轻量级移动RFID认证协议研究设计

doi:10.3969/j.issn.1006-2475.2016.11.013

计算机与现代化

轻量级移动RFID认证协议研究设计

山东科技大学数学与系统科学学院,山东青岛266590

收稿日期:2016-05-27 出版日期:2016-11-15 发布日期:2016-11-23
作者简介:位书敏(1984-),男,山东青岛人,山东科技大学数学与系统科学学院硕士研究生,研究方向:信息安全。
基金资助:
国家自然科学基金资助项目(61402265,61170054)

Research and Design of Lightweight Mobile RFID Authentication Protocol

College of Mathematics and System Science, Shandong University of Science and Technology, Qingdao 266590, China

Received:2016-05-27 Online:2016-11-15 Published:2016-11-23

摘要/Abstract

摘要： 为解决移动射频识别（Mobile RFID）系统中信息通过无线信道传输所引发的安全与隐私问题，提出一种基于伪随机函数的轻量级移动RFID认证协议，实现后台服务器、阅读器与标签之间的双向认证。该协议中的运算主要集中在后台服务器和阅读器，可以有效地控制标签成本。安全性分析表明，该协议可以有效抵抗位置追踪、假冒、重放和同步化等攻击，并通过GNY逻辑进行了安全性证明。


关键词: 移动RFID, 安全协议, 双向认证, GNY逻辑

Abstract: In order to solve the security and privacy issues in the mobile radio frequency identification (RFID) system caused by wireless transmission, a lightweight mobile RFID authentication protocol based on pseudo-random function is provided, and mutual certifications between backend server, reader and tags are achieved. The operation of the protocol is mainly concentrated in the background server and the reader, which can effectively control the cost of the tag. Security analysis shows that the protocol can effectively resist the attack of location tracking, counterfeiting, replay and synchronization attack etc, and the security of this protocol is proved by GNY logic.


Key words: mobile RFID, security protocol, two-way authentication, GNY logic

中图分类号:

TP393.08

位书敏，张永华，商玉芳. 轻量级移动RFID认证协议研究设计[J]. 计算机与现代化, doi: 10.3969/j.issn.1006-2475.2016.11.013.

WEI Shu-min, ZHANG Yong-hua, SHANG Yu-fang. Research and Design of Lightweight Mobile RFID Authentication Protocol[J]. Computer and Modernization, doi: 10.3969/j.issn.1006-2475.2016.11.013.

参考文献

［1］ Sarma S E, Weis S A, Engels D W. RFID systems and security and privacy implications ［C］// The 4th International Workshop on Cryptographic Hardware and Embedded Systems. 2003:454-469.
［2］ Weis S A, Sarma S E, Rivest R L, et al. Security and privacy aspects of low-cost radio frequency identification systems ［J］. Lecture Notes in Computer Science, 2003,2802:201-212.
［3］ Ohkubo B M, Suzuki K, Kinoshita S. Hash-chain based forward-secure privacy protection scheme for low-cost RFID ［C］// Proceedings of the Symposium on Cryptography & Information Security. 2004:719-724.
［4］ Dimitriou T. A secure and efficient RFID protocol that could make big brother (partially) obsolete［C］// Proceedings of the 4th Annual IEEE International Conference on Pervasive Computing and Communications. 2006:269-275.
［5］ Molnar D, Soppera A, Wagne D. A scalable, delegatable pseudonym protocol enabling ownership transfer of RFID tags［C］// Proceedings of the 12th International Conference on Selected Areas in Cryptography. 2005:276-290.
［6］ Hopper N J, Blum M. Secure human identification protocols ［C］// Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology. 2001:52-66
［7］ Juels A, Weis S A. Authenticating pervasive devices with human protocols［C］// Advances in Cryptology-CRYPTO 2005, Springer Berlin Heidelberg. 2005:293-308.
［8］ Bringer J, Chabanne H, Dottax E. HB^+^+: A lightweight authentication protocol secure against some attacks ［C］// Proceedings of the 2nd International Workshop on Security, Privacy and Trust in Pervasive and Ubiquitous Computing. 2006:28-33
［9］ Peris-Lopez P, Hernandez-Castro J C, Estevez-Tapiador J M, et al. LMAP: A real lightweight mutual authentication protocol for low-cost RFID tags［C］// Workshop on RFID Security, 2006. 2006:12-14.
［10］Peris-Lopez P, Hernandez-Castro J C, Estevez-Tapiador J M, et al. EMAP: An efficient mutual-authentication protocol for low-cost RFID tags［C］// Proceedings of the 2006 International Conference on On the Move to Meaningful Internet Systems: AWeSOMe, CAMS, COMINF, IS, KSinBIT, MIOS-CIAO, MONE. 2006:352-361.
［11］Peris-Lopez P, Hernandez-Castro J C, Estevez-Tapiador J M, et al. M2AP: A minimalist mutual-authentication protocol for low-cost RFID tags ［C］// Proceedings of the 3rd International Conference on Ubiquitous Intelligence and Computing. 2006:912-923
［12］Yeh Tzu-chang, Wu Chien-hung, Tseng Yuh-min. Improvement of the RFID authentication scheme based on quadratic residues［J］. Computer Communications, 2011,34(3):337-341.
［13］Chang Ya-fen, Lin Shao-cian, Chang Pei-yu. A location-privacy-protected RFID authentication scheme［C］// 2011 IEEE International Conference on Communications(ICC). 2011:1-4.
［14］Doss R, Sundaresan S, Zhou Wanlei. A practical quadratic residues based scheme for authentication and privacy in mobile RFID systems［J］. Ad Hoc Networks, 2013,11(1):383-396.
［15］Liu A T, Chang H K C, Lo Y S, et al. The increase of RFID privacy and security with mutual authentication mechanism in supply chain management［J］. International Journal of Electronic Business Management, 2012,10(1):1-7.
［16］Niu Ben, Zhu Xiaoyan, Chi Haotian, et al. Privacy and authentication protocol for mobile RFID systems［J］. Wireless Personal Communications: An International Journa, 2014,77(3):1713-1731.
［17］Burrows M, Abadi M, Needham R M. A logic of authentication ［C］// Proceedings of the 12th ACM Symposium on Operating Systems Principles. 1989:1-13.
［18］Li Gong, Needham R, Yahalom R. Reasoning about belief in cryptographic protocols［C］// 2012 IEEE Symposium on Security and Privacy. 1990:234-248.

[1]	简碧园1, 汪海涛2, 刘道微1. 一种RFID双向认证协议[J]. 计算机与现代化, 2017, 0(7): 107-110.
[2]	刘在英;沙洁;张丽晓. 软件VPN在企业网络安全中的应用[J]. 计算机与现代化, 2013, 1(8): 154-158,.
[3]	罗旭富;骆源. 基于TPM的虚拟机安全协议的研究[J]. 计算机与现代化, 2013, 1(7): 30-033.
[4]	刘世俊;曹珍富. 容迟网络中发布/订阅多播协议的安全激励机制[J]. 计算机与现代化, 2013, 1(5): 103-107.
[5]	张立茹;鄢楚平;詹葆荣. 基于EAP-TTLS的可信网络接入认证技术[J]. 计算机与现代化, 2013, 218(10): 110-113,.

轻量级移动RFID认证协议研究设计

Research and Design of Lightweight Mobile RFID Authentication Protocol

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 5

编辑推荐

Metrics

本文评价