Abstract-We present a lightweight pseudorandom number generator (PRNG) design for EPC Gen2 RFID tags. It is based on a linear feedback shift register (LFSR) configured with multiple feedback polynomials that are selected by a physical source of randomness. The proposal successfully handles the inherent linearity of LFSR based PRNGs and satisfies the statistical requirements imposed by the EPC Gen2 standard. Statistical analysis of the sequences generated by our generator confirms the validity of the proposed technique. We show that our proposal has, moreover, a simpler hardware implementation and energy consumption than previous designs reported in the literature.
I. INTRODUCTION
The Electronic Product Code (EPC) is a Radio Frequency IDentification (RFID) technology for the automatic identification of objects. Its main interface is the EPC Class 1 Generation 2 UHF Air Interface Protocol standard (EPC Gen2 for short) [1] . EPC Gen2 compliant RFID tags are passive electronic labels without self-power supply. They are energized by the electromagnetic field of RFID readers. Distances from which Gen2 labels can be energized and interrogated by the readers is, typically, up to five meters.
The integration of security features on-board of EPC Gen2 tags faces several challenging constraints such as cost, compatibility regulations, power consumption, and performance requirements. EPC Gen2 tags only consider two main security elements: a 16-bit pseudorandom number generator (PRNG) and password-protected operations. The pseudorandomness offered by the on-board PRNG is, indeed, used to protect the password-protected operations. The PRNG is also used as an anti-collision mechanism for inventorying processes [1] ; and to acknowledge other EPC Gen2 specific operations (e.g., memory writing, decommission of tags, and self-destruction). The on-board 16-bit PRNG is, therefore, the crucial component that guarantees the security of a Gen2 tag.
As required by the EPC specification, every commercial Gen2 tag does implement an on-board 16-bit PRNG. However, manufacturers are reluctant to provide their designs [2] . They simply refer to testbeds that show the accomplishment of some compatibility requirements. They fail to offer convincing This work has been supported by the Spanish Ministry of Science and Innovation, the FEDER funds under the grants TSI2007-65406-C03-03 E-AEGIS, CONSOLIDER-INGENIO CSD2007-00004 ARES, TIN2010-15764 N-KHRONOUS.
information about the security of their designs. This is mostly security through obscurity, which is always ineffective in security engineering, as it has been shown with the disclosure of the PRNG used in the MIFARE Classic chip [3] that has shown a vulnerable PRNG. The use of weak PRNGs that allow the predictability of the outgoing sequences do also introduce important security flaws in EPC Gen2 communications. For example, it might allow an adversary to bypass the security of the password-protected commands defined in the Gen2 standard (e.g., the access and the kill commands [1] ).
In this paper, we propose a lightweight PRNG scheme for EPC Gen2 tags. We present an attractive approach based on the use of linear feedback shift registers (LFSRs). The simplicity of using LFSRs and their low hardware complexity, while still providing efficient statistical properties, guarantees the ease and efficient adaptation of our scheme to meet the requirements of the EPC Gen2 specifications. Moreover, our solution handles the inherent linearity of LFSR designs in order to satisfy the security randomness requirements imposed by the EPC Gen2 specification. An evaluation of the hardware complexity and power consumption of our proposal confirms, moreover, that our design has a simpler implementation than any other previous schemes reported in the related literature.
Paper Organization -Section II describes of our proposed PRNG. Section III presents an example of its internal execution. Section IV evaluates statistical properties, hardware complexity and power consumption of our PRNG. Section V surveys related work. Section VI closes the paper.
II. OUR PRNG PROPOSAL
The main challenge to obtain an efficient PRNG is how to guarantee the generation of sequences with (almost) true random properties, while also addressing efficiency and computational complexity. Indeed, the low power, chip area and output rate (among other constraints) of EPC Gen2 tags makes very difficult the use of true random number generator (TRNG) designs based on, e.g., thermal noise, high frequency sampling or fingerprinting, for a real-time generation of full length pseudorandom sequences. We propose to address this problem by combining a physical source of true randomness and a deterministic LFSR. [4] , [5] . Indeed, it substitutes the static feedback polynomial configuration of an LFSR by a multiple feedback primitive polynomials configuration architecture. The different feedback primitive polynomials are connected to the LFSR by a Decoding Matrix Unit that selects each single feedback polynomial. After a given number of LFSR cycles, the Polynomial Selector shifts its position towards a new configuration. The number of shifts, i.e., the corresponding selection of each primitive polynomial at a certain LFSR cycle, is determined by a true random bit (hereinafter denoted as trn) that is obtained from a physical source of randomness. More details are presented in the sequel.
