& nfc based e-library implementation farrukh...

IT 15018

Examensarbete 30 hpApril 2015

ANDROID SECURE DEPLOYMENT

& NFC BASED E-LIBRARY IMPLEMENTATION

FARRUKH HASSAN

Institutionen för informationsteknologiDepartment of Information Technology

Teknisk- naturvetenskaplig fakultet UTH-enheten Besöksadress: Ångströmlaboratoriet Lägerhyddsvägen 1 Hus 4, Plan 0 Postadress: Box 536 751 21 Uppsala Telefon: 018 – 471 30 03 Telefax: 018 – 471 30 00 Hemsida: http://www.teknat.uu.se/student

Abstract

ANDROID SECURE DEPLOYMENT AND NFCBASED E-LIBRARY IMPLEMENTATION

Farrukh Hassan

This thesis communicates a new approach for the future Library system using secureNFC technology. Today we can use NFC and Android based mobile phones to buildmodern library system in which user will instead of standing in the queue can directlyborrow and return books. The NFC technology which will use in this thesis is capableof storing small amount of information. This storage will be used for maintaining thebooks records. Although the NFC works in close proximity but still there arepossibilities of attacks. Due to contact less communication the victim cannot noticethe attacks. There are different types of attacks which can occur includingmodification of data and listening to the communication by unknown user. Thereforein this thesis the author will look into how one can protect the system from thesekinds of at-tacks. The motivation behind the thesis is to introduce scalable cloudbased infrastructure as a backbone Library. Current systems using bar codetechnology are not secure. Therefore an infrastructure needs to be built whichincludes cloud based server for key distribution and data storage. Furthermore, thisthesis includes a study of the encryption and decryption schemes for close proximitycommunications. A new novel algorithm has been introduced and implemented as anencryption scheme for this thesis work. The Huffman scheme has been modified and16 bit keys have been used for the key exchange. The new approach is compared withthe existing techniques and found that it is reliable as compared to other techniques.

Keywords: Cloud based Server, Attacks, Heterogeneous Networks, Authentication,RFID tags, NFC, Partial keys.

Tryckt av: Reprocentralen ITCIT 15 017Examinator: Justin PearsonÄmnesgranskare: Edith NgaiHandledare: Izhar Ahmed Khan

Acknowledgements !"#$%&'"()*+,"&)-.",$",/01-"2&3)4/,5"2&&0/"($*",/."6&.++)14+7"!"#$%&'"&$8.",$" ,/01-" 35" 6.&$8.'" 90*.1,+" #/$" 0&#05+" +%99$*,.'" 3." '%*)14" 35"+,%').+7" !" #$%&'" 0&+$" &)-." ,$" ,/01-" 35" ,%,$*" :'),/" ;40)" ($*" /.*"<$1,)1%$%+" +%99$*," 01'" 4%)'01<." ,/*$%4/" ,/." 9*$=.<,>" #),/$%," /.*"0,,.1,)$1"01'"4%)'01<.",/)+"#$*-"#$%&'"/08."1$,"6..1"()1)+/.'7""

!"03",/01-(%&" ,$"35"<$&&.04%.+"01'"(*).1'+" ($*" ,/." (*%),(%&"')+<%++)$1+"06$%,",/.",/.+)+"#$*-7"

""""""""""""""""""""

Table of Contents !

!"#$%&'$())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(:**$*?"@$$-30*-"1$,"'.()1.'7!

!'*+,-./01/2/+$#())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))3!

4&"./(,5(6,+$/+$#())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(33!

4/%23+,.,17())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(8!

9! :+$%,0;'$3,+())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(<!A7A! @0<-4*$%1'"01'"9*$6&.3"3$,)80,)$1"77777777777777777777777777777777777777"B!A7C! D8.*0&&"0)3"77777777777777777777777777777777777777777777777777777777777777777777777777777777777"E!A7F! G$1<*.,."01'"8.*)()06&."4$0&+"7777777777777777777777777777777777777777777777777777"E!A7H! I<$9."777777777777777777777777777777777777777777777777777777777777777777777777777777777777777777777"J!A7B! D%,&)1."777777777777777777777777777777777777777777777777777777777777777777777777777777777777777777"J!A7E! G$1,*)6%,)$1+"7777777777777777777777777777777777777777777777777777777777777777777777777777777"J!

=! >&'*1%,;+0()))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(9?!C7A! KL!M"77777777777777777777777777777777777777777777777777777777777777777777777777777777777777777777"AN!C7C! ;LG"777777777777777777777777777777777777777777777777777777777777777777777777777777777777777777777"AA!C7F! !1,.*<.9,)$1"77777777777777777777777777777777777777777777777777777777777777777777777777777777"AC!C7F7A! 21'*$)'"7777777777777777777777777777777777777777777777777777777777777777777777777777"AF!C7H! G&$%'"G$39%,)14"777777777777777777777777777777777777777777777777777777777777777777777"AH!C7H7A! O$$4&."299":14)1."77777777777777777777777777777777777777777777777777777777"AE!C7H7C! @)4,06&.77777777777777777777777777777777777777777777777777777777777777777777777777777"AP!C7B! K.&0,.'"Q.</1$&$4).+"7777777777777777777777777777777777777777777777777777777777777777"AJ!

?! @/.&$/0(A,%*())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(9B!F7A! R!L2K:"G&0++)<"<0*'"0,,0<-+"777777777777777777777777777777777777777777777777777"AS!F7A7A! I.<%*),5"'.8.&$93.1,"$("R!L2K:"G&0++)<"<0*'"777777777"AS!F7C! I.<%*),5"'.8.&$93.1,",$#0*'+";LG"77777777777777777777777777777777777777"CN!F7F! Q$#0*'+"I30*,":18)*$13.1,"77777777777777777777777777777777777777777777777777"CN!F7H! 2%,/.1,)<0,)$1".1/01<.3.1,")1"T)6*0*5"65"%+."$(";LG"77777"CA!F7B! 2%,/.1,)<0,)$1".1/01<.3.1,")1"T)6*0*5"65"%+."$(";LG"77777"CA!

8! C/$D,0,.,17())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(==!H7A! K.U%)*.3.1,+"77777777777777777777777777777777777777777777777777777777777777777777777777777"CC!H7C! V&011.'"I<.10*)$"77777777777777777777777777777777777777777777777777777777777777777777777"CF!H7F! Q.+,"@.'"7777777777777777777777777777777777777"E%%,%F(>,,*2&%*(+,$(0/53+/0)!

<! G7#$/2(H/#31+()))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(=<!

B7A! I<.10*)$"%+04."7777777777777777777777777777777777777777777777777777777777777777777777777777"CB!B7C! 21,)<)90,.'"2*</),.<,%*."7777777777777777777777777777777777777777777777777777777777"CB!B7C7A! I.<%*)14"'.8.&$93.1,"($*"T)6*0*5"299&)<0,)$1"

I<.10*)$"7777777777777777777777777777777777777777777777777777777777777777777777777777"CE!B7C7C! @$$-"I<.10*)$"777777777777777777777777777777777777777777777777777777777777777777"CP!B7F! D8.*8).#"$(",/."!39&.3.1,.'"+<.10*)$"777777777777777777777777777777777"CP!B7F7A! ;LG"60+.'"R$6)&."7777777777777777777777777777777777777777777777777777777777"CJ!B7F7C! G0*'"%+04."77777777777777777777777777777777777777777777777777777777777777777777777"CJ!B7F7F! Q/."W.5"I.*8.*"7777777777777777777777777777777777777777777777777777777777777777"CS!B7H! L%1<,)$10&),5"$(",/."099*$0</77777777777777777777777777777777777777777777777777"CS!

I! :2J./2/+$&$3,+K(ELJ/%32/+$#(&+0(@/#;.$#()))(:**$*?"@$$-30*-"1$,"'.()1.'7!

E7A! X+06)&),5":1/01<.3.1,"7777777777777777777777777777777777777777777777777777777777777"FB!E7C! M.8.&$93.1,"Q$$&+"7777777777777777777777777777777777777777777777777777777777777777777"FB!E7F! G/$)<."$(",/.".1<*59,)$1",.</1)U%."7777777777777777777777777777777777777777"FB!E7H! I<.10*)$"K.+%&,+"7777777777777777777777777777777777777777777777777777777777777777777777777"FE!E7H7A! T)6*0*5"+<.10*)$"77777777777777777777777777777777777777777777777777777777777777"FE!

M! 6,+'.;#3,+#(&+0(N;$;%/(A,%*())))))))))))))))))))))))))))))))))))))))))))))))))))))))))(88!P7A! G$1<&%+)$1+YK.<$33.1'0,)$1+"7777777777777777777777777777777777777777777777"HH!P7C! L%,%*."Z$*-"7777777777777777777777777777777777777777777777777777777777777777777777777777777"HH!

@/5/%/+'/#())))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))))(8I!!"

Terminologies "

X!"" X+.*")1,.*(0<."

XKT"" X1)8.*+0&"*.+$%*<."&$<0,$*"

Z)L)" 2",.*3"($*"[)4/\(*.U%.1<5"Z)*.&.++"T$<0&"2*.0";.,#$*-"

2:I"" 2'801<.'":1<*59,)$1"I,01'0*'"

[QQV"" [59.*,.],",*01+(.*"9*$,$<$&"

[QQVI"" [QQV"I.<%*."

!"Q" !1($*30,)$1"Q.</1$&$45"

R2G"" R.')0"2<<.++"G$1,*$&"

R!L2K:" ;^V"+.3)<$1'%<,$*\$#1.'"Q*0'.30*-"

;LG" ;.0*"L).&'"G$33%1)<0,)$1"

VG" V.*+$10&"G$39%,.*"

V!;"" V.*+$10&")'.1,)()<0,)$1"1%36.*"

KL" K0')$"L*.U%.1<5"

KL!M"" K0')$"L*.U%.1<5"!'.1,)()<0,)$1"

KI2"" K)8.+,\I/03)*\2'&.301"9%6&)<"-.5"<*59,$+5+,.3"

IRI"" I/$*,"3.++04."+.*8)<."

I_T" I,*%<,%*.'"_%.*5"T014%04."

1 Introduction Q/)+" ,/.+)+" <$33%1)<0,.+" 0"1.#"099*$0</" ($*" ,/." (%,%*."T)6*0*5"+5+,.3"%+)14" +.<%*.";LG" ,.</1$&$457"Q$'05"#." <01"%+.";LG"01'"21'*$)'"60+.'"3$6)&."9/$1.+" ,$" 6%)&'"3$'.*1"&)6*0*5"+5+,.3")1"#/)</"%+.*"#)&&")1+,.0'"$("+,01')14")1",/."U%.%."<01"')*.<,&5"6$**$#"01'"*.,%*1"6$$-+7"Q/.";LG",.</1$&$45"#/)</"#)&&"%+.")1",/)+",/.+)+")+"<0906&."$("+,$*)14" +30&&" 03$%1," $(" )1($*30,)$17" Q/)+" +,$*04." #)&&" 6." %+.'" ($*" 30)1,0)1)14" ,/."6$$-+" *.<$*'+7" 2&,/$%4/" ,/." ;LG" #$*-+" )1" <&$+." 9*$])3),5" 6%," +,)&&" ,/.*." 0*."9$++)6)&),).+"$("0,,0<-+7"M%.",$"<$1,0<,"&.++"<$33%1)<0,)$1",/."8)<,)3"<011$,"1$,)<.",/."0,,0<-+7"Q/.*."0*."')((.*.1,",59.+"$("0,,0<-+"#/)</"<01"$<<%*"#/)</")1<&%'."3$')()<0,)$1"$("'0,0"01'"&)+,)14",$",/."<$33%1)<0,)$1"65",/."%1-1$#1"%+.*7"Q/.*.($*.")1",/)+",/.+)+",/."0%,/$*"#)&&"&$$-"/$#"$1."<01"+0(."(*$3",/.+."-)1'+"$("0,,0<-+7""V*$,.<,)$1" $(" ')8.*+." 1.,#$*-+" )+" 01" .5.\<0,</)14" 01'" </0&&.14)14" ,/.3." ($*" 0" &$," $("*.+.0*</.*+7"!"9.*+$10&&5"6.&).8.",/0,",/.*.")+"0"4*.0,"1..'"($*"1.#"+.<%*),5"099*$0</.+",$#0*'+" ,/." ,*0'),)$10&" &)6*0*5" +5+,.37" [$#.8.*>" 0''*.++)14" +.<%*),5" </0&&.14.+" )1"%6)U%),$%+"/.,.*$4.1.$%+"1.,#$*-+")+"*.&0,)8.&5",$%4/"#$*-7"Q/)+"*.9$*,")+")1,.1'.'",$"0''*.++"+%</"-)1'"$(")++%.+"01'"9*$9$+.'"+$3."+.<%*),5"3.</01)+3"($*",/*.0,+"*.&0,.'",$"+.<%*),5")1";LG"01'"&)6*0*5"30104.3.1,"+5+,.37" "Q/)+"*.9$*,"0''*.++.+",/."+.<%*),5",.</1)U%.+"0+"90*,"$(",/."+.<%*),5"3.</01)+3"040)1+,",/." 0,,0<-+" )1" /.,.*$4.1.$%+" 1.,#$*-+7" L%*,/.*3$*.>" ,/)+" *.9$*," 0&+$" ($<%+.+" $1"8%&1.*06)&),).+"01'"#.0-1.++.+" )1"R)(0*." <&0++)<" <0*'" `A-a7" "2," ,/.".1'"$(" ,/)+" ,/.+)+" 0"+.<%*),5"3.</01)+3"/0+"6..1"0&+$"9*$9$+.'",$"$8.*<$3.",/."#.0-1.++.+"$(",/)+"<0*'7 "

1.1 Background and problem motivation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

2+",/.";.0*"L).&'"G$33%1)<0,)$1")+"4.1.*0&&5"+/$*,")1"*014.>"+$"*.+.0*</.*+"'$"1$,"9%,",$$"3015".(($*,+"*.40*')14",/."+.<%*),5"$(",/)+"().&'7"!",/)1-",/."3)+<$1<.9,)$1"&).+")1",/."1.0*1.++"$(",/."<$33%1)<0,)$17"V.$9&."305"/08."3)+)1,.*9*.,.'",/0,",/)+"-)1'"$("+/$*,"*014."<$33%1)<0,)$1"305"1$,"6.",.39.*.'7""

