【摘要】：物聯(lián)網(wǎng)（Internet of Things，IOT）能夠在全世界范圍內(nèi)對貼有RFID標簽的目標對象進行識別、跟蹤和查詢。如今，IOT已經(jīng)成為許多國家經(jīng)濟發(fā)展、科技創(chuàng)新的重點戰(zhàn)略規(guī)劃之一。作為物聯(lián)網(wǎng)感知層的核心環(huán)節(jié)，射頻識別（RadioFrequency Identification，RFID）技術以其識別迅速、使用方便、信息安全、可重復利用等優(yōu)點已被廣泛應用在醫(yī)療、支付、票務及供應鏈管理等領域，是推動IOT快速發(fā)展的關鍵技術之一。 然而，傳統(tǒng)的RFID安全協(xié)議因為無法解決系統(tǒng)內(nèi)部攻擊問題而不能很好地應用于物聯(lián)網(wǎng)、供應鏈等多服務器系統(tǒng)。本文針對這一問題，通過分析現(xiàn)有密鑰陣列認證協(xié)議的特點，設計了以密鑰陣列為架構的RFID零知識證明協(xié)議。 本文的主要工作為: （1）在對密鑰陣列、零知識證明和隨機數(shù)等密碼學知識做了詳細介紹和深入研究的基礎上，對常見的攻擊和傳統(tǒng)RFID認證協(xié)議的優(yōu)缺點進行了深入分析，為本文的認證協(xié)議設計做好基礎。 （2）系統(tǒng)分析了代表性的KAAP認證協(xié)議后，指出在密鑰陣列架構的基礎上引入零知識證明理論的必要性和可行性。 （3）利用零知識證明方案和密鑰陣列架構，提出了輕量級的基于密鑰陣列的RFID零知識證明認證協(xié)議（Zero Knowledge proof protocol of RFID based onthe Key Array，KAZK），并對其進行了性能分析。之后，建立多種攻擊模型對KAZK協(xié)議的安全與隱私特性進行了驗證。 性能分析和攻擊模型的驗證結果表明KAZK協(xié)議在維持一定復雜度和標簽成本的基礎上，可抵抗包括重放攻擊、跟蹤攻擊、拒絕服務攻擊等多種外部攻擊類型；尤其針對來自系統(tǒng)內(nèi)部的安全攻擊，，KAZK具備很好的安全性和可執(zhí)行性，為物聯(lián)網(wǎng)、供應鏈等多服務器系統(tǒng)提供了一種更好的RFID安全認證協(xié)議。
[Abstract]:The Internet of things (Internet of Things,IOT) can identify, track and query target objects with RFID tags around the world. Now IOT has become one of the key strategic plans for economic development, scientific and technological innovation in many countries. As the core of the perception layer of the Internet of things, Radio Frequency Identification (RadioFrequency Identification,RFID) technology has been widely used in medical, payment, ticketing and supply chain management fields for its advantages of rapid identification, convenient use, information security, reusable and so on. It is one of the key technologies to promote the rapid development of IOT. However, the traditional RFID security protocol can not be applied to the Internet of things, supply chain and other multi-server systems because it can not solve the problem of internal attack. In order to solve this problem, by analyzing the characteristics of the existing key array authentication protocols, a RFID zero-knowledge proof protocol based on the key array architecture is designed. The main work of this paper is as follows: (1) based on the detailed introduction and in-depth study of cryptographic knowledge such as key array, zero knowledge proof and random number, etc. The advantages and disadvantages of common attacks and traditional RFID authentication protocols are deeply analyzed, which makes a good foundation for the design of authentication protocols in this paper. (2) after systematically analyzing the representative KAAP authentication protocols, The necessity and feasibility of introducing zero-knowledge proof theory based on key array architecture are pointed out. (3) using zero-knowledge proof scheme and key array architecture, A lightweight RFID zero-knowledge proof authentication protocol (Zero Knowledge proof protocol of RFID based onthe Key Array,KAZK) based on key array is proposed and its performance is analyzed. Then, several attack models are established to verify the security and privacy characteristics of KAZK protocol. The performance analysis and the verification of the attack model show that the KAZK protocol can resist many kinds of external attacks, such as replay attack, trace attack, denial of service attack and so on, on the basis of maintaining certain complexity and tag cost. Especially for the security attack from the system, KAZK has good security and executable, and provides a better RFID security authentication protocol for the Internet of things, supply chain and other multi-server systems.
【學位授予單位】：天津大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TP391.44;TN929.5

【參考文獻】

相關期刊論文 前2條

1 寧煥生;徐群玉;;全球物聯(lián)網(wǎng)發(fā)展及中國物聯(lián)網(wǎng)建設若干思考[J];電子學報;2010年11期

2 丁治國;郭立;王昱潔;;基于密鑰陣列的RFID安全認證協(xié)議[J];電子與信息學報;2009年03期

相關博士學位論文 前2條

1 邵波濤;超低成本全打印射頻識別標簽的設計和實現(xiàn)[D];復旦大學;2011年

2 軒秀巍;超高頻射頻識別系統(tǒng)的關鍵技術研究[D];天津大學;2012年

本文編號：2237434