Is Your Cat Infected with a Computer Virus?

Pisa, Italy March 13-March 17

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/PERCOM.2006.32

Fourth IEEE International Conference ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Melanie R. Rieback Articles by Bruno Crispo Articles by Andrew S. Tanenbaum

	ASCII Text	x
	Melanie R. Rieback, Bruno Crispo, Andrew S. Tanenbaum, "Is Your Cat Infected with a Computer Virus?," Pervasive Computing and Communications, IEEE International Conference on, pp. 169-179, Fourth IEEE International Conference on Pervasive Computing and Communications (PerCom'06), 2006.

	BibTex	x
	@article{ 10.1109/PERCOM.2006.32, author = {Melanie R. Rieback and Bruno Crispo and Andrew S. Tanenbaum}, title = {Is Your Cat Infected with a Computer Virus?}, journal ={Pervasive Computing and Communications, IEEE International Conference on}, volume = {0}, year = {2006}, isbn = {0-7695-2518-0}, pages = {169-179}, doi = {http://doi.ieeecomputersociety.org/10.1109/PERCOM.2006.32}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Pervasive Computing and Communications, IEEE International Conference on TI - Is Your Cat Infected with a Computer Virus? SN - 0-7695-2518-0 SP169 EP179 A1 - Melanie R. Rieback, A1 - Bruno Crispo, A1 - Andrew S. Tanenbaum, PY - 2006 KW - null VL - 0 JA - Pervasive Computing and Communications, IEEE International Conference on ER -

Melanie R. Rieback, Vrije Universiteit Amsterdam

Bruno Crispo, Vrije Universiteit Amsterdam

Andrew S. Tanenbaum, Vrije Universiteit Amsterdam

RFID systems as a whole are often treated with suspicion, but the input data received from individual RFID tags is implicitly trusted. RFID attacks are currently conceived as properly formatted but fake RFID data; however no one expects an RFID tag to send a SQL injection attack or a buffer overflow. This paper is meant to serve as a warning that data from RFID tags can be used to exploit back-end software systems. RFID middleware writers must therefore build appropriate checks (bounds checking, special character filtering, etc..), to prevent RFID middleware from suffering all of the well-known vulnerabilities experienced by the Internet. Furthermore, as a proof of concept, this paper presents the first self-replicating RFID virus. This virus uses RFID tags as a vector to compromise backend RFID middleware systems, via a SQL injection attack.

Citation:

Melanie R. Rieback, Bruno Crispo, Andrew S. Tanenbaum, "Is Your Cat Infected with a Computer Virus?," percom, pp.169-179, Fourth IEEE International Conference on Pervasive Computing and Communications (PerCom'06), 2006

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.