!1"9*0<,)<.")," )+"9$++)6&.",$"0,,0</"+%</"-)1'"$("<$33%1)<0,)$1"6.<0%+.",/."+/$*,"*014."10,%*."$("+)410&+"<011$,"9*.8.1,",/."0,,0<-+7"""Q/."30)1"3$,)80,)$1"6./)1'",/)+",/.+)+")+",$")18.+,)40,.",/."1.0*"().&'"<$33%1)<0,)$1"(*$3",/."+.<%*),5"9$)1,"$("8).#7""

R$*.$8.*>"+.<%*),5")1"/.,.*$4.1.$%+"1.,#$*-+")+"*.&0,)8.&5"0"6)4"01'"</0&&.14)14",0+-7"Q/.*."/08."6..1"+.8.*0&"0,,.39,+"30'.",$"+.<%*."/.,.*$4.1.$%+"1.,#$*-+"6%,"+,)&&",/)+"0*.0"1..'+"+$3."'.8.&$93.1,")1"$*'.*",$"30-."(%&&"%+."$(",/)+",.</1$&$457"

1.2 Overall aim Q/."$8.*0&&"0)3"$(",/)+",/.+)+")+",$".]9&$*.",/."+.<%*),5")1";LG",.</1$&$45"01'",$"%,)&)b.",/)+",.</1$&$45"($*"T)6*0*5"+5+,.37"L$*",/)+"9%*9$+."0"G&$%'"+.*8.*"#)&&"6."%+.'"($*"-.5"')+,*)6%,)$1"($*",/."0%,/.1,)<0,)$1"6.,#..1",/."I30*,9/$1."01'";LG",.</1$&$457"X+.*"#),/",/.";LG".106&.'"3$6)&."9/$1."#)&&"+.<%*.&5"+<01",/.",04"$1",/."6$$-"01'"#)&&"4.,",/."0&&",/."'.,0)&"*.40*')14",/."6$$-7"2'3)1)+,*0,$*+"#)&&"(%*,/.*".1+%*.",/.")++%)14"01'"*.,%*1)14"$(",/."6$$-+")1+,.0'"$("%+)14"60*"<$'.",.</1$&$457""

1.3 Concrete and verifiable goals Q/." <$1<*.,." ,/.$*.,)<0&"U%.+,)$1+" ,/0,"/08."6..1"40,/.*.'" )1" ,/." )1),)0&" *.+.0*</" ,/0,"#)&&"6."01+#.*.'")1",/)+",/.+)+"0*."0+"($&&$#+c""4D/,%/$3'&.(G$;07O(

Q$"+,%'5" ,/."+,0,."$("0*,";LG" ,.</1$&$4).+" ,$"4.," )1+)'."-1$#&.'4."$(" ,/." +0)'",.</1$&$457"

Q$" )1+9.<," 8%&1.*06)&),).+" 01'" '.(.<,+" )1"R)(0*." <&0++)<" <0*'" 01'"30-." ),"3$*."+.<%*."040)1+,",/.",/*.0,+7""

R0-." 0" +,%'5" $1" ,/." +,0,." $(" 0*," $(" KL!M>" ;LG" 01'" *.&0,.'" ,.</1$&$4).+" )1"%6)U%),$%+"/.,.*$4.1.$%+"1.,#$*-+" )1"$*'.*",$" )1<*.0+."+.<%*),5"0+9.<,+"01'",$"()1'"6.,,.*"01'"+.<%*."%+04.7""

!18.+,)40,)14" 8%&1.*06)&),).+" )1" KL!MY" ;LG" <0*'+" 01'" 30-)14" 6.+," 040)1+,"')((.*.1,"0,,0<-+7""

[$#";LG".106&.'"3$6)&."9/$1.+"<01"+/0*."'0,0"+.<%*.&5"#),/"+/$*,"*014."KL!M"<0*'+d"

[$#";LG"01'"$,/.*",.</1$&$4).+"305"#$*-",$4.,/.*",$"($*3"0"+.<%*."+.++)$1d"

[$#"<01"0"+.<%*."<$33%1)<0,)$1"6.".+,06&)+/.'")1")1,.&&)4.1,"&)6*0*5"+5+,.3d"

I,%'5"[%((301".1<*59,)$1"+</.3."01'"9*$9$+.'"+%),06&."*.&)06&."+.<%*."+</.3."($*"<*59,$4*09/57""

:1'\%+.*"#)&&"6."06&.",$"()1'",/.")1($*30,)$1"06$%,",/."6$$-+""

2'3)1)+,*0,$*"<01"%+.",/."+5+,.3"($*")++%)14"01'"*.,%*1)14"$(",/."6$$-+"

4/'D+3'&.(4&#*#(P,"Q/'$3R/#SO((

Q$"+%44.+,"+$3."+.<%*),5"+$&%,)$1+"($*";LG",$"+9&),"+.<*.,."'0,0"01'"9*)80,."'0,0"65"30-)14"%+."$(",/."+/$*,"*014."KL!M"60+."$6=.<,+"+%</"0+"R)(0*."G&0++)<"<0*'7""

Q$" )1,*$'%<." ,/."<$1<.9,"$(" +.<%*."/.,.*$4.1.$%+"%+)14";LG" )1"/.,.*$4.1.$%+"1.,#$*-+"($*".]039&."[QQVI>"@&%.,$$,/7"

Q$" +.," %9" 0" +.<%*." <$33%1)<0,)$1" 65" 30-)14" %+." $(" ,/." 90*,)0&" -.5+! )1" 01")1,.&&)4.1,"&)6*0*5"+5+,.37""

Z/0," -)1'" $(" <$33%1)<0,)$1" *.+9$1+." ,)3." <01" #." 4.," 0(,.*" +.<%*),5")39&.3.1,0,)$1+d""

K.9&0<)14",/."60*"<$'.",.</1$&$45"#),/"I.<%*.";LG",.</1$&$457""

V*$9$+)14"0"+<0&06&.")1(*0+,*%<,%*."($*"(%,%*."&)6*0*5"+5+,.3"

Q/." 4$0&" ,$" 0</).8." )+" ,/0," 0&&" ,/." 06$8." 9$)1,+" #)&&" 6." 01+#.*.'" ,$" (%&()&" ,/." #$*-"0++$<)0,.'"#),/",/)+",/.+)+7"2,",/.".1'"$(",/)+"#$*->"),"+/$%&'"6."06&.",$"01+#.*",/0,"#/5",/."099&).'"+.<%*),5",.</1)U%.+"0*."6.,,.*",/01"$,/.*",.</1)U%.+7"""""""

1.4 Scope Q/." +<$9."$(" ,/)+" ,/.+)+" ,$" )18.+,)40,." ,/." +<0&06&." )1(*0+,*%<,%*."#/)</" <01"'$" +.<%*."""<$33%1)<0,)$1"6.,#..1",/."<&$+."9*$])3),5",.</1$&$4).+7"L$*",/.+."*.0+$1+"($&&$#)14"0*.0"#)&&"6.",0-.1")1,$"<$1+)'.*0,)$1+7""

;LG" `;.0*" L).&'" G$33%1)<0,)$1a" \" ;.0*" L*.U%.1<5" G$33%1)<0,)$1" `;LGa" )+"+/$*,"*014.",.</1$&$45"01'"),")+".],.1'.'"($*3"$("KL!M7"Q/.+.",04+"0*."0&+$"%+.'",$"+,$*.")1($*30,)$1"6%,"'.8)<.+"+/$%&'"6."<&$+."9*$])3),57"

KL!M"+30*,"<0*'+"`,04+a"\"KL!M")+"$1."$(",/."&0,.+,",.</1$&$4).+"#/)</"<01"6.",$")'.1,)(5" ,/." $6=.<,+" 01'" +,$*)14" +30&&" 03$%1," $(" )1($*30,)$17" !,+" +,$*04." *014."80*).+" (*$3"65,.+" ,$" -)&$65,.7" Q/.*." 0*."30)1&5" ,#$"3$'.+" $("KL!M"#/)</" 0*."2GQ!e:"01'"V2II!e:"3$'."

G&$%'" 60+.'" -.5"M)+,*)6%,)$1" +.*8.*" " 2" <&$%'" +.*8.*" ,/0,"#)&&" 6." %+." ($*" ,/."0%,/.1,)<0,)$1"01'"')+,*)6%,)$1"$("-.5+7"

21'*$)'"60+.'"I30*,9/$1." "2"3$6)&."9/$1.",/0,"9.*($*3+"+.8.*0&"<$39%,)14"(%1<,)$1+" 4.1.*0&&5" /08)14" 0" ,$%</" +<*..1" )1,.*(0<.>" )1,.*1.," 0<<.++" 01'" 01"$9.*0,)14"+5+,.3"<0&&.'"01'*$)'7"

I.<%*),5"</0&&.14.+""

1.5 Outline G/09,.*"A"'.+<*)6.+",/."60<-4*$%1'"01'"9*$6&.37"G/09,.*"C".]9&0)1+",/."$8.*0&&",/.$*57"G/09,.*"F"'.+<*)6.+",/."3.,/$'$&$457"G/09,.*"H".&06$*0,.+")39&.3.1,0,)$17"G/09,.*"B"'.+<*)6.+",/."*.+%&,+7"2,",/.".1'"</09,.*"E"'.+<*)6.+",/."<$1<&%+)$1"01'"(%,%*."#$*-7"""

1.6 Contributions 2&&",/."*.+.0*</"01'"'.8.&$93.1,")+"'$1."65",/."0%,/$*"/$#.8.*",/."<*.'),+"4$",$"35"+%9.*8)+$*" ($*" /.&9)14" 0," 80*)$%+" 9$)1,+7" Q/)+" ,/.+)+"#)&&" .1'"%9"#),/" +$3." ,.</1)<0&"<$1,*)6%,)$1",$",/."3$'.*1"<$39%,)14".*0"&)-.c""

!," #)&&" )1,*$'%<." ,/." <$1<.9," $(" +.<%*." <$33%1)<0,)$1" %+)14" ;LG" )1"/.,.*$4.1.$%+"1.,#$*-+"($*".]039&."[QQVI>"@&%.,$$,/7"

" !,"#)&&" +.," %9" 0" +.<%*." <$33%1)<0,)$1"65"30-)14"%+." $(" ,/."90*,)0&" -.5+! )1" 01")1,.&&)4.1,"&)6*0*5"+5+,.37""

2 Background Q/)+" </09,.*"'.+<*)6.+" ,/." ,/.$*.,)<0&"60<-4*$%1'"06$%," ,.</1$&$4).+" ,/0,"0*."%+.'" )1",/)+",/.+)+7"

2.1 RFID KL!M")+"$1."$(" ,/." &0,.+," ,.</1$&$4).+"#/)</"<01"6." ,$" )'.1,)(5" ,/."$6=.<,+"01'"+,$*)14"+30&&"03$%1,"$(")1($*30,)$17"!,+"+,$*04."*014."80*).+"(*$3"65,.+",$"-)&$65,.7"Q/.*."0*."30)1&5",#$"3$'.+"$("KL!M"#/)</"0*."2GQ!e:"01'"V2II!e:"3$'."fAg7"

L)4%*."Ac""2<,)8."01'"V0++)8."3$'.+"fCg"

!1"2GQ!e:"3$'.",/.*.")+"1$"1..'",$"9*$8)'.",/."9$#.*"+%99&57"Q/.",*01+9$1'.*")1",/."KL!M"/0+")1,.*10&"9$#.*"+%99&57"Q/)+"9$#.*"+%99&5".106&.+",/."*.0'.*",$"*.0'",/."'0,0"#/)&.")1"V2II!e:"3$'.",*01+9$1'.*"/0+"1$")1,.*10&"+%99&57"Q/.")1'%<."<%**.1,"9$#.*"%9",/."<)*<%),",$",*01+3),"0"*.+9$1+.",$"*.0'.*7"fFg"

KL!M" )+" %+.'" ($*" 0%,$\)'.1,)()<0,)$1" $(" 9.,+>" 0++.,+>" 9.$9&." $6=.<,+" 01'" )1" $%*" <0+." )1"&)6*0*5"<0*'",04+7"!1"3015"099&)<0,)$1+"&)-.",*0<-)14"+5+,.3"01'"6%+)1.++"+%99&5"</0)1>"KL!M" ,.</1$&$45" )+" 8.*5"%+.(%&&5"#$*-.'7" !," /0+" 0" ,*.3.1'$%+" .((.<," ,$#0*'+" +$<).,5".+9.<)0&&5")1"R$6)&."KL!M7"@5"%+)14"KL!M"*.0'.*"</)9")1,$"3$6)&."<.&&"$*"VM2>"),"#$%&'"/.&9" )1" +/$99)14" 01'" 0&&$#+" .0+5" 01'" U%)<-" 0<<.++" ,$" ,*01+0<,)$1" 65" %+)14" ')((.*.1,"KL!M",04+7"fCCg""

Z),/" <$390*.'" ,$"60*<$'." ,.</1$&$45>" .0</"9*$'%<,"3%+,"6." +<011.'"$1."65"$1."65"%+)14" 60*<$'." &06.&" +0)'"X1)($*3"V*$'%<,"G$'." `XVGa" 01'" ),"3%+," 6." 6$%4/," 6.($*."*.0')147"@0*<$'."=$6")+",)3."<$1+%3)14>"/%301".**$*".((.<,+"01'"&06$*)$%+"01'"),")+"0&+$"')(()<%&,",/0,"&)1."$("+)4/,"6.,#..1"&06.&"01'"*.0'.*7"Q/.*.($*.>"KL!M",.</1$&$45"0&&$#+"%+" ,$" .0+5" 01'" U%)<-" *.+%&,+" )1" &0*4." 1%36.*" $(" 6%&-+7" !," <01" 0&+$" #$*-" )1" <$39&.]".18)*$13.1,")1"*.0&",)3."+5+,.3+7""fCCg""!"#$% #&'()$*(+,*+(-% #$% .-/-012-.% 34% 567% 8013)0% 9&,% )&.% *"#$% 1(#8#&)*#1&% #$% +$-.% *1%-$*)30#$"%'1(%(-)0%*#:-%)+*1:)*#,%#.-&*#'#,)*#1&%)&4%,1:2)&4;%<=9>%!-,"&10184%+$-.%'1+(%:)#&%3+#0.#&8%301,?$%)$%'1001@#&8A%%B; <=9>%!)8$%C; <=9>%<-).-($%%D; 567%E#..0-@)(-%F; 567%G-*@1(?%%

KL!M",04+"<$1,0)1"0"%1)U%.":VG"1%36.*"01'"),")+"+.*)0&"1%36.*",/0,")'.1,)().+"01"$6=.<,")1"+%99&5"</0)17"!,"<$1,0)1+":VG"30104.*"1%36.*>"),.3"<&0++>"+.*)0&"1%36.*7""KL!M" *.0'.*+" 0*." <$33$1&5" %+.'" ,$" +<01" ,04" ),.3+" 01'" +.1'" ,/0," '0,0" ,$" :VG"R)''&.#0*."($*"(%*,/.*"9*$<.++7""R)''&.#0*." )+" =%+," &)-." ()&,.*)14" +$(,#0*." ($*" *.0'.*+7" )," 30104.+" *.0'" .8.1,+" >4)8.+"0&.*,+"01'"8.*5"%+.(%&"($*"'0,0".]</014."6.,#..1"1.,#$*-"01'"*.0'.*7fCBg"""

2.2 NFC ;.0*" L*.U%.1<5" G$33%1)<0,)$1" `;LGa" )+" +/$*," *014." ,.</1$&$45" 01'" )," )+" .],.1'.'"($*3"$("KL!M7"Q/.+.",04+"0*."0&+$"%+.'",$"+,$*.")1($*30,)$1"6%,"'.8)<.+"+/$%&'"6."<&$+."9*$])3),57" "X+.*" <01"+,$*."')((.*.1,"-)1'"$(" )1($*30,)$1"#/)</" )1<&%'.+"90++#$*'+"$*"

+30&&" 905&$0'+" $(" '0,0" 6.,#..1" 01" ;LG" ,04" 01'" 01" 21'*$)'\9$#.*.'" '.8)<.>" $*"6.,#..1",#$"21'*$)'\ 5",#$"3$'.+"$(")1"#/)</",/)+" ,.</1$&$45"#$*-" 01'" ,/.+."3$'.+" 0*." +)3)&0*" ,$" KL!M" ,.</1$&$45"3$'.+7" Q/.+."3$'.+")1<&%'."2GQ!e:"01'"V2II!e:7""!1"2GQ!e:"3$'."6$,/"'.8)<."01'",04"4.1.*0,.",/."KL"()&.'"01'"<$33%1)<0,)$1")+"'$1."#/)&.")1",/."90++)8."3$'."$1&5",/."099&)01<.+"+,0*,+",/."<$33%1)<0,)$1+7""Q/.*."0*."')((.*.1,"($*30,+")1"#/)</",/."'0,0")+"+,$*.'")1",/.+.",04+"01'"($&&$#",/.";LG"L$*%3"+,01'0*'"#/)</")+"-1$#1"0+",/.";LG"M0,0":]</014."L$*30,"`;M:La7"Q/.*."0*."

')((.*.1," -)1'+" $(" 0'801,04.+" ,$" ($&&$#" ,/)+" ($*%3" 6%," ,/." 30)1" 0'801,04.+" $(" ,/)+"($*%3")+",/0," )," )+"%+.'"($*".1<09+%&0,)14",/."'0,0"01'"01'*$)'"60+.'"I30*,9/$1."<01"90*+."),7"";LG")+"0"#)*.&.++",.</1$&$45"#),/"+/$*,\*014")7.7",59)<0&&5"H<3"')+,01<."$*"&.++",/01",$".+,06&)+/"0"<$11.<,)$17"!,"0&&$#+"%+.*+",$"+/0*."'0,0"6.,#..1""";LG",04"01'"21'*$)'"DI"9$#.*.'"30</)1."$*"),"305"6."6.,#..1""",#$"21'*$)'"DI"9$#.*.'"30</)1.+7""M%*)14"%+)14"$("')((.*.1,";LG",04+>"#."3%+,"6."0#0*.",/0," ,/.+.",04+"0*."$("')((.*.1,"*014."01'"<$39&.]),57"R$+,&5"#.&&"-1$#1"0*."+)39&.",04+"01'",/.+."=%+,"$((.*"*.0'"01'"#*),."+.301,)<+"01'"+$3.,)3.+"$1&5"$1."0*.0".),/.*"*.0'"$*"#*),."'.9.1'+"%9$1"$1.\,)3." 9*$4*03306&." 0*.0+7" 2&+$" <$39&.]" ,04+" 0*." %+.'" 01'" ,/.+." $((.*" #),/"30,/.30,)<0&"$9.*0,)$1+"01'"0&+$"<*59,$4*09/)<"60+.'"0%,/.1,)<0,)$1"0<<.++",$"+9.<)()<"+.<,$*7" Q/.+." ,04+" 0&+$" <$1,0)1" ')((.*.1," $9.*0,)$1+" *.&0,.'" ,$" .18)*$13.1," 01'" '0,0"+,$*.'" )1,$" ,/.+." ,04+" <01" 6." 0&+$" #*),,.1" )1" ')((.*.1," ($*30,+" 6%," 3$+,&5" +,01'0*'"($*30,"<0&&.'";MLG"`;LG"M0,0":]</014."L$*30,a")+"%+.'"0,"01'*$)'"(*03.#$*-"60+.'7"""

2.3 Interception Q/." <$33%1)<0,)$1" ($*" ,/." ;LG" )+" 0," ,/." T)1-" &.8.&" 01'" ,/)+" <$33%1)<0,)$1" )+" 1$,".1<*59,.'"+$",/.*."0*."</01<.+"$("0,,0<-+7"215"%10%,/$*)b.'"%+.*"<01".0+)&5"4.,"0<<.++"01'"<01"3$')(5",/."'0,07"Q/.*."0"+,*$14".1<*59,)$1"*.U%)*.'",$"6."'$1."0," ,/."/)4/.*"&.8.&7"Z." <01"%+."')((.*.1," <*59,$4*09/)<" 0&4$*),/3+" ,$" +.<%*." <$33%1)<0,)$17"Q/.+."0&4$*),/3+"<01".1<*59,",/."90<-.,+"01'"'0,0"<01"6.".]</014."6.,#..1",/."I.1'.*"I"01'",/."K.<.)8.*"K7"Q/."'0,0".1<*59,.'"65",/.+."0&4$*),/3+")+"<0&&.'"<)9/.*",.],"G7"Z."<01"%+." ,/." .1<*59,)$1" (%1<,)$1" *.9*.+.1,.'" 65" :" #),/" 0" -.5" W" `W:" 01" .1<*59,)$1" -.5a",$4.,/.*"#),/",/."$,/.*"0,,*)6%,.+"01'"<01"6."*.9*.+.1,.'"0+",/."($&&$#)14".U%0,)$17"

Gh:"`W:>"Va"

Z/.*."V")+",/."9&0)1",.],"01'"($*"'.<*59,)$1"#."<01"%+."M7"L$*"'.<*59,)$1"#."<01"%+."-.5"*.9*.+.1,.'"65"WM"01'",/."G"*.9*.+.1," ,/." ()10&"$%,9%,>" +$" ($*"'.<*59,)$1"#."<01"%+.",/."($&&$#)14".U%0,)$1"01'"L)4%*.",$"'.+<*)6.",/.".1,)*."+<.10*)$7"

VhM"`WM>"Ga"

L)4%*."Fc":1<*59,)$1"01'"M.<*59,)$1"$("'0,0"

Z/)&.".1<*59,)14"01'"'.<*59,)14" ,/."W.5" &.14,/" )+"3$+," )39$*,01," ($*" )1<*.0+)14" ,/."0&4$*),/3"*.&)06)&),57"2,,0<-.*+"<01".0+)&5"4%.++",/."-.5")("),+"&.14,/")+"+.,"+30&&7"I$"($*",/.+."*.0+$1",/."-.5"+/$%&'"6."+.,"&$147"L$*"-.5+".1<*59,)$1"01'"'.<*59,)$1",/.*."0*."')((.*.1,"<*59,$4*09/)<"+5+,.3"($*".747"+533.,*)<"<*59,$4*09/57"

2.3.1 Android I30*,9/$1."0*."9&05)14")39$*,01,"*$&."($*"6%)&')14"+30*,")1(*0+,*%<,%*."#/)</"9*$8)'."

\L)>" G03.*0" <$390++" 01'"0<<.&.*$3.,.*7" Q/.*." 0*." ')((.*.1," D9.*0,)14" I5+,.3+" )1,*$'%<.'" ($*" ,/.+." -)1'+" $("

I30*,9/$1."DI")1",/)+",/.+)+"01'*$)'"'%.",$"),+".1*)</)14"(.0,%*."01'"$9.1"9&0,($*3"($*"'.8.&$93.1,7"21'*$)'"0*."9$#.*.'"65"O$$4&."01'"/0+",/."($&&$#)14"0*</),.<,%*.7"

L)4%*."C7Cc"21'*$)'"0*</),.<,%*."

!JJ.3'&$3,+#O(299&)<0,)$1+"<01")1<&%'."<$1,0<,+>"<0&.1'0*>"309+>"01'"+3+"9*$4*03".,<7"

!JJ.3'&$3,+( N%&2/-,%*O( !1" 099&)<0,)$1" (*03.#$*-" #." <01" 0<<.++" ,/." /0*'#0*.>"60<-4*$%1'"+.*8)<.+"01'"&$<0,)$1"+.1+$*+"($*"40,/.*)14"&$<0,)$1")1($*30,)$17"

(T3"%&%3/#O(GYGii"&)6*0*).+"0*."%+.'")1"21'*$)'"(*03.#$*-"01'"'.8.&$9.*"<01"'.8.&$9",/.)*"$#1"&)6*0*5"0+"#.&&7"""

!+0%,30(@;+$32/(299&)<0,)$1+"/08.",/.)*"$#1")1+,01<."M0&8)-"e)*,%0&"R0</)1.7"

(T3+;L( U/%+/.( I%99$*,+" ($*" '*)8.*+>" 1.,#$*-" 099&)<0,)$1" 01'" 6*)'4)14" 6.,#..1" ,/."/0*'#0*."01'"+$(,#0*.7"

2.4 Cloud Computing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

G&$%'"G$39%,)14"0&+$"+%99$*,"8)*,%0&)b0,)$1"6$,/"0,",/."/0*'#0*."01'"+$(,#0*."&.8.&7"X+.*+"0*."9*$8)'.'"#),/"0"9$$&"$("*.+$%*<.+"01'",/.5"<01"%+."0"+)14&."+.*8.*"0+"3%&,)9&."8)*,%0&" +.*8.*7" Q/.*." 0*." $9.1"2V!" 0*." 080)&06&." ,/*$%4/"#/)</"'.8.&$9.*" <01"%+." )1",/.)*" 9*$=.<,+7" Q/." +.*8)<.+" )1" G&$%'" <$39%,)14" 0*." 0," 80*)$%+" &.8.&+7" Q/.+." &.8.&+")1<&%'."!00I!`!1(*0+,*%<,%*."0+"0"+.*8)<.a>"V00I"`V&0,($*3"0+"0"+.*8)<.a"01'"I.0+"`+$(,#0*."0+"0"+.*8)<.a7""

L)4%*."C7Pc"G&$%'"<$39%,)14"3$'.&"

I$(,#0*."0+"0"+.*8)<." )+"0"<$*."&05.*"$("<&$%'")1(*0+,*%<,%*.7"2,",/)+"&05.*":1'"%+.*"/0+"1$," ,$"#$**5" 06$%," ,/." &)<.1+)14" 01'" /08." 4&$60&" 0<<.++" ,$" ,/.)*" +$(,#0*.7" Q/.*." 0*."')((.*.1,"<$33.*<)0&"+.*8)<.+"080)&06&."#/)</"0*."9*$8)')14"+$(,#0*."0+"0"+.*8)<."#/)</")1<&%'."+0&.($*<.7<$37"

V&0,($*3" 0+" 0" +.*8)<." 9*$8)'.+" ,/." )1,.4*0,)$1" $(" ,/." 099&)<0,)$1" 7!," 9*$8)'." ,/."9.*+)+,.1," +,$*04." ($*" ,/." '0,0" 01'" 0" 9&0,($*3" ($*" ,/." '.8.&$9.*+" ,$" '.9&$5" ,/.)*"099&)<0,)$17" G$3901).+" #/)</" 0*." 9*$8)')14" 9&0,($*3" 0+" 0" +.*8)<." )1<&%'." 2b%*.>"O$$4&."299":14)1.>"01'":14)1."50*'".,<7""

!1(*0+,*%<,%*."0+"0"+.*8)<."9*$8)'.+",/.")1(*0+,*%<,%*."($*",/."099&)<0,)$1",$"+,$*."01'"($*"9*$<.++)147" Q/.*." 0*." ')((.*.1," 90<-04.+" 080)&06&." 0," ,/)+" &05.*" #/)</" )1<&%'.+" GVX>"

3.3$*5"01'"1.,#$*-)14"'.9.1'+"%9$1",/."%+.*"</$)<.7""V*$8)'.+"&)+,")1<&%'."ODO*)'>"K0<-+0<."01'"230b$1".,<7""

2.4.1 Google App Engine O$$4&." 299" :14)1." %+." O$$4&." )1(*0+,*%<,%*." 01'" 9*$8)'.+" ,/." '.8.&$9.*" ,/."'.8.&$9)14" .18)*$13.1," ,$" 6%)&'" 01'" *%1" ,/." 099&)<0,)$1" $1" ,$9" $(" ,/." O$$4&.")1(*0+,*%<,%*.7"M%." ,$"6%)&'"$1" ,/."O$$4&." )1(*0+,*%<,%*." ,/."099&)<0,)$1" <01" +<0&."%9".0+)&5" 01'" 9*$8)'." 30++)8." ')+,*)6%,.'" 9.*+)+,.1," +,$*04.7" Q/." )1(*0+,*%<,%*." $(" ,/."O$$4&."299":14)1.")+")&&%+,*0,.'"6.&$#""

L)4%*."C7Jc"O$$4&."299":14)1."

