中国科学院软件研究所机构知识库
Advanced  
ISCAS OpenIR  > 信息安全国家重点实验室  > 期刊论文
Title:
一个基于稳固加密RFID协议的安全性分析
Alternative Title: security analysis of an rfid protocol based on insubvertible encryption
Author: 韦永壮 ; 欧阳宁 ; 马春波
Keyword: Authentication ; Cryptography ; Data handling
Source: 计算机研究与发展
Issued Date: 2012
Volume: 49, Issue:5, Pages:958-961
Department: 桂林电子科技大学信息与通信学院;信息安全国家重点实验室(中国科学院软件研究所);
Abstract: 稳固加密(insubvertible encryption)是一种新型的重加密技术,它在RFID安全协议设计中发挥着重要的作用.最近,Osaka等人基于稳固加密和守护代理提出了一种新的RFID认证协议,并声称该协议具有不可追踪性、标签不可欺骗性、抵抗替换攻击、拥有权可以安全转移、密钥安全同步更新等.利用该协议中读卡器随机数和守护代理随机数的差量恒等关系,提出了一种异步攻击方法:通过伪造差量恒等的随机数,可以有效地进行读卡器和后台服务器的所有认证计算,并使服务器上的密钥和标签密钥异步,从而导致合法标签被拒绝服务.研究结果表明:该协议在异步攻击下是很脆弱的.
English Abstract: Radio frequency identification (RFID) is a very important technique for object identification in modern life (for instance it can be widely used in manufacture, transportation, medical treatment, etc). RFID has many advantages such as its celerity, low cost, veracity in processing data through unique identification and so on. Insubvertible encryption is a new type of re-encryption method, which plays an important role in the security design of RFID system. Recently, Osaka et. al. presented an RFID protocol based on insubvertible encryption and guardian proxy. They claimed that their RFID protocol was secure against the tag spoofing and swapping attacks and so on. However, in this paper, we found that there is a differential invariable relationship between the random numbers of read and guardian proxy in computing the sharing key. Based on this observation, we propose an asynchronous attack on this RFID protocol. By forging two random numbers from read and guardian proxy, we can successfully fulfill all the authentication steps of Read and back-end database server. Moreover, the sharing secret between the tag and server is changed such that a legitimate tag cannot normally pass the authentication in RFID protocol. It means that this RFID protocol is very insecure under the asynchronous attack.
Language: 中文
Content Type: 期刊论文
URI: http://ir.iscas.ac.cn/handle/311060/14626
Appears in Collections:信息安全国家重点实验室_期刊论文

Files in This Item:
File Name/ File Size Content Type Version Access License
一个基于稳固加密RFID协议的安全性分析.pdf(390KB)----限制开放 联系获取全文

Recommended Citation:
韦永壮,欧阳宁,马春波. 一个基于稳固加密RFID协议的安全性分析[J]. 计算机研究与发展,2012-01-01,49(5):958-961.
Service
Recommend this item
Sava as my favorate item
Show this item's statistics
Export Endnote File
Google Scholar
Similar articles in Google Scholar
[韦永壮]'s Articles
[欧阳宁]'s Articles
[马春波]'s Articles
CSDL cross search
Similar articles in CSDL Cross Search
[韦永壮]‘s Articles
[欧阳宁]‘s Articles
[马春波]‘s Articles
Related Copyright Policies
Null
Social Bookmarking
Add to CiteULike Add to Connotea Add to Del.icio.us Add to Digg Add to Reddit
所有评论 (0)
暂无评论
 
评注功能仅针对注册用户开放,请您登录
您对该条目有什么异议,请填写以下表单,管理员会尽快联系您。
内 容:
Email:  *
单位:
验证码:   刷新
您在IR的使用过程中有什么好的想法或者建议可以反馈给我们。
标 题:
 *
内 容:
Email:  *
验证码:   刷新

Items in IR are protected by copyright, with all rights reserved, unless otherwise indicated.

 

 

Valid XHTML 1.0!
Copyright © 2007-2019  中国科学院软件研究所 - Feedback
Powered by CSpace