臺灣博碩士論文加值系統

現今的物聯網(IOT)設備已經被廣泛地應用在日常生活中，例如汽車、工廠設備、掃地機器人、智慧音響、智慧燈具等家用電器，經由嵌入式感測器和API，透過WIFI、3G/4G、LORA、NB-IoT等技術，連上網際網路交換訊息。物聯網可結合其他關鍵技術，例如：大數據管理工具、AI機器學習、雲端計算以及無線射頻識別。物聯網應用的領域非常多，從家庭個人應用、工業生產自動化應用、軍事設備、交通建設、智慧電水錶、智能交通系統、危險產業(例：石油或挖礦)、家居監控系統和產品質量監管系統等。
以智慧家庭的物聯網架構為範例，主要以家用產品控制與自動化為主。應用到的設備，包括防盜門禁鎖、監控器、空調系統、燈光控制、智慧音響等硬體設施，這些設備都能將偵測到的各種資訊，透過WIFI、3G/4G傳到雲端的服務平台，讓使用者可以查看家裡的即時狀況，並藉由電腦、平板、手機控制家裡的各種家電。若家中發生特殊狀況時，將警示訊息透過簡訊、E-mail、語音的方式傳送到使用者的智慧設備上。
在物聯網的環境中，許多應用服務都是透過遠端的方式來做存取與控制。在本論文中，我們設計一個新的遠端使用者登入認證方法，此方法基於幾何屬性來達到低運算量之快速認證。除此之外，我們還結合使用者的生物識別技術來增強安全層級。我們提出的認證方法滿足以下幾點安全性能：使用者具匿名性的、可以抵抗偽造攻擊、抵抗重複攻擊、提供快速的偵測錯誤、抵抗離線的密碼猜測攻擊、抵抗伺服器過載攻擊。最後，使用者可以容易去選擇和修改密碼。

The equipment of Internet of Things (IoT) has been widely used in daily life, such as automobiles, factory equipment, sweeping robots, smart audio, smart lighting and other household appliances. IoT uses embedded sensors and APIs through WIFI, 3G/4G, LORA, NB-IoT and other technologies to exchange information on the Internet. The IoT can combine with other key technologies such as big data management tools, AI machine learning, cloud computing, and RFID. IoT applications include all kinds of areas, such as home personal applications, industrial production automation applications, military equipment, transportation construction, smart water meters, intelligent transportation systems, hazardous industries (e.g., oil or mining), home monitoring systems and product quality supervision system, etc.
Taking the IoT architecture of a smart family as an example, the main behavior of IoT system is the home product control and automation. The system includes many devices such as security door lock, monitor, air conditioning system, lighting control, and smart audio. These devices can transmit all kinds of detected information to the cloud service platform through Wi-Fi and 3G/4G. It allows users to view the real-time situation at home and control various home appliances in the home by computer, tablet and mobile phone. If a special situation occurs in the home, the warning message is transmitted to the users smart device through SMS, E-mail, and voice.
In the IoT environment, many application services are accessed and controlled remotely. In this study, we designed a new remote user login authentication method based on geometric attributes to achieve fast computation with low computational complexity. In addition, we also combine the users biometric technology to enhance the security level. Our proposed authentication method satisfies the following security features: the user is anonymous, can resist forgery attacks, resist repeated attacks, provide fast detection errors, resist offline password guessing attacks, and resist server overload attacks. Finally, the user can easily

中文摘要 I
ABSTRACT II
誌謝 IV
表目錄 VII
圖目錄 VIII
第壹章 簡介 1
第一節 環境簡介 1
第二節 研究動機與目的 1
第三節 論文架構 3
第貳章 背景介紹 4
第一節 使用者的需求 4
第二節 系統安全需求 4
第三節 常見的攻擊方法 6
第叁章 文獻探討 8
第一節WU的方法 8
第二節CHIEN的方法 12
第三節基於幾何屬性的密碼認證方案其弱點及改進 15
第肆章 幾何屬性匿名認證方法 17
第一節 參數說明 17
第二節 註冊階段 19
第三節 登入階段 21
第四節 認證階段 24
第五節 密碼變更階段 26
第六節幾何屬性匿名雙向認證方法 27
第伍章 分析 30
第一節 定義 30
第二節 安全分析 30
第三節 與其他幾何屬性之認證方法比較 32
第四節 運算量分析 33
第陸章 結論 35
參考文獻 36
博碩士論文紙本授權書 38

