TW200941993A - A RFID systems conformation to EPC class 1 generation 2 standards ownership transfer scheme - Google Patents

Abstract

In, this patent, we first based on APF (Authentication Processing Framework) to propose a mutual authentication protocol, which conforms the EPCglobal class 1 generation 2 standards between readers and tags. Recently, RFID system has become a popular application. In spite of many RFID applications for ownership transfer are appeared in recent literatures. Those applications do not conform the EPCglobal class 1 generation 2 standards. Therefore, we are interested to propose an ownership transfer protocol which conforms the EPCglobal class 1 generation 2 standards and bases on X. 509 certificate. We involve the certificate concept in our patent and reduce the computation complexity between readers and tags. We can complete the following goals: (1) The mutual authentication between readers and tags. (2) Assure the personal privacy. (3) Conforms the EPCglobal class 1 generation 2 standards. (4) Against various attack. We only use the lightweight operation such that the backend database loading can be reduced, lighten the tags' computation, and against the various attacks.

Description

200941993 IX. Description of the invention: [Technical field to which the invention pertains] This July is a related party; a digital content protection method based on mobile devices based on mobile devices in the enterprise or organization' through appropriate authorization and mobile devices Protecting the hardware and software mechanism, the enterprise or organization insider can access the digital content inside the enterprise or organization in any place, and the digital content inside the enterprise or organization can also be protected by security. [Prior Art] ❹

In recent years, the rise of radio frequency identification (RFID) technology (IV) has received considerable attention. Due to the considerable business opportunities brought by RFm, the world is not actively developing this application. According to estimates by market research firm Am Research, the annual output growth rate of the lamp will be more than 49%, and the output value in 2012 is estimated to be 57.2 billion US dollars, which makes the software and hardware account for about 43 billion US dollars. The industry has $14.2 billion; future applications include global supply chain management, mobile commerce, health care and transportation, and defense and trade channel security. Because RFID has always been called; one of the ten important technologies of this century, it is expected that in the future RFID electronic tags will be read/write/memory, from the end of the object to the information storage and many operations in the past ten, because of the application of RFID And become more automated, enter a + change the human life style. Although the rise of RFID system technology brings convenience, there are also many security concerns. The object of the present invention is to firstly explore an authentication mechanism conforming to the International Product Bar Code Standards (EPCglobal Class 1 Generation 2) standard through the research of information security related technology in 200941993, together with a management agreement on property rights transfer. I hope to build a secure Rfid system. In the past, due to the lack of international standards and operational specifications, the application of RFID was limited to the use of internal enterprises, and its actual benefits were relatively limited. The application of RFID in the future is being promoted by the international commodity bar code standards organization. Coffee (5) is now the leading standard for RFID emerging applications and the leader of promotion. Therefore, Epcgk>bai's outbound network application system has an important position. The following is a list of the internal coffee network architecture and its functions: (1) Electronic product code (Electr〇niC PrQduct c〇de, Epc). It is identifiable. For the identification number of a specific object, please refer to the figure--the EPC is a way of showing the position of a ship. Style, such as electronic product code

Example 10: vtnsion Header -* "τ a αα月 ij 仰 is the EPC version format, can be public # Λ Τ into 64, 96, 256-bit three blessing. The purpose of using 64-bit encoding is to reduce the Tag production cost in order to reduce the amount of Tag storage; the μ bit 缢 目 丨, 丨 * w 疋 encoding is to achieve a balance between performance and cost; If the object of the object is provided with an identifier, it must be encoded with at least 256 bits. 200941993

Domain Manager: Identify product manufacturer 12. 0 b j e c t C 1 a s s • Identify the model number 1 of the product.

