摘要
文章首先介绍基于SMS的移动电子商务工作模式和安全需求,以此提出了移动电子商务系统的总体安全架构,然后分别从终端接入层、通信链路层、网关协议层、应用服务层四个层面分析了移动电子商务常见的安全问题,最后提出了以动态口令与"挑战"文本相结合的认证方式,以Hash算法实现签名,端到端的SMS移动电子商务安全技术方案。
In this paper, the work mode of mobile e-commerce based on short message service system and its safety needs is given first, on this basis; author put forward the mobile e-commerce security framework. Then, further analysis of the mobile e-commerce security issues from four aspects: terminal access layer, communication link layer, gateway protocol layer and application service layer. Finally, author put forward end-to.end safety solution of mobile e-commerce based on short massage service system, its authentication mode is based on dynamic password and challenge text and its signature uses the hash algorithm.
基金
2010年湖南省教育厅资助科研项目(编号:10C0251)