P&S( 6&'D/( G/%R3'/O( O$$4&." 299" :14)1.+" %+." 3.3<0</." +.*8)<." ($*" )39*$8)14" ,/."9.*($*3)147"!1+,.0'"$("(.,</)14",/."'0,0"(*$3",/."'0,060+."040)1"01'"040)1"),"+,$*.",/."3$+,"(*.U%.1,"$<<%**)14")1",/.7"

P"S(C&3.(G/%R3'/O(X+."($*".30)&)14"+.*8)<.+"($*",/."099&)<0,)$17"M.8.&$9.*"<01"%+."j080"R0)&"2V!"($*")1,.4*0,)14"),7"

P'S( V@T( N/$'D( G/%R3'/O( Q/.+." +.*8)<.+" 0*." %+.'" ($*" (.,</)14" ,/." *.<$%*+.+" $8.*" ,/.")1,.*1.,"65"%+)14"[QQV"01'"[QQVI7"

P0S(:2&1/(C&+3J;.&$3,+(G/%R3'/O(!,"X+."($*")304."*$,0,)14>"<*$99)14>"01'"*.+)b)147""

P/S(4&#*(G'D/0;.3+1(P6%,+S(G/%R3'/O(!,"+</.'%&.",0+-+"($*",/."%+.*"099&)<0,)$17"

P5S( W/%#3#$3+1(H&$&O( " "#." <01" 0<<.++" ,/." '0,0" (*$3" ,/." '0,0" +,$*." 65" %+)14" j080"M0,0"D6=.<,+"`jMDa7"

2.4.2 Bigtable 6)4" ,06&.7" !,"9*$8)'.+"')+,*)6%,.'"+,$*04."$("'0,0" ($*"

",06&."%+."O$$4&."L)&."I5+,.3"`OLIa"01'"<01"+,$*."%9",$"9.,0"65,.+"$("'0,0"0<*$++"')((.*.1,"+.*8.*+7"Q/."9*$=.<,+" &)-."O$$4&.":0*,/"0*."0&+$"%+)14"6)4" ,06&."'%." ,$" ),+"9.*($*301<.7" !,"%+.+"3%&,)\')3.1+)$10&"+90*+."309"01'"*$#"-.5>"<$&%31"-.5>"01'"0",)3.+,039"($*".0</"<.&&")+"%+.'"($*")1'.])147"L$&&$#)14")+",/."L)4%*."($*"@)4",06&."'0,0"3$'.&7"

L)4%*."C7Sc"O$$4& "6)4,06&."'0,0"3$'.&"

K$#" -.5+" /08." 0*6),*0*5" +,*)14+" ($*" *.0')14" 01'" #*),)14" $(" .8.*5" $9.*0,)$1" #/.*."<$&%31" -.5+" 0*." 4*$%9.'" )1,$" +.,+" 01'" 0&+$" -1$#1" 0+" <$&%31" (03)&).+" #/)</" 0*."301'0,$*5"6.($*."+,$*)14"'0,07"@)4",06&."0&+$"9*$8)'.+"2V!"($*"<*.0,)$1+"01'"'.&.,)$17"Q/.*.($*.",/."'.8.&$9.*"<01".0+)&5"9.*($*3"')((.*.1,"-)1'"$("$9.*0,)$1+"01'"+,$*.",/.)*"'0,0"9.*+)+,.1,&5"$8.*",/."O$$4&.")1(*0+,*%<,%*.>"

2.5 Related Technologies L$&&$#)14",.</1$&$4).+"/08."6..1",0-.1")1,$"<$1+)'.*0,)$1"#/)&."6%)&')14",/)+"9*$=.<,7"""REST Style Web Services 9*$8)'."%1)($*3"*.+$%*<." )'.1,)().*" `XK!a"$*" ,/." *.+$%*<."01'"<$33%1)<0,."#),/",/."*.+$%*<.+"65"%+)14"')((.*.1,"$9.*0,)$1+"#/)</")1<&%'."O:Q>"VDIQ>"VXQ>"01'"M:T:Q:7" JAVA #0+"'.8.&$9.'"65"j03.+"O$+&)14"0,"I%1"R)<*$+5+,.3+7"M)((.*.1,"099&)<0,)$1"<01"6."6%)&'"65"%+)14",/)+"&014%04."#/)</")1<&%'.+")304."9*$<.++)14"099&)<0,)$1+>"1.,#$*-"099&)<0,)$1>"*$6$,)<+"01'"01'*$)'"099&)<0,)$1+".,<7""XML +,01'+" ($*" .^,.1+)6&." R0*-%9" T014%04." #/)</" '.()1.+" *%&.+" ($*" .1<$')14"'$<%3.1,+"01'"),"+,$*.+",/."'0,0")1",04+"($*"#/)</"<01"(%*,/.*"6."%+."($*"<*$++"9&0,($*3"<$33%1)<0,)$1+7""

3 Related Work Q/)+"</09,.*".].39&)(5"+$3."*.&0,.'"3.</01)+3",/0,"/0+"6..1"'$1."9*.8)$%+&5"$1",/.",.</1$&$4).+",/0,"0*."%+.'"01'")39&.3.1,.'")1",/)+",/.+)+7"

3.1 MIFARE Classic card attacks 2+"R!L2K:"G&0++)<"A-"<0*'+"0*."%+.'")1"9*$=.<,.'"+$&%,)$1+>"($*",/."+,$*04."$(",/."30)1"'0,0"+%</"0+"-.5+>"R2G"0''*.++")1"+.<%*.")1,.&&)4.1,"&)6*0*5"0%,$30,)$1"+<.10*)$>"01'"+.<*.," 90++#$*'" <$'." ($*" &$4)1" ,$" &)6*0*5" 0<<$%1,7" L$*" ,/0," *.0+$1>" ,/." 9*)80<5" 01'"+.<%*),5"$("R!L2K:"<&0++)<"A-"#0+"0"/%4.",.+,>"1%3.*$%+"*.+.0*</.*+"/08."6..1"06&.",$"')+<$8.*",/."<%*,0)&"0,,0<-+"$1"R!L2K:"<&0++)<")1",/."90+,7"

W0*+,.1" ;$/0&" 01'" [.1*5-" 9&$,b" #.*." $1." $(" ,/." ()*+," *.+.0*</.*+" ,/0," ')+<&$+." ,/."#.0-1.++.+")1",/."80&)'0,)$1"9*$,$<$&"fCA>"CCg"01'"V+.%'$"*01'$3"1%36.*"4.1.*0,$*")1"fCAg" 01'" fCCg7" !1" ,/.)*" #$*-" ,/.5" /08." %+.'" ,/." ,.</1)U%." $(" *.8.*+." .14)1..*)147"21$,/.*"*.+.0*</",.03>"&.'"65"V*$(7"@0*,"j0<$6+")1"')4),0&"+.<%*),5"4*$%9"0&+$"010&5b.'"R!L2K:"</)9+",/0,"/08."6..1")1,.1'.'",$".39&$5"$1"M%,</"9%6&)<",*01+9$*,"01'",/.5"/08."($%1'"9+.%'$"*01'$3"1%36.*"4.1.*0,$*+"0,,0<-+")1"fCFg7"

3.1.1 Security development of MIFARE Classic card ;%3.*$%+" *.+.0*</" #$*-+" /08." 6..1" '$1." ,$" 30-." ,/." ()1.+," %+." $(" R)(0*." <&0++)<"0&$14+)'.",$"')((.*.1,"0,,0<-+""Z$%,.*"Q..9."fCHg")1"D<,$6.*"CNNJ"0,"K0'6$%'"X1)8.*+),5")1";)=3.4.1"#*$,."0"/)4/\U%0&),5"9).<."$("#*),)14"<$1<.*1)14"<$%1,.*3.0+%*.+"0'=0<.1,",$" +,0,." *.+,$*0,)$1" 01'" <&$1)14" )(" ,/." $1&5" 080)&06&." </$)<." )+" R)(0*." G&0++)<" <0*'7"[$#.8.*>",/.".(()<).1<5"$(",/.+."<$%1,.*3.0+%*.+"'.9.1'+"$1",/."&0<-"$("$,/.*"$((.*.'"8%&1.*06)&),).+"$(",/."R)(0*."G&0++)<"<0*'7"2<<$*')14",$"Z$%,.*"Q..9."6$,/"$(",/."0,,0<-+"<01"6."+/.&,.*.'")1"($&&$#)14"#05+7"

I,0,." *.+,$*0,)$1"<01"6."9*$/)6),.'"65"30-)14"%+."$(" ,/."<*59,$4*09/)<" +)410,%*." ,$"0"3$1$,$1)<0&&5"'.<*.0+)14"<$%1,.*"$1",/."<0*'"65"30-)14"%+."$(",/.",5)14"9*$<.'%*."$1",/."+,0,."$(",/."<0*'7"2"+9.<)0&"-)1'"$("'0,0" )1(*0+,*%<,%*.>"0"+9.<)0&"-.5")1(*0+,*%<,%*."01'" 0&&$<0,)$1" +</.3.+" )+" 1..'.'" ($*" ,/)+" 9*$<.++" ,$" 30-." +%*." ,/0," ,/." <0*'" #$*-"9*$9.*&57"

Q/." 3.,/$'" $(" G&$1)14" <01" 6." ')+0&&$#.'" 65" 30-)14" %+." $(" ,/." 9*$<.'%*." $(" <0*'"'.9.1'.1<5"$1",/."'0,0"*.0')14"6.<0%+.",/."*.0')14"-.5+"0*."1$,"$9.1",$",/."0,,0<-.*"5.,7"L$*".8.*5",*01+0<,)$1",/.*."#$%&'"6."+.90*0,.")+$&0,.'"3.3$*5"*.U%)*.'7"""

2" ,59)<0&" %+." <0+.+" 01'" 0" 6%1</" $(" ,/*.0,+" /0+" 6..1" ')+<%++.'" )1" fFPg" 65"R$/03.'"R$+,0(0"26'"2&&0/7"2<<$*')14" ,$" ,/." 0%,/$*" )1" fFPg" 9*$,.<,)$1" 040)1+," ,/." ,/*.0,+" $*"'0,0" 0&,.*0,)$1" <011$," 6."/01'&." 65";LG" ),+.&(7" I$"#."1..'" ,$"/08." 0" -.5" 04*..3.1,",.</1)U%.",$"+.<%*.",/)+"</011.&7"

W.),/":7"R05.+".,"0&"4)8.+"0"6*).("<$390*)+$1"$(";LG"01'"<$'.+")1"fFJg7W.),/":7"R05.+".,"0&"+05+"<$'.+"<011$,"6."+.<%*."01'"9*$,.<,.'"0+",/.5"<$1,0)1"9%6&)<")1($*30,)$17"

2<<$*')14",$"O0%,/).*"e01"M033."01'"W0*.&"Z$%,.*+")1"fFBg>"),")+"0&3$+,")39$++)6&.",$"0,,0</";LG"'%.",$"),+"+/$*,"*014."10,%*.>"6%,"')((.*.1,"-)1'+"$("0,,0<-+"<01"6."30'."0+"')+<%++.'")1fFHg"

:*1+,"[0+.&+,.)1.*" 01'"W&.3.1+"@*.),(%" ')+<%++" ,/." +,*.14,/" 01'"#.0-1.++.+" $(";.0*"L)&.'" G$33%1)<0,)$1`;LGa" )1" fFEg7" :*1+," [0+.&+,.)1.*" 01'" W&.3.1+" @*.),(%" )'.1,)(5"+$3.",/*.0,+",$";LG",.</1$&$45"01'"0&+$"9*$9$+.'"+$3."+$&%,)$1+",$",/$+."9*$6&.3+7"Q/." )'.1,)(5" ')((.*.1," ,/*.0,+" &)-." .08.+'*$99)14>" '0,0" <$**%9,)$1>" '0,0" 3$')()<0,)$1"01'"301")1",/."3)''&."0,,0<-7fFEg"

3.2 Security development towards NFC ;LG")+"+30&&"*014."#)*.&.++",.</1$&$45",/0,")+"8.*5"%+.(%&"040)1+,"0,,0<-+"0+"'.+<*)6.'")1" G/09,.*" C7" [$#.8.*>" ,/.*." )+" +,)&&" +$3." '.()<).1<5" )1" ,/)+" ,.</1$&$457" 21" 0,,0<-.*"#),/"/)4/"01,.110"9$#.*"<01"30-."0,,0<-"9$++)6&."$1",/)+",.</1$&$457"Q/.*.($*.>"3015"*.+.0*</.*+"/08."'$1.",/.)*"80&%06&."*.+.0*</"$1"9*$,.<,)14";LG"0,,0<-+7""

:*1+"[0+.&+,.)1.*"01'"W&.3.1+"@*.),%6"fCBg")1",/.)*"909.*"408."0"#)'.\*014)14"+,%'5"$("+.<%*),5"040)1+,";LG"0,,0<-7"!1",/.)*"909.*",/.5"/08."9$)1,.'"$%,",/.",/*.0,+>"#/)</"0*."9.*,)1.1," ,$";LG"01'",/.5"/08."0&+$"9*$9$+.'"+$3."+$&%,)$1+>"#/)</"<01"9*$,.<," ,/)+",.</1$&$45"040)1+,"<.*,0)1",/*.0,+"+%</"0+>".08.+"'*$99)147"

3.3 Towards Smart Environment Q/." +30*," 9/$1.+" ,/0," )39&01,";LG" 0*." .0*1)14" 9*$4*.++)8.&5"3$*." 0,,.1,)$1" )1" ,/.",.</1$&$4)<0&" #$*&'>" +%</" 0+" )1,.*1.," 601-)14" 01'" 9053.1," ,*01+0<,)$1+7" k%.1\I/01"G/014" .," 0&" 9*.+.1,.'" '.+)41" ($*" ;LG" .106&.'" 9/$1." ,/0," /0+" ,/." 06)&),5" ,$" '*)8."G$1,.],\2#0*."I30*,"[$3.".18)*$13.1,"#/)</"/0+"6..1"<0&&.'"0+";G2I["fCBg7""

