An RFID tag possesses a group key issued by an authorized entity. When a reader requests some information from the tag, such as an identifier, the tag transmits a random number to the reader. The tag then determines one or more reader characteristics based on a response received from the reader. In one embodiment, the tag generates a verification value based on the random number and the group key and compares the verification value to the received response. If the comparison succeeds, the tag may treat the reader as possessing particular functionality, authorized to implement a particular feature, and/or authorized to receive information from the tag. If the comparison fails, the tag may treat the reader as lacking particular functionality, not authorized to implement a particular feature, and/or not authorized to receive information from the tag. The tag may request additional response(s) from the reader before determining the reader characteristic(s).