A. Linear Feedback Shift Register
Our proposal relies on a n-cell LFSR core perturbed by a physical source of randomness. LFSRs produce pseudorandom sequences with good statistical values. They are very fast and efficient in hardware implementations, and quite simple in terms of computational requirements [6] . This makes the use of LFSRs an ideal system for both energy and computational constrained environments. Moreover, LFSRs follow the same hardware scheme as those cyclic redundancy check (CRC) functions already included in the EPC Gen2 standard [1] . Therefore, current EPC Gen2 tags shall be able to execute LFSR-based functions in the same hardware.
B. Polynomial Selector
The Polynomial Selector is the responsible of the linearity avoidance in our scheme. A set of m primitive feedback polynomials is selected, and each single feedback polynomial is used depending on the value of the truly random bit provided by the TRNG module. The feedback polynomials are implemented as a wheel, which rotates depending on the bit value given by the TRNG module. If the truly random bit is a logical 0, the wheel rotates one position, that is, it selects the next feedback polynomial. Instead, if the truly random bit is a logical 1, then the wheel rotates two positions, that is, the Polynomial Selector jumps one feedback polynomial and selects the next one.
C. Decoding Logic
The Decoding Logic is the responsible of managing the internal PRNG clock. It activates and deactivates the PRNG modules for its proper performance. The internal PRNG modules have different activation and deactivation timings. Depending on the internal clock frequency, f clk , some modules such as the LFSR or the TRNG need different activation cycles. For example, the trn sampling in the TRNG module is activated only once for each PRNG output.
The Decoding Logic also manages the trn obtained from the TRNG module, rotating the Polynomial Selector with regard to the trn value. This action is performed using l cycles, lower than the n cycles needed in the LFSR, to avoid pseudorandom sequences generated from a single feedback polynomial.
D. Thermal-noise TRNG
Regarding the physical source of randomness (trn), there are different proposals to derive true random sequences of bits from the hardware of a radio-frequency identification (RFID) tag. The technique that we use in our design is an oscillatorbased high frequency sampler by Che et al. [7] , that offers high simplicity and suitability for EPC Gen2 designs. The output of the TRNG is fed to the Decoding Logic which, in turn, manages the Polynomial Selector.
III. SAMPLE PRNG EXECUTION
After the description of the logic components of the system, we show an example of the proposed PRNG internal execution. The goal of this section is to provide better comprehension of the PRNG performance details.
The specific parameters needed in each internal module are defined in Table I, while Table II specifies the chosen feedback polynomials. The LFSR size n has been fixed to 16 and the total number of different feedback polynomials m has been set to 8. Such values ensure an appropriate trade-off between pseudorandomness and hardware complexity, as we discuss in Section IV. We take as the initial LFSR state the value v 0 = 0x1 (which represents a logical 1 in the less significant bit, in hexadecimal notation). Table III details each LFSR state for 32 shift cycles (rows) providing 32 outputted PRNG bits (column Tx) consisting in two 16-bit sequences. Since the trn sampling frequency is f r = 16 cycles, this 32 shift cycles need two true random values, that in the example have been set to r 1 = 0 and r 2 = 1.
The system starts with p(x) 1 and outputs l = 15 bits until the TRNG module transfers a bit with value r 0 = 0 to the 16 
TABLE III LFSR ITERATION EXAMPLE
S16 S15 S14 S13 S12 S11 S10 S9 S8 S7 S6 S5 S4 S3 S2 S1 Tx v 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 Table III ).
IV. EPC GEN2 SUITABILITY
We discuss the suitability of our proposal regarding the restrictions that the EPC standard impose. We analyze three important parameters of our scheme: statistical requirements stated by the EPC Gen2 standard for pseudorandom sequence generation, hardware complexity and power consumption.
A. Statistical performance
Detailed in the EPC Gen2 standard [1] , the requirements for the pseudorandom sequences generation can be summarized as follows:
1) The probability that any single 16-bit sequence j drawn from the generator shall be bounded by
2) Among a tag population of up to ten thousand tags, the probability that any two tags simultaneously generate the same 16-bit sequence shall be less than 0.1%.
3) The chance of guessing the next 16-bit sequence generated by a tag shall be less than 0.025% even if all previous outputs are known to an adversary. To confirm the suitability of our proposal for handling the statistical and randomness requirements defined above, we generate ten different sequences using our PRNG. Values presented in this subsection are the ones obtained by using the PRNG parameters defined in Section III. However, similar results have been obtained when varying parameters n, m, l and the feedback polynomials.
To confirm the achievement of the first requirement, we analyze the frequency of occurrence of each sequence generated from our generator. The results confirm (see Figure 2 ) that, after analyzing 30 million 16-bit sequences, the probability of occurrence of any given value lies between P min = 0, 8 2 16 and P max = 1,2 2 16 . Furthermore, our proposal achieves similar statistical results with Random.org true random sequences [8] , based on its frequency properties.