Q/."$1",$9"0*</),.<,%*.")+"1$,"<$39&.,.&5"<$11.<,.'",$",/."+$&%,)$1",/0,")+"9*$9$+.'")1",/)+"#$*->"6%,",/."0)3"#0+",$"0<U%)*."-1$#&.'4."06$%,",/."%+06)&),5"$(";LG")1"&)6*0*5".18)*$13.1,+7""

3.4 Authentication enhancement in Library by use of NFC 2"&$,"$(",/."+.*8)<.+",/0,"0*."6.)14"90*,"$("$%*"'0)&5" &)(.>" +%</"0+" &)6*0*5)14"/08."6..1"0&,.*.'"(*$3"<$18.1,)$10&"<%+,$3.*"+.*8)<.+",$" )1,.*1.,"+.*8)<.+7" !1"+%</"<0+."0"+,*$14"0%,/.1,)<0,)$1")+"1..'.'"6$,/",/."%+.*"$(",/."+.*8)<.+"01'"+.*8)<.+"9*$8)'.*7"

!1"[.&+)1-)"X1)8.*+),5"$("Q.</1$&$45"j011."W008)" fCPg"9*.+.1,.'"0"<0906&."3.,/$'",$"0</).8."+,*$14"0%,/.1,)<0,)$1"#),/";LG".106&.'"3$6)&.+7""

3.5 Authentication enhancement in Library by use of NFC G" G/0-*080*,/)" j$110'%&0" 01'" M..8)" T0&),/0" K01)" )1" ,/.)*" 909.*" *.&0,.'" ,$" +.<%*),5")++%.+" /08." 9*.+.1,.'" ,/." ($&&$#)14" 0*</),.<,%*.7" [$#.8.*>" ,/)+" +5+,.3" +,)&&" &0<-+"+.<%*),5"3.0+%*.+"fCSg7"

4 Methodology Q/." ,.1,0,)8." #$*-" ,/0," #)&&" 6." '$1." )1" ,/)+" ,/.+)+" #)&&" 6." 60+.'" $1" ,/." ,.</1)<0&"3.,/$'+7" Q/." 9*$9$+.'" +$&%,)$1"#)&&" 6." .80&%0,.'" (*$3"%1%+%0&" '.(.1+."3.</01)+3"60+.'"$1"/59$,/.,)<0&"099*$0</7"Q/.",.+,+"#)&&"6."<0**5)14"$%,")1"+%</"0"#05",/0,"3$'.&"01'" )39&.3.1,0,)$1" $(" ,/." +.<%*),5" 3.0+%*.+" <$%1,.*3.0+%*." 0&&" ,/." )1,.*10&" 01'".],.*10&",/*.0,+"$1"9&011.'"+$&%,)$17"""

4.1 Requirements Q/."30)1"9%*9$+."$(",/)+"#$*-")+",$"#)'.1>"+.<%*."01'"+,*$14"&)6*0*5"099&)<0,)$1"%+)14";LG",.</1$&$457"Q/."()*+,",0+-")+",$".]03)1."01'",0&-"$8.*",/."+.<%*),5"+$&%,)$1+",/0,"0*."0&*.0'5"6%)&,7"Q/."U%.+,)$1+",/0,"#.*."0(()*3.'")1",/."9*$6&.3"+,0,.3.1,"0*.c"""Q/)+",/.+)+"#)&&"+,0*,"65"01+#.*)14",/."60+)<"U%.+,)$1+"+,0,.'")1"G/09,.*"A7"L)*+,"$("0&&",/."+,0,." $(" 0*," ;LG" ,.</1$&$4).+" #)&&" 6." +,%').'" ,$" 4.," )1+)'." -1$#&.'4." $(" ,/." +0)'",.</1$&$457" I)3)&0*&5>" 0" +,%'5"$1" ,/." +,0,." $(" 0*," $("KL!M"01'" *.&0,.'" ,.</1$&$4).+" )1"%6)U%),$%+" /.,.*$4.1.$%+" 1.,#$*-+" )1" $*'.*" ,$" )1<*.0+." +.<%*),5" 0+9.<,+" 01'" ,$" ()1'"6.,,.*"01'"+.<%*."%+04."#)&&"6."9*$9$+.'7"

R$*.$8.*>" #." #)&&" )1+9.<," ,/." 8%&1.*06)&),).+" 01'" '.(.<,+" )1" R)(0*." <&0++)<" <0*'" 01'"30-."),"3$*."+.<%*."040)1+,",/.",/*.0,+7""

2+"90*,"$(",/."+$&%,)$1"!"#)&&"+%44.+,"+$3."+.<%*),5"+$&%,)$1+"($*";LG",$"+9&),"+.<*.,"'0,0"01'"9*)80,." '0,0" 65"30-)14" %+." $(" ,/." +/$*," *014."KL!M" 60+." $6=.<,+" +%</" 0+"R)(0*."G&0++)<"<0*'7""

I)3)&0*&5>" !" #)&&" )1,*$'%<." ,/." <$1<.9," $(" +.<%*." <$33%1)<0,)$1" %+)14" ;LG" )1"/.,.*$4.1.$%+" 1.,#$*-+" ($*" .]039&." [QQVI>" @&%.,$$,/7" Q$" +.," %9" ,/)+" +.<%*."<$33%1)<0,)$1>",/."90*,)0&"-.5+"#)&&"6."%+.'",$"($*3"01")1,.&&)4.1,"&)6*0*5"+5+,.37""

Q/.1"+30*,"9/$1.+"#)&&"6.")18.+,)40,.'",/0,"/$#";LG".106&.'"3$6)&."9/$1.+"<01"+/0*."'0,0" +.<%*.&5"#),/" +/$*," *014."KL!M" <0*'+d" I)3)&0*&5" ),"#)&&" 0&+$" 6." )18.+,)40,.'" ,/0,"/$#";LG"01'"$,/.*",.</1$&$4).+"305"#$*-",$4.,/.*",$"($*3"0"+.<%*."+.++)$1d"Q/.1",/."9*$9$+.'"+$&%,)$1"#)&&"6."099&).'"$1"&)6*0*5"+5+,.3"65"01+#.*)14",/."U%.+,)$1c"

[$#"<01"0"+.<%*."<$33%1)<0,)$1"6.".+,06&)+/.'")1")1,.&&)4.1,"&)6*0*5"+5+,.3d"

2," ,/." .1'" +$3." *.+9$1+." ,)3."3.0+%*.3.1,+" #)&&" 6." 30'." ,$" =%+,)(5" ,/." 9*$9$+.'"+$&%,)$1c"&)-.""

Z/0,"-)1'"$("<$33%1)<0,)$1"*.+9$1+.",)3."<01"#."4.,"0(,.*"+.<%*),5")39&.3.1,0,)$1+d""

Z/0,",)3.",0-.+",$"6%)&'"%9"0"+.<%*."+.++)$1"6.,#..1",/."%+.*"01'",/."%+.*d"

Z/0,",)3."),",0-.+",$"$9.1",/."&)6*0*5"'$$*>")++%)14"6$$-d":,<7"

4.2 Planned Scenario (

V+3R/%#3$7( #'/+&%3,O( Q/)+" +<.10*)$" )+" 60+.'" $1" ,/." ;LG" 60+.'" &)6*0*5" 099&)<0,)$1" )1"#/)</"01"099*$8.'"%+.*"<01"4.,"0<<.++",$",/." &)6*0*5"01'"6$$-+"65"30-)14"%+."$(",/."'.8.&$9.'"01'*$)'"099&)<0,)$1")1+,.0'"$("%+)14",/."<%**.1,"+5+,.3"$("6$$-"6$**$#)14)((

4.3 Testbed 2",.+,"3$'.&"#)&&"6."'.8.&$9.'")1"$*'.*",$"3..,",/."*.U%)*.3.1,+7"Q$".80&%0,.",/.",0-.1",)3."65",/."099&)<0,)$1"($&&$#)14",)3."3.0+%*.3.1,+"#)&&"6."<0&<%&0,.'c"

G/./'$3,+( ,5( &.1,%3$D2O( !1" $*'.*" ,$" </$$+." 6.+," <*59,$4*09/)<" 0&4$*),/3>"1%3.*$%+"<*59,$4*09/)<"0&4$*),/3+"#)&&"6.",.+,.'7"2(,.*",/."+.&.<,)$1>",/."</$+.1"0&4$*),/3"#)&&"6."099&).'")1",/."099&)<0,)$1"($*",/."9*$$("$("<$1<.9,7("(

W%,'/##3+1( $32/( ,5( $D/( 2,"3./( 0/R3'/O( " L$*" ,/." ;LG" .106&.'" 3$6)&." '.8)<."+.8.*0&" ,)3."3.0+%*.3.1,+" #)&&" 6." ,0-.1" )1" <$1+)'.*0,)$1+7" Q$,0&" ,)3."#)&&" 6."'.,.*3)1.'"($*")1,.*<$33%1)<0,)$1"6.,#..1";LG"01'",/."<0*'7"Q/)+"9*$<.++"#)&&"6."*.9.0,.'"($*"6$,/"9&0)1,.],"01'".1<*59,.'"'0,07""

" W%,'/##3+1($32/(,5(*/7(#/%R/%O"Q)3."3.0+%*.3.1,"($*",/."-.5"+.*8.*"#)&&"0&+$"6."<0&<%&0,.'7" Q/)+" 9*$<.++" #)&&" )18$&8." ,/." *.U%.+," *.+9$1+." ,)3." 01'" ,/.".1<*59,)$1>"'.<*59,)$1"9*$<.++"($*"9*)80,."01'"9%6&)<"-.5+7""

W%,'/##3+1($32/(,5(.3"%&%7(#/%R/%O("Q)3."3.0+%*.3.1,+"($*",/."&)6*0*5"+.*8.*"#)&&"0&+$"6.",0-.1")1,$"1$,)<.7"Q$,0&"<$39%,0,)$10&" ,)3." )1"9*$<.++)14",/."<$39$+),."-.5"01'"&)6*0*5"1.,#$*-"($*"+.1')14"01'"*.<.)8)14"'0,0",$"01'*$)'"099&)<0,)$17(

4,$&.(%/#J,+#/($32/O(2,",/.".1'"0",$,0&",)3."3.0+%*.3.1,"#)&&"6."<0&<%&0,.'",/."#/$&."9*$<.++")1",/."9*$9$+.'"+<.10*)$7(

5 System Design Q/."3$+," )39$*,01," 01'" '.301')14" =$6" $(" ,/)+" )'.0"#0+" ,$" *.+.0*</" 01'" 9*$9$+." 0"+.<%*." +$&%,)$1+" ($*" ;LG" ,.</1$&$45" )1" +%</" 0" #05" ,/0," )," <01" /08." 0" '.(.1<."3.</01)+3"040)1+,",/.",/*.0,+"01'"0,,0<-",/0,"0*.")'.1,)(5")1"G/09,.*"C"01'"G/09,.*"F""Q/."9*$9$+.'"+$&%,)$1"+/$%&'"0&+$"3..,",/."*.U%)*.3.1,+",/0,"0*."'.+<*)6.'")1"G/09,.*"H7"Q/)+"</09,.*"<$1,0)1+",/."9*$9$+.'"(*03.#$*-"($*",/."+$&%,)$17"""

Q/." 9*$9$+.'" +$&%,)$1" )+" <$39*)+.'" $(" 6$,/" ,/." +$(,#0*." 01'" /0*'#0*." +$&%,)$17""R)(0*." <&0++)<" A-" <0*'" )+" %+.'" 0+" 90++)8." ,0*4.," ($*" ,/.";LG" .106&.'" 01'*$)'"3$6)&."9/$1.7""2,"+$(,#0*."+,04."j080"&014%04.")+"%+.'"%+)14",/.":<&)9+."9&0,($*3"($*"01'*$)'"9*$4*033)14"01'";.,6.01+"9&0,($*3"($*"-.5"+.*8.*>"T)6*0*5"I.*8.*7"L$*",/."4.1.*0,)$1"$("<.*,)()<0,.+"01'"-.5"+,$*.>"V$*,.<&.")+"%+.'7"""

5.1 Scenario usage Q/.*."<$%&'"6."0" &$,"$("%+."<0+.+"($*"30-)14"%+."$(",/.";LG",.</1$&$45"#),/"%1%+%0&"$9.*0,)$10&"3$'.+7"K.0'YZ*),.")+"$1."$(",/."3$'.+7"";LG"<0*'")+"$6=.<,)8."($*"01";LG".106&.'"3$6)&."9/$1.7"Z."1..'",$"0,,0</"0"+30&&";LG"<0*'",$".0</"6$$-7"Q/)+"<0*'"305")1<&%'." '0,0" &)-." ,),&." $("099&)<0,)$1"<01"%+."($*",/." )18$<0,)$1"$("+$3."<.*,0)1"0<,)$1+" )1",/."3$6)&."'.8)<."($*".]039&.",/."/01'$8.*"$(",/."@&%.,$$,/7"

"""""2" <0*'" <$%&'" 6." 9%," %9" $1" ,/." 6$$-+" $((.*)14" ,/." 8).#.*+" ,$" 0<U%)*." )1($*30,)$1"06$%,",/."6$$-"01'"*.&0,.'"30,.*)0&"06$%,",/."'.+)*.'"6$$-7""""

5.2 Anticipated Architecture "

Q/."($&&$#)14"()4%*."'.3$1+,*0,.+",/."<$1<.*1.'"(%1'03.1,0&+"01'"$8.*0&&"0*</),.<,%*."($*",/."4)8.1"+<.10*)$7"

L)4"Ec"V*$9$+.'"'.+)41"0*</),.<,%*."$(",/."3$'.&""

Q/."3)],%*.+"$("+.8.*0&",.</1$&$4).+".]901'",/."%+06)&),5"$("3$6)&."1.,#$*-7""

5.2.1 Authentication for access to library services Q/)+"90*," $(" ,/." </09,.*"')+<%++.+" ,/."'.+)41" +,*0,.457" I%99$+." 0"9.*+$1"/0+" 01";LG".106&.'"9/$1.>",/."6.1.(),",/0,"/."<01"4.,"(*$3",/)+",.</1$&$45")+",/0,",/."%+.*"<01"%+."),"($*" ,/." 9%*9$+." $(" 6$**$#)14" 6$$-" (*$3" &)6*0*5" #),/$%," 015" 0,,.1'01," $*" &)6*0*5"

01'" $9.1" 01" 099&)<0,)$1" 65" .1,.*)14" 0" 9)1" <$'." ,$" %1&$<-" )," 01'" ,$%</.+" /)+" ;LG".106&.'"3$6)&.",$"90++)8."<0*'",/0,")+"()].'"$1",/."#0&&"$("&)6*0*5>",/0,"#)&&"6."$1&5"%+.",$"$9.1",/."'$$*"$(",/."&)6*0*57"I)1<.",/."<0*'"/0+"6..1"30'."90++#$*'"9*$,.<,.'"`+.."+.<,)$1" B7H" )1" )39&.3.1,0,)$1a" #/)</" <$1,0)1+" ,/." ')((.*.1," +.<*.,." 90*03.,.*" ($*"80*)$%+"+.,,)14+"*.&0,.'" ,$" )1,.&&)4.1," &)6*0*57"Q/.*.($*.>"01"0%,/.1,)<0,)$1"9*$<.++"#)&&"6."'$1."6.,#..1";LG".106&.'"'.8)<.+"01'",/."<0*'>")("%+.*")+"0%,/.1,)<0,.'",/.1"3$6)&."%+.*"#)&&"6."0%,/.1,)<0,.'"(*$3"&)6*0*5"+.*8.*")1"<&$%'")1(*0+,*%<,%*.>")("3$6)&."%+.*")+"0%,/$*)b.'",$"6.",/."*.4)+,.*.'"&)6*0*5"3.36.*>",/."'$$*"#)&&"$9.1"($*"/)3".&+." ),"#)&&"*.30)1"<&$+.'7""

"""""2+" '$$*" )+" $9.1" ($*" ,/." 3.36.*>" 0&&" 9&0<.+" )1+)'." ,/." &)6*0*5" #/.*." &)4/,+" 0*."1.<.++0*)&5",$"6.",%*1.'"$1"#),/"*.+9.<,",$",/."'05"&)4/,"#)&&"6.",%*1.'"$1")1,.&&)4.1,&5"0<<$*')14",$",/."+.,,)14+>"01'"*$$3",.39.*0,%*."#)&&"0%,$30,)<0&&5"6."0'=%+,.'"($*",/."%+.*7"""""""

"""""!(" ,/." %+.*" 9&01+" ,$" 4$" $%,+)'." ,/." &)6*0*5>" ,/." +03." 9*$<.++" #)&&" 6." *.9.0,.'" ($*"<&$+)14" ,/."'$$*7"2&&" &)4/,+"#)&&" 6." ,%*1.'"$((" .]<.9," ,/." &)4/,+"#/.*."'05" &)4/," )+"1$,".1$%4/"01'",/."'$$*"#)&&"6."<&$+.'"0%,$30,)<0&&57"""""

5.2.2 Borrowing and Returning Books I%99$+." %+.*" #01," ,$" 6$**$#" 0" 6$$-" 0(,.*" .1,.*)14" )1,$" ,/." &)6*0*57"Z/.1.8.*" %+.*"#01,+",$"</.<-")1($*30,)$1"$*",$"30-."015",*01+0<,)$1"/."$9.1+"&)6*0*5"099&)<0,)$1"$1"/)+Y/.*"01'*$)'"+30*,"9/$1.7"Q/."%+.*",/01"+<01",/.";LG"<0*'"9&0<.'"$1",/."6$$-",),&."904.7"240)1>"01"0%,/.1,)<0,)$1"9*$<.++"#)&&"6."'$1."6.,#..1",/."%+.*"01'",/."+.*8.*7""

Q$"6$**$#",/."6$$-",/."%+.*"#)&&"/08.",$"30-."0"*.U%.+,"($*",/."'.+)*.'"6$$-"01'"0(,.*",/."($*30&"0%,/.1,)<0,)$1"01'"*.<$*'"%9'0,)14"9*$<.++l"%+.*"#)&&"6."1$,)().'",$",0-.",/."6$$-7""

5.3 Overview of the Implemented scenario L$*",/.")39&.3.1,0,)$1"$(",/."9*$9$+.'"0*</),.<,%*."')((.*.1,".1,),).+"01'",.</1$&$4).+"0*." %+.'7" Q/." 30)1" 9%*9$+." $(" ,/." '.+)41+" )+" ,$" 0++%*." ,/0," 0&&" ,/." 9*$<.++.+"`0%,/$*)b0,)$1>" +,$*04.>" )'.1,)()<0,)$1" 01'" ,/." .]</014." $(" -.5+a" +/$%&'" 6." '$1." )1"+9.<)0&"+.<%*."#05",/0,"),"<$1U%.*",/.",/*.0,+"01'"0,,0<-+".]9&0)1")1"G/09,.*"C"""

>,,*( #'/+&%3,c" Q/)+" +<.10*)$" )39&.3.1,+" 0" 9*$,$<$&" ,/0," )+" 60+.'"$1" ,/." .]</014." $("')((.*.1,"-.5+"&)-."90*,)0&"-.5"+</.3.+"65"30-)14"%+."$(",/."+/$*,"*014."&)-."#$%>"&$14"*014." &)-." @&%.,$$,/" 01'" )1,.*1.," &)-." &''()" 60+.'" <$33%1)<0,)$17" Q/." ($&&$#)14"()4%*."'.3$1+,*0,.+",/."<$1<.*1.'",.</1$&$4).+")1"+.<%*)14"+30*,"&)6*0*5".18)*$13.1,7"

L)4%*."Pc"T)6*0*5"I<.10*)$"

5.3.1 NFC based Mobile !1",/."9&011.'"+<.10*)$>";LG".106&.'"3$6)&."9/$1.")+"01" )39$*,01,"$6=.<," ,/0,"3..,+"0&&" ,/." (%1<,)$10&" *.U%)*.3.1,+7" !," <01" /$&'" %9" ,/." .].<%,)$1" $(" =080" 099&)<0,)$1+7" !,"<$1,0)1+"')((.*.1,",59."$("9%6&)<"-.5+"0+"#.&&"0+"),+"$#1"9*)80,."-.5"($*"0%,/.1,)<0,)$1"01'"80&)'0,)$17""

5.3.2 Card usage L$*",/."9&011.'"+<.10*)$"R)(0*."<&0++)<"A-"<0*'")+"%+.'"($*",/."<$1+)'.*.'"+$&%,)$1"0+"),"#0+",/."$1&5"080)&06&."</$)<."0,",/.+)+",)3.>"),"9&05"01")39$*,01,"*$&."+%</"0+",/."+,$*04."$("0&&",/."*.U%)*.'"90*03.,.*+7"Q/."<$1()4%*0,)$1"3.</01)+3"$(",/."<0*'")+"'.+<*)6.'")1"G/09,.*"C"!

"#$$%&' ()*+%+

L)4%*."R)(0*."A-"<&0++)<"<0*'"

5.3.3 The Key Server 2"W.5"I.*8.*")+"0"30=$*".&.3.1,"$(",/)+"1.,#$*-l"),+"30)1"*$&.")+",$"<$33%1)<0,."#),/"

!)+" ,/." 3$+," )39$*,01," 01'" +.<%*." $6=.<," )1" ,/." 0*</),.<,%*." 0+" )," 30-." 9$++)6&." ,/."*.4)+,*0,)$1"$(",/."1.#"%+.*>"30-)14"0%,/.1,)<0,)$1"9$++)6&."#),/".])+01'"T)6*0*5"I.*8.*>" <*.0,)14"01'" +,$*)14" ,/." .8.1," &)-."$9.1Y<&$+." 01'"')+,*)6%,)$1"$(",/."-.5+"%+)14"T)6*0*5"I.*8.*7""

5.4 Functionality of the approach Q/."<%**.1,"9*$9$+.'"0*</),.<,%*."+%99$*,+",/."($&&$#)14"(%1<,)$10&),).+c"

2<<.++"$(",/."099&)<0,)$1"

M0,0"+,$*04."01'"0%,/.1,)<0,)$1"%+)14"<0*'"

G0*'"*.0')14"

I.*8.*"0%,/.1,)<0,)$1"#),/"3$6)&.""

G0*'"#*),)14"

@&%.,$$,/"90)*)14"#),/";LG""

5.4.1 The Detailed Design

L)4%*.c"M.,0)&"0*</),.<,%*."

Q/." 06$8." ()4%*." +/$#+" ,/." '.,0)&.'" $8.*8).#" $(" ,/." 9*$9$+.'" 0*</),.<,%*.7" Q/."9&011.'" 099*$0</" %+.+" 0" 1$8.&" 0&4$*),/3" 65" )1,*$'%<)14" AE" 6)," -.5" ($*" ,/."0%,/.1,)<0,)$1"$(",/."%+.*7"

5.4.2 Access of application "

/+)012345'

6+04$4)&345'

7+&8!/&3&

"#$$%&'()*+%+

94:0&01/550;2+'

L)4%*.c"299&)<0,)$1"2<<.++"

Q/."06$8."()4%*."+/$#+",/."099&)<0,)$1"0<<.++"9*$<.++"$(",/."'.8.&$9.'"099&)<0,)$17"Q/."%+.*" .1,.*+" ,/." 90++#$*'" ,$" %+." ,/." 099&)<0,)$17" 2(,.*" ,/." 80&)'0,)$1" 9*$<.++" ,/."0%,/.1,)<0,.'"%+.*")+"0&&$#.'",$"+<01",/.";LG",04"01'"'.<*59,",/."'0,07"

<(+0!+'3+0!)0+8+'34&=(

6&=48&345' !205)+((

1+( '5

" 7+>+'3+0!8&3&

?)&'!,-.

@$!301AB

C)34D&3+!C=&0%

L)4%*.c"21'*$)'"099"($*"T$4)1"

L)4%*.c";LG"+<011)14".106&.'"

5.5 Message Exchange Q/." ($&&$#)14" ')04*03" +/$#+" ,/." .]</014." $(" 3.++04.+" 6.,#..1" ,/." <0*'" 01'" ,/."3$6)&.7"

L)4%*.c"*.0')14"(*$3"<0*'"

L)4%*.c"Z*),)14"$1",/."<0*'"

5.6 Proposed Algorithm Q/."($&&$#)14"<$'."+/$#+",/.")39&.3.1,0,)$1"$(",/."9*$9$+.'"0*</),.<,%*.7"

Q/." 06$8."<$'."%+.+"AE"6),"-.5"($*",/."0%,/.1,)<0,)$1"9*$<.++7"

6 Implementation, Experiments and Results Q/)+"</09,.*"9*.+.1,+",/."*.+%&,+",/0,"#.*.".]9$+.'"'%*)14",/."#$*-"$1",/)+",/.+)+7";LG",.</1$&$45"/0+"6..1"%+.'")1",/."9&011.'"+$&%,)$1"0+"9*$$("$("<$1<.9,7"""

6.1 Usability Enhancement Q/." ,/.+)+" 6*)14+" )1" ,/." %+06)&),5" <$1<.9,+" $(";LG" ,.</1$&$45" 65" .39&$5)14" +.<%*),5"3.0+%*.3.1,+7" Q/." <$1<.9,+" ,/0," 0*." )39&.3.1,.'" ,$"30-." +%*." ,/." +.<%*." %+04." $(";LG",.</1$&$45"/0+"6..1"<$36)1.'"#),/"$,/.*",.</1$&$4).+"+%</"0+"[QQVI>"@&%.,$$,/"#/)</" <01" &.0'" %+" ,$" #/$&." 1.#" 0*.0" $(" 3$6)&." '.8.&$93.1," )1" ,/." ().&'" $(" &)6*0*5"0%,$30,)$1"+5+,.3+7"

6.2 Development Tools Q/."<$1+.U%.1,)0&"099&)<0,)$1",/0,"/0+"6..1"6%)&,")1",/)+"#$*-")+"9*$4*033.'")1"=080"65"30-)14" %+." $(" ,/." ,#$" ')((.*.1," 9&0,($*3+" :<&)9+." 01'" ;.,6.01+7" Q/." 099&)<0,)$1+".1($*<." +.<%*),5"3.0+%*.3.1,+" +,%((" ($*" .]039&." ,/." %+." $(" 9%6&)<" 01'" 9*)80,." -.5+>"')4),0&"<.*,)()<0,.+7"I$>"j080"-.5",$$&"01'"9$*,.<&."+$(,#0*."#.*."%+.'"($*",/."4.1.*0,)$1"$("9%6&)<>"9*)80,."-.5+"01'",/."<.*,)()<0,.+7""

6.3 Choice of the encryption technique X1%+%0&" .1<*59,)$1" +</.3.+" #.*." ,.+,.'" ($*" ,/." 9*$<.'%*." $(" 90*+)14" ,/." 6&$<-+" $("3015" 65,.+" +)b." ($*" ,/." 9%*9$+." ,$" .1<*59," 01'" '.<*59," '0,0" 6.($*." ,/." +.&.<,)$1" $("099&).'" 0&4$*),/37" Q/." ($&&$#)14" 4*09/" 9*.+.1,+" ,/." 9.*($*301<." $(" ,/." ')((.*.1,"+.<%*),5",.</1)U%.+7"

L)4%*."E7Ac"Q)3.",0-.1")1".1<*59,)14"')((.*.1,"6&$<-+"$("65,.+""

Q/."06$8."()4%*."E7A"+/$#+",/.",)3.",0-.1"65"30-)14"%+."$("')((.*.1,"0&4$*),/3+7"Q/."]\0])+" +/$#+" ,/." 6&$<-" $(" 65,.+"#/)&." ,/." 5\0])+" +/$#+" ,/." ,)3." ,0-.1" 65" ,/." +.&.<,.'"0&4$*),/3+7" Q/." 4*09/" +/$#+" ,/0," ,*)9&." M:I" ,0-.+" 4*.0,.*" ,)3." $(" 0&&" ,/." +.&.<,.'"0&4$*),/3+7"

