RFID的多标签安全认证协议研究

发布时间：2018-05-11 00:29

本文选题：射频识别 + 认证协议　；参考：《扬州大学》2014年硕士论文

【摘要】：射频识别(Radio Frequency Identification, RFID)技术是一种新兴的自动识别技术。由于RFID不需要视距通信,并能保证低成本和高效操作以及多标签的同时识别能力。因此它具备条形码技术、智能卡和生物识别系统(指纹和视网膜识别)等所没有的优点。近些年,RFID技术在工业界与学术界获得了迅速发展,例如供应链管理、电子支付、办公室访问控制、环境监控、智能标签、港口管理、ETC路桥不停车收费系统,中国移动推广的RFID-SIM手机钱包等都将应用到这一技术。RFID也是实现物联网的基础,未来更多的基于RFID技术的产品将会出现。与所有快速发展的新技术一样,无线射频识别技术在带来好处的同时也带来了与安全相关的问题。RFID系统当初的设计思想是——系统对应用是完全开放的,这是RFID系统出现安全隐患的根本原因。此外,在标签上执行加、解密运算需要消耗较多的资源,会给廉价的RFID标签增加额外的开销,因此使一些优秀的安全技术不能直接应用到RFID标签的硬件中。安全实现的成本也是设计RFID安全协议需要考虑的重要因素。因此,基于RFID系统的安全协议需要是轻量级的。论文对RFID安全认证协议进行了研究,对现有的一些RFID安全协议进行了分析,提出了对现有方案改进的一些思路。并设计了两个新的RFID认证协议。论文主要的研究内容如下： 1.基于对称密码体制的RFID安全协议：为设计轻量级的安全协议,提出了基于对称密码体制的RFID安全认证协议。该协议中,标签与读写器每次认证成功后,它们的认证密钥都能够得到更新,能更好地提高它们之间未来通信的安全性,避免攻击者假冒标签对RFID系统进行攻击。之后对协议的安全性进行了分析,证明该协议满足RFID系统对安全的需求。最后,与其它的协议进行了性能的比较,并对该协议中标签认证时的运算时间进行了估计,结果表明该协议具有较高的运行效率。 2.基于多标签认证的RFID安全协议：论文前面几章提到的安全协议都是相对于单标签认证的,但在实际应用过程中,经常会遇到多标签同时参与认证的情况,在这种情况下,同时对多个标签的合法性进行检验可以大大节约标签认证过程中的通信和计算开销。论文提出了一种基于多标签认证的RFID安全协议。该协议允许多个标签同时参与认证,通过读写器将所有标签的认证信息聚合成一个认证数据,再一并发送给后端服务器,最后由服务器对所有标签进行统一认证。这一步可以大量减少读写器与服务器之间的通信开销。各个标签也可以检验服务器的合法性。然后对该协议进行了安全性以及性能分析。最后基于Miracl大数计算库的软件平台对该协议的认证过程进行了软件实现以评估其性能。实现结果表明相对于对每个标签单独进行认证,多标签认证协议占性能优势。
[Abstract]:Radio Frequency Identification, RFID) technology is a new automatic identification technology. Since RFID does not require line-of-sight communication, it can guarantee low cost and efficient operation and multi-tag simultaneous recognition. Therefore, it has the advantages of bar code technology, smart card and biometric identification system (fingerprint and retinal identification). In recent years, RFID technology has developed rapidly in industry and academia, such as supply chain management, electronic payment, office access control, environmental monitoring, intelligent label, port management, etc. The RFID-SIM mobile wallet promoted by China Mobile will be applied to this technology. RFID is also the basis to realize the Internet of things. More products based on RFID technology will appear in the future. Like all new and rapidly evolving technologies, RFID technology not only brings benefits but also brings security-related problems. The original design idea of RFID systems was that the system was completely open to applications. This is the RFID system security hidden trouble of the root cause. In addition, performing encryption and decryption on tags requires more resources, which will add additional overhead to cheap RFID tags, so that some excellent security techniques can not be directly applied to the hardware of RFID tags. The cost of security implementation is also an important factor in the design of RFID security protocol. Therefore, the security protocol based on RFID system needs to be lightweight. This paper studies the RFID security authentication protocol, analyzes some existing RFID security protocols, and puts forward some ideas to improve the existing scheme. Two new RFID authentication protocols are designed. The main contents of this thesis are as follows: 1. RFID security protocol based on symmetric cryptosystem: in order to design a lightweight security protocol, a RFID security authentication protocol based on symmetric cryptosystem is proposed. In this protocol, each time the tag and reader authenticate successfully, their authentication keys can be updated, which can improve the security of future communication between them, and avoid attackers attacking RFID system by impersonating tags. Then the security of the protocol is analyzed, and it is proved that the protocol meets the security requirements of RFID system. Finally, the performance of the proposed protocol is compared with that of other protocols, and the computing time of label authentication is estimated. The results show that the proposed protocol has a high running efficiency. 2. Multi-label Authentication based RFID Security Protocol: the security protocols mentioned in the previous chapters are relative to single-label authentication, but in the practical application process, many tags often participate in the authentication at the same time, in this case, At the same time, checking the validity of multiple tags can greatly reduce the communication and computing overhead. This paper presents a RFID security protocol based on multi-label authentication. The protocol allows multiple tags to participate in the authentication at the same time. The authentication information of all tags is aggregated into one authentication data by the reader, and then sent to the back-end server. Finally, all the tags are authenticated by the server. This step can greatly reduce the communication overhead between the reader and the server. Each label can also verify the server's legitimacy. Then the security and performance of the protocol are analyzed. Finally, the software platform based on Miracl large number computing library is implemented to evaluate the performance of the protocol. The implementation results show that the performance of multi-label authentication protocol is superior to that of individual authentication for each label.
【学位授予单位】：扬州大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP391.44

【参考文献】