There are two main ways to secure data stored in a RAIN RFID tag.
Tag Memory Access Control:
UHF Gen2V2 (RAIN) tags support a password-protected lock feature that provides read or write protection to memory. The lock feature can be permanent or reversible. Depending on the memory bank that is to be protected, the memory is either both read- and write-protected, or only write-protected. For example, locking the EPC memory (MB 01) of a tag prevents any over-writing of the content while letting it readable. Locking data stored in the Reserved memory bank (MB 00), which contains Kill and Access password will prevent any over-writes and reads of the content.
Lock/Unlock features are based on a 32-bit Access password. In order to be effective, this access password needs to be defined and managed carefully.
The Gen2 standard also has a permalock feature. If engaged, permalock will make the lock status (locked or unlocked) permanent for all or part of a tag’s memory.
Encryption of Data:
This security technique is devoted to any applications that store additional data beyond an identifier on the tag that needs to be kept confidential. This deals primarily with data stored in the User memory bank (MB 11). The sensitive data is encrypted before it is written to the tag. The encryption is performed by either the reader, middleware, or other enterprise software components. The tag is not required to be able to encrypt or decrypt data.
As encryption techniques are based on cryptographic keys, these need to be defined, stored and managed carefully.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article