JP4472736B2 - Data transfer system, data upload method - Google Patents

Description

  The present invention relates to a communication protocol between a wireless communication terminal and a network device that accommodates the wireless communication terminal.

  There is a demand for the realization of a communication protocol that allows a large amount of disposable small-sized wireless terminals to safely upload standard data several times in a small amount using a wireless network using a limited wireless band. Data upload methods used in such a wireless network include (1) authentication, secrecy, integrity, anonymity security, (2) delivery confirmation, (3) batch message exchange, (4 It is necessary to implement without the need for a hash / encryption circuit.

  In other words, with security of authentication, secrecy, integrity, and anonymity, information on the wireless terminal will not be spoofed, tapped, tampered with, or tracked by other devices. Can be uploaded.

  In addition, if there is a delivery confirmation, it is possible to determine whether or not retransmission is necessary. Therefore, the wireless terminal can complete uploading with the minimum number of retransmissions until data can be uploaded with certainty.

  Also, if message exchange for authentication, secrecy, integrity, anonymity security and message exchange for data transmission can be performed collectively, the number of messages can be reduced and a certain frequency of one radio base station The amount of data that can be uploaded per unit time in the bandwidth increases. As a result, it is possible to save the number of installed radio base stations and save the frequency band required by the radio base stations. That is, it is possible to effectively use limited resources such as the location of the wireless base station and the wireless frequency band.

  In addition, if a wireless terminal can be mounted without using a hash operation circuit and an encryption operation circuit, the wireless terminal can be reduced in size.

  On the other hand, as data upload of a conventional wireless network, a method using a mobile phone (3GPP) or active RFID is known. However, the conventional mobile phone (3GPP) and active RFID data upload methods do not satisfy all of these needs.

  As an example of a conventional data upload method, an example of a mobile phone (3GPP) and an active RFID tag will be described (Non-Patent Documents 1 to 4).

  The cellular phone data upload method has security of authentication, secrecy, integrity, and anonymity, but has a feature that the amount of messages and calculation processing are large. The 3GPP sequence includes message exchange for realizing security of authentication, secrecy (encryption), integrity (message authentication), and anonymity (update of temporary ID).

  FIG. 9 shows a sequence for uploading data by 3GPP. First, the wireless terminal notifies its own ID to the management server via the wireless base station (steps S501 and S502). Thereafter, authentication is performed to prevent spoofing (steps S503 to S506), and information such as algorithm types necessary for encryption and message authentication is further exchanged to realize secrecy and integrity (steps S507 to S510). ). After a plurality of message exchanges as a session establishment process for data exchange (step S511), the wireless terminal can transmit data to be transmitted to the management server via the wireless base station (steps S512 and S513). ).

  Although not explicitly shown in FIG. 9, the 3GPP media access control protocol includes a delivery confirmation to know that the radio base station has received the data correctly. Anonymity is realized by performing temporary ID (TMSI) assignment processing with a radio base station when data transmission / reception is continued, and then performing communication while updating the temporary ID one after another. Since 3GPP is based on the premise of continuous data transmission / reception, parameters such as random numbers exchanged between the wireless terminal and the wireless base station are shared in advance for authentication, encryption, and message authentication. Hash operation and encryption operation are performed each time using the secret information.

  Next, a data upload method for the active RFID tag will be described. The active RFID tag data upload method has low security, but has a feature that the amount of messages and the amount of calculation are small. FIG. 10 shows an RFID data upload sequence.

