基于PUF的抗物理克隆RFID安全认证协议

doi:10.3969/j.issn.1671-1122.2020.08.011

信息网络安全 ›› 2020, Vol. 20 ›› Issue (8): 89-97.doi: 10.3969/j.issn.1671-1122.2020.08.011

基于PUF的抗物理克隆RFID安全认证协议

王利¹, 李二霞¹, 纪宇晨², 李小勇²()

1.中国电力科学研究院有限公司,北京 100192
2.北京邮电大学可信分布式计算与服务教育部重点实验室,北京 100876

收稿日期:2020-04-20 出版日期:2020-08-10 发布日期:2020-10-20
通讯作者: 李小勇 E-mail:lixiaoyong@bupt.edu.cn
作者简介:王利（1975—）,女,陕西,高级工程师,硕士,主要研究方向为RFID电子标签安全防护及检测、配电技术等|李二霞（1984—）,女,山东,高级工程师,硕士,主要研究方向为配电自动化安全防护技术、配电终端智能化与互操作等|纪宇晨（1995—）,男,浙江,硕士,主要研究方向为网络空间安全|李小勇（1975—）,男,甘肃,教授,博士,主要研究方向为网络安全,可信服务工程
基金资助:
国家电网有限公司科技项目(PDB17201800158);国家自然科学基金-通用技术基础研究联合基金(U1836215)

PUF-based Anti-physical Cloning RFID Security Authentication Protocol

WANG Li¹, LI Erxia¹, JI Yuchen², LI Xiaoyong²()

1. China Electric Power Research Institute Corporation, Beijing 100192, China
2. Key Laboratory of Trustworthy Distributed Computing and Service (BUPT), Ministry of Education, Beijing University of Posts and Telecommunications, Beijing 100876, China

Received:2020-04-20 Online:2020-08-10 Published:2020-10-20
Contact: LI Xiaoyong E-mail:lixiaoyong@bupt.edu.cn

摘要/Abstract

摘要：

安全认证协议是解决射频识别（RFID）系统前向信道安全和身份识别问题的重要手段。针对RFID系统标签和读写器通信信道安全性较低以及低成本RFID系统标签容易受到物理攻击和标签克隆攻击的问题,基于物理不可克隆函数（PUF）技术和传统的RFID安全认证协议,文章提出一种基于PUF的抗物理克隆RFID安全认证协议。通过PUF和哈希函数两种密码原语来保证通信安全,协议的所有通信都经过加密,从而保证信息的隐私性和安全性,每一轮认证后更新标签信息和密钥信息从而防止重放攻击。协议性能分析结果表明,文章所提出的安全认证协议不仅能够防范窃听、篡改、重放等攻击,还能够防范物理攻击和标签克隆攻击,提高了RFID系统的安全性;同时不会占用过多资源,能够适用于低成本的资源受限的RFID系统。

关键词: RFID系统, 安全认证协议, 抗物理克隆, 物理不可克隆函数

Abstract:

Security authentication protocol is an important means to solve the forward channel security and identity identification problems of radio frequency identification (RFID) system. In view of the insecure problem of RFID system tags and reader channels and the vulnerability of tags to physical attacks, combining physical unclonable function (PUF) technology with traditional RFID security protocol, a PUF-based anti-physical cloning RFID protocol is proposed. The communication primitives are guaranteed by the two cryptographic primitives PUF and hash function, all communication of the protocol is encrypted to ensure the exclusiveness and security of the information, and the label information and the key information are updated after each round of authentication. The analysis results of protocol performance show that, the proposed protocol can prevent not only eavesdropping, tampering, replay attacks, but also physical attacks and tag clone attacks, thus improving the security of RFID system. At the same time, the proposed protocol does not take up too much resources and can be applied to low-cost resource-constrained RFID systems.

Key words: RFID system, security authentication protocol, resistance to physical cloning, physical unclonable function

中图分类号:

TP309

王利, 李二霞, 纪宇晨, 李小勇. 基于PUF的抗物理克隆RFID安全认证协议[J]. 信息网络安全, 2020, 20(8): 89-97.

