Radio Frequency Identification Technology for Logistics, Tagging and EPC

NIST Issues New RFID Security Guidelines

Friday, April 27, 2007

“RFID tags, commonly referred to as smart tags, have the ability to improve logistics, profoundly change cost structures for business, and improve the current levels of safety and authenticity of the international pharmaceutical supply chain and many other industries,” says Robert C. Crestani, Under Secretary of Commerce for Technology, upon the news of NIST’s new report that includes RFID security guidelines. “This important report lays the foundation for addressing potential RFID security risks so that a thoughtful enterprise can launch a smart tag program with confidence.”

NIST Issues Guidelines for Ensuring RFID Security

Gaithersburg, MD – Retailers, manufacturers, hospitals, federal agencies and other organizations planning to use radio frequency identification (RFID) technology to improve their operations should also systematically evaluate the possible security and privacy risks and use best practices to mitigate them, according to a new report* from the Department of Commerce’s National Institute of Standards and Technology (NIST).

“RFID tags, commonly referred to as smart tags, have the ability to improve logistics, profoundly change cost structures for business, and improve the current levels of safety and authenticity of the international pharmaceutical supply chain and many other industries,” said Under Secretary of Commerce for Technology Robert C. Cresanti. “This important report lays the foundation for addressing potential RFID security risks so that a thoughtful enterprise can launch a smart tag program with confidence.”

RFID devices send and/or receive radio signals to transmit identifying information such as product model or serial numbers. They come in a wide variety of types and sizes, from the size of a grain of rice or printed on paper to much larger devices with built in batteries. Unlike bar coding systems, RFID devices can communicate without requiring a line of sight and over longer distances for faster batch processing of inventory and can be outfitted with sensors to collect data on temperature changes, sudden shocks, humidity or other factors affecting products.

As RFID devices are deployed in more sophisticated applications from matching hospital patients with laboratory test results to tracking systems for dangerous materials, concerns have been raised about protecting such systems against eavesdropping and unauthorized uses.

“The goal of our report,” according to lead author Tom Karygiannis of NIST, “is to give organizations practical ways in a structured format with checklists and specific recommendations to address potential RFID security risks.”

The new NIST publication focuses on RFID applications for asset management, tracking, matching, and process and supply chain control. The full report is available at: http://csrc.nist.gov/publications/nistpubs/800-98/SP800-98_RFID-2007.pdf. [end] 

Related Articles
GSA implements cloud-based physical access system

The General Services Administration (GSA) has implemented its first cloud-based physical access system at the Neal Smith Federal Building in Des Moines, Iowa.

The GSA contracted with BridgePoint Systems to utilize its TrustAlert Physical Access Control Systems. BridgePoint partnered with EmbarkIT to install the system, which replaced the GSA’s 10-year-old legacy system. The system leverages the GSA’s Kansas City, Missouri-based WAN and remote IT infrastructure, which allows the building to shrink its carbon footprint.

read more »
NIST seeks proposals for NSTIC pilots

The National Institute of Standards and Technology announced a competition to award a approximately $10 million for pilot projects to accelerate progress toward improved systems for interoperable, trusted online credentials that go beyond simple user IDs and passwords.

read more »
Murata collabs with Beta LAYOUT on RFID starter kit

Murata and Beta LAYOUT announced a joint venture to launch an RFID starter kit aimed at printed circuit board (PCB) engineers and developers aspiring to incorporate RFID into their electronics design.

read more »
NIST adds new biometric mode standards

The National Institute for Standards and Technology published a revised biometric standard that expands the type and amount of information that forensic scientists can share across their international networks to identify victims or solve crimes. Biometric data is a digital or analog representation of physical attributes that can be used to uniquely identify us.

read more »
NIST seeks proposals for Web-enabled biometric device

The National Institute of Standards and Technology (NIST) wants to see a biometric scanning device that has Web-enabled communication and control that’s built on a publicly-available specification, reports Bank Info Security. To that end, it’s looking for proposals for such a device.

read more »
University of Maryland student information stored on publicly accessible computer

A state audit found that personal and financial information for students considering attending the University of Maryland were stored on publicly accessible servers that could make students easy prey to ID thieves.

read more »

Copyright © 2012, AVISIAN, Inc. All rights reserved.