一种适用于NFC移动设备的双向认证安全方案

doi:10.11959/j.issn.1000-0801.2017178

Abstract

Abstract:

Near field communication (NFC) is a kind of short-range wireless communication technology which has been applied around the world.The applications of mobile payments and access control are the most common applications of NFC technology.Technically,the NFC device can be used as a bank card or an entrance card with the help of the card emulation mode of NFC,which will be validated by external reader.It is very essential to select a appropriate and safe certification scheme in this scenario.First of all,the existing NFC authentication system and security scheme was introduced and the system security requirements and potential security risks were analyzed.Then,by using Hash,AES and password Key dynamic updating mechanism,a mutual authentication security scheme for mobile NFC devices was proposed,and the synchronization mechanism was designd.Finally,GNY logic was used to prove the security correctness of our proposed scheme.The security analysis shows that our scheme can avoid a number of attacks,such as forgery,replay attack,eavesdropping,tampering attack,asynchronous attack and so on.

Key words: near field communication, mutual authentication, security, mobile device

CLC Number:

TP309

Chengyu ZHANG,Rangding WANG,Ling YAO,Songyin FU,Fuqiang ZUO. A mutual authentication security scheme for mobile NFC devices[J]. Telecommunications Science, 2017, 33(8): 163-172.

Figures/Tables 9

符号	含义
(X,Y)	X连接Y
*X	非起始于X
P?X	P拥有X
P?X	P收到X
P\|～X	P曾经发送X
P\|≡#X	P相信X是新鲜的
P\|≡ψ(X)	P相信X是可以识别的
${_{X} K} 和 {_{X}^{}}$	传统对称密钥加密、解密
$P \overset{K}{\leftrightarrow} Q$	P和Q共享密钥K

协议	手机/标签（T）	阅读器+服务器（S）	搜索时间	交互回合	存储T/S	通信T+S
参考文献[1]	3r+2RSA	2r+2RSA	T(n)	5	4l/2l	3l+3l
参考文献[2]	2h+r	n×h+r	T(n)	5	1l/2l	2l+4l
参考文献[5]	5r	6r	T(2n)	5	3l/6l	3l+4l
参考文献[6]	4r+4CRC	3r+4CRC	T(2n)	3	2l/6l	5l+2l
本文	1AES+3h+r	1AES+3h+r	$T (\frac{n}{m})$	4	3l/4l	4l

References 15

[1]	CHENG H C , LIAO W W , CHI T Y ,et al. A secure and practical key management mechanism for NFC read-write mode[C]// 13th International Conference on Advanced Communication Technology (ICACT2011),February 13-16,2011,Seoul,South Korea.[S.l.:s.n]. 2011: 1095-1111.
[2]	丁振华, 李锦涛, 冯波 ,等. 基于 Hash 函数的 RFID 安全认证协议研究[J]. 计算机研究与发展, 2009,46(4): 583-592.
	DING Z H , LI J T , FENG B ,et al. Research on Hash-based RFID security authentication protocol[J]. Journal of Computer Research and Development, 2009,46(4): 583-592.
[3]	曾丽华, 熊璋, 张挺 ,等. Key值更新随机Hash锁对RFID安全隐私的加强[J]. 计算机工程, 2007,33(3): 151-153.
	ZENG L H , XIONG Z , ZHANG T ,et al. Key Value renewal random hash lock for security and privacy enhancement of RFID[J]. Computer Engineering, 2007,33(3): 151-153.
[4]	周世杰, 张文清, 罗嘉庆 ,等. 射频识别(RFID)隐私保护技术综述[J]. 软件学报, 2015,26(4): 960-976.
	ZHOU S J , ZHANG W Q , LUO J Q ,et al. Design and analysis of cryptographic protocols for RFID[J]. Chinese Journal of Computers, 2007,33(3): 151-153.
[5]	钱萍, 吴蒙 . 一种基于 Hash 函数的 RFID 安全认证方法[J]. 电信科学, 2011,27(10): 109-112.
	QIAN P , WU M . A security RFID authentication method based on Hash function[J]. Telecommunications Science, 2011,27(10): 109-112.
[6]	NIU B , ZHU X , CHI H ,et al. Privacy and authentication protocol for mobile RFID systems[J]. Wireless Personal Communications, 2014,77(3): 1713-1731.
[7]	张辉, 侯朝焕, 王东辉 ,等. 一种基于部分 ID 的新型 RFID安全隐私相互认证协议[J]. 电子与信息学报, 2009,31(4): 853-856.
	ZHANG H , HOU Z H , WANG D H ,et al. A new security and privacy on RFID mutual authentication protocol based on partial ID[J]. Journal of Electronics ＆ Information Technology, 2009,31(4): 853-856.
[8]	FELDHOFER M , DOMINIKUS S , WOLKERSTORFER J . Strong authentication for RFID systems using the AES algorithm[C]// Cryptographic Hardware and Embedded Systems(CHES 2004),August 11-13,2004,Cambridge,MA,USA.[S.l.:s.n]. 2004: 357-370.
[9]	BADRA M , BADRA R B . A lightweight security protocol for NFC-based mobile payments[J]. Procedia Computer Science, 2016(83): 705-711.
[10]	EUN H , LEE H , OH H . Conditional privacy preserving security protocol for NFC applications[J]. IEEE Transactions on Consumer Electronics, 2013,59(1): 153-160.
[11]	HE D , KUMAR N , LEE J H . Secure pseudonym-based near field communication protocol for the consumer internet of things[J]. IEEE Transactions on Consumer Electronics, 2015,61(1): 56-62.
[12]	李杰 . RFID 安全认证协议研究与设计[D]. 西安:西安电子科技大学, 2012.
	LI J . Research and design on RFID security authentication protocol[D]. Xi’an:Xidian University, 2012.
[13]	GOLDREICH O , GOLDWASSER S , MICHALI S . How to construct random functions[J]. Journal of the ACM, 1986,33(4): 792-807.
[14]	高树静, 曲英杰, 宋廷强 . 基于单向函数的伪随机数发生器[J]. 计算机研究与发展, 2015,52(6): 1394-1399.
	GAO S J , QU Y J , SONG T Q . Pseudorandom number generators based on one-way functions[J]. Journal of Computer Research and Development, 2015,52(6): 1394-1399.
[15]	LI G , NEEDHAM R , YAHALOM R . Reasoning about belief in cryptographic protocols[C]// IEEE Symposium on Security ＆Privacy,May 7-9,1990,Oakland,CA,USA. New York:IEEE Computer Society, 1990: 234-248.

