A method for enhancing an ability of a protocol to
resist desynchronization attacks comprises the following steps: a reader sends an
authentication request message to a
label; the
label calculates IDSnew and sends the IDSnew to the reader; the reader searches the IDSnew in a background
database; if the IDSnew does not exist, the reader waits for the
label to transmit IDSold and re-searches the
database, and the phenomenon shows that a new key of one party of the label is not updated; if the IDSnew exists, the reader generates two random numbers n1 and n2, calculates A, B and C, and sends messages to the label; after receiving the messages A, B and C, the label extracts the random numbers n1 and n2, calculates local C', judges whether C is equal to C', calculates a D value, and sends the Dvalue to the reader; otherwise, the
authentication fails, wherein D is equal to FORMULA (for the detailed formula, please refer to the abstract), and the keys and pseudonyms are finally updated; and after receiving the message D, the reader verifies whether the message D is equal to a local value D', and if yes, the corresponding keys and pseudonyms in the
database are updated. According to the method, the correlation between the random numbers can be enhanced, the
collision domain of unit values of the random numbers can be reduced, and thus the ability of the protocol to
resist the desynchronization attacks can be enhanced, and the security of the protocol can be effectively improved.