Many industries used RFID for more efficient management. We can see RFID everywhere in our daily lives such as Supply Chain Management(SCM), electronic identity card and Electronic Toll Collection system(ETC). When the RFID applica-tions become more widely, then the security and privacy of RFID systems become the important concerns because they are vulnerable to a number of malicious attacks. But for low-cost RFID systems, many traditional security mechanisms are inefficient due to the resource constraints. So our research we concern on design a new RFID proto-col with strong security and privacy. Supply chain management is a common RFID application. In many situations we have to re-use the tags to save cost. However, the tag ownership becomes another is-sue for the re-use tags. Kyosuke Osaka, Tsuyoshi Takagi, Kenichi Yamazaki and Osamu Takahashi presented their RFID ownership transfer protocol in 2007. However, we found there still have some security and privacy issues in Osaka et al. protocol remain unsolved. In this thesis, we focus on designing a new RFID protocol with strong security and privacy. Our protocol can against most of the common RFID attacks and greatly enhanced the RFID security and privacy protection. In addition, it also improved the efficiency of the back-end database search. Our protocol can provide more effective protection of the security and privacy of users.