面向智能用电信息采集终端的访问控制协议

针对智能用电信息采集系统的建设需求,将射频识别(RFID)技术应用于采集终端全过程管理中,为解决RFID系统在终端身份认证及信息传输过程中存在的众多隐私安全漏洞,提出了面向智能用电信息采集终端的访问控制协议。该协议分为终端身份认证和终端信息访问控制两个阶段,采用哈希(hash)函数、私有密钥及随机密钥保证了消息的隐私性与安全性。为满足实际信息采集和终端维护需求,将识别器对采集终端的操作权限融入协议设计中,保证了终端敏感信息的安全。非形式化分析说明新协议能够有效地抵御阻断攻击、欺骗攻击及识别器非法访问攻击等6类攻击。协议在保证采集终端安全接入情况下实现终端信息的合法操作,可从设备层面提高用电信息采集系统的安全防护水平。

An Access Control Protocol for Intelligent Electricity Consumption Information Acquisition Terminals

In view of implementation demands of the intelligent consumption information acquisition system, radio frequency identification(RFID)technology is applied to ensure acquisition terminals management. To solve the numerous privacy and security vulnerabilities in the process of terminals authentication and information transmission in RFID systems, an access control protocol for intelligent electricity consumption information acquisition terminals is proposed. The novel protocol is divided into two stages, the terminal identity authentication and the terminal information access control. The hash function, the private key and the random key are employed to ensure the privacy and security of messages. In order to satisfy the demands of actual information collection and terminal maintenance, the reader's operating authority over the acquisition terminal is taken into consideration, which ensures the security of the terminal sensitive information. The non-formalized method analysis indicates the new protocol can effectively resist as many as 6 kinds of attacks including the blocking attack, spoofing attack and recognizer illegal access attack, and it ensures safe access to acquisition terminals as well as legal operation of terminals information, which will improve safety protection level of the electricity consumption information acquisition system.