WANG Li, LI Erxia, JI Yuchen, LI Xiaoyong. PUF-based Anti-physical Cloning RFID Security Authentication Protocol[J]. Netinfo Security, 2020, 20(8): 89-97.

图/表 4

参考文献 18

[1]	ZANG Zhicheng. JIA Qiang, WANG Xuqiang, et al. The Application of SM7 Built-in Algorithm in Safety Appliance Management[C]// China Electric Power Research Institute. Proceedings of the 2018 Smart Grid New Technology Development and Application Symposium, December 25, 2018, Nanjing, Jiangsu, China. Beijing: China Electric Power Research Institute, 2018: 122-126.
	臧志成, 贾强, 王旭强, 等. 内置SM7算法的RFID在安全工器具管理中的应用[C]// 中国电力科学研究院. 2018智能电网新技术发展与应用研讨会,2018-12-25,中国江苏南京. 北京:中国电力科学研究院, 2018: 122-126.
[2]	KONG Fanyue. Research on Anti-collision Algorithm and Security Authentication Protocol of RFID System[D]. Changchun: Jilin University, 2019.
	孔繁月. RFID系统防碰撞算法及安全认证协议研究[D]. 长春:吉林大学, 2019.
[3]	SARMA S E, WEIS S A, ENGELS D W. RFID Systems and Security and Privacy Implications[C]// Springer. 4th International Workshop on Cryptographic Hardware and Embedded Systems, August 13-15, 2002, Redwood Shores, CA, USA. Berlin: Springer Verlag, 2003: 454-469.
[4]	OHKUBO M, SUZUKI K, KINOSHITA S. Hash-Chain based Forward Secure Privacy Protection Scheme for Low-cost RFID[C]// Springer. Proceedings of the 2004 Symposium on Cryptograph and Information Security, January 27-30, 2004, Sendai, Japan. Berlin: Springer Verlag, 2004: 719-724.
[5]	LEE S M, HWANG Y J, LEE D H, et al. Efficient Authentication for Low-cost RFID Systems[C]// Springer. International Conference on Computational Science and Its Applications - ICCSA 2005, May 9-12, 2005, Singapore. Berlin: Springer Verlag, 2005: 619-627.
[6]	PERIS-LOPEZ P, HERNANDEZ-CASTRO J C, TAPIADOR J M E, et al. LMAP: A Real Lightweight Mutual Authentication Protocol for Low-cost RFID Tags[J]. Proc. of Workshop on RFID Security, 2006(10):6.
[7]	RAPHAEL P. Cryptanalysis of a New Ultralightweight RFID Authentication Protocol—SASI[J]. IEEE Transactions on Dependable & Secure Computing, 2009,6(4):316-320.
[8]	GODOR G, GICZI N, IMRE S. Elliptic Curve Cryptography based Mutual Authentication Protocol for Low Computation Capacity RFID Systems Performance Analysis by Simulations[C]// IEEE. 2010 IEEE International Conference on Wireless Communications, Networking and Information Security, June 25, 2010, Beijing, China. New York: IEEE, 2010: 650-657.
[9]	SUH G E, DEVADAS D. Physical Unclonable Functions for Device Authentication and Secret Key Generation[C]// IEEE. Proceedings of the 44th Annual Design Automation Conference, June 4-8, 2007, San Diego, CA, USA. New York: IEEE, 2007: 9-14.
[10]	YIN Weixin, JIA Yongzhe, GAO Yansong, et al. Research on Physical Unclonable Function[J]. Network Security Technology and Application, 2018(6):41-42, 54.
	尹魏昕, 贾咏哲, 高艳松, 等. 物理不可克隆函数(PUF)研究综述[J]. 网络安全技术与应用, 2018(6):41-42,54.
[11]	PAPPU R. Physical One-way Functions[J]. Science, 2002: 2026-2030. URL pmid: 10720331
[12]	WANG Yaodong. The Implementation of Arbiter PUF on FPGA[D]. Wuhan: Huazhong University of Science & Technology, 2018.
	王耀冬. 基于FPGA的仲裁器PUF的实现[D]. 武汉:华中科技大学, 2018.
[13]	LI Song, SUN Ziwen. PUF based Authentication Protocol in Mobile and Large-scale RFID Systems[J]. Computer Engineering & Science, 2018,40(6):1046-1053.
	李松, 孙子文. 基于PUF适用于大规模RFID系统的移动认证协议[J]. 计算机工程与科学, 2018,40(6):1046-1053.
[14]	BURROWS M, ABADI M, NEEDHAM R. A Logic of Authentication[J]. ACM Trans on Computer Systems, 1990,8(1):18-36.
[15]	GOOG Li, NEEDHAM R, YAHALOM R. Reasoning about Belief in Cryptographic Protocols[C]// IEEE. 1990 IEEE Computer Society Symposium on Research in Security and Privacy, May 7-9, 1990, Oakland, CA, USA. New York: IEEE, 1990: 234-248.
[16]	SUN Ziwen, WEI Min. PUF-based Anonymous RFID System Ownership Transfer Protocol[C]// IEEE. 38th Chinese Control Conference, CCC 2019, July 27-30, 2019, Guangzhou, China. New York: IEEE, 2019: 6367-6373.
[17]	MA Chenglin, XIAO Meihua, DENG Chunyan, et al. Security Analysis of the Kerberos* Protocol Based on the Modified GNY Logic[J]. Computer & Digital Engineering, 2014,42(10):1758-1762, 1882.
	马成林, 肖美华, 邓春艳, 等. 基于改进GNY逻辑的Kerberos*协议安全性分析[J]. 计算机与数字工程, 2014,42(10):1758-1762,1882.
[18]	AKGUN M, CAGLAYAN M U. Providing Destructive Privacy and Scalability in RFID Systems Using PUFs[J]. Ad Hoc Networks, 2015,32:32-42.

符号	含义
${{K}_{n}}$	本轮密钥
$I{{D}_{n}}$	本轮标签身份信息
${{K}_{n-1}}$	上轮密钥
$I{{D}_{n-1}}$	上轮标签身份信息
${{r}_{1}}{{,}_{{}}}{{r}_{2}}{{,}_{{}}}{{r}_{3}}$	本地产生的随机数
$r'_{2},r'_{3}$	解密得到的随机数
$H()$	哈希函数
$PUF()$	PUF运算
$\oplus $	异或操作
$\parallel $	连接操作

协议名称	计算开销	存储开销
SASI	2R	6L
ECC	1H+1E	2L+D
文献[18]协议	2P+4H	4L
本文协议	2P+3H	2L

基于PUF的抗物理克隆RFID安全认证协议

PUF-based Anti-physical Cloning RFID Security Authentication Protocol

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 4

参考文献 18

相关文章 5

编辑推荐

Metrics

本文评价

[1]	胡蝶, 马东堂, 龚旻, 马召. 一种基于PUF的物理层安全认证方法[J]. 信息网络安全, 2020, 20(1): 61-66.
[2]	杨玉龙, 彭长根, 郑少波, 朱义杰. 基于移动智能终端的超轻量级移动RFID安全认证协议[J]. 信息网络安全, 2017, 17(5): 22-27.
[3]	蒋政君, 田海博, 张方国. 基于PUF的RFID防伪技术研究综述[J]. 信息网络安全, 2016, 16(4): 38-43.
[4]	杨元原, 陆臻, 顾健. RFID安全协议追踪攻击的形式化分析[J]. 信息网络安全, 2015, 15(9): 25-28.
[5]	王琼;孙瑞冰;王良民;万可. 基于EPC物联网的公安数据通信安全认证协议研究[J]. , 2011, 11(12): 0-0.