节点文献
SLMAP协议安全分析与改进
Security Analysisand Improvement of SLMAP Protocol
【Author】 Wang Chao;Qin Xiaolin;Liu Yali;College of Computer Science and Technology,NUAA;
【机构】 南京航空航天大学计算机科学与技术学院;
【摘要】 低成本RFID系统现今应用的越来越广泛,随之而来的安全问题也亟待解决。为了控制标签端的计算代价,一系列只使用位与、位或、位异或等位运算的超轻量级RFID认证协议已经提出,而已有的RFID认证协议大多存在着安全隐患。本文重点分析了SLMAP协议,SLMAP协议是对LMAP协议的改进,为了抵抗非同步攻击,协议中使用了状态位的方法。本文证明了此方法存在安全隐患,同时提出了中间人攻击方案,通过截获或篡改通信数据的主动攻击方法,合法标签将无法进行正常认证。最后,提出了改进的协议TSLMAP,经过安全、性能分析,证明TSLMAP能够更好的抵御各种攻击,具有更好的安全性。
【Abstract】 The use of Low-Cost RFID systems are increasingly prevalent in recent years,the challenge of security is emerging.In order to reduce the computational cost of the tag,a series of ultralightweight RFID authentication protocols that only involve bit-wise operations such as AND,OR,XOR,rotation,have been proposed.But most of them are unable to guarantee the security property.SLMAP protocol is an evolution of LMAP,and a protocol status bit is set to resist De-synchronization attack.This paper analyses the security vulnerability of SLMAP,we point out that the legal tag can no longer be authenticated after the active attacks like interception or manipulation.Finally,we propose an improved protocol TSLMAP,the results of security and performance analysis indicate that TSLMAP is more resistant and efficient.
【Key words】 RFID authentication; De-synchronization attack; Ultralightweight; Security;
- 【会议录名称】 第十九届全国青年通信学术年会论文集
- 【会议名称】第十九届全国青年通信学术年会
- 【会议时间】2014-10-15
- 【会议地点】中国上海
- 【分类号】TP391.44
- 【主办单位】中国通信学会