计算机工程与应用 ›› 2019, Vol. 55 ›› Issue (12): 90-96.DOI: 10.3778/j.issn.1002-8331.1804-0343

• 网络、通信与安全 • 上一篇    下一篇

抗去同步化的高效RFID双向认证协议

赵太飞,尹  航,赵思婷   

  1. 西安理工大学 自动化与信息工程学院,西安 710048
  • 出版日期:2019-06-15 发布日期:2019-06-13

Anti-Desynchronization and Efficient RFID Mutual Authentication Protocol

ZHAO Taifei, YIN Hang, ZHAO Siting   

  1. College of Automation and Information Engineering, Xi’an University of Technology, Xi’an 710048, China
  • Online:2019-06-15 Published:2019-06-13

摘要: 安全认证协议是解决RFID系统前向信道安全及身份识别问题的重要手段,针对常见协议中存在的标签检索效率不高和隐私泄漏问题,提出了一种抗去同步化的高效RFID双向认证协议。利用基于Sponge结构的Hash函数单向性及随机性实现双向认证并保证协议新鲜性。采用非对称加密的公钥对ID值进行预加密,并对该密值进行处理可有效抵抗重放攻击,更新机制可使协议抵抗去同步化攻击。利用解密后的ID为索引值以提高后台数据库检索效率,设置标志位可有效过滤无去同步化攻击条件下的重复计算。与现有协议进行仿真对比,结果表明该协议具有较高的认证效率。

关键词: 无线射频识别(RFID), 认证协议, Hash函数, 去同步化

Abstract: The security authentication protocol is an important means to solve the problem of the forward channel security and identity recognition of the RFID system. Aiming at the low efficiency of label retrieval and privacy leakage problem in common protocols, an anti-desynchronization and efficient RFID mutual authentication protocol is proposed. Using the unidirectional and randomness of Hash function based on Sponge structureto achieves mutual authentication and ensures the freshness of the protocol. The asymmetrically encrypted public key is used to pre-encrypt the ID value and the secret value is processed to effectively resist replay attacks. The protocol can effectively resist desynchronization attack by using update mechanism. The decrypted ID is used as index value to improve the retrieval efficiency of the backend database. Setting up the flag can effectively filter the repeated computation without the synchronization attack condition. Compared with the existing protocols, the simulation results show that the protocol has higher authentication efficiency.

Key words: Radio Frequency Identification(RFID), authentication protocol, Hash function, desynchronization