信息网络安全 ›› 2020, Vol. 20 ›› Issue (8): 9-15.doi: 10.3969/j.issn.1671-1122.2020.08.002

• 等级保护 • 上一篇    下一篇

基于硬件指纹和生物特征的多因素身份认证协议

张骁, 刘吉强()   

  1. 北京交通大学计算机信息与技术学院,北京 100044
  • 收稿日期:2020-04-11 出版日期:2020-08-10 发布日期:2020-10-20
  • 通讯作者: 刘吉强 E-mail:jqliu@bjtu.edu.cn
  • 作者简介:张骁(1991—),男,河南,博士研究生,主要研究方向为短距离通信安全、隐私保护、物联网安全|刘吉强(1973—),男,山东,教授,博士,主要研究方向为可信计算、安全协议、隐私保护、网络安全
  • 基金资助:
    国家自然科学基金(61672092);中央高校基本科研业务费(2018JBZ103);山东省重点研发计划(重大科技创新工程)(2019JZZY020128)

Multi-factor Authentication Protocol Based on Hardware Fingerprint and Biometrics

ZHANG Xiao, LIU Jiqiang()   

  1. School of Computer and Information Technology, Beijing Jiaotong University, Beijing 100044, China
  • Received:2020-04-11 Online:2020-08-10 Published:2020-10-20
  • Contact: LIU Jiqiang E-mail:jqliu@bjtu.edu.cn

摘要:

文章提出一种面向智能设备间短距离通信的多因素身份认证协议,将用户账户密钥作为知识因素、智能设备扬声器硬件指纹作为所有权因素、用户面部信息作为生物信息因素,从而抵抗一些常见攻击。文章提出的协议适用于不依赖额外硬件的短距离通信方式,协议利用信道特点结合硬件指纹和面部识别技术,在实现安全身份认证的同时为后续通信提供通信密钥,且后续通信不需要用户付出额外的认证动作便可对用户设备信息持续认证。安全分析和实验证明,该协议可以抵抗重放攻击、硬件指纹伪造攻击、智能设备被盗攻击等常见攻击,在智能家居、移动支付、非接触门禁等高安全性需求场景中有很大的应用价值。

关键词: 多因素身份认证, 硬件指纹, 生物特征, 短距离通信安全

Abstract:

This paper proposes a multi-factor authentication protocol for short-range communication between smart devices. It can prevent the common attacks, such as smartphone lost attack, man-in-the-middle attack, replay attack, by combining the user’s account key as a knowledge factor, the smart device speaker hardware fingerprint as a ownership factor, and the user’s facial information as a biological information factor. This protocol proposes is suitable for no extra hardware short-range communication methods. This paper uses the high-security features of audio channel to continuously authentication while authentication side received data signals. Security analysis and experiments prove that the protocol has high application value in high security scenario, such as smart home, mobile payment, and contactless access control.

Key words: multi-factor authentication, hardware fingerprint, biometrics, short-range communication security

中图分类号: