Improvement of QR Code Access Control System Based on Lamport Hash Chain

Access control systems are becoming important to prevent leakage of information from businesses and to prevent internal security from being breached. Existing access control systems make use of RFID technology. However, a system using RFID cannot guarantee the safety of messages in the process of sending and receiving data via non-contact wireless communication. Therefore, this study proposes a QR code access control system based on the Lamport hash chain to compensate for addressing the security vulnerability of the RFID system. The proposed system’s protocols show that the system is safe from eavesdropping, replay attack, traffic analysis, location tracking, and spoofing attacks.

[1]  Leslie Lamport,et al.  Password authentication with insecure communication , 1981, CACM.

[2]  Hyotaek Lim,et al.  Online banking authentication system using mobile-OTP with QR-code , 2010, 5th International Conference on Computer Sciences and Convergence Information Technology.

[3]  Ari Juels,et al.  RFID security and privacy: a research survey , 2006, IEEE Journal on Selected Areas in Communications.

[4]  Huang Shengye,et al.  An enhanced security authentication protocol based on hash-lock for low-cost RFID , 2008, 2008 2nd International Conference on Anti-counterfeiting, Security and Identification.

[5]  Sang Ho Lee,et al.  Security and Privacy on Authentication Protocol for Low-cost RFID , 2006, 2006 International Conference on Computational Intelligence and Security.

[6]  Leslie Lamport,et al.  Constructing Digital Signatures from a One Way Function , 2016 .