The second property for building a EPC Gen2 compliant PRNG requires that two simultaneous identical sequences must not appear with more that 0.1% for a population up to 10,000 tags. To test this property, 10,000 instances of our generator, initialized at random, are used to simulate a real population of 10,000 tags. The obtained results, shown in Table IV , verify that, after ten tests of 1,000 iterations each, none of them show a simultaneous identical sequence rate higher than 0.03793%.
Finally, to statistically confirm the fulfillment of the third property, we conducted a series of correlation tests based on Table V , that all the tests are under the requested values.
B. Hardware
The goal of this section is to provide the approximated hardware complexity of our PRNG, sized in logic gates equivalence (GE), to measure its suitability for EPC Gen2 requirements. The scientific literature quantifies in between 2,000 and 5,000 equivalent logic gates (GEs) the intended area for security operations in EPC Gen2 ICs [9] .
Regarding the system parameters summaryzed in Table I , the ones that significantly impact on the hardware complexity are the size of the LFSR n, and the number of selected primitive polynomials m. Notice, as well, that the implementation of the exact choice of the m polynomials will impact on the hardware complexity.
The Linear Feedback Shift Register module and the Polynomial Selector module have been introduced separately in Section II due to their specific function inside the scheme. However, in the hardware layer design, a different approach shall be used. Although the feedback polynomial is an intrinsic part of the LFSR, we consider its implementation in the Polynomial Selector module, due to the multiple-polynomial configuration. Figure 3 depicts the LFSR module plus the Polynomial Selector, in the specific case of polynomials in Table II . Then, once we fix the cell number of the LFSR and the number of feedback polynomials, we analyze how the selection of different parameters affects to the hardware complexity.
The LFSR size n = 16 is selected due to compatibility reasons with the EPC Gen2 technology, since the standard requires the generation of 16-bit pseudorandom nonces [1] . Hence, the polynomials which determine the feedback content are also limited to 16 coefficients. Furthermore, the current EPC Gen2 standard specifies as a mandatory implementation a 16-bit CRC based on LFSR. Thus, we can certainly state that our proposal can be executed in EPC Gen2 labels, since they currently run similar hardware.
Regarding the hardware constrained environment, the onboard implemented polynomials have been fixed to m = 8. This value offers good statistical properties (cf. Section IV-A) with a low hardware complexity, since only 3 bits are necessary to manage the selected polynomials. Adding more onboard polynomials do not improve the statistical properties of the system, but on the contrary, it implies an exponential increase on necessary logical gates to build the system. Hence, m = 8 offers a suitable trade-off between security and hardware cost, which is the goal of our design.
Regardless of the fixed number of implemented polynomials, the hardware cost of each possible combination may vary. Assuming polynomials of degree 16, we could find 2,048 of them which are primitive. Thus, we can choose a total of ( 2,048 8 ) possible combinations, near 2 73 . Each Polynomial Selector is implemented based on the coefficients of each combination of polynomials, which is translated into a specific amount of logical components. Based on these parameters, and the necessary hardware to implement each combination of polynomials, we have calculated a worst case amount of 180 necessary GEs to build the set of polynomials, based on two-gates logic such as the ones depicted in Figure 3 .
We provide in Table VI the GE counting of the three main modules: the LFSR module, the Polynomial Selector module and the Decoding Logic module. These three elements add up to the most representative amount of GEs. For the LFSR implementation purpose, we use the D-flip-flop (DFF) model specified at [10] composed by 18 CMOS transistors. Hence, a D-FF can be measured with approximately 4.5 GE.
The Polynomial Selector module includes the polynomials implementation and the logic hardware to select each polynomial. This hardware complexity is considerably low compared with the 2,000 to 5,000 GE estimated in the literature for security operations [9] , thus suitable for our PRNG scheme.
We then provide the physical source of randomness assumed for our generator. For the gate equivalence of this component, c16  c13  c10  c7  c6  c5  c4  c3  c1 c11 Fig. 3 . Multiple Polynomial selector activates one specific p i (x) generating the tap of the feedback polynomial. Representation with logic gates.
we based our estimations on previous works presented in [9] , [11] . This way, the physical source of randomness that we assume consists of the thermal-noise oscillator presented by Che et al. in [7] , but specified and modeled in our work as proposed in [12] and [13] . The remainder GEs mainly consist of the necessary extra circuitry for controlling the different states of the generator. The final amount of GEs is of, at most, about 453 logic gates. This perfectly matches the Gen2 requirements.
C. Power Consumption
The energy used for a (cryptographic) operation depends on the average power (P avg ) and the duration t of the computation. Hence, energy consumption is one of the most important parameters for battery-powered devices, which depends on the time that the battery is able to supply the requested power. However, for passively powered devices (such as EPC Gen2 tags) the average power transmitted from the reader to the tag is small but, in general terms, the reader can supply the power arbitrarily long. Thus, the energy does not play an important role in the EPC Gen2 tags as long as there is enough time available to do the computation [14] . Standard CMOS transistors is the current choice of most digital circuit designs built for low power consumption and robustness. Hence, it is appropriate to consider power consumption analysis based on an implementation using CMOS technology [9] .
