Discovering Suppliers' Customers by means of Statistical Disclosure Attacks

This paper analyses the vulnerability of a Radio Frequency IDentification (RFID) equipped distribution centre (DC) of a supply chain against the Statistical Disclosure Attack (SDA). We built a simulation model to assess the success probabilities of the attack against differently configured distribution centres and attackers. The success probability of an SDA against a DC varies, depending on the organization of the DC, as well as on the number of customers and their structure. The success probability decreases if a supplier delivers multiple products to a customer in a single round, as well as if the fraction of observed deliveries by the attacker falls below a certain threshold.