{"title":"EPC系统中ONS的安全查询协议","authors":"Zhongwen Li, Yi Xie, Cheng-Bin Wu, Binbin Ding","doi":"10.1109/ICASID.2012.6325293","DOIUrl":null,"url":null,"abstract":"Object Naming Service (ONS) provides a connection between the middleware of Electronic Product Code (EPC) and EPC Information Services (EPCIS). The communication security of EPC network mainly depends on the queries of ONS. In the process of an ONS query, the local server sends DNS query messages in plaintext, which may result in the leakage of EPC information. In this paper, we propose a security query protocol for ONS which includes an extension protocol of DNS and a second generation onion routing protocol based on the certificateless public key cryptography (CL-PKC). In this protocol, multi-KGC center generates the part of private key for each user, users control the lengths of anonymous routing paths, and cross-domain users negotiate session keys. These features can not only meet the security needs of the ONS query process, but also improves system fault tolerance ability and anonymity. Moreover, the application of CL-PKC avoids the traditional complicated management of certificates, and then improves the efficiency of system.","PeriodicalId":408223,"journal":{"name":"Anti-counterfeiting, Security, and Identification","volume":"6 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2012-10-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":"{\"title\":\"A security query protocol of ONS in EPC system\",\"authors\":\"Zhongwen Li, Yi Xie, Cheng-Bin Wu, Binbin Ding\",\"doi\":\"10.1109/ICASID.2012.6325293\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Object Naming Service (ONS) provides a connection between the middleware of Electronic Product Code (EPC) and EPC Information Services (EPCIS). The communication security of EPC network mainly depends on the queries of ONS. In the process of an ONS query, the local server sends DNS query messages in plaintext, which may result in the leakage of EPC information. In this paper, we propose a security query protocol for ONS which includes an extension protocol of DNS and a second generation onion routing protocol based on the certificateless public key cryptography (CL-PKC). In this protocol, multi-KGC center generates the part of private key for each user, users control the lengths of anonymous routing paths, and cross-domain users negotiate session keys. These features can not only meet the security needs of the ONS query process, but also improves system fault tolerance ability and anonymity. Moreover, the application of CL-PKC avoids the traditional complicated management of certificates, and then improves the efficiency of system.\",\"PeriodicalId\":408223,\"journal\":{\"name\":\"Anti-counterfeiting, Security, and Identification\",\"volume\":\"6 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2012-10-11\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"7\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Anti-counterfeiting, Security, and Identification\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/ICASID.2012.6325293\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Anti-counterfeiting, Security, and Identification","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ICASID.2012.6325293","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 7
摘要
对象命名服务(Object Naming Service, ONS)是EPC (Electronic Product Code)中间件和EPC Information Services中间件之间的连接。EPC网络的通信安全主要依赖于ONS的查询。在ONS查询过程中,本地服务器以明文方式发送DNS查询消息,可能导致EPC信息泄露。本文提出了一种基于DNS扩展协议和基于无证书公钥加密(CL-PKC)的第二代洋葱路由协议的安全查询协议。在该协议中,多kgc中心为每个用户生成私钥部分,用户控制匿名路由路径的长度,跨域用户协商会话密钥。这些特性既满足了ONS查询过程的安全需求,又提高了系统的容错能力和匿名性。此外,CL-PKC的应用避免了传统的复杂的证书管理,从而提高了系统的效率。
Object Naming Service (ONS) provides a connection between the middleware of Electronic Product Code (EPC) and EPC Information Services (EPCIS). The communication security of EPC network mainly depends on the queries of ONS. In the process of an ONS query, the local server sends DNS query messages in plaintext, which may result in the leakage of EPC information. In this paper, we propose a security query protocol for ONS which includes an extension protocol of DNS and a second generation onion routing protocol based on the certificateless public key cryptography (CL-PKC). In this protocol, multi-KGC center generates the part of private key for each user, users control the lengths of anonymous routing paths, and cross-domain users negotiate session keys. These features can not only meet the security needs of the ONS query process, but also improves system fault tolerance ability and anonymity. Moreover, the application of CL-PKC avoids the traditional complicated management of certificates, and then improves the efficiency of system.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
