Abstract
RFID three-party authentication protocol based on NTRU cryptosystem is a type of multi-entities authentication protocol. Unlike other RFID mutual authentication protocols, this protocol realizes mutual authentication of Server to Reader, and Server to Tag. Model checking is a formal method to check the correctness specifications hold in each state on concurrent and distributed systems, which can be used to verify the security of network protocol. A multi-channels constructing method is proposed to build this protocol model for formal analysis, then authentication property of the protocol is verified by model checker SPIN. Formal verification result reveals that an attack exists in this protocol, hence the protocol cannot guarantee the security of the three-party authentication protocol. The modeling method proposed above has great significance on security analysis for such three-party authentication protocols.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Wang, Z., Yan, X., Sun, B., et al.: Review and outlook of studies on application of RFID technology. Logist. Technol. 33(09), 1–5 (2014). https://doi.org/10.3969/j.issn.1005-152x.2014.05.001
Li, B.: Overview of RFID security authentication protocol. Sci. Technol. Innov. Her. 2015(32), 17–19 (2015)
Shi, Z., Xia, Y., Yu, C.: A strong RFID mutual authentication protocol based on a lightweight public-key cryptosystem. Inst. Adv. Eng. Sci. 12(3). http://dx.doi.org/10.11591/telkomnika.v12i3.4517
Cai, Q., Zhan, Y., Yu, S., et al.: RFID communication security protocol based on NTRU public key cryptosystem. Acta Scientiarum Naturalium Universitatis Sunyatseni 48(5), 6–11 (2009)
Yao, H., Liu, C.: Authentication protocol based on AES and NTRU for RFID. Comput. Eng. Appl. 48(35), 80–84 (2012). https://doi.org/10.3778/j.issn.1002-8331.1105-0409
Li, B.: An NTRU public key encryption system based RFID authentication protocol. Comput. Appl. Softw. 29(4), 271–278 (2012)
Deng, Q., Yang, S.: Research on RFID three-way mutual authentication protocol based on public key cryptosystem. Comput. Appl. Softw. 32(12), 298–301 (2015). https://doi.org/10.3969/j.issn.1000-386x.2015.12.070
Hao, X., Yang, P., Kun, L.: NTRU-based RFID three-party authentication protocol. Comput. Eng. Appl. (2014). https://doi.org/10.3778/j.issn.1002-8331.1305-0201
Xiao, M., Ma, C., Deng, C., et al.: A novel approach to automatic security protocol analysis based on authentication event logic. Chin. J. Electron. 24(1), 187–192 (2015). https://doi.org/10.1049/cje.2015.01.031
Holzmann, G.J.: The model checker SPIN. IEEE Trans. Softw. Eng. 23(5), 279–295 (1997)
Maggi, P., Sisto, R.: Using SPIN to verify security properties of cryptographic protocols. In: SPIN, vol. 2, pp. 187–204 (2002). https://doi.org/10.1007/3-540-46017-9_14
Dolev, D., Yao, A.: On the security of public key protocols. IEEE Trans. Inf. Theor. 29(2), 198–208 (1983)
Wang, L., Peng, S.: Research on RFID multi-authentication protocol and security analysis. J. Comput. Appl. 33(S2), 136–138 (2013)
Li, W., Xiao, M., Li, Y., Mei, Y., Zhong, X., Tu, J.: Formal analysis and verification for an ultralightweight authentication protocol RAPP of RFID. In: Du, D., Li, L., Zhu, E., He, K. (eds.) NCTCS 2017. CCIS, vol. 768, pp. 119–132. Springer, Singapore (2017). https://doi.org/10.1007/978-981-10-6893-5_9
Bruce, N., Kim, H., Kang, Y., Lee, Y., Lee, H.: On modeling protocol-based clustering tag in RFID systems with formal security analysis. In: IEEE, International Conference on Advanced Information NETWORKING and Applications, pp. 498–505 (2015). https://doi.org/10.1109/aina.2015.227
Hou, G.: Survey of state explosion problem in model checking. Comput. Sci. 40(06A), 77–86 (2013). https://doi.org/10.3969/j.issn.1002-137X.2013.z1.018
Xiao, M., Xue, J.: Formal description of properties of concurrency system by temporal logic. J. Nav. Univ. Eng. 05, 10–13 (2004). https://doi.org/10.3969/j.issn.1009-3486.2004.05.003
Acknowledgements
The work supported by National Natural Science Foundation of China (61562026, 61163005), in part by the Jiangxi Province Key Subject Academic and Technical Leader Funding Project (2017XSDTR0105), in part by the National Natural Science Foundation of Jiangxi Province of China (20161BAB202063), in part by the Science and Technology Research Project of Education Department in Jiangxi Province (GJJ170384).
Author information
Authors and Affiliations
Corresponding authors
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2018 Springer Nature Singapore Pte Ltd.
About this paper
Cite this paper
Chen, J., Xiao, M., Yang, K., Li, W., Zhong, X. (2018). Formal Analysis and Verification for Three-Party Authentication Protocol of RFID. In: Li, L., Lu, P., He, K. (eds) Theoretical Computer Science. NCTCS 2018. Communications in Computer and Information Science, vol 882. Springer, Singapore. https://doi.org/10.1007/978-981-13-2712-4_4
Download citation
DOI: https://doi.org/10.1007/978-981-13-2712-4_4
Published:
Publisher Name: Springer, Singapore
Print ISBN: 978-981-13-2711-7
Online ISBN: 978-981-13-2712-4
eBook Packages: Computer ScienceComputer Science (R0)
