A lightweight RFID two-way authentication method against desynchronization

Abstract

The invention relates to a lightweight bidirectional authentication protocol which can be used in an RFID system of the Internet of Things. The bidirectional challenging response of a backstage and an RFID label is achieved based on a dual authentication mechanism of 'bidirectional random number-new and old key pair, the pseudo random number and the clock parameter are bound through the time attachment encryption, and the trust worthiness of the freshness amount of the protocol can be improved. The protocol participates in authentication through the new and old key pair preset by a backstage database to resist the desynchronizatio excluding the RFID system, and the unbalance between the backstage and a label key is avoided. A reader and the backstage resist the desynchronization from the interior of a system through the time attachment encryption / decryption, and the occurrence that the backstage refuses an authentication label perpetually due to the fact that a malicious reader releases information again is avoided. In addition, the key is updated through the Hash operation, the parameter is corrected by alternately adopting the ultra-lightweight Mixbits function, and the tracking prevention and forward direction safety of the protocol are guaranteed on the basis of reducing the protocol calculating expenditure. The protocol has the advantages of being safe, efficient, flexible and suitable for the fields of identifying the low-cost RFID system, updating the key and the like.

Description

technical field [0001] The invention relates to a lightweight anti-desynchronization RFID two-way authentication method, which uses a "two-way random number-new and old key pair" double authentication mechanism to realize the two-way challenge-response of the background database-label system, and uses clock parameters to bind The method of pseudo-random number guarantees the trustworthiness and real-time performance of the fresh quantity of the protocol. The operation of key update and authentication parameters uses lightweight hash function and ultra-lightweight cyclic shift function, and finally combines the theory based on colored petri net Formal simulation and informal methods are used to analyze the privacy and security of the protocol, and it is proved that the protocol can reach the expected state space, and can effectively resist location tracking attacks and desynchronization attacks. This method only needs three communications to complete the authentication of the r...

AI Technical Summary

Problems solved by technology

In 2007, Chien HY worked on ultra-lightweight SASI authentication protocol (H Y Chien. SASI: A new ultralightweight RFID authentication protocol providing strong authentication and strong integrity [J]. IEEE Transactions on Dependable and Secure Computing, 2007, 4(9): 337-340 ) only uses a limited number of ultra-lightweight algorithms such as XOR (exclusive OR) and ROT cyclic shift to realize the challenge-response, and establishes two key storage units in the background database to improve the key recovery ability, but due to ROT Due to the algebraic nature of the function, SASI is proven to be susceptible to bit tampering (Dimitriou,T.(2005).ALightweight RFID Protocol to protect against Traceability and Cloning attacks[C] / / Proceedings of First International Conference on Security and Privacy for Emerging Areas in Communications Networks (SecureComm 2005), Athens, Greece, ISBN: 0769523692) desynchronization attack

The protocol designed by Peris Lopez relies entirely on the reader PRNG (pseudo-random number generator) to provide freshness, which saves the computational overhead of tags, but the protocol is also vulnerable to desynchronization attacks (LiT Wang. Security analysis of two ultra-lightweight RFID authenticationprotocols[C] / / Proceedings of the IFIP TC-11 22 nd International Information Security Conference IFIP SEC 2007. South Africa: 2007: 109-120) and algebraic attacks (Gidas Avoine, Xavier Carpent. Strong Authentication and Strong Integrity (SASI) Is Not That Strong[C] / / The 6 th International Workshop.RFIDSec 2010.Turkey: Istanbul, 2010, 50-64)

Images