摘要
文章提出一种面向智能设备间短距离通信的多因素身份认证协议,将用户账户密钥作为知识因素、智能设备扬声器硬件指纹作为所有权因素、用户面部信息作为生物信息因素,从而抵抗一些常见攻击。文章提出的协议适用于不依赖额外硬件的短距离通信方式,协议利用信道特点结合硬件指纹和面部识别技术,在实现安全身份认证的同时为后续通信提供通信密钥,且后续通信不需要用户付出额外的认证动作便可对用户设备信息持续认证。安全分析和实验证明,该协议可以抵抗重放攻击、硬件指纹伪造攻击、智能设备被盗攻击等常见攻击,在智能家居、移动支付、非接触门禁等高安全性需求场景中有很大的应用价值。
This paper proposes a multi-factor authentication protocol for short-range communication between smart devices.It can prevent the common attacks,such as smartphone lost attack,man-in-the-middle attack,replay attack,by combining the user’s account key as a knowledge factor,the smart device speaker hardware fingerprint as a ownership factor,and the user’s facial information as a biological information factor.This protocol proposes is suitable for no extra hardware short-range communication methods.This paper uses the high-security features of audio channel to continuously authentication while authentication side received data signals.Security analysis and experiments prove that the protocol has high application value in high security scenario,such as smart home,mobile payment,and contactless access control.
作者
张骁
刘吉强
ZHANG Xiao;LIU Jiqiang(School of Computer and Information Technology,Beijing Jiaotong University,Beijing 100044,China)
出处
《信息网络安全》
CSCD
北大核心
2020年第8期9-15,共7页
Netinfo Security
基金
国家自然科学基金[61672092]
中央高校基本科研业务费[2018JBZ103]
山东省重点研发计划(重大科技创新工程)[2019JZZY020128]。
关键词
多因素身份认证
硬件指纹
生物特征
短距离通信安全
multi-factor authentication
hardware fingerprint
biometrics
short-range communication security