In the RFID, the wireless terminal only transmits its own ID to the wireless base station (steps S601 and S602), and basically has no security. Since authentication, secrecy, falsification prevention, and anonymity are not taken into account, hash and encryption operations are not required. There are a method for providing sensor data, a method for realizing anonymity by changing an ID using a hash (Non-Patent Document 5), and the like, but the security is limited to the realization of anonymity.
Takeshi Hattori, 1 other person, “Impress Standard Textbook Series Revised Wireless Broadband Textbook 3.5G / Next Generation Mobile Edition”, Impress R & D Inc., April 11, 2006 Gonzalo Camarillo, 1 other person, “Introduction to practical network IMS (IP Multimedia Subsystem) standard text NGN core technology”, Rick Telecom, July 16, 2006 “ARIB STD-T63-33.102 V3.13.0 3G Security; Security Architecture (Release 1999), 3GPP TS 33.102 V3.13.0 (2002-12) 3rd Generation Partnership Project; Technical Specification Group Services and System Aspects; 3G Security; Security Architecture ( Release 1999) ”,“ online ”,“ Search August 17, 2007 ”, Internet <URL: http://www.arib.or.jp/IMT-2000/V620May07/2_T63/ARIB-STD-T63/ R99 / 33 / A33102-3d0.pdf> “ETSI TS 124 007 V3.10.0 (2004-06) Technical Specification Digital cellular telecommunications system (Phase 2+); Universal Mobile Telecommunications System (UMTS); Mobile radio interface signaling layer 3; General aspects (3GPP TS 24.007 version 3.10.0 Release 1999) ”,“ online ”,“ Search August 17, 2007 ”, Internet <URL: http://www.arib.or.jp/IMT-2000/V620May07/5_Appendix/R99/24/24007- 3a0.pdf> Miyako Ohkubo, Koutarou Suzuki, and Shingo Kinoshita, “Cryptographic approach to“ privacy-friendly ”tags,” ln RFID Privacy Workshop, MIT, Massachusetts, USA, November 2003.

  As described above, the conventional mobile phone (3GPP) is designed for continuous data communication. When connecting to a radio base station, authentication, secrecy and integrity information exchange, session establishment, data Message exchange of three or more independent round trips such as transmission, and hash operation and encryption operation for security are required. Message exchange includes session registration processing for identifying bucket communication and voice communication, and transmission of algorithm types for realizing secrecy and integrity. These sessions include messages that are unnecessary for a disposable wireless terminal that uploads a small amount of data and disconnects from the wireless base station. In addition, processing such as hash calculation and encryption calculation for security includes processing that can be made unnecessary by performing calculation in advance when uploading fixed data several times.

  Therefore, the conventional mobile phone (3GPP) satisfies the requirements for authentication, secrecy, integrity, anonymity security, and delivery confirmation, but satisfies the requirements for batch message exchange and hash / encryption circuit unnecessary. Not.

  Further, it is assumed that the active RFID tag transmits / receives ID by short-range wireless communication. Since regular ID transmission is performed without performing delivery confirmation in the Pure-ALOHA method, even if uploading is successful, useless retransmission occurs. In terms of security, the upload method for an active RFID tag does not have all of authentication, secrecy, integrity, and anonymity.

  Therefore, the active RFID tag satisfies the requirements for batch message exchange and the need for a hash / encryption circuit, but does not satisfy the requirements for authentication, confidentiality, integrity, anonymity security, and delivery confirmation.

  SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and an object of the present invention is to provide a data transfer system and a data upload method capable of safely uploading fixed data several times with a small amount by a small wireless terminal within a limited wireless band. .

In order to achieve the above object, the present invention provides a data transfer system comprising a radio terminal, a radio base station, and a management server, and uploading data from the radio terminal to the management server via the radio base station. The storage unit provided in the wireless terminal corresponds to data that is calculated in advance based on message authentication secret information and temporary ID generation secret information corresponding to the terminal, and that may be transmitted from the terminal. is frame is stored, the wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, Shin said feeding as a message for uploading the selected frame including the data The management server stores in advance data stored secret information for message authentication and temporary ID generation secret information for each wireless terminal. Having a base, based on information of the database from the message transmitted from the wireless terminal, a data transfer system, characterized in that to check for tampering of the data.

The present invention is also provided in the wireless terminal in a data transfer system that includes a wireless terminal, a wireless base station, and a management server, and uploads data from the wireless terminal to the management server via the wireless base station. In the storage unit, the message authentication secret information corresponding to the own terminal, pre-calculated based on the temporary ID generation secret information, a frame corresponding to data that may be transmitted from the own terminal is stored, the wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, sends a message for uploading the selected frame including the data, the radio base station, The management having in advance a database storing secret information for message authentication and temporary ID generation secret information for each wireless terminal Information from the database is received from the server, and based on the information, the presence / absence of data alteration is confirmed from the message transmitted from the wireless terminal, the message is transmitted to the management server, and the management The server is a data transfer system that receives the message.

In the data transfer system described above, the storage unit may further include a frame corresponding to data that is calculated in advance based on authentication secret information corresponding to the terminal and that may be transmitted from the terminal. And the wireless terminal selects a frame that matches the data to be transmitted from the frames that are stored in the storage unit and calculated in advance based on the authentication secret information, and the selected frame including the data is selected. sends a message for the uploading, the management server or the radio base station, based on the authentication private information for each wireless terminal, to verify the authenticator stored in the message transmitted from the wireless terminal It is characterized by that.

In the data transfer system described above, the storage unit further corresponds to data that is calculated in advance based on encryption secret information corresponding to the terminal and that may be transmitted from the terminal. A frame is stored, and the wireless terminal stores a frame that is stored in the storage unit, selects a frame that matches data to be transmitted from frames calculated in advance based on the encryption secret information, and includes the data. the frame has been transmitted as a message for the uploading, the management server or the radio base station, based on the secret information for encryption for each wireless terminal, to decrypt the message transmitted from the wireless terminal Features.

  Further, the present invention is characterized in that, in the above-described data transfer system, the data is 0 bytes and the ID of the wireless terminal is uploaded.

In the data transfer system described above, the storage unit may store any one of authentication secret information, encryption secret information, message authentication secret information, and temporary ID generation secret information corresponding to the terminal itself. A frame of a data response that is likely to be received by the own terminal calculated in advance is stored .

  According to the present invention, in the data transfer system described above, the wireless terminal uploads the message by batch message exchange.

According to the present invention, in the data transfer system described above, the wireless terminal uploads the message and confirms delivery of the message by batch message exchange.
According to the present invention, in the data transfer system described above, the storage unit is a ROM.

Further, the present invention provides a data upload method for uploading data from a wireless terminal to a management server via a wireless base station.
The storage unit provided in the wireless terminal corresponds to data that may be transmitted in advance from the own terminal, calculated in advance based on the message authentication secret information and the temporary ID generation secret information corresponding to the own terminal. frame is stored, the wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, and transmits the selected frame containing the data as a message for uploading the The management server stores in advance a message authentication secret information and a temporary ID generation secret information for each wireless terminal in a database, and from a message transmitted from the wireless terminal based on the information in the database, data It is a data upload method characterized by confirming the presence or absence of tampering.

In the data upload method for uploading data from a wireless terminal to a management server via a wireless base station, the present invention provides a message authentication secret corresponding to the terminal in the storage unit provided in the wireless terminal. Information, a frame corresponding to data that may be transmitted from the terminal itself, stored in advance based on the temporary ID generation secret information, and the wireless terminal stores the frame stored in the storage unit. select the frame to fit the data to be transmitted, and transmits the selected frame containing the data as a message for uploading the radio base station, a message authentication secret information for each wireless terminal, a temporary ID generating secret information The database information is received from the management server having the stored database in advance, and the information is Based on, from said message sent from the wireless terminal, to check for alteration of data, the management server is data upload method characterized by receiving the message.

In the data upload method described above, the storage unit may further include a frame corresponding to data that is calculated in advance based on authentication secret information corresponding to the terminal and that may be transmitted from the terminal. And the wireless terminal selects a frame that matches the data to be transmitted from the frames that are stored in the storage unit and calculated in advance based on the authentication secret information, and the selected frame including the data is selected. sends a message for the uploading, the management server or the radio base station, based on the authentication private information for each wireless terminal, to verify the authenticator stored in the message transmitted from the wireless terminal It is characterized by that.

Further, the present invention provides the data upload method described above, wherein the storage unit further corresponds to data that is calculated in advance based on encryption secret information corresponding to the terminal and that may be transmitted from the terminal. A frame is stored, and the wireless terminal stores a frame that is stored in the storage unit, selects a frame that matches data to be transmitted from frames calculated in advance based on the encryption secret information, and includes the data. the frame has been transmitted as a message for the uploading, the management server or the radio base station, based on the secret information for encryption for each wireless terminal, to decrypt the message transmitted from the wireless terminal Features.

  In the data upload method, the present invention is characterized in that the data is 0 bytes and the ID of the wireless terminal is uploaded.

In the data upload method described above, the storage unit may store any one of authentication secret information, encryption secret information, message authentication secret information, and temporary ID generation secret information corresponding to the terminal. A frame of a data response that is likely to be received by the own terminal calculated in advance is stored .

  According to the present invention, in the data upload method described above, the wireless terminal uploads the message by batch message exchange.

Further, the present invention is characterized in that, in the data upload method described above, the wireless terminal uploads the message and confirms delivery of the message by batch message exchange.
In the data upload method, the present invention is characterized in that the storage unit is a ROM.

  According to the present invention, it is possible to upload data in one round-trip message exchange by superimposing messages for data upload, authentication, secrecy and completeness. In addition, taking advantage of the limited number of communications, which is a disposable feature, the hash operation and encryption operation are performed in advance and written in the ROM, so that the wireless terminal has no hash circuit and encryption circuit. However, uploading with security is possible.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.
INDUSTRIAL APPLICABILITY The present invention is suitable for use with a large number of disposable small wireless terminals that can safely upload ID or ID and a small amount of fixed data several times over a wireless network using a limited wireless band. It is.

<Network configuration>
FIG. 1 shows a network configuration to which the present invention can be applied. In FIG. 1, 101 is a wireless terminal, 102 is a wireless base station, and 103 is a management server. In the embodiment of the present invention, the radio band per radio base station 102 is about (9600 bps × several channels), the cell radius is as large as several km, and radio terminals 10 to 100 times the in-cell population per radio base station 102 are provided. The radio band is very limited because it is supposed to be accommodated. Further, the wireless terminal 101 is small, and its arithmetic circuit is small (for example, 500 kGate or less). Further, the wireless terminal 101 can be disposable.

  In the embodiment of the present invention, since the arithmetic circuit of the wireless terminal 101 is small, a method for realizing authentication, secrecy (encryption), integrity (tampering prevention), and anonymity (temporary ID update) Is based on a method that performs calculations based on secret information shared between devices in advance, and further performs calculations before shipping of the wireless terminal 101 to realize authentication, secrecy, integrity, and anonymity Is written in the ROM 110. This is because ID or ID and data upload is limited to a limited number of times, and the number of data variations is also limited to several types.

<Basic processing of upload of the present invention>
First, a basic flow (sequence) of uploading according to the present invention will be described.

  Uploading is to store the ID or ID and data held by the wireless terminal 101 in a data frame and send it to the management server 103 via the wireless base station 102. Since it is assumed that the wireless terminal 101 can move, and the wireless base station 102 to which the wireless terminal 101 is connected changes as it moves, authentication for preventing spoofing is required. In addition, since wireless communication can be wiretapped or obstructed, data must be concealed by encryption, falsification prevented by message authentication (integrity), and anonymized by updating a temporary ID.

  FIG. 2 shows an upload sequence according to the embodiment of the present invention. First, the wireless terminal 101 selects a frame that matches the content to be transmitted from data frames that are calculated in advance and stored in the ROM 110 of the wireless terminal 101, and transmits the frame to the management server 103 via the wireless base station 102. (Step S101).

  The radio base station 102 transmits a data response to the radio terminal 101 after confirming that the data is correct by a security calculation (step S102). The radio base station 102 transmits data to the management server 103 (step S103), and the management server 103 transmits a data response to the radio base station 102 (step S104).

  The wireless base station 102 transmits a data response to the wireless terminal 101 before transmitting data to the management server 103, after transmitting data to the management server 103, and before receiving a data response from the management server 103. Any one after receiving a data response from the management server 103 may be used.

  Then, the wireless terminal 101 confirms that the data response is correct by checking with a response frame calculated in advance and stored in the ROM 110. The upload is completed when the data response confirmation by the wireless terminal 101 is completed.

  As a premise of the above sequence, before the wireless terminal 101 is shipped, the authentication secret information, the encryption secret information, the message authentication secret information, and the temporary ID generation secret information for each wireless terminal 101 are temporarily stored in the wireless terminal 101. It is stored in the database 111 of the management server 103 together with the ID.

  Also, it is possible to receive a frame of data that the wireless terminal 101 may transmit from the authentication secret information, encryption secret information, message authentication secret information, and temporary ID generation secret information corresponding to the wireless terminal 101. A reliable data response frame is calculated in advance before shipment, and all the frames are written in the ROM 110 of the wireless terminal 101.

  Since the data is a few bytes, it is a standard, so there are several variations, and the number of transmissions is assumed to be several. Since the number of types of data that can be transmitted is limited, there is a frame for data that may be transmitted. , And the calculation result of the data response frame that may be received can be calculated in advance and stored in the ROM 110.

  The data and data response frame structure will be described in detail. FIG. 3 shows a configuration of a data frame transmitted by the wireless terminal 101, and FIG. 4 shows a frame configuration of a data response received by the wireless terminal 101.

  As shown in FIG. 3, the data frame includes an ID, an authenticator, data, a MAC (message authentication code), and an FCS (error detection / correction checksum).

