Skip to Main Content
In recent years, as RFID reader equipments have been widely deployed in handled devices, the security problems between mobile reader and RFID server are important obviously. In this paper, under the assumption of that the communication channel between RFID server and RFID reader is not secure, we propose a novel scheme conforming EPC C1G2 standards which is with low implementation cost. Benefit from reducing the manpower of market management, the market members can use the mobile reader to query products information and make a secure transaction through cash register efficiently. Moreover, in order to achieve the mutual authentication, our proposed scheme integrates the fingerprint biometrics, related cryptology and hash function mechanism to ensure the security of the transmission messages. The proposed scheme is also beneficial to M-commerce and can resist known attacks.