A Communication Protocol of RFID Systems in Internet of Things
A Communication Protocol of RFID Systems in Internet of Things A Communication Protocol of RFID Systems in Internet of Things
International Journal of Security and Its Applications Vol. 6, No. 2, April, 2012 and defines its security needs. Section 4 proposes a Provable Secure Authentication SPAP, and proves its security. Section 5 analyses the performance of SPAP. Section 6 makes a conclusion. 2. The Existing Typical RFID Security Protocol Today, RFID technology has been widely used in many areas because of its strong anti-interference, easy operation, etc. At the same time, security and privacy issues of RFID system are increasingly exposed. Scholars from various countries in the world try their best to make a series of solutions, such as the Hash-Lock protocol basing on hash functions and random numbers [4], the randomized Hash-Lock protocol[5];the library RFID protocol basing on shared pseudo and random function keys[6]; the Ownership Transfer Protocol basing on symmetric key algorithms[7]; and EC-RAC protocol basing on public key cryptography algorithms[8]. The Hash-Lock protocol uses hash functions to implement the authentication between readers and tags, using metal ID instead of the real ID to solve the tracking attacks, but the protocol does not use the dynamic ID mechanism, thus an attacker can still replay attacks, and track attacks. The randomized Hash-Lock protocol can resist the tag tracking attacks, but after the certification, the tag ID can still pass through the clear text form, an attacker can still replay attacks. The Library RFID protocol adopts the pre-shared key, pseudo-random function to achieve authentication, to solve the retransmission, tracking, tampering and other security issues, so far, no obvious defects of the protocol are found, but the cost of labels is too high. Ownership Transfer protocol using symmetric encryption algorithms solves the tampering, tracking and ownership transfer of the tag, but it cannot achieve forward security. EC-RAC protocol using elliptic curve public key cryptography algorithms solves the label tracking attacks, protects the security of the system, however, recent experiments reveal that the protocol still cannot resist tracking attacks. The internet of things asks for even more special security requirements for its RFID system. The connection between tags and readers in internet of things makes the protocol take into account of internal attacks of the systems, as well as the ownership transfer of tags [9]. By analyzing the above protocols, this paper establishes a model of the RFID system in internet of things, defines their security requirements, and proposes a new security protocol. 3. The Model and Security Requirements of RFID System in Internet of Things 3.1 The RFID System Model of Internet of Things RFID systems in internet of things mainly consist of readers, tags and RFID middle wares. Each object in the system has an unique EPC. We assume that in one RFID system there are N legitimate readers numbered from 1 to N , there are M legitimate readers numbered from 1 to M . i (1, N) , j (1, M) ,the reader i is denoted as R i ,the tag j is denoted as T j .In addition, because the cable channels between the reader and database are generally considered safe, therefore, when we establish the model, the reader and database can be seen as a unified independent entity, that is, the reader and database are collectively referred to as the middleware server. 92
International Journal of Security and Its Applications Vol. 6, No. 2, April, 2012 Random Oracle model [10] is applied to describe the RFID system model in internet of things. The model can be equivalent to a tuple P ( ) , and are time functions of polynomial whose safety factor is 1 k ( k N) , defines the behavior of a legitimate reader, defines the operation of a legitimate tag. Using the random Oracle to query and definite the behavior of an attacker, that is, the attacker which has Oracle s s R i,T ( R j i initiates a session s with T j ) and Oracle Tj,R ( T i j initiates a session s with R i )is an Oracle probability machine. The attacker can achieve the attack target by s s sending scheduled questions to Oracle R i,T and Oracle j Tj,R and receiving response i information from the random Oracle. Oracle question depicts the real ability of the attacker. The attacker can send the following questions. Execute ( R T , P) : the question depicts an instance P that the attacker execute the i j protocol between T j and R i which can obtain all messages exchanged between the reader and the tag when the protocol P executes. SendTag ( T , Pm , 1) : the question depicts an instance P that the attacker A sends the j message m 1 to tag T j , and receives the response message of the tag T j . SendReader ( R , Pm , 2) :the question depicts instance P that the attacker A sends the i message m2 to reader R i , and receives the response message of the reader R i . CorruptTag ( ):the question depicts an active attack on the tag and the attacker's Tj captured capacity. It can make the captured tag T j actively reveal secret information which is in their private storage space. CorruptRead ( ):the question depicts an active attack on the reader and the attacker's Ri captured capacity. It can make the captured reader R i actively reveal secret information which is in their private storage space. Test ( ):the question is used to test semantic security of confidential information of a tag Tj T j . By throwing coin b , if b = 1, return the secret information stored in the tag. if b = 0, return an random number which is equivalent in length to the secret information of the tag. Test ( ):the question is used to test semantic security of confidential information of Ri a reader R i .By throwing coin b , if b = 1, return the secret information stored in the tag. if b = 0, return an random number which is equivalent in length to the secret information of the reader. 3.2 Security Requirements of Authentication in RFID System of Internet of Things An RFID system is an important part of internet of things, non-contact automatic identification technology between the reader and the tag in the system which makes the system face serious security problems. Analyzing the security needs met by existing typical RFID protocols and combining the characteristics of RFID system of internet of things, what needs the authentication should meet in RFID system of internet of things are detailed in the following. 93
- Page 1: International Journal of Security a
- Page 5 and 6: International Journal of Security a
- Page 7 and 8: International Journal of Security a
- Page 9 and 10: International Journal of Security a
- Page 11 and 12: International Journal of Security a
International Journal <strong>of</strong> Security and Its Applications<br />
Vol. 6, No. 2, April, 2012<br />
and def<strong>in</strong>es its security needs. Section 4 proposes a Provable Secure Authentication SPAP,<br />
and proves its security. Section 5 analyses the performance <strong>of</strong> SPAP. Section 6 makes a<br />
conclusion.<br />
2. The Exist<strong>in</strong>g Typical <strong>RFID</strong> Security <strong>Protocol</strong><br />
Today, <strong>RFID</strong> technology has been widely used <strong>in</strong> many areas because <strong>of</strong> its strong<br />
anti-<strong>in</strong>terference, easy operation, etc. At the same time, security and privacy issues <strong>of</strong><br />
<strong>RFID</strong> system are <strong>in</strong>creas<strong>in</strong>gly exposed. Scholars from various countries <strong>in</strong> the world try<br />
their best to make a series <strong>of</strong> solutions, such as the Hash-Lock protocol bas<strong>in</strong>g on hash<br />
functions and random numbers [4], the randomized Hash-Lock protocol[5];the library<br />
<strong>RFID</strong> protocol bas<strong>in</strong>g on shared pseudo and random function keys[6]; the Ownership<br />
Transfer <strong>Protocol</strong> bas<strong>in</strong>g on symmetric key algorithms[7]; and EC-RAC protocol bas<strong>in</strong>g<br />
on public key cryptography algorithms[8].<br />
The Hash-Lock protocol uses hash functions to implement the authentication between<br />
readers and tags, us<strong>in</strong>g metal ID <strong>in</strong>stead <strong>of</strong> the real ID to solve the track<strong>in</strong>g attacks, but<br />
the protocol does not use the dynamic ID mechanism, thus an attacker can still replay<br />
attacks, and track attacks. The randomized Hash-Lock protocol can resist the tag<br />
track<strong>in</strong>g attacks, but after the certification, the tag ID can still pass through the clear<br />
text form, an attacker can still replay attacks. The Library <strong>RFID</strong> protocol adopts the<br />
pre-shared key, pseudo-random function to achieve authentication, to solve the<br />
retransmission, track<strong>in</strong>g, tamper<strong>in</strong>g and other security issues, so far, no obvious defects<br />
<strong>of</strong> the protocol are found, but the cost <strong>of</strong> labels is too high. Ownership Transfer<br />
protocol us<strong>in</strong>g symmetric encryption algorithms solves the tamper<strong>in</strong>g, track<strong>in</strong>g and<br />
ownership transfer <strong>of</strong> the tag, but it cannot achieve forward security. EC-RAC protocol<br />
us<strong>in</strong>g elliptic curve public key cryptography algorithms solves the label track<strong>in</strong>g<br />
attacks, protects the security <strong>of</strong> the system, however, recent experiments reveal that the<br />
protocol still cannot resist track<strong>in</strong>g attacks.<br />
The <strong>in</strong>ternet <strong>of</strong> th<strong>in</strong>gs asks for even more special security requirements for its <strong>RFID</strong><br />
system. The connection between tags and readers <strong>in</strong> <strong>in</strong>ternet <strong>of</strong> th<strong>in</strong>gs makes the<br />
protocol take <strong>in</strong>to account <strong>of</strong> <strong>in</strong>ternal attacks <strong>of</strong> the systems, as well as the ownership<br />
transfer <strong>of</strong> tags [9]. By analyz<strong>in</strong>g the above protocols, this paper establishes a model <strong>of</strong><br />
the <strong>RFID</strong> system <strong>in</strong> <strong>in</strong>ternet <strong>of</strong> th<strong>in</strong>gs, def<strong>in</strong>es their security requirements, and proposes<br />
a new security protocol.<br />
3. The Model and Security Requirements <strong>of</strong> <strong>RFID</strong> System <strong>in</strong> <strong>Internet</strong> <strong>of</strong><br />
Th<strong>in</strong>gs<br />
3.1 The <strong>RFID</strong> System Model <strong>of</strong> <strong>Internet</strong> <strong>of</strong> Th<strong>in</strong>gs<br />
<strong>RFID</strong> systems <strong>in</strong> <strong>in</strong>ternet <strong>of</strong> th<strong>in</strong>gs ma<strong>in</strong>ly consist <strong>of</strong> readers, tags and <strong>RFID</strong> middle<br />
wares. Each object <strong>in</strong> the system has an unique EPC. We assume that <strong>in</strong> one <strong>RFID</strong><br />
system there are N legitimate readers numbered from 1 to N , there are M legitimate<br />
readers numbered from 1 to M . i (1, N)<br />
, j (1, M)<br />
,the reader i is denoted as R i<br />
,the<br />
tag j is denoted as T j<br />
.In addition, because the cable channels between the reader and<br />
database are generally considered safe, therefore, when we establish the model, the<br />
reader and database can be seen as a unified <strong>in</strong>dependent entity, that is, the reader and<br />
database are collectively referred to as the middleware server.<br />
92
Change language