物联网中增强安全的RFID认证协议

doi:10.3969/j.issn.1671-1122.2018.01.012

信息网络安全 ›› 2018, Vol. 18 ›› Issue (1): 80-87.doi: 10.3969/j.issn.1671-1122.2018.01.012

物联网中增强安全的RFID认证协议

李智聪¹, 周治平^1,²

1. 江南大学物联网工程学院,江苏无锡 214122
2.江南大学物联网技术应用教育部工程研究中心,江苏无锡 214122

收稿日期:2017-10-09 出版日期:2018-01-20 发布日期:2020-05-11
作者简介:
作者简介：李智聪（1992—）,男,河南,硕士研究生,主要研究方向为RFID安全认证;周治平（1962—）,男,江苏,教授,博士,主要研究方向为信息安全、检测技术与自动化装置等。
基金资助:
国家自然科学基金[61373126]

Enhanced Secure RFID Authentication Protocol in IoT

Zhicong LI¹, Zhiping ZHOU^1,²

1. School of IoT Engineering, Jiangnan University, Wuxi Jiangsu 214122, China
2. Engineering Research Center of Internet of Things Technology Applications Ministry of Education, Jiangnan University, Wuxi Jiangsu 214122, China

Received:2017-10-09 Online:2018-01-20 Published:2020-05-11

摘要/Abstract

摘要：

随着物联网技术的发展,RFID呈现大规模的应用需求。为了实现强隐私的保护机制,研究者们考虑采用公钥加密机制设计协议,通过分析部分采用ECC加密的RFID协议,发现此类协议中存在认证函数线性问题造成的弱安全性。文章利用其线性弱点,对AlAMR等人协议进行了跟踪攻击和中间人攻击,并基于此设计了新的协议。采用DH理论生成通信实体间的共享秘密并将其作为随机化的新鲜因子,保证数据流的新鲜性和不可预测性,避免跟踪攻击的威胁;通过异或操作联合新鲜因子和标签属性值构建通信数据对应的函数,解除认证函数线性问题,避免了中间人攻击;针对系统规模的不可扩展性问题,在认证函数设计中融合ID验证传输的思想,实现常数级服务器的搜索复杂度。协议的设计考虑了所有通信实体间不安全信道的情况,通过对协议性能的统计分析可以看出,该协议相比同类型协议更能满足物联网的发展需求。

关键词: 物联网, RFID, 不可追踪, 隐私, 跟踪攻击

Abstract:

With the development of Internet of things technology, large-scale popularization of RFID applications will appear. In order to realize the protection mechanism of strong privacy, researchers consider using public key encryption mechanism to design protocols. By analyzing some RFID protocols using ECC encryption, it is found that the authentication function is linear in such protocols, which cause the weak security of protocols. Utilizing its linear weakness, it can be found that AlAMR’s protocol is vulnerable to man-the-middle attack and tracking attack. In view of this, a new protocol is designed, this paper uses DH theory to generate the shared secret between the communication entities and set the shared secret as randomized fresh factors, which ensure the freshness and unpredictability of the data stream and avoid tracking attacks. This paper constructs the function corresponding to the communication data through combining these fresh factors and attribute values of the tag by XOR operation, which solve the problem of linearity of the authentication function and avoid the man-the-middle attack. Aiming at the problem of non-scalability of system scale, the idea of ID-verifier transfer is fused into the design of authentication functions to realize the search complexity of a constant level. The designed protocol considers the insecure channel among all communication entities. Through the statistical analysis of the performance of the protocol, the protocol can better meet the development needs of IoT compared with the same type of protocol.

Key words: IoT, RFID, untraceable, privacy, tracking attack

中图分类号:

TP309

李智聪, 周治平. 物联网中增强安全的RFID认证协议[J]. 信息网络安全, 2018, 18(1): 80-87.

Zhicong LI, Zhiping ZHOU. Enhanced Secure RFID Authentication Protocol in IoT[J]. Netinfo Security, 2018, 18(1): 80-87.

