| Radio Frequency Identification (RFID) technology is a kind of non-contactautomatic identification technology using radio frequency signal to communicate. RFIDhas been widely applied to many fields with advantages of strong ability to adapt to theenvironment, high precision, easy operation and strong anti-interference capacity. Butwith the limit of costs and resources of the tag, many existing security mechanisms aredifficult to implement, thus the security and privacy of RFID system has been seriouslythreatened, which is the most important factor to restrict the development of RFIDtechnology. So it becomes a hotpot to design a security mechanism to protect thesecurity and privacy of RFID effectively.At first, this article introduces the components, the classification, the operatingprinciple and the technological advantages of the RFID system. Then the security andprivacy problems of RFID system are elaborated and the representative securitymeasures are reviewed. In order to overcome the shortcomings of RFID authenticationprotocols using the back-end database model, this article proposes an improved serverlessRFID authentication protocol–New Serverless Authentication Protocol (NSAP), basedon the existed serverless protocols. The informal security analysis, BAN logical proofand efficiency comparison prove that the proposed protocol not only realizes theauthentic mutual authentication and tag anonymity, but also makes the tag only needone hash operation which highly improves the efficiency and feasibility of the system.So the protocol is more secure and more efficient compared with the existed serverlessprotocols.As the informal analysis and BAN logical proof have some defects, this articleuses the symbolic model checking method of the formal analysis to check whether theNSAP protocol has the properties of integrity, confidentiality and authentication. Andthe results show that the NSAP protocol agrees with these properties, which furthervalidate the security of the NSAP protocol.With the maturity and popularization of the RFID technology, the serverless RFIDauthentication protocol designed by this article will realize its application value due toits security and flexibility in the future. |
PDF Full Text Request