6.4 Scenario Results Q/." '.+)41)14" $(" 9&011.'" +<.10*)$" #.*." ,/."3$+," )39.*0,)8." 90*," $(" ,/)+" #$*-7" Q/."*.+%&,+"+/09.'"65",/)+"+<.10*)$"01+#.*.'",/."9*$6&.3"+,0,.'")1",/."</09,.*"A7"

6.4.1 Library scenario Q/)+"+<.10*)$"*.+%&,.'")1"01"099&)<0,)$1"9*$,$,59.",/0,"+.<%*.&5"<$1,*$&+",/.")1,.&&)4.1,"T)6*0*5"#),/";LG".106&.'"3$6)&."9/$1."65"%,)&)b0,)$1"$("90*,)0&"-.5"+</.3.+"30104.'"01'"')+,*)6%,.'"65"W.5"I.*8.*7"R.0+%*.3.1,+"#.*.",0-.1")1"')((.*.1,"9.*+9.<,)8.+7"Q/."*.+%&,+",/0,"$6,0)1.'"(*$3",/)+"+<.10*)$"#.*."*.0+$106&.7"

432/(2/&#;%/2/+$#("/$-//+(2,"3./(&+0('&%0(

;.]%+"I"#),/"AO["<$*,.]"2J"+30*,"9/$1."3$'.&"#0+"%+.'"($*",/."099&)<0,)$17"2",)3.".]9.*)3.1,"#0+"30'."($*",/."9%*9$+.",$"<0&<%&0,.",/.",)3)14+7"Q/.",)3."+,039"8.*)().+"

,/0," /$#" 3%</" ,)3." )," ,0-.+" ,$" 0%,/.1,)<0,." 9*$<.++7" Q/)+" ,)3." )1<&%'." 0&&" ,/."90*03.,.*+"&)-."1.,#$*-"'.&05>"3$6)&."9*$<.++)14",)3.c"

Q$,0&"*.0'Y#*),."h"`G9,"i";'.&05"i"R9,a" "`R9,"i";'.&05a""

Q/."R9," +/$#+" ,/0,"/$#"3%</" ,)3."#0+" ,0-.1" ,$" <$39&.,.&5"9*$<.++" ,/." *.U%.+,>" ,/."+.1')14" 9*$<.++" 01'" ,/." *.<.)8.'"3.++04." (*$3";LG" )1,.*(0<.>";'.0&5" +/$#+" ,/." ,$,0&"1.,#$*-"'.&05"(*$3"3$6)&.",$"<0*'")1,.*(0<.7""Q/."($&&$#)14",06&."9*.+.1,+",/.",$,0&",)3."($*",/."9*$<.++7"

" 2,,.39,"A" 2,,.39,"C" 2,,.39,"F" 28.*04."

Q)3."`3+.<a"" ACN7H" ACF7S" ACC7A" ACC7AF"

Q06&."E7Ac";LG",)3)14"6.,#..1",/."<0*'"01'",/."*.0')14"

Q06&."E7A"+/$#+",/."*.0')14",)3."$(",/."'.8.&$9.'"099&)<0,)$17"Q$,0&"$("F"0,,.39,+"#.*."30'." 0," ')((.*.1," &$0'" ,)3)14+" ,$" =%+,)(5" ,/." *.0'" ,)3)14+" (*$3" ,/." <0*'" 65" ,/."099&)<0,)$17"Q/.",)3."0,".0</"0,,.39,"#0+"<0&<%&0,.'"01'")+"4)8.1")1",/."06$8.",06&."E7A"

:+$%,0;'$3,+(,5(+/-(#722/$%3'(*/7#((

M%*)14",/." )18.+,)40,)$1"$("')((.*.1,"080)&06&.",.</1)U%.+" ),"#0+"1$,)<.'",/0,"3$')().'"[%((301" AE6)," 0&4$*),/3" #0+" ,/." 3$+," +.<%*." 0&4$*),/3" $(" 0&&" ,/." 3.,/$'+7" 2+"[%((301")+"+533.,*)<"0&4$*),/3")1"#/)</"$1&5"$1."-.5")+"+/0*.'"6.,#..1",/."<0*'"01'",/."3$6)&."($*",/.".1<*59,)$1"01'"'.<*59,)$1"9*$<.++>"+$",/.*.")+"0"'014.*"$(",.39.*)14",/."+.<*.,"-.57""

Q$" $8.*<$3." ,/)+>" 0" 1.#"3.</01)+3" $(" -.5" .]</014)14" /0+" 6..1" )1,*$'%<.'" )1" ,/)+",/.+)+7" Z/.1.8.*" ,/." <$33%1)<0,)$1" )+" 30'." 0" (*.+/" +.," $(" -.5" 01'" 90++#$*'" )+"*.U%)*.'"($*".8.*5"9*$<.++7""

C,"3./(&+0(U/7(G/%R/%(D7"%30('%7J$,1%&JD7(

[56*)'" <*59,$4*09/5" 65"30-)14" %+." $(" ,/." )39&.3.1,0,)$1" $(" KI2" 01'"[%((301" )+"'$1." 6.,#..1" ,/." 3$6)&." 01'" ,/." -.5" +.*8.*" ($*" ,/." 0%,/.1,)<0,)$1" 9*$<.++" 01'" ,/."

.]</014."$("')((.*.1,".1<*59,.'"'0,07"[%((301"<*59,$4*09/5"/0+",0-.1"0'801,04."$8.*"KI2"6.<0%+.",/.*.")+"1$"1..'"$("+/0*)14",/."+.<*.,."-.5"#),/"$,/.*"+.*8.*7"

L$&&$#)14",06&."9*.+.1,+",/.",)3."3.0+%*.3.1,"6.,#..1",/."3$6)&."01'",/."-.5"+.*8.*"($*",/."*.U%.+,"01'",/."*.+9$1+.",)3.")1<&%')14"0&&",/."9*$<.++)14",)3."&)-.".1<*59,)$1>"'.<*59,)$1"(*$3".8.*5"+)'.7"

" K.+9$1+."

2,,.39,"A"

K.+9$1+."

2,,.39,"C"

K.+9$1+."

2,,.39,"F"

28.*04."

K.U%.+,"*.+9$1+."Q)3." )1"`3+.<a"

FPH7N" FSE7C" FJA7F" FJF7JF"

Q06&."E7C"c",/."*.U%.+,"01'"*.+9$1+.",)3."6.,#..1",/."3$6)&."01'",/."+.*8.*"

Q/."06$8.",06&."E7C"+/$#+",/."*.+9$1+.",)3."(*$3",/."-.5"+.*8.*")1"')((.*.1,"0,,.39,+7"Q/.*." #.*." ,/*.." 0,,.39,+" 30'." ,$" <09,%*." ,/." *.9$1+." ,)3)14+" 01'" ,/." 08.*04."*.+9$1+.",)3."#0+"FJF7JF""

L)4%*."E7Cc"G$39%,.*".1<*59,)$1",)3."($*"KI2"ANCH""

Q/." 06$8." ()4%*." +/$#+" ,/." ,)3)14+" ($*" ,/." KI2" 0&4$*),/3" 65" 30-)14" %+." $(" ,/."<$39%,.*7"!,"#0+"1$,.'"($*"ANNN"65,.+"$("'0,0"KI2"ANCH"0&4$*),/3",0-.+"F7H"3)&&)+.<$1'+",$".1<*59,"'0,07""

L)4%*."E7Fc"R$6)&.".1<*59,)$1",)3."($*"KI2"ANCH"

Q/." 06$8." ()4%*." +/$#+" ,/." ,)3)14+" ($*" ,/." KI2" 0&4$*),/3" 65" 30-)14" %+." $(" ,/."<$39%,.*7"!,"#0+"1$,.'"($*"ANNN"65,.+"$("'0,0"KI2"ANCH"0&4$*),/3",0-.+"F7H"3)&&)+.<$1'+",$".1<*59,"'0,07""

L)4%*."E7Hc"G$39%,.*".1<*59,)$1",)3."($*"M:I""

Q/."06$8."()4%*."+/$#+",/.",)3)14+"($*",/."M:I"0&4$*),/3"65"30-)14"%+."$(",/."<$39%,.*7"!,"#0+"1$,.'"($*"ANNN"65,.+"$("'0,0"M:I"0&4$*),/3",0-.+"B7S"3)&&)+.<$1'+",$".1<*59,"'0,07(

L)4%*."E7Bc"G$39%,.*".1<*59,)$1",)3."($*"M:I"

Q/."06$8."()4%*."+/$#+",/.",)3)14+"($*",/."M:I"0&4$*),/3"65"30-)14"%+."$(",/."<$39%,.*7"!,"#0+"1$,.'"($*"ANNN"65,.+"$("'0,0"M:I"0&4$*),/3",0-.+"B7S"3)&&)+.<$1'+",$".1<*59,"'0,07(

L)4%*."E7Ec"G$39%,.*".1<*59,)$1",)3."($*"Q*)9&."M:I""

Q/."06$8."()4%*."+/$#+",/.",)3)14+"($*",/."Q*)9&."M:I"0&4$*),/3"65"30-)14"%+."$(",/."<$39%,.*7"!,"#0+"1$,.'"($*"ANNN"65,.+"$("'0,0"Q*)9&."M:I"0&4$*),/3",0-.+"AN7C"3)&&)+.<$1'+",$".1<*59,"'0,07(

L)4%*."E7Pc"G$39%,.*".1<*59,)$1",)3."($*"Q*)9&."M:I"

Q/."06$8."()4%*."+/$#+",/.",)3)14+"($*",/."Q*)9&."M:I"0&4$*),/3"65"30-)14"%+."$(",/."<$39%,.*7"!,"#0+"1$,.'"($*"ANNN"65,.+"$("'0,0"Q*)9&."M:I"0&4$*),/3",0-.+"AA"3)&&)+.<$1'+",$".1<*59,"'0,07(

4,$&.($32/(5,%(/+$3%/(J%,'/##(

Q/.".1,)*."9*$<.++"3.01+" ,/." ,)3." ,0-.1"#/)&." +<011)14" ,/."<0*'>"0%,/.1,)<0,)14"'0,0"(*$3",/."+.*8.*"01'"4)8)14"60<-"*.+9$1+.",$",/."&)6*0*5"+.*8.*"01'"$9.1)14"$("'$$*7"L)8."')((.*.1,",)3)14+"#.*."<0&<%&0,.'",$"9.*($*3"3.0+%*.3.1,"$(",/."$8.*0&&",)3)14+7"(

" 2,,.39,"A"

"2,,.39,"C"

2,,.39,"F"

"2,,.39,"H"

"2,,.39,"B(

28.*04."

Q)3.")1"`3+.<a"

SEN7F" SBN7F" SEB7N" SFP7F" SFP7N" SHS7SJ"

Q06&."E7Fc",)3."($*".1,)*."9*$<.++"%+)14"[%((301"+</.3."

" 2,,.39,"A" 2,,.39,"C" 2,,.39,"F" 28.*04."

Q)3.")1"3+.<"

6&%.,$$,/",$"#)()"

FNH7B" FCN7N" FHB7J" FCF7HF"

Q)3.")1"3+.<"

#)()",$"6&%.,$$,/"

FNA7A" CSJ7H" FNB7P" FNA7PF"

Q06&."E7Hc"[01'$8.*"6.,#..1",/."<$11.<,)$1"$("@&%.,$$,/"01'"#)()"

( 2,,.39,"A" 2,,.39,"C" 2,,.39,"F" 28.*04."

Q)3." )1" ES" EC7B" PN7C" EP7CF"

Q06&."E7Bc"T0,.1<5"'.&05"$(",/."@&%.,$$,/",.</1$&$45")1"35"'.+)41"

Q/." *.+%&,+" +/$#" ,/0," ,/." $6=.<,)8." $(" ,/." 099&)<0,)$1" #0+" +%<<.++(%&&5" 0</).8.'7"Q/$%4/",/."+$&%,)$1"&$$-+"3$*."<$39&.]"0+"<$390*.'",$",/.".])+,)14"+5+,.3+>"6%,"),")+"3$*."+.<%*."01'"(0+,"0+"#.&&7"!,"/0+"6..1"$6+.*8.'",/0,",/."099&)<0,)$1",$$-"&.++",/01"0"+.<$1'",$"$9.1",/."&)6*0*5"'$$*"($*",/."%+.*7"R$*.$8.*>",/.".((.<,"$("/56*)'",.</1$&$45"4*.0,&5")1(&%.1<.+",/."9*$<.++>",/%+"30-)14"),"3$*."+.<%*."01'"9$#.*(%&7"

7 Conclusions and Future Work Q/)+" ,/.+)+" 9*$8)'.+" 0" <&$%'" ')+,*)6%,.'" 9&0,($*3" ($*" +.<%*)14" ,/." &0,.+," ,04+" 60+.'",.</1$&$457" " Q/." 9*$6&.3" +,0,.3.1," #/)</" #.*." )'.1,)(5" )1" ,/)+" *.+.0*</" #$*-" #0+"+.<%*." ,/." <$33%1)<0,)$1" 6.,#..1" ,/." ;LG" 01'" I30*,9/$1." 01'" ,/.1" ,$" %+." ,/)+"9*$,$,59." ($*"9*$9$+)14" ,/.";LG"60+.'"T)6*0*5"+5+,.3"($*"X99+0&0"X1)8.*+),5"#/)</"/0+"6..1"+%<<.++(%&&5"0</).8.'7""

M%*)14" ,/."#$*-"#),/" ,/)+" ,/.+)+>" 0" *.0&" &)(." +<.10*)$" /0+" 6..1" '.+)41.'" ,$" 6%)&'" ,/."9*$,$,59."#/)</"/0+"6..1"'$1."65"+,%'5)14"')((.*.1,",59.+"$("*.+.0*</",$9)<+"*.&0,.'",$"+.<%*),5>"')+,*)6%,.'"9&0,($*3>",04+"60+.'",.</1$&$457"Q/."+,*.++"#0+"$1"KL!M"01'";LG"6.<0%+." ,/.+." #.*." ,/." <$*." ,.</1$&$4).+" #/)</" )18$&8.'" )1" ,/." )39&.3.1,0,)$1" $("+.<%*),57"

