By Michael Crane
Security
RFID and network teams can also work together to protect the network from attacks that might degrade network performance. Many RFID security issues are not yet well understood, and RFID networks are subject to security concerns at the reader and tag levels. Network-savvy teams can minimize potential threats by taking advantage of policy-based access controls, data
authentication,
encryption and other security products offered by Cisco and other major networking vendors.
In addition to securing the network against unauthorized access and other common threats, the network team can further protect RFID data by logically segmenting RFID devices on their own virtual network. For mission-critical RFID data, this option is worth a bit of extra management effort to protect the RFID application from external threats such as worms and viruses, as well as any unnecessary data originating on non-RFID devices.
In addition to protecting RFID data from loss or tampering, security mechanisms can also protect the business from threats arising from the misuse of stolen data. For example, RFID data that indicates how many units of a recalled product remain on a store shelf might not be valuable by itself. Placed in a business context, however, a person could purchase such a product and then initiate a lawsuit claiming the product remained on the shelf after a safety recall. Encrypting the tag data as it crosses the network can reduce this type of threat.
A Lifecycle Approach
Like any other technology implementation, RFID is best executed using a "lifecycle services" approach that will help you get the most business value from your technology investment. This approach begins with developing a business case and establishing a high-level conceptual architecture. Do you need an extensive RFID system with full network redundancy, or will a basic implementation on one LAN segment meet your needs?
Next, assess your environment to determine whether it can support the proposed system with adequate performance and security. A data-flow analysis will tell you whether the RFID system will affect other applications, and whether network upgrades are indicated. With the proper preparation and planning, you'll be able to design and implement a solution that meets your business and technical requirements without disrupting the network or creating points of vulnerability.
Once the system is operational, maintain network health through day-to-day operations and optimize the solution by adapting the architecture, operation and performance of the network to evolving business requirements. Addressing all aspects of the solution lifecycle for your people, processes and technology will help you successfully install and operate a secure RFID system—with the performance you need for basic mandate compliance or a large, business-critical implementation.
Michael Crane is the senior director of advanced services for Cisco Systems.
THE WORLD'S RFID AUTHORITY
PREMIUM = Requires Subscription. Learn More
