| As an automatic identification and data capture technology, RFID(Radio Frequency Identification, RFID) has been listed as one of the ten most important techniques in the 21 st century. The security and privacy issues also have attracted more and more attention because of the wide use and rapid development of RFID, which makes the design of RFID security authentication protocol become particularly important. At the same time, in order to meet the needs of the new application scenarios better, people no longer just want lightweight and high efficiency for the design of RFID authentication protocol, but also hope it is revocable.In the scenario for the integration of applications using one label, a revocable safety certification scheme is first proposed in this thesis. The scheme can solve the problem of security and privacy of RFID and easily undo a particular application. Compared with other existing scheme, the results show that the proposed scheme improves the functions, while it can provide a higher security level and perform better. And the proposed protocol also can be applied to the traditional "one with a card" environment with high practicability.Meanwhile, a new type of lightweight authentication protocol is also proposed in this thesis for low-cost RFID system. Logic encryption arithmetic will be combined with the concept of timestamp in the protocol, which can defend denial of service attack. Sub-key and sub-index is used in the update process of key, that is, the protocol only updates a portion of the key randomly every time, so that the update process has more random characteristics, which can largely increase the difficulty of association certification before and after the session for the attacker. So the forward security of the protocol is improved. Compared with the previous protocol, the results show that increase of the computing cost of label side in the presented protocol is not too much.At the same time, the storage cost and communication cost is reduced, and the protocol also provides a higher security level. And it is more suitable for low-cost RFID system.Additionally, a lightweight protocol with a cache in reader is further proposed on the basis of the proposed lightweight protocol. When the label which was visited recently needs to be certified again, the certification on the reader can be completed directly without having to go through the server. Analysis shows that the protocol just need to increase only a small amount of storage overhead of the reader, but it can reduce the response time of certification and communication overhead, and also improve the user experience. And it is particularly applicable to the application scenario that a label which has been visited recently needs to be repeatedly certified many times. |
PDF Full Text Request