Serial Number : The unique serial number of the identified product. (2) Electronic tag (Tag) and reader (Reader): Each Eg embedded in the RFID chip stores an Epc; and the reader reads the read identification number to the intermediary software application system. Take the corresponding product news. (3) EPC mediation software (Middleware): EPC mediation software processing RF ID reader data reading, and the company's existing application system data exchange, and according to the set business logic to handle each read event (reading event ), as well as advanced analysis and application. The mediation software and the reminder function that should be induced by the instant read event, the management of the read data and the EPC Information Service (EPC-IS), and the communication between the existing enterprise application systems' play the role of rF〗 D The role of mediation between the application and the application. A common application interface (Application Interf ace) is provided from the application side using the mediation software, which can connect to the RF ID reader and read the RF ID tag data. In this way, even if the database software or the back-end application storing the RFID tag information is added or replaced by another software, or the type of the read-write RF 10 code reader is increased, etc., the application end can be processed without modification. , eliminating the complicated maintenance problems of many-to-many links. 8 200941993 (4) Object name resolution service (〇bjectlve Naming Serviee, ONS): ‘EPG tags require a special network structure for an open, global network of tracking items. Because only the electronic products are stored in the label. • The code computer also needs some methods for matching the electronic product code to the product information. This role is handled by the object name resolution service (〇bject “Μ

SerV1Ce, 0NS) to take responsibility. Therefore, the main function of 〇NS is to provide Φ EPC code query service, which is responsible for the EPC code corresponding to the path of product information. When we are interested in a certain product, we can ask ONS according to the EPC code on the product. Will tell you where the information for this item is placed. 〇NS is designed in a DNS manner and is a hierarchical architecture. In the research center of Verisign (a US-listed company that specializes in multiple network-based services), it has the responsibility of managing the global coordinating 0NS (R〇〇t 〇NS); in different continents, there will also be R in all continents. 〇〇t 〇NS. The R〇〇t project in Taiwan is managed by Verisign Commission Acer, which is responsible for the regional 〇NS (L〇cal 〇NS) registration service for all commodity manufacturers. (5) EPC Inf〇rmati〇n Service (EPC-IS): The role played by IS is in the data storage in the epc Network. All EPC-related information is placed in Epc-IS. In addition to the function of the material storage, it also provides the data sharing function. From the point of view of the information system 200941993, EPC_IS is not necessarily an entity data. The library is mainly connected to each heterogeneous database entity through an Adapter. The real/, EPC-related product information is placed in these entity databases. EPC-is can be compared to a variety of web pages that provide information in the Internet infrastructure. (6) Electronic product code dynamic data tracking and query service (Epc

Discovery Service, EPC-DS): φ The circulation information of the manufacturer's items is recorded on the EPC-IS 剖bservation Profile. In the Epc network (EPC-DS is designed to help manufacturers to send dynamic information). Can share with each other. EPC-DS knows that the dynamic information of an EPC code is stored in those Epc-Is. Its location is similar to the search engine on the Internet, and epc-ds integrates the EPC data recorded on each EPC-IS. EPC object 'Track & Trace' tracking, providing multi-EPC-IS query service with continuous product information across the entire supply chain. 凊 Referring to Figure 1, the following example shows how EPCN etw 〇rk To record the information of the product and how to query the information of the product, according to

