- 學位論文
身份辨識驗證技術之設計與應用
The Design and Applications of User Authentication Protocols
摘要
在現今資訊與網際網路科技發達的時代,資料的保密性及完整性已是十分重要的技術。由於資訊的傳輸不是經由無線通訊就是開放的網路環境,皆必須確認是合法使用者才能取得相關的服務,因此許多身份辨識之安全及隱私問題等相關研究紛紛提出。譬如:智慧卡(Smart Cards)(信用卡、提款卡、悠遊卡等)及無線射頻辨識(RFID)系統之身份辨識應用等等,兩者皆具備少量儲存空間及簡易計算之特性。由於成本低、尺寸小以及所帶來的方便性已是日常生活中不可或缺的一部份。 由於大部份先前學者所提出的方法皆假設智慧卡是具有防篡改之先決條件,否則存放於智慧卡內的資料一旦被提取出來,極易遭受攻擊。然而,透過洩露訊息或特殊計算耗功率的分析表示,存放在智慧卡中的重要資訊是可以被破壞擷取的。因此,本研究將提出一個基於亂數的相互認證方法應用於智慧卡上,在我們的研究中,即使智慧卡內的資訊被擷取,亦不會造成安全上的缺失,同時還滿足了安全性、低運算成本及相互認證的特性。 另一方面,為了保護使用RFID用戶資料的安全和隱私,以及避免訊息被追踪,在2010年,葉等學者提出了一個基於二次剩餘之RFID認證的改進方式。不過,葉等學者提出的方法並無法達到安全的需求。因此在本研究中我們提出一個簡單且快速的驗證機制,不但可滿足各方面之安全需求,並且適用於大型資料庫的RFID系統。 整體而言,本研究在探討一更有效率且低計算量的驗證協定技術,適用於智慧卡或RFID系統。相信透過的我們的研究,將更有益於電子交易的應用。
並列摘要
It is an important to ensure data confidentiality and integrity in current of network environment. Due to the information transmitting either via radio frequency communication or by opening network environment, message privacy and authentication need to be examined through some of certificated mechanisms. With the applications such as smart cards (credit cards, ATM cards, and easy cards etc.) and Radio Frequency Identification (RFID) system, both of them have the common characteristic of simple computation power and memory capabilities. Because of their low production costs, small size and the portability, that anticipated to be widely used in our daily life. Most of the previously proposed schemes based on smart cards which have the tamper resistance assumption for the smart card. However, many researches have shown that the secrets stored in a smart card can be breached by analyzing the leaked information or monitoring the power consumption. This study will propose a new mutual authentication scheme based on nonce and smart cards, the assumption of tamper resistance for smart cards is not essential in the proposed method. Our study can prevent forgery attacks and remedy previously proposed schemes’ weakness. Moreover, our scheme not only achieves the mutual authentication but also can satisfy the security and low-computation costs. On the other hand, to provide security and user’s privacy, and to protect user from tracing, in 2010, Yeh et al. proposed an improvement of the RFID authentication scheme based on quadratic residues, but theirs scheme cannot satisfy the security. However, most of previously proposed schemes are not suitable for a large-scale RFID system. Therefore, this study proposes a new efficient RFID mutual authentication scheme which can provide the privacy of tags. The distinct response messages can prevent an attacker to trace the tag and suffer from various attacks. Moreover, the proposed scheme can be used in a large-scale RFID system. Overall, this research is to investigate more efficient and low-computation cost techniques for smart cards or RFID systems. We believe the result of proposed schemes will be more attractive to many electronic transactions.
參考文獻
延伸閱讀
- Yen, Y. J. (2014). 身分驗證協定的安全性分析之研究 [master's thesis, National Taichung University of Science and Technology]. Airiti Library. https://doi.org/10.6826/NUTC.2014.00044
- 官瑀婕(2014)。網路使用者身分驗證機制研析-以電子支付機構國際立法及推動經驗為中心。科技法律透析,26(11),12-18。https://www.airitilibrary.com/Article/Detail?DocID=a0000571-201511-201504130018-201504130018-12-18
- 柯力群、林良宇、王煥文、彭幼玲、葉于榕(2009)。一種用於無線感測網路的新型動態使用者身份認證機制。電腦與通訊,(127),27-34。https://doi.org/10.29917/CCLTJ.200903.0005
- 陳昱仁、廖耕億、邱珮瑜(2023)。應用於智慧家庭之物聯網身分驗證機制。前瞻科技與管理,11(2),1-27。https://doi.org/10.6193/JATM.202305_11(2).0001
- Liu, W. R., He, X., & Ji, Z. Y. (2021). Security Analysis and Enhancements of a User Authentication Scheme. International Journal of Network Security, 23(5), 895-903. https://doi.org/10.6633/IJNS.202109_23(5).17