[1]T. C. Wu,“Remote Login Authentication Scheme Based on a Geometric Approach,”Computer Communications, Vol. 18, No. 12, pp. 959-963, 1995.
[2]M.S.Hwang,“Cryptanalysis of a Remote Login Authentication Scheme,” Computer Communications, Vol. 22, No. 8, pp. 742-744, 1999.
[3]H. Y. Chien, J. K. Jan, and Y. M. Tseng, “A Modified Remote Login Authentication Scheme Based on Geometric Approach,” The Journal of Systems and Software, Vol. 55, No. 3, pp. 287-290, 2001.
[4]C. C. Chang and I. C. Lin, “Cryptanalysis of The Modified Remote Login Authentication Scheme Based on a Geometric Approach,” Institute of Mathematics and Informatics (INFORMATICA), Vol. 16, No. 1, pp. 37-44, 2005.
[5]W. C. Ku, S. T. Chang, H. H. Chen, and M. J. Tsaur, “Weakness and Simple Improvement of a Password Authentication Scheme Based on Geometric Approach,” IEEE Conference on Local Computer Networks (LCN), pp. 472-473, 2005.
[6]C. I. Fan and Y. H. Lin, “Provably Secure Remote Truly Three-Factor Authentication Scheme with Privacy Protection on Biometrics,” IEEE Transactions on Information Forensics and Security, Vol. 4, No. 4, pp.933-945, December 2009.
[7]NIST, U.S. Department of Commerce, “Secure Hash Standard,” U.S. Federal Information Processing Standard (FIPS), August 2002.
[8]Ming-Chin Chuang and Meng Chang Chen, “An Anonymous Multi-Server Authenticated Key Agreement Scheme Based on Trust Computing Using Smart Cards and Biometrics,” Expert Systems with Applications, Vol. 41, No. 1, pp. 1411-1418, March 2014.
[9]Won-il Bae and Jin Kwak, “Smart Card-Based Secure Authentication Protocol in Multi-Server IoT Environment,” Multimedia Tools and Applications, pp. 1-19, December 2017.
[10]AAEON, http://www.aaeon.com/tw/
[11]H. Lin, F.Wen, and C. Du, “An improved anonymous multi-server authenticated key agreement scheme using smart cards and biometrics,” Wireless Pers. Commun., vol. 84, no. 4, pp. 2351-2362, 2015.
[12]D. Mishra, A. K. Das, and S. Mukhopadhyay, “A secure user anonymity preserving biometric-based multi-server authenticated key agreement scheme using smart cards,” Expert Syst. Appl., vol. 41, no. 18, pp. 8129-8143, 2014.
[13]A. G. Reddy, E.-J. Yoon, A. K. Das, V. Odelu, and K.-Y. Yoo, “Design of mutually authenticated key agreement protocol resistant to impersonation attacks for multi-server environment,” IEEE Access, vol. 5, pp. 3622-3639, 2017.
[14]R. Ali and A. K. Pal, “Three-factor-based confidentiality-preserving remote user authentication scheme in multi-server environment,” Arab J. Sci. Eng., vol. 42, no. 8, pp. 3655-3672, 2017.
[15]S. Barman, A. K. Das, D. Samanta, S. Chattopadhyay, J. J. P. C. Rodrigues, and Y. Park, “Provably secure multi-server authentication protocol using fuzzy commitment,” IEEE Access, vol. 6, pp. 38578-38594, 2018.