The white paper "The EPC Network: Enhancing the Supply Chain" published by Verisign briefly describes the steps of the EPC Network. 1. The merchandise manufacturer 21 embeds the RFID tag written in the EPC into the quotation 20 of the 200941993. At this time, the ρρρ p bin τ EPC is pre-registered on 〇Ns 2ιι. The relative information of the commodity 20, such as the manufacturing cycle, the effective flood season, and the flow in the entire logistics supply chain, will be stored in the commodity manufacturer's heart EPC-IS t. (When EPC]S has the action of updating the product information, it will register with ONS 211 as a follow-up product.) 2 · Item 2 0 will be resold to the general channel store 23 through the logistics supply 4 chain 22 Sold. 3. When a .u point in the supply chain is reached, the EPC of item 20 will be taken, and recorded in the path. Day 7 is in. When the EPC-IS of Pathway 23 adds a new item 2, it will be registered with ONS 231 as a follow-up product tracking. 4. When the average consumer 24 wants to 杳咱 要 要 珣 珣 珣 珣 \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ \ I I U U U U U U U U U U U U U U U U Store the EPC-IS position of the manufacturer of the goods, and finally take the complete product information from each stored product information wc-is. 0 From the above description, it can be seen that the details of the business αϋ are stored in In the corpse US, the label itself has only the EPC code of the quotient port, and the 0NS records the URL path of the 乂 乂 for the EPC code of the group to obtain detailed information, that is, the address of the EPC-IS. And the ONS of the f μ hall is managed at a higher level, the Root NS NS 25, the D face Μ v, the information of each EPC-IS, the original product can be obtained in 200941993 Information (such as the manufacturing period, effective period) (including the goods through the detailed merchandise flow, such as where you can also find the goods transfer center, dealers, and will be shipped). Two, this, you have to wait for the Epc code of the label itself, you can understand the detailed information of the tongue Xuan products, Shi Wei · her sergeant's how to control the official's access to the label's £PC code naturally becomes an important issue. . SUMMARY OF THE INVENTION The purpose of this month is to provide an RF ID system that complies with the EPC second-generation first-class property rights transfer method, which can achieve the following requirements: (1) interactive authentication; (2) ensuring personal privacy; ) Coordination Valley meets the industry standard of f:PCgi〇bai Class 丨Generati〇n 2;) to stop all kinds of attacks, use the concept of interactive authentication to ensure label spears. Access between the coders is safe, and the method of the present invention also reduces the burden on the database and smoothly transfers the objects to the new owner to ensure the security of the transaction. The invention is based on the shortcomings of the conventional technology, and the wireless frequency identification system ^t 'y, '' non-contact read and write characteristics cause system security concerns. - The words of the ancient + τ text will leak the information inside to the neighboring readers, and threaten the privacy of the users. Therefore, the present invention through the information security 12 200941993 all-in-one interactive authentication concept, sighs a safe access ring and the reader must be registered with the data brother, the display of the library, the tag can know the code reader

Legally, the coder can also know that the "D" indicates that Dai Dai has been registered, the legal registration can be carried out by the servant, and the right v is also the privacy of the (4) and the system. However, for how to use the greedy security technology to control the access rights of the tags, after the bamboo shoots, I have seen these technologies, and most of them have problems: m

Some methods require a public key encryption operation, not the standard specification of EPCglobal Class 1 Generation 2. The label calculation cost is too high. 3 · The database reads labels too much. 4. User location privacy protection is insufficient. 5 · Identity code anonymization is not enough. ® 6 • The attack protection of the easy-to-replicate tag and the spoofed code reader is insufficient. Resist the resistance! The & service (Deniai serviCe, DoS) has insufficient attack capabilities. It is worth mentioning that most of the methods proposed in the current literature assume that RFID tags are smart tags, and the definition of smart RF ID tags is more clearly defined as follows: Visibility of 13 200941993 RFID Tags and RFID Readers: Under the operating framework of the entire RFID system, it must be possible to define the status of the information on the electronic label that can be read, such as The data can be read permanently or which data is protected. This is done when the electronic tag is broken, and the county is clearly defined, and the electronic tags that the reader is authorized to read are also clearly defined. And 2* RFID electronic tag access method Uccess ❿ Modification 〇f RFID Tag Data): There must be appropriate planning and design, that is, the method by which the owner of the electronic tag can legally access the electronic tag. 3. Adopt appropriate privacy protection mechanism (Usage

Privacy-Enhancing Technologies): 所有权 The ownership of electronic tags must have a set of operational mechanisms that allow all rights to be transferred reasonably, and the ownership of the most important key e-keys to determine the access restrictions of electronic tag content. 4. Confidentiality of personal data (c〇nfiden y UI rersona 1

Data): Ding An Any personal data on the RFID electronic tag must be fully encrypted. However, witnessing the application of general and low-cost RFID tags is not the so-called smart tag '' ς ur + T » c ' are still in the str art Tag (this type of design 14 200941993 ), since the wafer on the current RFID tag has. 3 The interesting series is about 50 to 5000, and most of them are used to do *, shatter and transfer functions. The number of logic gates that can do security is very limited, no. There can be very complicated calculations on the current RFID tags. The Z RFID tags are regarded as "SmartTag," and it is difficult to operate on the current actual situation. Therefore, the present invention proposes to propose a kind of conformity (4). The property transfer agreement of c 1 ass 1 enables the following methods to achieve the following objectives through the anti-counterfeiting mechanism of the interactive verification method: 1 • It can be used for low-cost, limited computing capabilities of 丨D tags. Without complicated operations, the access speed can be very fast. It can ensure the integrity of the RFID tag data. 4. It can prevent the RFID tag from being copied in large quantities. ° /, the concept of ownership, so that the goods can be transferred to him. 6. Prevent illegal tag access 7. Prevent fraudulent tag attacks on the code reader, 8. Prevent man-in-the-middle attacks 9. Prevent user-friendly privacy tracking attacks 1〇. Prevent user location privacy tracking attacks. To the standard iron and Jing Shimin mouth weaving code between the two to identify fi.. 1 2. Comply with gpp Γ ass 1 Generation 2 standard. 15 200941993 1 3. Reduce the burden of database reading. Similar products are proposed The use of digital vouchers and the construction of a secure focus of the present invention is to study a suitable solution, the technology of RF ID, through a technology trading platform for product property rights transfer, without seeing the imitation. [Embodiment] Please refer to FIG. 3, the method proposed by the present invention is divided into four stages: 1 · registration stage; 2. interactive authentication stage; 3 · property rights transfer request stage; 4. update server property rights transfer stage. The invention will address this architectural flow for these four phases. First, according to the requirements, the present invention first introduces some symbols that will be used in the proposed method: % is a temporary block; & is a key If the tag is registered with the database, they will get (^). ❿ ® : Mutual exclusion or gate operation m〇: Random random number generated by the reader. (4) Voucher, when the user purchases the object, they have the certificate.

Cer/A. IDX's special identity. R'' 7th reader code. A: Old label owner. 16 200941993 Ο ❹ Β : The new owner of the standard. Msg,.eg .. book information. Sigx: Especially the signature value. Factory V (10): Use K AA, the public money to verify the message W. Ex{m): Encrypt the message w using the JT ήίι /\ scoop wheel. Dx{m): Decode the message W with a special record. Sx(m): Sign the message m with a special private key. CRC(X)- is a painful 'Cyclic Redundancy Check' operation. EPCX: The electronic product code of the U.S. label. (1) The registration phase is divided into two parts: the label and database registration, and the information flow of the reader and the database. The following describes the process of the registration phase, as well as the establishment of the initial value and initial value parameters, and please refer to Figure 4 and Figure 5 together: Step 1: Each tag has a unique 卯. Value, when a tag 41 reaches the database 4 2 ^ π * ^ booklet, they will agree on a lot of depreciation and gold ruler;., so that the application of this. For example, when the i-tag 41 is registered with the database 42, the EPCn value of the capital and the bank 42 is notified, and the database 4 2 returns the corresponding w, value and ▲ key. Among them, a 7V, the value will only correspond to ~ a unique key owed, f 兮 - a reading machine 5 1 also has multiple groups Μ 17 200941993 value and key ruler, 'so in the standard 41 to the database 4 _ At the same time of registration, it also represents this #sign 41 will only be read by some. 0 . ^ Read for 51. Step Z: The parent one of the code readers 51 has a code reader 51 that must register with the database 42 before the value of the IDR1 of the At Λ spoon. It is preferable to register the tag 41 after taking the nn. Although a certain item state 51 is sent to the poor library 42, they will agree to read the value of the label 41 and the key. For example, when the codec 51 registers with the database 4 2, it informs the database 4 2 its I j ·) iLlRl value, and the database 42 returns the corresponding value, key and key. Therefore, the Money®® “Bei Ma State 51 can only read the tag 41 with the same 'value and key fire', and from the code reader 51 to the database 42, it also defines the t-bike code. The authority of the benefit 51 (for example, the readable label 41). (2) The interactive authentication stage must perform the interactive authentication step before the label 4 丨 and the code reader 51 communicate, so that both the tag 41 and the code reader 51 It can be judged whether each other is a legitimate device. The present invention only uses the random number generator, mutual exclusion or gate operation and crc function in accordance with the £PCglobal class i Generat i on 2 standard to achieve the interactive authentication function of the tag and the reader. Please refer to Figure 6. The following is the flow of the interactive authentication phase proposed by the present invention: 6-1 · When the reader accesses the tag, the reader will calculate CRCINieRND) 〇 6-2. Request message from call, ten call and like 1 to mark 18 200941993

6-3. When the tag receives the message from the reader, it will be judged by the presence of 乂 in the memory. CRC[N’RND^CRCXN® RND). 6-4. If the above equation is true, the label will generate a new chaotic value and calculate the Y and Z parameter values. Ο 6-5. Calculation Bu (Heart '10 and 5. 6-6. Calculate z = a?c (view. 6-7· The label will transmit (like 仏(10)' r,z) to the reader. 6- 8. Once the tag reply message is received, the reader uses the function to calculate and compare Z 9 Z = CRC (RND, ® N, Y).

CRC

9 _ Assume that the equation is established, read Ma Cry, Qiaoyi 砘 uses the traces obtained from the label along the still and r to calculate; rape mouth station & w 冤 product code £pc^ EPCd®RNDnew®Y. The above is the design of the invention conforms to the EpCgl〇bai class i GeneaUonS standard protocol (the key transmission between the tag and the reader is only protected by coffee, mutual exclusion or arithmetic or gold input), which satisfies the standard and read A preliminary blueprint for inter-coder cross-certification requirements. In the above agreement, the interaction certification between the label and the read-end device conforming to the EpCgl〇bal nass i Generation 2 standard was discussed. 19 200941993, the present invention is interested in further embedding the RFID tag into the product package for verification. The authenticity of the product. After the cross-certification between the reader and the tag, the owner's property transfer agreement is entered. It is believed that the digital signature mechanism using asymmetric cryptography plus hash functions ensures that the information in the R F ID tag is queen and is in the RFID tag and reader.

Add the authentication agreement (A, UThentlcatlon Protocol) to achieve effective prevention of counterfeit and illegal reading. If the user buys a certain product, the new certificate issued by the merchant can be obtained. The goal. (3) Stage of transfer of property rights: Assuming that user A wants to transfer the property rights of the tag to the user β, A must make a property transfer request message and transmit the old voucher and the agreed transaction signature value to B. ❹ 4 Please refer to Figure 7. The steps are as follows: When the user wants to use the user's α 聋 聋 产品 product X, use Α 百 百 百 百 百 Γ h h h h h h h / / / / ( ( ( ( ( ( ( ( ( ( ( ( The hash peak of the % of the product owner's certificate stored in the server database is transferred to User B, and a property transfer message is created. User A first signs the message using its own private key: sga = SA{Cert x , id b) User A encrypts the public key pair of β and obtains 20 200941993 (4) Updates the ownership transfer phase of the server: The new tag owner B will use the old voucher of the product together with himself and The old label owner A's consent transaction signature value is transmitted to the backend server through the barcode reader, and the server re-issues the new certificate to the new label owner B after verifying the signature value and the old certificate. The database is updated and the reader rewrites the value of the new order's epoch function to the new tag. Please refer to Figure 8. The following is a description of the process of changing the property rights of the server at the following stage: I Step 8-1: User B uses his own key to solve the problem of 5; Step 8-2: User B uses A's public key to verify the correctness of VA (SGa) = {Cert x, IDB.) Step 8-3: The user 签 uses his own private key to sign the message. · SGb = SB (IDA, IDB, Msgreg) φ Step 8-4: The user then uses the public key of the server S to verify the correctness of the credential CerrA, and determines whether the stored / / (CerQ) is correct. Step 8-5: If the verification is correct, User B will send the message (//^, //^, (^/^, ^^: 仏 仏 仏 ^ to the reader of the servant.) Step 8 - 6: The reader reads Ci and (IDA, IDB, Msgreg, SGB, SGA, Certxyi, back % {N^EPCx), { K^Cerix) in the interactive authentication phase, that is, transfer (//1⁄2,乂®, rule ten, 5^, see 4) to the server. 21 200941993 Step 8-7: The server receives the message and first verifies the signature of B with user B's public key. 7 VB (SGB) , IDb , Msgreg ) Step 8 - 8 : If correct, the server will be verified by A's public certificate - A's signature VA{SGA)l{EPCx, IDB), Step 8-9: Assume that the verification is correct 'Server Just follow the database @ table to find the corresponding W, A ") and get the sand and the voucher (: 咐 / £PCA- = JV, _ ten JV,.' '

Certx ^K^Certx®!^,, Step 8 - 1 0 : The server verifies the correctness of the voucher with its own public bus, Step 8-1 1 : After the credential CerQ is verified correctly, the server reissues the new credential cwty And the new owner of the τ^χ update in the database is B. ❹ Step 8 — 1 2 : Server calculation (CVQ, ten AV·) and 枞C state j). Step 8-13: The server transmits to the reader. Step 8 -1 4. After the reader receives the message, write γα, Ύ) to ~. Step 8 -1 5 · And transfer (Ce々, 医广) to β. Step 8-16: User B calculates C coffee x'=c milk after storing it in the memory, and obtains a new certificate Cm „. According to the foregoing, the present invention can achieve the following items 22 200941993 Target: (1) Can prevent illegal tag access. (2) Can prevent fake tags from attacking the code reader. ' (3) It can prevent man-in-the-middle attacks. (4) This prevents attacks from tracking user preferences. (5) It can prevent the attack from tracking the privacy of the user's location. (6) The interactive authentication is achieved between the sign and the item code. ❹ )^ The monthly standard meets the industrial standard agreement of EPCg 1 oba 1 C1 ass 1 Generation 2. (8) Complete the transfer of property rights (9) It can be used for rf丨D tags with low cost and limited computing power. (1 0) Reduce the burden of data inventory. The RFID system provided by the present invention complies with the second-generation first-class weight transfer method of Epc. Compared with other conventional technologies, it has the following advantages: 1. Construction - a property transfer agreement with interactive certification and EpCgl〇bal Class 1 Genera t! 〇n 2 standard, which greatly reduces the cost of label computing. Not only solve current tags The shortcomings of insufficient computing power, and also proposed a solution that meets the Epcgl〇bal Class 1 Generation 2 standard production transfer, and no similar products have been proposed in the imitation room. 2 · The invention is based on RF ID technology. In addition, the integrated cryptography implementation of Ping 23 200941993 anti-counterfeiting, property rights transfer technology in stages, the implementation of the second, ''spoon sweat, help to improve the development of domestic RF ID and cryptography integration. At the same time in this property rights Under the transfer authorization mode, the messenger can secure the security of the information security technology after the purchase of the goods, which is the largest special method of the method of the present invention. The embodiments are not intended to limit the scope of the invention, and the equivalent implementations or modifications of the art are intended to be included in the scope of the present disclosure. Brief description of the drawings] Figure - EPC code format analysis chart; The picture shows the operation flow chart of the E pc network; ® is the flow chart of the registration stage of the & sign-in database; Figure 2 is the flow chart of the registration stage of the code reader to the database. The flow chart of the segment; ❹ hope to protect the under-color by means of anti-counterfeiting technology. Month, the patent map of the invention: a flow chart for the transfer of property rights requirements; and: updating the flow of property rights at the server end Main component symbol description] 10 electronic product code example 11 identification coding format 12 identification product manufacturer 13 identification product identification type 14 identification product unique serial number 24 200941993

20 products 21 manufacturers 211 0NS 22 logistics supply chain 23 channel stores 231 0NS 24 consumers 241 ONS 25 Root 0NS 41 tags 42 database 51 code reader

25

Claims (1)

200941993 'Shenqing Patent Fanyuan 1. Ο 朴朴 I Π 糸 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合 符合'Original registration of the database, so that it can only register the specific code reader Lu, , ± and a corresponding reader to the database, so that the reading 3 § β + 卜 D Ύ read the specific label The second stage, the parental mutual authentication phase: in the label and read. . Before the communication, the _D thief must perform the interactive authentication step, the total, and the use of the EPCglobal Class 1 Generation 2 standard, the 卩 Λ 机 数 产生 generator, mutexes or gate operations and CRC function, so that the standard Weng 4 _ guilty and the coder can judge whether each other is a legitimate device. The interactive authentication function of the gentleman ^ ^ sign and the code reader; the third order of the brother and the _ and the stage of the transfer of property rights: when using When transferring the property rights of the label to the user B, A must make the I ^ " table for the property transfer request message, and transfer the old certificate and the agreed and easy sign value to β; the fourth order JR $ and ' Update the server-side property transfer phase·· The new tag owner B passes the product voucher along with the signature of the owner and the old tag owner A's consent transaction to the back-end server through the reader. The server has verified After signing the value and the old voucher, re-examine the X new voucher to the new tag owner B and update the database. Read 26 200941993 2· 3· The coder rewrites the value of the new voucher function, new label. For example, the RFR of the first part of the patent application scope ("RFID system conforms to the second-generation first-class property rights transfer method of EPC, 1 in the eight mains in the main volume stage, each one: weaving has a unique electronic" Product code, h (4) When the data is in the book, the database will return the corresponding wise time group and gold input 'and the temporary word group only corresponds to one key, so that the standard can only be specified by certain Read by the code reader. As described in the second paragraph of the patent application scope, the RFID system symbol A Epc second-generation first-class property rights transfer method, ... registration order:, each: f code has a - ♦ - The reader's identity is obstructed. When the code is registered with the database, the database will return the corresponding temporary block and key, so that the reader can only read the same temporary block and The key of the key. 4' The RF ID system described in item 1 of the patent application scope complies with the EPC second-generation first-class property rights transfer method. In the registration phase, when the reading code is registered as data, the code reader is defined. Read permission. 27 1 _ As stated in the scope of patent application, the RFID system complies with the EPC second-generation first-class property transfer method, in which the interactive authentication phase further includes: Step 1 • When the reader wants to carry out the label When accessing, the 'code reader will be 200941993 6. Send a request message to the label; Step 2. When the label receives the message from the reader, the label 'y is used to judge the data in the memory. The correctness of the message 'If the label K will generate a new random value and parameters are sent back to the reader; /骒3, after receiving the reply message of the label, the reader will use the CRC force to count and reply to the message. If the information is correct, calculate the product identification number of the label. The RF1D system described in item 1 of the patent scope of Shenyue complies with the EPC second-generation type of property transfer method, in which the user does not need to purchase the product when the user B wants to purchase the product from the user A. The product label is handed over to the user β, @ when making the property transfer message, the user first signs the message with its own private key, then encrypts the message with the B record, and then transmits the message to the user. ❹ 7. B ° The RFID system described in item 6 of the scope of patent application complies with the Epc second-generation first-class property transfer method, in which the tag contains the hash of the certificate of the product owner A recorded on the server database side. Function value. 8. If the RF ID system described in item 1 of the patent application meets the first-generation first-class property rights transfer method, in which the property transfer request phase enters the stage of property rights transfer at the update server, the identity of user A becomes 28 200941993. The old tag owner A, and the identity of user B becomes the new tag owner B. 9. The RFID system described in item 1 of the patent application scope complies with the EPC second generation first class property rights transfer method, wherein the update step at the server end includes the following steps: / μ 1 . User B Decrypt the transfer message with its own key.) ❹ ❹ 'User β uses the public key of the user to verify the correctness, and then uses B to sign the message with its own private key, and then use the server S's a. Jing to verify the correctness of the voucher, if the verification is correct, the user β will send the message to the reader of the server; Step 2: After reading the message in the interactive authentication phase, the reader will transfer the result to the sub-calculation Server side; 2 step 3 _ server receives the message first to use the public key of 纟Β to check the signature of 'β'. If it is correct, the server then checks the signature of the Α7 ,, assuming verification Correctly, the feeding device will find the corresponding value according to the database table and calculate it. Feng Shangjing Junyi uses his public key to verify the correctness of Xincheng. The server has a new certificate and then counts the Yahoo. The new owner of the database update is B Then, the server transmits the updated message to the reader; Step 4: The reader sends the message to B after receiving the message; writes the message to the tag value and 29 200941993 Step 5: User B saves The temporary block in the memory calculates the message and gets a new voucher. 30