Tag-Reader Authentication System Guarded by Negative Identifier Filtering and Distance Bounding

In conventional authentication process, the legitimacy of communicating entity is directly checked with Authentication Server. This process is found efficient; however, it allows an illegitimate entity to get his/her attempts checked upon the authentication database (e.g. password table). In this paper, we present a two-layer entity authentication protocol in which the attempt by an illegitimate entity gets discarded at the first layer with the help of a negative filtering database. To filter illegitimate attempts 100% out the negative database is constructed such that no information about the positive database that stores the credentials of legitimate users can be obtained even if the negative database gets compromised. The proposed protocol is analytically simulated with a tag-reader authentication system, which provides mutual authentication and resists relay, impersonation and replay attacks.