ISO/IEC INTERNATIONAL STANDARD 29167-14 First edition 2015-10-15 Information technology Automatic identification and data capture techniques Part 14: Crypto suite AES OFB security services for air interface communications Technologies de I'information - Techniques automatiques d'identification et de capture de données Partie 14: Services de sécurite par suite cryptographique AES-OFB pour communications d'interface radio Reference number IS0/IEC 29167-14:2015(E) E( . STANDARDIZATIONC15956617 @ IS0/IEC 2015 thout license from IHS IS0/IEC 29167-14:2015(E) COPYRIGHTPROTECTEDDOCUMENT IS0/IEC 2015, Published in Switzerland All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized otherwise in any form or by any means, electronic or mechanical, including photocopying, or posting on the internet or an intranet, without prior written permission. Permission can be requested from either ISO at the address below or ISO's member body in the country of the requester. ISOcopyrightoffice Ch. de Blandonnet 8 · CP 401 CH-1214 Vernier, Geneva, Switzerland Tel. +41 22 749 01 11 Fax +41 22 749 09 47 [email protected] www.iso.org Internatinai br DrganizationforStandardization Licensee-ZHEJIANG INST OF STANDRJSQ/6NEC5- All rights reserved Not for Resale, 2016/1/8 02:44:54 networking permited withoutlicense from IHS IS0/IEC 29167-14:2015(E) Contents Page Foreword ..iv Introduction. ..V Scope. ..1 2 Conformance ..1 2.1 Claiming conformance 1 2.2 Interrogator conformance and obligations 1 2.3 Tag conformance and obligations .1 3 Normative references. ..2 4 Terms and definitions. ..2 5 Symbols and abbreviated terms .2 5.1 Svmbols 5.2 Abbreviated terms .2 6 Cipher introduction .3 6.1 General. 6.2 Encryption in AES OFB mode. .3 6.3 Decryption in AES OFB mode. .3 7 Parameter definitions .4 8 State diagram 9 Initialization and resetting ..5 10 Authentication .5 10.1 General .5 10.1.1 Authentication types. .5 10.1.2 CS_Initialization (Authentication type: AuthMethod"111", Mandatory) 6 10.2 Tag authentication (Authentication type: AuthMethod = "ooo", Mandatory) 7 10.2.1 Tag authentication 7 10.2.2 Commands and responses for tag authentication. ..8 10.3 Interrogator authentication (Authentication type: AuthMethod = “o01", Optional) .9 10.3.1 Interrogator authentication 9 10.3.2 Commands and responses for interrogator authentication. .10 10.4 Mutual authentication (Authentication type: AuthMethod = “010", Mandatory) .12 10.4.1 Mutualauthentication ..12 10.4.2 Commands and responses for mutual authentication .13 11 Communication .15 12 Key management and key update ..15 12.1 Master key selection. .15 12.2 Keystream generation .16 12.3 Key update ..17 12.3.1 General ..17 12.3.2 Command ..17 Annex A (normative) Crypto suite state transition tables ..20 Annex B (normative) Error Codes ..21 Annex C (normative) Cipher description ..22 Annex D (informative) AES OFB test vectors ..23 Annex E (normative) Protocol specific operation ..26 Annex F (informative) Tag authentication via server ..32 Bibliography ..35 iii ted without license from IHS