摘要
目前在智能卡身份认证中,数据在智能卡与读卡器交互过程中存在着一些安全问题,例如,非法读卡器访问智能卡中的基本数据,读卡器越权访问智能卡中敏感信息等。在现有的安全技术基础上,提出了一种有效的安全方案,旨在保证智能卡与读卡器之间数据交互的安全性,尤其是非法访问的问题,并重点对读卡器物理访问权限的认证、安全报文传输以及读卡器访问高敏感数据权限的认证进行了讨论。
Currently data interaction between smart card and reader raises security problems in the field of smart card identity verification, e.g. an access of illegal reader to information of smart card, and a behavior that exceeds its authority to sensitive data etc. This paper proposed an effective scheme based on present security technology, in order to ensure the security of interaction between smart card and reader, especially the problem of spoof attack. Simultaneously, this approach discusses the issues of physical access authentication, security message transmission, and reader high-sensitive data access.
出处
《计算机安全》
2009年第6期60-62,共3页
Network & Computer Security
基金
国家自然科学基金(60773015)
教育部博士点基金(20060004007)资助
关键词
智能卡
数据交互
物理权限认证
访问权限认证
安全报文传输
Smart Card
Data interaction
Physical Access Authentication
Access Rights Authentication
Security Message Transmission