  ID is a temporary ID of the wireless terminal 101. When the wireless terminal 101 communicates a plurality of times, anonymity is ensured by performing operations such as hashing the temporary ID generation secret information a plurality of times and using a different temporary ID for each communication. Since the wireless base station 102 that has received the frame or the management server 103 connected to the wireless base station 102 is used for searching for information for security calculation, the ID portion is not concealed.

  The authenticator is information for preventing the wireless terminal 101 from impersonating, and is generated by hash calculation from terminal authentication secret information that only the correct wireless terminal 101 knows.

  The data is information that the wireless terminal 101 wants to upload to the management server 103. Since the authenticator and the data are concealed, an encryption operation is performed based on the encryption secret information.

  The MAC is information for detecting when a part of the message has been tampered with. The MAC is generated based on the ID, encrypted authenticator and data, and message authentication secret information.

  FCS is information for detecting and correcting errors due to transmission errors. The FCS is a value obtained by performing CRC calculation from a series of bit strings of ID, encrypted authenticator and data, and MAC.

  The generation of the data frame requires calculation processing based on the data and the authentication secret information unique to the wireless terminal 101, the encryption secret information, the message authentication secret information, and the temporary ID generation secret information. In the embodiment of the present invention, it is assumed that all frames of usable data are calculated in advance and stored in the ROM 110 of the wireless terminal 101.

  The radio base station 102 first checks the received data frame. After confirming that there is no error in the bit string by FCS or correcting the error, authentication secret information, encryption secret information, message authentication secret information, and temporary ID generation secret necessary for calculation using temporary ID Inquires the management server 103 for information and obtains it. Then, after confirming that there is no falsification by collating the calculation result of the MAC, the encrypted part is decrypted and it is confirmed that the authenticator is correctly generated from the secret information shared. However, this confirmation processing may be performed by the management server 103 by the wireless base station 102 transferring all or part of the data frame to the management server 103.

  The radio base station 102 transmits a data response to the radio terminal 101 after confirming the data frame. As shown in FIG. 4, the data response frame includes an ID, an authenticator, an ACK, a MAC (message authentication code), and an FCS (error detection / correction checksum).

  Unlike the data frame (FIG. 3), the data is replaced with ACK, but the generation method is the same. However, the authenticator includes information for preventing the wireless base station 102 from being spoofed. For the secret information, it is not necessary to use the same information as that used when generating the data frame. The secret information necessary for generating the data response may be acquired from the management server 103 by inquiring the management server 103 when confirming the data frame, or may be independently inquired to the management server 103 before generating the data response. , You may get. The data response frame generation processing may be performed by requesting generation of a part or all of the frame from the radio base station 102 to the management server 103.

  The wireless terminal 101 that has received the data response frame from the wireless base station 102 checks the data response frame that has been calculated and written in the ROM 110 in advance, confirms that the data response frame is correct, and completes the upload. To do.

  In addition to the above, the data in the data frame (FIG. 3) may be 0 bytes. In this case, the data frame data is not stored, and the data is not used for calculations for encryption and message authentication.

   In addition to the above, authentication by an authenticator may not be performed. When authentication by the authenticator is not performed, the authenticator is not stored in the data frame or the data response frame. Further, in this case, the calculation by the authentication secret information and the confirmation of the authenticator are omitted, and the wireless terminal 101, the wireless base station 102, and the management server 103 do not use the authentication secret information.

  In addition to the above, the data frame may not be encrypted. In this case, encryption and decryption calculation processing when generating the data frame and the data response frame are omitted, and the wireless terminal 101, the wireless base station 102, and the management server 103 do not use the encryption secret information.

<First Embodiment>
FIG. 5 shows a first embodiment of the upload sequence. This example is an example of an upload method on a wireless media access control protocol that requests a bandwidth by random access (RA). The dotted line in FIG. 5 is a message for wireless link control, and the solid line is a message for data transmission / reception.

  The wireless terminal 101 makes a wireless link ID assignment request to the wireless base station 102 by RA (step S201), and receives a wireless link ID assignment response as a response (step S202). Thereby, transmission / reception of subsequent frames is continued using the radio link ID notified by the radio link ID assignment response.

