中文摘要：

针对RFID技术的安全与隐私保护问题及RFID标签资源的有限性问题,本文提出了一种基于口令认证可证安全的RFID通信安全协议——pRPAP。为求从根本上解决RFID技术的安全与隐私保护问题,本文提出为RFID系统建立通信安全模型。从形式化论证的角度出发,基于随机预言模型,使用形式化描述方式,系统地建立了RFID通信安全模型。该模型包括RFID系统模型,RFID系统的攻击模型以及RFID通信安全协议的安全目标模型。并在该模型下,证明了pRPAP的安全性。证明结果显示本文提出的基于口令认证可证安全的RFID通信安全协议能够有效地解决RFID技术的安全问题。此外,本文所建立的RFID通信安全模型还有助于指导pRPAP协议各项参数的选择,以便建立适合不同安全等级要求的RFID通信安全协议。RFID通信安全模型的建立,也有助于对RFID通信安全协议进一步深入地研究。

英文摘要：

Focusing on the issues of security and privacy protection of RFID technology and the limited resources of RFID tag, the paper proposes a password authenticated protocol for RFID system with provable security----pRPAP. In order to fundamentally solve the issues of security and privacy protection of RFID technology, the paper proposes to establish the security model of RFID communication. From the formalism point of view, the paper proposes to establish the security model of RFID communication with the formal description based on the random oracle mode. The model includes the communication model of RFID system,the attack model of RFID system and the security aim model of the protocol, and demonstrates the security of pRPAP under the model. The result shows that the protocol possesses provable security. In addition, the security model of RFID communication can effectively guide the choice of the parameters of pRPAP to establish RFID communication security protocols for the different security levels. The model will also contribute to farther study on RFID communication security protocols.