Q/)+"9*$9$+.'",.+,6.'")+"<0906&."$("<$11.<,)14"#),/",/."#.6"I30*,9/$1."01'")1,.*1.,",06&.,+"01'"Qe"0+"#.&&7"2+",/."9*$=.<,")+"6%)&,"$1",/.",$9"$(",/."01'*$)'"$9.*0,)14"+5+,.3"+$" ,/0," ,/." 099" <01" 6." )1+,0&&.'" $1" 01'*$)'" )1,.*1.," ,06&.,+>" I30*," Qe+" 01'" 9/$1.+7"2(,.*"*.4)+,*0,)$1"#),/",/."I30*,9/$1.",/."%+.*")+"<0906&."$("9.*($*3)14",/."0&&"*.&.801,",0+-+"*.&0,.'",$",/."&)6*0*5"0<<.++"&)-."6$**$#)14"6$$-+>"*.,%*1)14"6$$-+"01'"</.<-)14"/)+"%+.*"0<<$%1,7"D1",/."$,/.*"+)'."0'3)1)+,*0,$*+"<01"(%*,/.*".1+%*.",/."6$$-+"$%,"$(",/."+,$<-"01'"*.+.*8.'7"

M%*)14",/."<0+."+,%'5"($*",/)+"9*$=.<,"),"#0+"*.8.0&.'",/0,".0*&).*"*.+.0*</"($*"9*$9$+)14",/."3$'.*1" &)6*0*5"+5+,.3"/0+"0''*.++.'" ,/."9*$,$,59."65"%+)14"R5I_T"#/)</"#.*."<0%+)14",/."9.*($*301<.")++%.+7"Q/.*.($*.")1",/)+",.+,.'"0"<&$%'")1(*0+,*%<,%*."/0+"6..1"%+.'" #/)</" 9*$8)'." 0" +.<%*." 01'" ')+,*)6%,.'" 9&0,($*3" ($*" )1($*30,)$1" )1,.*</014."6.,#..1",/."')((.*.1,"'.8)<.+7""

7.1 Recommendations M%*)14" ,/." +,%'5"$(" ,/)+" ,/.+)+" ,/." *.+%&,+" +/$#+" ,/0,"2:I" )+" ,/."6.+," </$)<." ($*";LG"+.<%*),5" )++%.+7" X+04." $(" +533.,*)<" (*.+/" -.5+" )+" 0&+$" *.<$33.1'.'" ($*" 1.0*" ().&'"<$33%1)<0,)$17"

7.2 Future Work Q/)+" ,/.+)+" /0+" .]9&$*.'" ')((.*.1," 099*$0</.+" ($*" +.<%*)14" ,04+" 60+.'" ,.</1$&$45" 65"+%<<.++(%&&5" 0''*.++)14" 01'" %+)14" ,/." -.5" 60+.'" 0&4$*),/37" I,)&&"3015" )39*$8.3.1,+"

<01"6." 0''.'" ,$" ,/)+" *.+.0*</"#$*-7"2+" ,/."-.5" )++%.+"#.*." +.<%*)14" ,/." <$33%1)<0,)$1"6.,#..1" ,/." 01'*$)'" 01'";LG" ,.</1$&$45" +$" +.<%*)14" ,/."#.6" 099&)<0,)$1" /0+" 1$," 6..1"9*$9.*&5"/)4/&)4/,.'" +$" )," <01"6." ,/."9$++)6&." (%,%*."#$*-7"Q/."3$+," )39$*,01," 0+9.<," )+",$#0*'+",/."9.*($*301<."$("I30*,9/$1.7"Q/."<&$%'"60+.'"+.<%*."9&0,($*3"#$*-+"#.&&",/."I30*,9/$1." /08)14" /)4/" 9*$<.++)14" 9$#.*" 6%," 6%," )," +&$#+" '$#1" ($*" ,/." I30*,9/$1."#),/"&$#"9*$<.++)14"9$#.*7"

References [1g""""""""""""""";.0*"().&'"<$33%1)<0,)$1"*++,-.//01"2343,0536"789/2343/#068:;30<5:=7>>?13=6+371"

fCg"""""""""""""""222"!"#@;78?>"789"

fFg""""""""""""""" "

fHg"""""""""""""""222"$%"&'("10+/+0=*17<79A/-0=?83+A/$%"&'(@#)&**%#/"

fBg"""""""""""""""Q.&.<$33%1)<0,)$1+"01'")1($*30,)$1".]</014."6.,#..1"+5+,.3+" ";.0*"L).&'"G$33%1)<0,)$1" "!1,.*(0<."01'"V*$,$<$&"`;LG!V\ +,":'),)$17"!IDY!:G"CAHJA"

fEg"""""""""""""""01"2343,0536"789/2343/BC$DEF"

fPg"""""""""""""""W&0%+"L)1-.1b.&&.*>" >"C1'"7:'),)$17"Z.+,"I%++.]c"j$/1"Z)&.5"01'"I$1+"T,'7"

fJg"""""""""""""""50G0<7,08"6158735"=7>/9?350/+7,3=-/=7110=+3G3+A/!"#/"

fSg"""""""""""""""I,*$14"0%,/.1,)<0,)$1"($*"KL!M"+5+,.3+"%+)14",/."2:I"0&4$*),/3"65"L.&'/$(.*>"I01'*0"M$3)1)-%+>"01'"j$/011.+"Z$&-.*+,$*(.*7"

fANg"""""""""""Q.&.<$33%1)<0,)$1+"01'")1($*30,)$1".]</014."6.,#..1"+5+,.3+" ";.0*"L).&'"G$33%1)<0,)$1" "!1,.*(0<."01'"V*$,$<$&"`;LG!V\ +,":'),)$17"!IDY!:G"AJNSC"

fAAg"""""""""""@$$-";.0*"L).&'"G$33%1)<0,)$1"!1,.*(0<."01'"V*$,$<$&"C1'".'),)$1"9%6&)+/.'"$1"j%1."CNAN7""

fACg""""""""""" KL!M"Q.</1$&$45 "j%1"NC>"CNNB"65"I)3+$1""

fAFg"""""""""""R!L2K:"G&0++)<"<0*'""

fAHg""""""""""""0&"0,"K0'6$%'"X1)8.*+),5";)=3.4.1>";.,/.*&01'+7"

fABg"""""""""""R)(0*."G&0++)<"A-\"R0)1+,*.03"<$1,0<,&.++"+30*,"<0*'"!G"($*"(0+,"01'".0+5"+$&%,)$1"'.8.&$93.1,"

fAEg"""""""""""" "

fAPg""""""""""" \.106&.'"RC1+0816+3716<!%71;0801=0!71!DG63<6H3<3+AI!E0<36H3<3+A!615!)0=?83+A"65"R%&&)1.*"

fAJg"""""""""""!1"Z$*-+/$9"$1"KL!M"I.<%*),5>":7"[0+.&+,.)1.*>"W7"@*.),(%m7"I.<%*),5")1";.0*"L).&'"G$33%1)<0,)$1"`;LGa"

fASg"""""""""""7;LG"M.8)<.+c"I.<%*),5"01'"V*)80<5"65"O7"R0'&305*>"j7"T014.*>"G7"W01,1.*>"j7"I</0*)14.*7"Q/)*'"!1,.*10,)$10&"G$1(.*.1<."$1"280)&06)&),5>"K.&)06)&),5"01'"I.<%*),5>"904.+"EHC EHP>"CNNJ7"

fCNg"""""""""""Q/."M.+)41"$("K)=1'0.&"65"j7"M0.3.1"01'"e7"K)=3.1"`2:I\",/."2'801<.'":1<*59,)$1"I,01'0*'a"

fCAg"""""""""""T),,&."I.<%*),5>"M.+9),."D6+<%*),5"65"W0*+,.1";$/&"01'"[.1*5-"V&$,b7"R)(0*.7"CH,/"G/0$+"G$33%1)<0,)$1"G$14*.++"9%6&)+/.'")1"M.<.36.*"

fCCg" R$6)&."KL!M"I.<%*),5"!++%.+c"@5"L00'$$.14)1..*+7<$3"

fCFg""CNNB>""fCHg"" :VG4&$60&"Z.6"+),.>"CNNB>"/,,9cYY###7":VG4&$60&)1<7$*4""fCBg"" \" "/,,9cYY.%*$9.71$-)07<$3Y1$-)0YN>>BBPFS>NN7"[,3&""fCEg"" e.CNNB>" /,,9cYY###78.*)+)417<$3Y+,.&&.1,Y4*$%9+Y"9%6&)<Y'$<%3.1,+Y#/),.n909.*YNNCANS79'("

g"""""""""""" "

fCPg""""""""""" ,,0<-+"$1";LG\C1+0816+3716<!%71;0801=0!71!DG63<6H3<3+AI!E0<36H3<3+A!615!)0=?83+A"65"R%&&)1.*"

fCJg"""""""""""!1"Z$*-+/$9"$1"KL!M"I.<%*),5>":7"[0+.&+,.)1.*>"W7"@*.),(%m7"I.<%*),5")1";.0*"L).&'"G$33%1)<0,)$1"`;LGa"

fCSg"""""""""""7;LG"M.8)<.+c"I.<%*),5"01'"V*)80<5"65"O7"R0'&305*>"j7"T014.*>"G7"W01,1.*>"j7"I</0*)14.*7"Q/)*'"!1,.*10,)$10&"G$1(.*.1<."$1"280)&06)&),5>"K.&)06)&),5"01'"I.<%*),5>"904.+"EHC EHP>"CNNJ7"

fFNg"""""""""""Q/."M.+)41"$("K)=1'0.&"65"j7"M0.3.1"01'"e7"K)=3.1"`2:I\",/."2'801<.'":1<*59,)$1"I,01'0*'a"

fFAg"""""""""""Q.&.<$33%1)<0,)$1+"01'")1($*30,)$1".]</014."6.,#..1"+5+,.3+" ";.0*"L).&'"G$33%1)<0,)$1" "!1,.*(0<."01'"V*$,$<$&"`;LG!V\ +,":'),)$17"!IDY!:G"AJNSC"

fFCg"""""""""""@$$-";.0*"L).&'"G$33%1)<0,)$1"!1,.*(0<."01'"V*$,$<$&"C1'".'),)$1"9%6&)+/.'"$1"j%1."CNAN7""

fFFg""""""""""" KL!M"Q.</1$&$45 "j%1"NC>"CNNB"65"I)3+$1""

fFHg" :*1+,"[0+.&+,.)1.*"01'"W&.3.1+"@*.),(%++7"I.<%*),5")1"1.0*"()&.'"<$33%1)<0,)$1>"`;LGa>"V/)&)9+"I.3)<$1'%<,$*+7"!1"Z$*-+/$9"$1"KL!M"I.<%*),5"KL!MI.<"NE>"j%&"CNNE"

fFBg" V*0<,)<0&".]9.*).1<.+"#),/";LG"+.<%*),5"$1"3$6)&."9/$1.+>"O0%,/).*"e01"M033."01'"W0*.&"Z$%,.*+>"W0,/$&).-."X1)8.*+),.),".%8.1"M.9,7":&.<,*)<0&":14)1..*)14\:I2QYIGMY!@@Q\GDI!G"W0+,..&90*-"2*.16.*4"AN>"FNNA"[.8.*&..\T.%8.1"

fFEg" I.<%*),5")1";.0*"L).&'"G$33%1)<0,)$1"`;LGa"I,*.14,/+"01'"Z.0-1.++.+":*1+,"[0+.&+,.)1.*"01'"W&.3.1+"@*.),(%"V/)&)9+"I.3)<$1'%<,$*+R)-*$1#.4"A>"JANA"O*0,-$*1>"2%+,*)0"

fFPg" I,*.14,/+"01'"Z.0-1.++.+"$(";.0*"L).&'"G$33%1)<0,)$1"`;LGa"Q.</1$&$45"@5"R$/03.'"R$+,0(0"26'"2&&0/>"O&$60&"j$%*10&"$("G$39%,.*"I<).1<."01'"Q.</1$&$45"e$&%3."AA"!++%."e.*+)$1"A7N"R0*</"CNAA"Q59.c"M$%6&."@&)1'"V..*"K.8).#.'"!1,.*10,)$10&"K.+.0*</"j$%*10&"V%6&)+/.*c"O&$60&"j$%*10&+"!1<7"`XI2a"D1&)1."!II;c"NSPB\HAPC"o"V*)1,"!II;c"NSPB\HFBN"

fFJg" 2"@*).("G$390*)+$1"$(";LG"I30*,"V$+,.*+"01'"_%)<-"K.+9$1+."G$'.+>"W.),/":7"R05.+>"T0b0*$+"W5*)&&)')+>"W$1+,01,)1$+"R0*-01,$10-)+"!IO"I30*,"G0*'"G.1,*.>"K$50&"[$&&$#05>"X1)8.*+),5"$("T$1'$1>":4/03>"I%**.5>"XW>"QZCN"N:^

& nfc based e-library implementation farrukh...

Documents

din 15018 part 1

sonim xp1301 core nfc and reslink nfc

nfc in personal connected health - home - nfc...

zarkhaiz pathar-travelogue of india-sheen farrukh-1996

nfc - download.e-bookshelf.de · vi nfc for dummies part 2:...

system frameworks #wwdc17€¦ · near field communication...

what is research farrukh malik march 2013

deforestation & conservation efforts farrukh

doctor of philosophy business administration farrukh...

nfc near field...

15018-properties of homogeneous reservoirs, naturally fractu

din 15018-1984 - cranes

nfc m24lrxx cr95hf - etc · nfc portfolio presentation nfc...

15018-3- cranes.pdf

nfc forum mobile nfc ecosystem white paper

oral presentation skills tehmina farrukh lecturer bsd

nfc-a, nfc-b and nfc-f protocol analyzer

banking frauds presentation farrukh

nfc reference guide for air travel - home - nfc...

nfc in japan nfc forum - meetupfiles.meetup.com/2610372/2012...