Nowadays, more and more services are provided via mobile devices and chips of limited computation ability. Moreover, because passive tags are cheap and need no battery, plenty of applications adopt RFID systems of passive tags - electronic purses for example. Before a service is provided, mutual authentication between a device and the back-end server is needed to check whether the device is legal. Unfortunately, these devices possess limited computation abilities and storage. As a result, many researchers want to find a way to provide a sufficient security level with a low computational load for devices with low computation abilities – mobile devices and RFID tags for example. Safkhani et al. proposed a hash-based authentication protocol for RFID systems. They claimed that their protocol complied with essential security properties for RFID systems. On the other hand, Doss et al. proposed a quadratic residue (QR)-based authentication scheme for passive RFID tags. This scheme conforms to the EPC Class-1 Gen-2 specification and also possesses the required security properties. However, computational loads of them are heavy. In this research, we will review Safkhani et al.’s and Doss et al.’s schemes and propose corresponding improvements. Our schemes provide not only an equivalent security level but also a lighter computational load. That will be more beneficial to perform our scheme on these devices.