Методика подвійної автентифікації для RFID систем управління доступом з підвищеним рівнем захисту

Abstract

Currently, there are no uniform international standards for devices and systems that use radio frequency identification technology. Using tag alone as an identifier imposes certain restrictions on the level of protection of access control systems, since the unique tag identifier can be easily copied, so two-step authentication is required. The second level of protection can be a digital password entered via the keyboard. The work presents dual authentication technique for access control to the premises. Increasing the level of protection of radio frequency identification systems is achieved by the additional use of a digital password encrypted using a symmetric block encryption algorithm and recorded on the tag. This removes any restrictions on the number of registered users in the system, because passwords and IDs are stored on tags. The laboratory model of the device is based on the NodeMCU-32S Opensource platform with an RFID module that allows connection to most fog and cloud services of the Internet of things. The development is based on the ESP32 controller, which supports the necessary set of commands and hardware for implementing the methodology, in particular, wireless standards and communication protocols, hardware-accelerated encryption. The Cayenne service from MyDevices was chosen as the cloud platform, which made it possible to configure the device using the publish-subscribe messaging protocol and develop a graphical user interface. A log on the Cayenne platform is used to keep track of users, a character display is used to display the current status and settings of the device, and a serial interface is used to debug work algorithms. The software is implemented using the Arduino C programming language.