An important aspect of security implementations in the design stage is to ensure that the power dissipation of the IC does not exceed the available power budget for its execution. Feldhofer et al. have estimated the average power budget for cryptographic operations in 4 µW at five meters to the reader [14] .
The total power consumption of a CMOS circuit is the sum of static and dynamic power consumption. The static power consumption mainly depends on the size of the circuit and is very small, thus, it can be ignored for our considerations [14] . While the use of direct methods to measure power dissipation may be possible, a simple method for estimating the dynamic power dissipation is based on formulating the power loss during the charging and discharging of capacitances [9] . Equation 1 models the average power dissipation of a system composed of a small number of logic gates.
C L is the load capacitance along the critical path and p 0→1 represents the logic state transition from low to high (or vice versa) in a single clock cycle. The combination of p 0→1 and C L can also be stated as the average capacitance switched during each clock cycle. f clk represents the clock frequency and V DD is the system supply voltage. Design measures for lowering the power consumption result from minimizing the factors in this equation. It is difficult to apply this formula to ICs of large sizes due to the difficulty to state the number of logic state transitions for each clock cycle. However, it is adequate for estimating the power consumption in small hardware.
Based on measurements presented by Etrog et al. [15] , the load capacitance (C L ) for each GE is approximately 3 fF. The voltage source and operating frequency have been previously stated in 1 V and 100 kHz for passive low-cost RFID. If we consider that about half GE are switched for each clock cycle, Equation 1 returns an estimation of 67.5 nW of average power consumption for our PRNG proposal. The estimation is consistent with similar designs present in the literature [16] , and under the available budget of 4 µW of power consumption for cryptographic operations for UHF technologies.
V. RELATED WORK Very few PRNGs designs for lightweight RFID technologies have been disclosed in the related literature. Manufacturers of existing commercial solutions are, indeed, reluctant to provide their designs [2] . The use of security through obscurity, as the case of the MIFARE RFID Classic chip has shown recently [3] , is always ineffective in security engineering. Moreover, most of the designs that do appear in the literature, and that claim to be both secure and lightweight enough to fit the EPC Gen2 restrictions, fail to provide convincing proofs of such claims. Some proper examples are [17] and [7] . The design in [17] is an optimized variant of the shrinking generator [18] , a well studied cryptographic design that combines two clocked LFSRs. The output sequence of the first LFSR is used to discard some bits from the output sequence of the second LFSR [6] . The hardware implementation of this generator seems to require 1,435 logic gates. However, it is worth pointing out that some techniques presented in [19] can be used to attack the scheme. No evidences of how their proposal controls either the irregularities of the generator's output rate (an important drawback inherent to any shrinking generator scheme). If this problem is not properly handled, it can hint at the state of the main LFSR, and so breaking the security of the generator. The second example, presented in [7] , is also a variant of the shrinking generator discussed above, but based on a physical source of randomness that handles the linearity of an underlying LFSR. In [20] , we presented an efficient attack for successfully retrieving the feedback polynomial of this vulnerable generator scheme with very few observations. Assuming a 16-bit version of the generator, we proved that the feedback polynomial can be predicted with a probability higher than 50% by simply capturing 160 bits; and 90% by capturing 464 bits. Therefore, the scheme does not meet any security standard. Some PRNGs based on stream ciphers schemes, such as Trivium [21] , LAMED [2] , or Grain [22] are also lightweight enough to satisfy the EPC Gen2 requirements. Up to now, no attacks against these three proposals exist in the literature. Table VII compares the hardware complexity (in GEs) of these proposals with ours, and shows that their complexity seems to be considerably much higher than ours. Other technical restrictions, such as power consumption, cannot be compared with ours since no evidences of such evaluations are provided in their work. However, and considering their hardware complexity, we can predict that it is also much higher than ours.
VI. CONCLUSION A pseudorandom number generator (PRNG) design for EPC Gen2 RFID tags has been presented. The generator is based on a linear feedback shift register (LFSR) configured with a multiple-polynomial tap architecture that is fed, in turn, by a physical source of randomness. This leads to having different feedback primitive polynomials selected at random in order to handle the natural linearity of any LFSR. We have validated that the resulting generator satisfies the randomness requirements imposed by the EPC Gen2 standard. We have also evaluated the hardware complexity and the power consumption of our generator. The evaluations have confirmed that the proposal fulfills all the constraints imposed by the EPC Gen2 standard by using, moreover, a much simpler design than any other previous scheme reported in the literature.
