請用此 Handle URI 來引用此文件:
http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/60175
標題: | 透過綁定於USIM的不同資訊達到M2M的裝置認證 Achieving M2M-Device Authentication through Heterogeneous Information Bound with USIM |
作者: | Yu-Han Ho 何鈺涵 |
指導教授: | 周承復 |
關鍵字: | 物聯網,機器對機器的通訊,USIM盜取,安全裝置認證,時脈偏移, IoT,M2M communication,USIM stolen,secure device authentication,clock skew, |
出版年 : | 2016 |
學位: | 碩士 |
摘要: | 隨著物聯網等概念出現,人們將研究的重心移至機器對機器的通訊上,並且對於其安全的議題開始注重。
目前機器對機器的通訊遇到許多問題,而其中一個重要的問題為USIM的盜取,由於物連網裝置通常無輸入介面,所以傳統的PIN碼鎖已不再能保障最基本的安全。 本篇論文提出兩種解決方法。第一種我們加強原始的認證方式,提出裝置認證的演算法,使IMEI與IMSI配對,在IMEI有可能被篡改的情況下,仍能確保USIM的安全。與3GPP TR33.868所提出的解決方法相比,我們更有效率地達到裝置認證上的安全。 另外,我們欲利用硬體特殊且不易被人為更動的特性,藉此保護USIM。因此,第二種方式使用每個裝置皆有些許不同的時脈偏移值作為參考。從結果來看,在不被攻擊者篡改資料封包的情況下,此方法能有效且安全地辨別裝置。在我們的實驗中,所提出的兩個方法能夠用硬體或是軟體的方式所實作。 With the concept of Internet of Things well developed , the researchers increasingly moved the focus on M2M communications and began to pay attention to the relevant security issues. Up to now M2M communications have encountered several security problems. One of the important problems is about the USIM stolen. Due to hardly any input interfaces, the common PIN code verification is no effect. In this paper, we propose two approaches. The first is to enhance the original authentication mechanism and do the device authentication, we make IMEI and IMSI in pairs. In case IMEI is likely to be tampered with, we still can verify the fake device. Comparing with the method proposed in 3GPP TR 33.868, we utilize more efficient way to achieve secure device authentication. In addition, we would like to utilize the particular hardware characteristics, which is hardly artificially modified. In the approach 2, we make the clock skew, which each device is slightly different, as the reference achieve our requirement. Result shows that without an adversary tampering with the data packets, this approach can securely discriminate the devices. In the experiment, we can implement the two approaches in either hardware or software support. |
URI: | http://tdr.lib.ntu.edu.tw/jspui/handle/123456789/60175 |
DOI: | 10.6342/NTU201603734 |
全文授權: | 有償授權 |
顯示於系所單位: | 資訊網路與多媒體研究所 |
文件中的檔案:
檔案 | 大小 | 格式 | |
---|---|---|---|
ntu-105-1.pdf 目前未授權公開取用 | 6.58 MB | Adobe PDF |
系統中的文件,除了特別指名其著作權條款之外,均受到著作權保護,並且保留所有的權利。