Metrics

Recommended 0

No Suggested Reading articles found!

符号	含义
⊕	异或运算
Hash()	单向散列函数
ENC_MK()	加密
DEC_MK()	解密
\|\|	连接

A mutual authentication security scheme for mobile NFC devices

RichHTML

PDF下载

Knowledge

Abstract

Cite this article

share this article

Figures/Tables 9

References 15

Related Articles 15

Metrics

Recommended 0

[1]	Shengli ZHOU, Keyi JIANG, Bo XU, Rui XU, Xikang ZHANG, Quanzhe ZHAO, Yangdong XU. Research on the effectiveness evaluation of cyber security curriculum construction for combating telecom network fraud [J]. Telecommunications Science, 2023, 39(6): 122-128.
[2]	Le ZHANG, Hongyuan MA. Practice on edge cloud security of telecom operators [J]. Telecommunications Science, 2023, 39(4): 165-172.
[3]	Fuyuan CHEN, Zhenjiang DONG, Jiankuo DONG, Minjie XU. A survey of V2X security protection technologies [J]. Telecommunications Science, 2023, 39(3): 1-15.
[4]	Jingjie SHEN, Guangqiu LI, Yancui LUO, Huizhi LIU. Physical layer security of full-duplex relay-assisted D2D networks under outdated CSI [J]. Telecommunications Science, 2023, 39(3): 89-99.
[5]	Yu KANG, Yaqiong LIU, Tongyu ZHAO, Guochu SHOU. A survey on AI algorithms applied in communication and computation in Internet of vehicles [J]. Telecommunications Science, 2023, 39(1): 1-19.
[6]	Yifan DING, Guangqiu LI, Hui LI. Physical layer security of NOMA-D2D cooperative wireless system [J]. Telecommunications Science, 2022, 38(9): 83-94.
[7]	Jianwu ZHANG, Yanjun AN, Huangyan DENG. A survey on DNS attack detection and security protection [J]. Telecommunications Science, 2022, 38(9): 1-17.
[8]	Yusun FU, Jinhui TANG. A survey on 5G capabilities enabling the factories of the future [J]. Telecommunications Science, 2022, 38(9): 18-35.
[9]	Weixiong CHEN, Xiaochen YANG, Zengjun CHUN, Ruolan LI, Hua ZHANG. Research and practice of network security threat intelligence management system for power enterprise [J]. Telecommunications Science, 2022, 38(7): 184-189.
[10]	Hongbin LUO, Shan ZHANG, Zhiyuan WANG. Interconnection and coexistence of heterogeneous network:requirements, challenges, and architecture [J]. Telecommunications Science, 2022, 38(6): 18-30.
[11]	Yifan DING, Guangqiu LI, Hui LI. Physical layer security for SWIPT-NOMA system in presence of randomly located eavesdroppers [J]. Telecommunications Science, 2022, 38(3): 133-142.
[12]	Shimulin XIE, Ijie BA, Xiang ZHANG, Zeyi TANG, Weifan NIAN, Xujie LIU. Task security scheduling method for 5G+MEC based grid edge computing platform [J]. Telecommunications Science, 2022, 38(12): 78-85.
[13]	Yatian LIU, Bowen HU, Maofei CHEN, Dongxin LIU. Study on the 5GC security situational awareness system [J]. Telecommunications Science, 2022, 38(11): 73-85.
[14]	Yunyi LIU, Jianmin ZHANG, Xiaoli FENG, Liwei ZHANG. 5G MEC system security capability deployment scheme [J]. Telecommunications Science, 2022, 38(11): 143-152.
[15]	Jianfeng CHEN, Miao CUI, Guangchi ZHANG, Qingqing WU, Hui ZENG. Secure communication optimization for double-IRS assisted SWIPT system [J]. Telecommunications Science, 2022, 38(1): 47-60.