  Next, the wireless terminal 101 requests a bandwidth for the data frame by RA (step S203). The radio base station 102 transmits a band allocation acceptance to notify the radio terminal 101 that the band request has been received (step S204). After that, when the actually allocated frame becomes close, the data transmission timing is instructed to the wireless terminal 101 by bandwidth allocation (step S205). The wireless terminal 101 that has received the bandwidth allocation transmits a data frame at a timing designated by the bandwidth allocation (step S206). The radio base station 102 returns ACK to the radio terminal 101 (step S207).

  The radio base station 102 that has received the data frame transmits the ID in the data frame to the management server 103 by a terminal authentication request message (step S208). The management server 103 searches for authentication secret information, encryption secret information, and message authentication secret information of the wireless terminal 101 based on the received ID. Then, the encryption secret information necessary for receiving the data frame, the message authentication secret information, the authenticator calculated from the authentication secret information, the encryption secret information necessary for generating the data response, and the message authentication The authenticator calculated from the secret information for authentication and the secret information for authentication is transmitted to the radio base station 102 by the terminal authentication response (step S209).

  The radio base station 102 checks the data frame based on the information acquired from the management server 103, and if there is no problem, after bandwidth allocation (step S210), transmits the generated data response frame to the radio terminal 101. (Step S211).

  Receiving the data response frame, the wireless terminal 101 checks the data response frame by collating it with the operation result of the data response frame held by itself, and if there is no problem, completes the upload and returns an ACK to the wireless base station 102. (Step S212).

  The radio base station 102 transmits terminal authentication completion and data to the management server 103 based on the ACK received from the radio terminal 101 (steps S213 and S214). The management server 103 notifies the radio base station 102 that the data has been received by transmitting a data response (step S215).

<Second Embodiment>
FIG. 6 shows a second embodiment of the upload sequence. This sequence is an example of a sequence when data is transmitted by random access (RA). The dotted line in FIG. 6 is a message for wireless link control, and the solid line is a message for data transmission / reception.

  The wireless terminal 101 transmits a data frame calculated by the RA (step S301), and the wireless base station 102 that has received the data frame transmits an ID in the data frame to the management server 103 by a terminal authentication request message. (Step S302).

  The management server 103 searches for authentication secret information, encryption secret information, and message authentication secret information of the wireless terminal 101 based on the received ID. Then, the encryption secret information necessary for receiving the data frame, the message authentication secret information, the authenticator calculated from the authentication secret information, the encryption secret information necessary for generating the data response, and the message authentication The authenticator calculated from the secret information for authentication and the secret information for authentication is transmitted to the radio base station 102 by the terminal authentication response (step S303).

  The radio base station 102 checks the data frame based on the information acquired from the management server 103, and if there is no problem, transmits the generated data response frame to the radio terminal 101 (step S304).

  Receiving the data response frame, the wireless terminal 101 checks the data response frame by collating it with the operation result of the data response frame held by itself, and if there is no problem, completes the upload and returns an ACK to the wireless base station 102. (Step S305).

  The wireless base station 102 transmits terminal authentication completion and data to the management server 103 based on the ACK received from the wireless terminal 101 (steps S306 and S307). The management server 103 notifies the radio base station 102 that the data has been received by transmitting a data response (step S308).

<Evaluation of sequence example>
FIG. 7 shows a comparison of three types of sequences: a conventional sequence, a sequence according to the first embodiment of the present invention, and a sequence according to the second embodiment of the present invention.

  The conventional sequence is a general sequence in which data is transmitted after performing a conventional authentication method after link establishment. Assuming continuous data communication, parameters for replay attack prevention and temporary ID update are transmitted in authentication. Compared to this, in the first embodiment, the authentication and data sequences are superimposed. In the second embodiment, it can be regarded as a sequence in which radio link establishment is omitted and all are superimposed.

  The evaluation result of the accommodation efficiency by simulation is shown in FIG. Data was generated by Poisson, RA was retransmitted up to 10 times, no bucket loss, radio bandwidth was 9600 bits / s / channel, retransmission interval was geometric distribution of 1 frame on average, and transmission data size was 1 byte.

  FIG. 8 shows the relationship between the amount of communication traffic that can be accommodated per channel and the RA success rate. From the comparison of the average number of arrival data per unit time, the accommodation efficiency is higher in the sequences of the first and second embodiments than in the conventional sequence as a whole. Is the highest. As an example, when the RA success rate is 75%, the accommodation efficiency is improved by 1.8 times in Example 1 and 1.9 times in Example 2.

  As described above, according to the embodiment of the present invention, since there is security of authentication, secrecy, integrity, and anonymity, the information on the wireless terminal is spoofed by another device, eavesdropped, or tampered with. Information can be safely uploaded without being tracked.

  Further, since there is delivery confirmation, it is possible to determine whether or not retransmission is necessary, and the wireless terminal can complete uploading with the minimum number of retransmissions until data can be uploaded with certainty.

  In addition, the number of messages can be reduced because a message exchange regarding security and data transmission satisfying authentication, secrecy, integrity, and anonymity between the wireless terminal and the wireless base station can be performed at one time. The amount of data that can be uploaded per unit time within a certain frequency band of the station increases. As a result, it is possible to save the number of installed radio base stations and save the frequency band required by the radio base stations. That is, it is possible to effectively use limited resources such as the location of the wireless base station and the wireless frequency band. In addition, since the number of messages is reduced, the delay required for uploading is shortened.

  Further, since a hash circuit and an encryption circuit are not required in the wireless terminal, the terminal can be reduced in cost, size, and power saving.

  The present invention is not limited to the above-described embodiments, and various modifications and applications can be made without departing from the gist of the present invention.

  The above-described wireless terminal, wireless base station, and management server have a computer system inside. Each process described above is stored in a computer-readable recording medium in the form of a program, and the above process is performed by the computer reading and executing the program. Here, the computer-readable recording medium means a magnetic disk, a magneto-optical disk, a CD-ROM, a DVD-ROM, a semiconductor memory, or the like. Alternatively, the computer program may be distributed to the computer via a communication line, and the computer that has received the distribution may execute the program.

  The program may be for realizing a part of the functions described above. Furthermore, what can implement | achieve the function mentioned above in combination with the program already recorded on the computer system, and what is called a difference file (difference program) may be sufficient.

It is a block diagram used for description of the network configuration which can apply this invention. It is a sequence diagram which shows the basic process of the upload of this invention. It is explanatory drawing of the structure of the data frame in embodiment of this invention. It is explanatory drawing of a structure of the data response frame in embodiment of this invention. It is a sequence diagram used for description of the upload of the 1st Embodiment of this invention. It is a sequence diagram used for description of the upload of the 2nd Embodiment of this invention. It is explanatory drawing used for the comparison of each sequence. It is a graph used for description of the evaluation result of upload. It is a sequence diagram which shows an example of the conventional upload process. It is a sequence diagram which shows the other example of the conventional upload process.

Explanation of symbols

DESCRIPTION OF SYMBOLS 101 ... Wireless terminal, 102 ... Wireless base station, 103 ... Management server, 110 ... ROM, 111 ... Database

Claims (18)

