摘要
移动RFID系统是指利用植入RFID读写芯片的智能移动终端,获取标签中的信息,并通过移动网络,访问后台数据库,获取相关信息。然而,由于移动RFID系统的无线通信环境和无可视性读写,带来了很多安全隐患,已经成为制约移动RFID发展的重要因素,针对此问题,在分析了移动RFID网络构成及其安全隐患后,提出了一种基于相互认证的安全协议,该协议引入了一个第3方服务器来为移动读写器和后台数据库提供签名密钥,并且利用椭圆曲线加密体制(ECC)对信息进行签名验证,最后分析表明该协议可以为移动读写器与后台数据库提供安全的通信环境,以应对各种攻击。
In a mobile RFID system, a smart mobile terminal, in which a chip of RFID reader is implanted, is used to acquire the information of the tag and access the background database through mobile network to get the relevant information. However, the wireless communication environment and invisibility of read and write bring many security risks which restrict the development of mobile RFID. To address these issues, the composition of mobile RFID network as well as its security risks are analyzed in the paper, and a cryptographic protocol based on mutual authentication is proposed. In this protocol, a third-party server is introduced to provide signature key for mobile reader and background database, and Elliptic Curve Cryptography (ECC) is used to sign and certify the information. Analysis shows that the protocol provides secure communication environment for mobile reader and background database to handle various attacks.
出处
《无线电通信技术》
2010年第1期40-43,共4页
Radio Communications Technology
基金
人事部留学人员科技活动择优资助项目(08ZD0106)
四川教育厅科技项目(2006A096)
关键词
移动RFID
相互认证
安全协议
数字签名
mobile RFID
mutual authentication
cryptographic protocol
digital signature
