摘要
在智能卡进行多行业应用时,存在跨行业数据访问、数据泄露以及破坏等安全问题。针对此类问题,结合当前智能卡安全机制和跨行业多应用的文件系统特征,提出了对多应用智能卡数据完整性校验的一种方法。该方法构建了一个文件加密与访问控制模型,其主要功能包括保障各行业应用系统的独立性,实现数据的访问控制和密钥的安全存储等。最后分析并验证了该安全模型的可行性与安全性。该方案在陕西省社会公共服务卡验证平台上得到了验证,提高了卡内数据信息的安全级别。
There are exist some security issues in the Multi-application of smart card,such as cross-industry data access, data leak and damage .For such security issues, we have combined with the current smart card security mechanism and characteristics of cross-industry application file system , put forward a method of the application of smart card data integrity check .The method put forward a security model of file encryption and access control , and its main functions include ensuring the independence of industry application system, implementing the data access control and storage the key in safety, etc. Finally ,we analysis and verify the feasibility and security of this model.The scheme has been verified in the public service in Shaanxi province card verification platform , improving the safety level of the data information in the card .
出处
《电视技术》
北大核心
2015年第5期53-56,69,共5页
Video Engineering
基金
陕西省科学技术研究发展计划项目(2013k06-14)
西安邮电大学青年教师科研基金项目(ZL2013-39)
关键词
多应用智能卡
数据完整性
安全管理器
密钥映射表
Multi-application of smart card
Data integrity
Safety manager
Key mapping table