In a data transfer system comprising a wireless terminal, a wireless base station, and a management server, and uploading data from the wireless terminal to the management server via the wireless base station,
The storage unit provided in the wireless terminal corresponds to data that may be transmitted in advance from the own terminal, calculated in advance based on the message authentication secret information and the temporary ID generation secret information corresponding to the own terminal. The frame is remembered,
The wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, sends a message for uploading the selected frame containing the data,
The management server has in advance a database in which secret information for message authentication and temporary ID generation secret information for each wireless terminal is stored, and based on the information in the database, from a message transmitted from the wireless terminal A data transfer system characterized by checking whether data has been tampered with. In a data transfer system comprising a wireless terminal, a wireless base station, and a management server, and uploading data from the wireless terminal to the management server via the wireless base station,
The storage unit provided in the wireless terminal corresponds to data that may be transmitted in advance from the own terminal, calculated in advance based on the message authentication secret information and the temporary ID generation secret information corresponding to the own terminal. The frame is remembered,
The wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, sends a message for uploading the selected frame containing the data,
The wireless base station receives the database information from the management server having in advance a database in which confidential information for message authentication and temporary ID generation confidential information is stored for each wireless terminal, and based on the information, From the message sent from the wireless terminal, confirm whether the data has been tampered with, send the message to the management server,
The data transfer system, wherein the management server receives the message. The storage unit further stores in advance a frame corresponding to data that may be transmitted from the own terminal, calculated in advance based on authentication secret information corresponding to the own terminal,
The wireless terminal selects a frame that matches data to be transmitted from frames preliminarily calculated based on the authentication secret information and stores the selected frame including the data for the upload. and of sending as a message,
The management server or the wireless base station confirms an authenticator stored in a message transmitted from the wireless terminal based on authentication secret information for each wireless terminal. Item 3. The data transfer system according to Item 2. The storage unit further stores in advance a frame corresponding to data that may be transmitted from the terminal, calculated in advance based on the encryption secret information corresponding to the terminal.
The wireless terminal selects a frame that matches data to be transmitted from frames stored in the storage unit and calculated in advance based on the encryption secret information, and uploads the selected frame including the data to the upload send as a message of use,
The said management server or the said wireless base station decodes the message transmitted from the said radio | wireless terminal based on the encryption secret information for every radio | wireless terminal. A data transfer system according to the above. The data transfer system according to any one of claims 1 to 4, wherein the data is 0 bytes, and an ID of the wireless terminal is uploaded. The storage unit can receive a pre-calculated own terminal based on any one of authentication secret information, encryption secret information, message authentication secret information, and temporary ID generation secret information corresponding to the terminal. The data transfer system according to any one of claims 1 to 5, wherein a frame of a responsive data response is stored . The data transfer system according to claim 1, wherein the wireless terminal uploads the message by batch message exchange. The data transfer system according to any one of claims 1 to 6, wherein the wireless terminal uploads the message and confirms delivery of the message by batch message exchange. The storage unit is a ROM.
9. The data transfer system according to claim 1, wherein the data transfer system is a data transfer system. In a data upload method for uploading data from a wireless terminal to a management server via a wireless base station,
The storage unit provided in the wireless terminal corresponds to data that may be transmitted in advance from the own terminal, calculated in advance based on the message authentication secret information and the temporary ID generation secret information corresponding to the own terminal. The frame is remembered,
The wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, and transmits the selected frame containing the data as a message for uploading,
The management server stores in advance a message authentication secret information for each wireless terminal, temporary ID generation secret information in a database, and based on the information in the database, from a message transmitted from the wireless terminal, A data upload method characterized by checking whether data has been tampered with. In a data upload method for uploading data from a wireless terminal to a management server via a wireless base station,
The storage unit provided in the wireless terminal corresponds to data that may be transmitted in advance from the own terminal, calculated in advance based on the message authentication secret information and the temporary ID generation secret information corresponding to the own terminal. The frame is remembered,
The wireless terminal selects the frame to fit the data to be transmitted from the frame stored in the storage unit, and transmits the selected frame containing the data as a message for uploading,
The wireless base station receives the database information from the management server having in advance a database in which confidential information for message authentication and temporary ID generation confidential information is stored for each wireless terminal, and based on the information, Check the data sent from the wireless device for data tampering,
The data upload method, wherein the management server receives the message. The storage unit further stores in advance a frame corresponding to data that may be transmitted from the own terminal, calculated in advance based on authentication secret information corresponding to the own terminal,
The wireless terminal selects a frame that matches data to be transmitted from frames preliminarily calculated based on the authentication secret information and stores the selected frame including the data for the upload. and of sending as a message,
The management server or the radio base station, based on the authentication private information for each wireless terminal, according to claim 10 or claim, characterized in that to check the authenticator stored in the message transmitted from the wireless terminal Item 12. The data upload method according to any one of Items 11 . The storage unit further stores in advance a frame corresponding to data that may be transmitted from the terminal, calculated in advance based on the encryption secret information corresponding to the terminal.
The wireless terminal selects a frame that matches data to be transmitted from frames stored in the storage unit and calculated in advance based on the encryption secret information, and uploads the selected frame including the data to the upload send as a message of use,
The management server or the radio base station, based on the secret information for encryption for each wireless terminal, one of claims 10, wherein decoding the message transmitted from the wireless terminal according to claim 12 The data upload method described in Crab. The data upload method according to any one of claims 10 to 13 , wherein the data is 0 bytes, and the ID of the wireless terminal is uploaded. The storage unit can receive a pre-calculated own terminal based on any one of authentication secret information, encryption secret information, message authentication secret information, and temporary ID generation secret information corresponding to the terminal. The data upload method according to any one of claims 10 to 14 , wherein a frame of a characteristic data response is stored . The data upload method according to any one of claims 10 to 15 , wherein the wireless terminal uploads the message by batch message exchange. The data upload method according to any one of claims 10 to 15 , wherein the wireless terminal uploads the message and confirms delivery of the message by batch message exchange. The storage unit is a ROM.
The data uploading method according to any one of claims 10 to 17, wherein:

Images