摘要： 在物联网应用中，基于传统加密手段的无线射频识别(RFID)认证协议计算量较大，在资源有限的设备中不具有可操作性。为解决该问题，提出一种基于物理不可克隆函数的RFID双向认证协议。分析RFID系统协议的安全需求，根据物理不可克隆函数设计轻量级的双向安全认证协议，利用形式化分析语言证明协议的安全性。分析结果表明，与随机化Hash-Lock、轻量级认证协议等相比，该协议不仅能够有效防止假冒、重放、追踪攻击，也能抵抗物理克隆攻击。

关键词: 物理不可克隆函数, 无线射频识别, 认证协议, 物联网, 形式化分析, 防篡改

Abstract: Traditional encryption-based Radio Frequency Identification(RFID) authentication protocols require a large amount of computation in the application of Internet of Thing(IOT), therefore it can not be adopted to the resource-limited devices. In order to solve this problem, this paper proposes a RFID mutual authentication protocol based on Physical Unclonable Function(PUF). This paper analyzes the security requirements of the RFID system protocol. According to the PUF, it designs a lightweight two-way security authentication protocol, and uses formal language to prove the security of the protocol. Analysis results show that this protocol can not only prevent fack, track, replay attacks, but also protect against physical clonable attacks, compared with the randomized Hash-Lock, a lightweight authentication protocol etc..

Key words: Physical Unclonable Function(PUF), Radio Frequency Identification(RFID), authentication protocol, Internet of Thing(IOT), formal analysis, tamper-proofing

中图分类号: 

• TP393.08