Research And Design Of Ultra-lightweight RFID Mutual Authentication Protocol

Radio frequency identification (RFID) is a kind of communication technology which uses wireless electromagnetic wave to realize automatic identification. RFID technology is widely used in the field of logistics, retail, library management, but due to the use of RFID wireless transmission technology, the RFID system is vulnerable to malicious attacks, and it is urgent to solve the problem of privacy and security RFID system. In addition, due to the lack of storage and computing ability of RFID tag, some mature cryptographic techniques can not be applied. Ultra-lightweight RFID mutual authentication technology is a kind of using only simple logical bit operations. It meets the requirements of low cost RFID system, and provide security and privacy for the RFID system.The main contributions of this paper are summarized as follows:(1)According to the current RFID ultra-lightweight protocol, this paper introduces the current typical ultra-lightweight RFID authentication model and other two protocols model, A desynchronization attack scheme is proposed for the typical ultra-lightweight RFID protocol model, which indicates that it can not resist the desynchronization attack. At first, this paper introduces the specific details of the desynchronization attack scheme, and then introduces the RAPP protocol which is consistent with the typical authentication model; then take the RAPP protocol as an example, using the desynchronization attack to attack the RAPP protocol. Finally, we propose a solution model.(2)We propose a new ultra-lightweight RFID authentication protocol based on permutation that can prevent desynchronization attack. First, we analyze the RAPP protocol, and point out that it can not resist the full disclosure attack. The PDAP protocol adds a key information R in the tag storage, which is equivalent to the function of the pseudo random number. The key information R is used to provide the freshness of the information on the tag side and to resist the replay attack and desynchronization attacks. In addition, because the RAPP protocol can not resist the full disclosure attack, so we improve the message design of the RAPP protocol, and complete the design of the PDAP protocol. Then we analyze the security of PDAP protocol, and the result indicates that the PDAP protocol can resist the existing attack methods. At last, through the experiment and simulation analysis of the PDAP protocol, the security, correctness and feasibility of the PDAP protocol are indicated.