图/表 4

参考文献 20

[1]	董晓蕾. 物联网隐私保护研究进展[J]. 计算机研究与发展,2015,52(10):2341-2352.
[2]	LEUNG J, CHEUNG W, CHU S C.Aligning RFID Applications with Supply Chain Strategies[J]. Information & Management, 2014, 51(2): 260-269.
[3]	NGAI E W T, GUNASEKARAN A. RFID Adoption: Issues and Challenges[J]. International Journal of Enterprise Information Systems, 2017, 5(1): 1-8.
[4]	张玉婷,严承华. 一种基于双向认证协议的RFID标签认证技术研究[J]. 信息网络安全,2016(1):64-69.
[5]	YU Yinhui, ZHANG Lei.Research on a Provable Security RFID Authentication Protocol Based on Hash Function[J]. Journal of China Universities of Posts & Telecommunications, 2016, 23(2): 31-37.
[6]	马庆,郭亚军,曾庆江,等. 一种新的超轻量级RFID双向认证协议[J]. 信息网络安全,2016(5):44-50.
[7]	SHI Leyi, JIA Cong, GONG Jian, et al.RFID Mutual Authentication Protocol on Pseudo-random Hash Function with Shared Secrets[J]. Journal of Electronics & Information Technology, 2015, 38(2): 361-366.
[8]	杨玉龙,彭长根,郑少波,等. 基于移动智能终端的超轻量级移动RFID安全认证协议[J]. 信息网络安全,2017(5):22-27.
[9]	VAUDENAY S.On Privacy Models for RFID[C]//Springer. 2007 International Conference on the Theory and Application of Cryptology and Information Security, December 2-6, 2007, Kuching, Sarawak, Malaysia. Heidelberg: Springer, 2007: 68-87.
[10]	HE D, ZEADALLY S.An Analysis of RFID Authentication Schemes for Internet of Things in Healthcare Environment Using Elliptic Curve Cryptography[J]. IEEE Internet of Things Journal, 2015, 2(1): 72-83.
[11]	LEE Y K, BATINA L, VERBAUWHEDE I. EC-RAC (ECDLP Based Randomized Access Control): Provably Secure RFID Authentication Protocol[C]//IEEE. 2008 IEEE International Conference on RFID, April 16-17, 2008, Las Vegas, NV, USA. New Jersey: IEEE, 2008: 97-104.
[12]	KI L Y, BATINA L, VERBAUWHEDE I.Untraceable RFID Authentication Protocols: Revision of EC-RAC[C]//IEEE. 2009 IEEE International Conference on RFID, April 27-28, 2009, Orlando, FL, USA. New Jersey: IEEE, 2009: 178-185.
[13]	LIAO Yipin, HSIAO C M.A Secure ECC-based RFID Authentication Scheme Integrated with ID-verifier Transfer Protocol[J]. Ad Hoc Networks, 2014, 18(7): 133-146.
[14]	ZHAO Zhenguo.A Secure RFID Authentication Protocol for Healthcare Environments Using Elliptic Curve Cryptosystem[J]. Journal of Medical Systems, 2014, 38(5): 46.
[15]	FARASH M S, NAWAZ O, MAHMOOD K, et al.A Provably Secure RFID Authentication Protocol Based on Elliptic Curve for Healthcare Environments[J]. Journal of Medical Systems, 2016, 40(7): 1-7.
[16]	CHIEN H Y.Elliptic Curve Cryptography-based RFID Authentication Resisting Active Tracking[J]. Wireless Personal Communications, 2017, 94(4): 2925-2936.
[17]	CHOU J S.An Efficient Mutual Authentication RFID Scheme Based on Elliptic Curve Cryptography[J]. The Journal of Supercomputing, 2014, 70(1): 75-94.
[18]	ZHANG Zezhong, QI Qingqing.An Efficient RFID Authentication Protocol to Enhance Patient Medication Safety Using Elliptic Curve Cryptography[J]. Journal of Medical Systems, 2014, 38(5): 47-54.
[19]	夏戈明,史立哲, 周文,等. 轻量级RFID双向通信认证协议优化方案[J]. 信息网络安全,2014(2):58-62.
[20]	ALAMR A A, KAUSAR F, KIM J, et al.A Secure ECC-based RFID Mutual Authentication Protocol for Internet of Things[J]. The Journal of Supercomputing, 2016, 8(2): 1-14.

物联网中增强安全的RFID认证协议

Enhanced Secure RFID Authentication Protocol in IoT

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 4

参考文献 20

相关文章 15

编辑推荐

Metrics

本文评价

[1]	刘建伟, 韩祎然, 刘斌, 余北缘. 5G网络切片安全模型研究[J]. 信息网络安全, 2020, 20(4): 1-11.
[2]	陈璐, 孙亚杰, 张立强, 陈云. 物联网环境下基于DICE的设备度量方案[J]. 信息网络安全, 2020, 20(4): 21-30.
[3]	郎为民, 张汉, 赵毅丰, 姚晋芳. 一种基于区块链的物联网行为监控和活动管理方案[J]. 信息网络安全, 2020, 20(2): 22-29.
[4]	彭长根, 赵园园, 樊玫玫. 基于最大信息系数的主成分分析差分隐私数据发布算法[J]. 信息网络安全, 2020, 20(2): 37-48.
[5]	唐春明, 林旭慧. 隐私保护集合交集计算协议[J]. 信息网络安全, 2020, 20(1): 9-15.
[6]	康健, 王杰, 李正旭, 张光妲. 物联网中一种基于多种特征提取策略的入侵检测模型[J]. 信息网络安全, 2019, 19(9): 21-25.
[7]	汪金苗, 王国威, 王梅, 朱瑞瑾. 面向雾计算的隐私保护与访问控制方法[J]. 信息网络安全, 2019, 19(9): 41-45.
[8]	郝文江, 林云. 互联网企业社会责任现状与启示研究[J]. 信息网络安全, 2019, 19(9): 130-133.
[9]	叶阿勇, 金俊林, 孟玲玉, 赵子文. 面向移动终端隐私保护的访问控制研究[J]. 信息网络安全, 2019, 19(8): 51-60.
[10]	周权, 许舒美, 杨宁滨. 一种基于ABGS的智能电网隐私保护方案[J]. 信息网络安全, 2019, 19(7): 25-30.
[11]	刘建华, 郑晓坤, 郑东, 敖章衡. 基于属性加密且支持密文检索的安全云存储系统[J]. 信息网络安全, 2019, 19(7): 50-58.
[12]	李怡霖, 闫峥, 谢皓萌. 车载自组织网络的隐私保护综述[J]. 信息网络安全, 2019, 19(4): 63-72.
[13]	蒋辰, 杨庚, 白云璐, 马君梅. 面向隐私保护的频繁项集挖掘算法[J]. 信息网络安全, 2019, 19(4): 73-81.
[14]	许力, 朱瑞, 曾雅丽. 认知无线电网络中基于SpaceTwist的位置隐私保护方案[J]. 信息网络安全, 2019, 19(2): 18-27.
[15]	傅彦铭, 李振铎. 基于拉普拉斯机制的差分隐私保护k-means++聚类算法研究[J]. 信息网络安全, 2019, 19(2): 43-52.