基于RBAC的RFID安全认证协议

摘要/Abstract

摘要：

对于低成本RFID系统，其安全隐私问题一直是研究的热点。为了保护用户的隐私安全，现有的RFID安全认证协议主要采用Hash函数、传统加密算法等来保证标签信息的安全，虽然在一定程度上保证了信息的安全，然而这些协议却忽略了对非授权标签信息的保护。为了弥补以上缺陷和不足，提出了一种基于角色访问控制RBAC的RFID安全认证协议。通过引入RBAC机制，能够有效地确保非授权标签信息的安全性，并且可以抵抗重传攻击、内部阅读器攻击等攻击。同时，利用部分ID、位运算等方法降低系统对标签的硬件要求，更适合低成本RFID系统。

关键词: RBAC, RFID, 访问权限, 安全级别

Abstract:

For the low-cost RFID systems, the security and privacy problems are always the research hot spot. In order to protect the users’privacy, the existing security protocols mainly use the Hash function or traditional encryption algorithms to ensure the safety of the tag’s information. Although, to some extent, they guarantee the security of the information, all of them are nothing but ignore protecting the unauthorized tag’s information. For the sake of filling in the gap, a RFID secure authentication protocol based on RBAC is proposed. Through introducing the RBAC mechanism, our proposal can effectively not only ensure the security of the unauthorized tag’s information but also resist the reply attack, the internal reader attack, etc. Besides, using the partial ID and bit operation can reduce the system hardware requirements for the tag so that the proposed protocol is more suitable for low-cost RFID systems.

Key words: RBAC;RFID;access authority;safety level

王桂超，王彦，李永珍. 基于RBAC的RFID安全认证协议[J]. J4, 2014, 36(05): 874-878.

WANG Guichao,WANG Yan,LI Yongzhen. A RFID secure authentication protocol based on RBAC [J]. J4, 2014, 36(05): 874-878.

参考文献

［1］Bai Yu, Teng Jianfu, Zhang Liyi, et al. Hash lockbased strengthen synchronization RFID authentication protocol［J］. Computer Engineering, 2009, 35(21):138143. (in Chinese)
［2］Ferraiolo D,Kuhn R.Role based access controls［C］∥Proc of the 15th NISTNCSC National Computer Security Conference, 1992:554563.
［3］Sarma S E, Weis S A, Engels D W. RFID systems and security and privacy implications［C］∥Proc of the 4th International Workshop on Cryptographic Hardware and Embedded Systems(CHE2002), 2003:454469.
［4］Weis S A. Security and privacy in radio frequency identification device［D］. USA:MIT, 2003.
［5］Ohkubo M, Suzuki K, Kinoshita S. Hashchain based forwardsecure privacy protection scheme for lowcost RFID［C］∥Proc of the 2004 Symposium on Cryptography and Information Security(SCIS 2004), 2004:719742.
［6］Li Yankun, Xie Jing, Mao Zhigang. Secure RFID system based on DES encrypt algorithm［J］. Modern Electronic Technique, 2009(1):8793. (in Chinese)
［7］Wu Xuehui, Niu Zhihua, Wang Chao. Security protocol of RFID based on elliptic curve cryptography［J］. Computer Engineering and Design, 2010, 31(24):51655167. (in Chinese)
［8］Li Bin,Ling Li.An NTRU public key encryption system based RFID authentication protocol［J］. Computer Applications and Software, 2012, 29(4):278280. (in Chinese)
［9］Pan Tao, Zuo Kaizhong, Guo Liangmin, et al. Mutual authentication protocol based on XOR operation for lowcost RFID［J］. Computer Engineering, 2012, 38(9):278281. (in Chinese)
［10］Li Yiyang, Sun Gang. An OPDL rulebased RFID date access control mechanism［J］. Communications Technology, 2009, 42(1):239241. (in Chinese)
［11］Wang Guichao, Zhang Aili, Li Yongzhen. Secure authentication protocol of RFID system based on access control［J］. Advanced Engineering Forum,2012,6(9):10721077.
［12］Xie Chuan.RFID authentication protocol based on hash function and key array［J］. Journal of Computer Applications, 2011, 31(3):805811. (in Chinese)
［13］Yang Ling, Chen Zhiqiang. A mutual authentication protocol for lowcost RFID［J］. Computer Applications and Software, 2010, 27(8):298300. (in Chinese)
附中文参考文献：
［1］白煜, 滕建辅, 张立毅, 等. 基于Hash锁的同步强化RFID验证协议［J］. 计算机工程, 2009, 35(21):138143.
［6］李彦堃, 谢憬, 毛志刚. 基于DES算法的RFID安全系统设计［J］. 现代电子技术, 2009(1):8793.
［7］吴学慧, 牛志华, 王潮. 基于椭圆曲线密码的RFID安全协议［J］. 计算机工程与设计, 2010, 31(24):51655167.
［8］李斌, 凌力. 一种基于NTRU公钥加密系统的RFID认证协议［J］. 计算机应用与软件, 2012, 29(4):278280.
［9］潘涛, 左开中, 郭良敏, 等. 基于异或运算的低成本RFID双向认证协议［J］. 计算机工程, 2012, 38(9):278281.
［10］李亦杨, 孙罡. 一种基于OPDL规则的RFID数据访问控制机制［J］. 通信技术, 2009, 42(1):239241.
［12］谢川. 结合Hash函数和密钥阵列的RFID安全认证协议［J］. 计算机应用, 2011, 31(3):805811.
［13］杨灵, 陈志强. 一种低成本RFID的双向认证协议［J］. 计算机应用与软件, 2010, 27(8):298300.

[1]	寇广岳, 魏国珩, 平源, 刘鹏. RFID安全认证协议综述[J]. 计算机工程与科学, 2023, 45(01): 77-84.
[2]	靳朋1，郗涛1，王莉静2. 基于二次加权的LANDMARC景区改进定位算法研究[J]. 计算机工程与科学, 2019, 41(03): 485-489.
[3]	钟小妹，肖美华，李伟，谌佳，李娅楠. RFID超轻量级认证协议RCIA形式化分析与改进[J]. 计算机工程与科学, 2018, 40(12): 2183-2192.
[4]	尹强，佐磊，何怡刚，刘东洋，李亚. 基于支持向量回归机的RFID室内定位研究[J]. 计算机工程与科学, 2017, 39(12): 2340-2344.
[5]	蔡婷1，聂清彬1，欧阳凯2，周敬利2. 一种面向多域云系统的扩展RBAC模型[J]. 计算机工程与科学, 2017, 39(04): 689-697.
[6]	赵冬,张文宁,车战斌. 基于工作流的第二课堂活动管理平台的研究与实现[J]. 计算机工程与科学, 2016, 38(07): 1419-1424.
[7]	肖红光1，李为1，巫小蓉2. 基于同步数的轻量级高效RFID身份认证协议[J]. J4, 2016, 38(04): 673-678.
[8]	曹洁1,2，牛丽波1，王进花1. 一种改进LANDMARC射频识别室内定位算法[J]. J4, 2015, 37(09): 1671-1675.
[9]	温佩芝1，苏亭婷1，李丽芳1，张建军2. 基于粒子群的射频识别定位算法[J]. J4, 2014, 36(05): 917-922.
[10]	吴彦文，舒武静，王贵才. 基于射频识别的运动能耗信息采集系统的研究[J]. J4, 2013, 35(8): 180-184.
[11]	李华，李敏波，顾晟曦. 面向企业应用的RFID集成中间件框架[J]. J4, 2012, 34(1): 111-118.
[12]	陈丽芳，刘渊. 基于RFID技术的城市交通信号优化控制[J]. J4, 2011, 33(6): 178-181.
[13]	王进1,易灵芝1,王根平2. 新型Q值防碰撞算法在RFID系统中的研究[J]. J4, 2011, 33(6): 182-185.
[14]	李珍香,李国，张宇翔. 基于ARM的嵌入式RFID中间件设计与实现[J]. J4, 2011, 33(5): 116-120.
[15]	康庄庄,陈〓群,孙林超. 分布式RFID复杂事件处理技术的研究[J]. J4, 2011, 33(12): 136-142.