| EPC (Electronic Product Code) network is a typical architecture of the Internet of Things.With the development of the Internet of Things and its applications, EPC network has become apopular topic for researchers. EPC network can be used to build an efficient and reliableinformation sharing mechanism among enterprises. Shared information includes tracking,tracing, positioning, inquiry and retrieval of the target products. With the help of theinformation sharing mechanism, users have access to the shared information provided by any ofthe enterprises in the supply chain, so that EPC network has greatly increased the efficiency ofthe production, transportation, sales and other aspects, and reduced the costs.At present, there is no effective security mechanism for the EPC network. The applicationof EPC network faces serious security challenges, when the shared product information istransferred among different enterprise domains. In this paper, the security requirements ofcross-realm communication are analyzed. According to the data query process, we have studiedthe secure cross-realm communication, and mainly focused on the security solutions of ONS(Object Name Service) and EPCIS (EPC Information Service), which could provide security forcross-realm communication and reduce the influence on performance. The main work of thispaper includes:1. According to the role of ONS and EPCIS, the security threats and security requirementsof cross-realm communication are presented. In order to solve these security threats, a securecross-realm communication framework based on the security analysis has been constructed.The role of the secure cross-realm communication framework has been pointed out, and theflow of the secure communication has been presented according to the framework.2. In order to solve the security threats of the ONS enquiry schema, inducing thesymmetric cipher and the message authentication code, an improved provably secure ONSenquiry mechanism is proposed, which can implement mutual authentication and secure keyexchange between the ONS servers. The security of the new scheme is analyzed with theCanetti-Krawczyk model. Security analysis shows that the new scheme is provably secure andcould achieve the security requirements. Furthermore, performance analysis and simulationresults show that the improved scheme has efficient computation and communication cost.3. In order to solve the security threats of the EPCIS enquiry schema, a securecommunication mechanism for EPCIS is proposed, which can implement mutual authenticationand secure key agreement between the EPCIS server and client. Security analysis shows that the EPCIS security solution is provably secure in the Canetti-Krawczyk model. Performanceanalysis shows that the EPCIS security solution has efficient computation and communicationcost. Furthermore, the EPCIS security solution gives full consideration to the computing powerof the entities in the EPC network, so it has a very good value of application.In this paper, the security threats and security mechanisms of cross-realm communicationin EPC network are studied, these can provide theory support for design and implementation ofthe application systems in EPC network, and it can also help to analyze the security of theapplication comprehensively and improve the performance. |
PDF Full Text Request