计算机工程 ›› 2020, Vol. 46 ›› Issue (1): 108-113.doi: 10.19678/j.issn.1000-3428.0052324

• 网络空间安全 • 上一篇    下一篇

一种具有隐私保护与前向安全的RFID组证明协议

史志才, 王益涵, 张晓梅, 陈计伟, 陈珊珊   

  1. 上海工程技术大学 电子电气工程学院, 上海 201620
  • 收稿日期:2018-08-06 修回日期:2019-01-03 出版日期:2020-01-15 发布日期:2018-10-19
  • 作者简介:史志才(1964-),男,教授、博士,主研方向为网络信息安全;王益涵,讲师、硕士;张晓梅,讲师、博士;陈计伟、陈珊珊,硕士研究生。
  • 基金项目:
    上海市自然科学基金(17ZR1411900);上海市重点课程建设项目(s201702003)。

An RFID Grouping-proof Protocol with Privacy Protection and Forward Security

SHI Zhicai, WANG Yihan, ZHANG Xiaomei, CHEN Jiwei, CHEN Shanshan   

  1. School of Electronic and Electrical Engineering, Shanghai University of Engineering Science, Shanghai 201620, China
  • Received:2018-08-06 Revised:2019-01-03 Online:2020-01-15 Published:2018-10-19

摘要: 无线射频识别(RFID)组证明协议用来证明多个标签是否同时存在,在实际场景下需要多个标签组成一组来标识同一个物体,但RFID标签结构简单,计算存储资源有限,其安全协议的实现受到制约。为此,提出一种隐私保护和前向安全的组证明协议,通过哈希运算和随机化等操作确保协议会话信息的保密传输和隐私性,将激活-休眠机理、过滤-响应机制以及身份认证与组证明技术相结合以提高协议的效率。分析结果表明,RFID组证明协议具有匿名性和前向安全性,能够抵抗窃听、跟踪、重放与去同步等攻击。

关键词: 无线射频识别标签, 组证明, 安全与隐私, 哈希函数, 匿名性

Abstract: The Radio Frequency Identification(RFID) grouping-proof protocol is used to verify whether there are multiple tags,because in actual scenario,these tags are used for the identification of one object.However,due to the simple structure and limited computing and storage resources of the RFID tags,the security protocol is difficult to achieve.To address this problem,this paper proposes a grouping-proof protocol that insures privacy and forward security.First,this paper uses hash function and randomization to guarantee the confidentiality and privacy of each session.Then,by means of activate-sleep mechanism,filter-response mechanism and the combination of identity authentication and grouping-proof technology,the efficiency of protocol is improved.Analysis results show that the RFID grouping-proof protocol meets the requirements of anonymity and forward security,so it can prevent eavesdropping,tracking attack,replay attack and de-synchronize attack.

Key words: Radio Frequency Identification(RFID) tag, grouping-proof, security and privacy, hash function, anonymity

中图分类号: