电子学报 ›› 2013, Vol. 41 ›› Issue (1): 153-160.DOI: 10.3969/j.issn.0372-2112.2013.01.027

• 科研通信 • 上一篇    下一篇

一种基于双随机数的RFID发现服务安全通信机制

赵文1,2, 刘学洋1,2, 张世琨1,2, 王立福1,2   

  1. 1. 北京大学软件工程国家工程研究中心,北京 100871;
    2. 北京大学信息科学技术学院软件研究所高可信软件技术教育部重点实验室,北京 100871
  • 收稿日期:2011-08-31 修回日期:2011-11-15 出版日期:2013-01-25
    • 作者简介:
    • 赵 文 男,1967年出生,博士、副研究员,主要研究领域为软件工程、工作流技术和RFID相关技术. E-mail:zhaowen@pku.edu.cn 刘学洋 男,1978年出生,博士、副教授,主要研究领域为软件工程、信息安全和RFID相关技术. E-mail:liuxueyang@pku.edu.cn
    • 基金资助:
    • 国家973重点基础研究发展计划 (No.2009CB320706); 国家自然科学基金 (No.60803014); "核高基"国家科技重大专项 (No.2010ZX01045-001-008)

A Double Random Number Based Secure Communication Mechanism of RFID Discovery Service

ZHAO Wen1,2, LIU Xue-yang1,2, ZHANG Shi-kun1,2, WANG Li-fu1,2   

  1. 1. National Engineering Research Center for Software Engineering, Peking University, Beijing 100871, China;
    2. Key Laboratory of High Confidence Software Technologies (Ministry of Education), School of Electronics Engineering and Computer Science, Peking University, Beijing 100871, China
  • Received:2011-08-31 Revised:2011-11-15 Online:2013-01-25 Published:2013-01-25
    • Supported by:
    • National Program on Key Basic Research Project of China  (973 Program) (No.2009CB320706); National Natural Science Foundation of China (No.60803014); National Science and Technology Major Project  (NSTMP) Program Kernal Electronic Devices,  High-end General Application Chips,  Fundamental Software Products (No.2010ZX01045-001-008)

摘要: RFID发现服务没有得到广泛应用,相关标准也没有正式颁布,主要原因之一就是存在诸多安全问题.本文首先分析了存在的典型安全问题,并给出了相应的安全需求,例如RFID私密性保护、RFID编码授权访问、供应链节点不可追踪性、节点认证、消息正确性等.针对这些安全需求,本文提出了一种基于双随机数的RFID发现服务安全通信机制.双随机数主要用来对参与通信的双方进行节点认证和消息认证,并给出了相应的查询生成和处理转发流程及算法.本文提出的安全通信机制已经在PKU RFID3S系统中得到实现.实验结果表明,系统在实现安全需求的基础上,有较好的查询命中率和查询响应时间.

关键词: RFID, 发现服务, 安全通信机制, 双随机数

Abstract: RFID discovery service is not widely used and related standard is not published,one main reason is the existence of some security issues.Typical security issues are analyzed,and related security requirements are given,i.e.RFID privacy protection,authorized RFID code access,untraceability of supply chain node,node authentication,message correctness,etc.According to these security requirements,a double random number based secure communication mechanism of RFID discovery service is proposed.Random number is used for node authentication and message authentication,and related query generating and routing algorithm are given.This mechanism is implemented in PKU RFID3S system.The simulation tests show that the system not only implements security requirements mentioned above,but also has acceptable query hit rate and query responding time.

Key words: RFID, discovery service, secure communication mechanism, double random number

中图分类号: