smart cards, the first cards to implement the Data Encryption Algorithm and the Digital Signature Algorithm, and the first reprogrammable smart card. These innovations are integral to modern smart cards." ...

RFID Mobile Tracking in Construction ...

From BFRL: Program - Advanced Fire Service Technology ...

... "Report detailing the design and implementation of a customized interactive web interface operating on a wireless, wearable field computer that can track components, machinery, and other mobile assets on an active construction site in real-time by seamlessly integrating a laser-based real-time spatial positioning system, a bar code and RFID scanning system, and a wireless data link. " ...

RFID in Construction for Component and Sub-Assembly Tracking ...

From BFRL: Construction Metrology and Automation Group ...

... "the Construction Metrology and Automation group developed a prototype system of integrated hardware and software to measure the position and orientation of steel frame components and sub-assemblies at the job site and to allow for web-based interactive information entry and query while at a component's location. This prototype implementation is a web-based system for rapid tracking of construction components with compact, field-rugged sensors and computers, interoperability protocols for data transmission, and 3D site simulators that reflect the instant state of tracked components on the construction site. The approach involves the use of RFID and bar code identification systems, 3D long range coordinate measurement technologies, local data processing, wireless communications, high speed networking, temporal project databases, web-based data analysis, and 3D user interfaces to provide real-time access to part status updates at the jobsite. In FY99, we demonstrated 3D spatial tracking of discrete components in real-time to viewers at a remote location over a km away under highly controlled conditions. " ...

RFID at the Job Site ...

From BFRL: Construction Metrology and Automation Group ...

... "Many construction firms now use barcodes to track the arrival of materials at a job site. Some are now investigating the use of RFID tags for work package manifesting and for tracking of trade labor that enters and leaves a site. " ...