Slashdot Mirror
Open Source RFID Project
Anonymous Coward writes "With all the press RFID is getting, I was looking for an open source solution to Wal-Mart's RFID compliancy mandate. I stumbled open the RadioActive project. I think these guys have the right idea. Eventually, RFID will be everywhere. Could an open source project like this bring rapid deployment of RFID like Apache did to the net?"
RFID is the same technology as proximity cards used to access many buildings.
Not really, because there isn't one technology used for these things, except at the most abstract level of "small devices that use radio to communicate".
Some prox cards have no intelligence at all. They're essentially just a coil with a "tuned" resistor. When you hit them with a signal, they reflect that back, somewhat shifted due to the presence of the resistor in the circuit. Other prox cards are more sophisticated and more similar to RFIDs (of which there are also several types, see below). Others are more sophisticated yet and fall into a category more accurately described as contactles smart cards, which have full-blown microprocessors (4, 8, 16 or even 32-bit) with some RAM, some EEPROM or FLASH, a bunch of ROM and even a tiny operating system.
RFIDs come in various types also, based on capability, range and security features. Most are simple read-only devices that do nothing other than respond with their ID number. Others are read-write, but with varying amounts of storage and varying levels of security against unauthorized writing. Different tags use different radio frequencies, which impacts their range and usability in various environments.
And that's just passive devices. There is also a large field of active devices, tags that have their own power supply, rather than being powered by the field generated by a reader. The EZ-Pass devices used for automated toll collection on toll roads are a widely-recognized example. Active tags also come in a wide variety of capabilities, from simple "beacon" tags that just periodically transmit a signal (possibly with timing data, to permit location), to devices that are essentially a small, solid state PC in a different form factor. Some even have integrated cellular telephones and GPS receivers so they can identify their current location even without any kind of tag sensor in range (unless you consider a cell tower a "tag sensor").
RFID is more of a general concept than a specific technology.
Note to ACs: I usually delete AC replies without reading them. If you want to talk to me, log in.
Not necessarily... Some rfid tags do only store a serial number, but there also exist tags that store data on them... for that matter, most 2d barcodes store a lot more on them than just a number. For instance, there is this tool that slashdot mentioned earlier that'll let you keep track of what's recorded on the barcode you have on the back of your drivers license...Barcodes are used a lot more places than just on the upc, and they often store a lot more information...
Anyhow, back to what this software does (and forgive me, I'm familiar with some RFID stuff, but not the EPCGlobal standards work)...more than likely the enterprise system that's keeping track of your inventory doesn't have the faintest idea how to ask a reader for information about tags or how to read the information that comes out. Nor is the information you get back going to be exactly set up to be dumped directly into your database. That' s what this is supposed to do (?).
Feel fee to correct me if I"m wrong...
You seem to have placed heavy focus on my mis-statement, where I should have written,"Many prox card systems are simple RFID." and then pointed out that a huge variety of generic RFID read only or read/write systems could be read and spoofed by this simple system.
RFID is not just a general concept, but a relatively narrow field of wireless communications. I would take issue with your claim that a cell phone and GPS unit could be considered RFID, though I'm sure many companies will purposefully mis state that something is RFID when it is not, such as your example.
RFID does come in many 'flavors' and capabilities as you have otherwise well summarized.
Regardless of the definiton of RFID, my primary point was that most cheap tags are read only or read write with no intelligence, and that they can easily be copied and spoofed. My hope is that manufacturers will not choose cheap where security should be used. If they use better challenge response tags then they will become cheap and there won't be a reason or need to use the easily spoofed tags.
-Adam
except that RadioActive seems to be mostly dead, and all the links to the involved standards are broken.
Not a good start!
Frankly there isn't very much to an RFID system. You have your reader, which is just some XYZ device with a serial interface (or USB-serial interface) that spits out data like a barcode reader. You don't have to think about things like modulation schemes or frequency unless you're building your own reader, otherwise you're buying a kit with reader and tags.
So then you just have to map those serial numbers into an index in a SQL table, and uh, go from there...
SQL, application servers, USB-serial device drivers, all that's done already.
Maybe what they're saying is there isn't any good open-source inventory/point-of-sale packages that sit on top of an inventory database for the user (besides some kind of thrown-together PHP deal and web interface), or that are used to feed is present at location/is not present into said database in real time.
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON