RFID零知识证明协议研究

发布时间：2018-09-11 17:58

【摘要】：物联网（Internet of Things，IOT）能够在全世界范围内对贴有RFID标签的目标对象进行识别、跟踪和查询。如今，IOT已经成为许多国家经济发展、科技创新的重点战略规划之一。作为物联网感知层的核心环节，射频识别（RadioFrequency Identification，RFID）技术以其识别迅速、使用方便、信息安全、可重复利用等优点已被广泛应用在医疗、支付、票务及供应链管理等领域，是推动IOT快速发展的关键技术之一。然而，传统的RFID安全协议因为无法解决系统内部攻击问题而不能很好地应用于物联网、供应链等多服务器系统。本文针对这一问题，通过分析现有密钥阵列认证协议的特点，设计了以密钥阵列为架构的RFID零知识证明协议。本文的主要工作为: （1）在对密钥阵列、零知识证明和随机数等密码学知识做了详细介绍和深入研究的基础上，对常见的攻击和传统RFID认证协议的优缺点进行了深入分析，为本文的认证协议设计做好基础。（2）系统分析了代表性的KAAP认证协议后，指出在密钥阵列架构的基础上引入零知识证明理论的必要性和可行性。（3）利用零知识证明方案和密钥阵列架构，提出了轻量级的基于密钥阵列的RFID零知识证明认证协议（Zero Knowledge proof protocol of RFID based onthe Key Array，KAZK），并对其进行了性能分析。之后，建立多种攻击模型对KAZK协议的安全与隐私特性进行了验证。性能分析和攻击模型的验证结果表明KAZK协议在维持一定复杂度和标签成本的基础上，可抵抗包括重放攻击、跟踪攻击、拒绝服务攻击等多种外部攻击类型；尤其针对来自系统内部的安全攻击，，KAZK具备很好的安全性和可执行性，为物联网、供应链等多服务器系统提供了一种更好的RFID安全认证协议。
[Abstract]:The Internet of things (Internet of Things,IOT) can identify, track and query target objects with RFID tags around the world. Now IOT has become one of the key strategic plans for economic development, scientific and technological innovation in many countries. As the core of the perception layer of the Internet of things, Radio Frequency Identification (RadioFrequency Identification,RFID) technology has been widely used in medical, payment, ticketing and supply chain management fields for its advantages of rapid identification, convenient use, information security, reusable and so on. It is one of the key technologies to promote the rapid development of IOT. However, the traditional RFID security protocol can not be applied to the Internet of things, supply chain and other multi-server systems because it can not solve the problem of internal attack. In order to solve this problem, by analyzing the characteristics of the existing key array authentication protocols, a RFID zero-knowledge proof protocol based on the key array architecture is designed. The main work of this paper is as follows: (1) based on the detailed introduction and in-depth study of cryptographic knowledge such as key array, zero knowledge proof and random number, etc. The advantages and disadvantages of common attacks and traditional RFID authentication protocols are deeply analyzed, which makes a good foundation for the design of authentication protocols in this paper. (2) after systematically analyzing the representative KAAP authentication protocols, The necessity and feasibility of introducing zero-knowledge proof theory based on key array architecture are pointed out. (3) using zero-knowledge proof scheme and key array architecture, A lightweight RFID zero-knowledge proof authentication protocol (Zero Knowledge proof protocol of RFID based onthe Key Array,KAZK) based on key array is proposed and its performance is analyzed. Then, several attack models are established to verify the security and privacy characteristics of KAZK protocol. The performance analysis and the verification of the attack model show that the KAZK protocol can resist many kinds of external attacks, such as replay attack, trace attack, denial of service attack and so on, on the basis of maintaining certain complexity and tag cost. Especially for the security attack from the system, KAZK has good security and executable, and provides a better RFID security authentication protocol for the Internet of things, supply chain and other multi-server systems.
【学位授予单位】：天津大学
【学位级别】：硕士
【学位授予年份】：2014
【分类号】：TP391.44;TN929.5

【参考文献】