摘要
基于CoSE(cloud of secure elements)概念,提出一个NFC安全支付协议。根据CoSE架构部署一个可信云支付平台,使用虚拟SE替代硬件安全模块,所有交易项都由云支付平台完成;商户的POS终端充当消费者和云支付平台的通信桥梁,消费者的NFC设备和商户的POS终端通过射频场连接,消费者NFC设备不需要数据网络即可完成支付流程;交易过程中通过对交易双方身份信息与随机数进行hash运算,实现正常交易匿名性。通过安全性分析及实验验证了该协议的正确性和安全性。
Based on the concept of cloud of secure elements (CoSE) , a NFC secure payment protocol was proposed According to the CoSE architecture, a trusted cloud payment platform that used virtual SEs instead of hardware security modules was de-ployed, all transactions were completed through the cloud payment platform. Merchant's POS terminal was taken as a commu-nication bridge between customer and cloud payment platform, customer's NFC device and merchant's POS terminal were con-nected through radio frequency field, and customer^ s NFC devices could complete the payment process without data network. In the process of transaction, the identity information of two parties and a random number were operated using hash arithmetic to realize the anonymity of the normal transaction. Through security analysis and experiments? the correctness and security of the presented protocol was demonstrated
出处
《计算机工程与设计》
北大核心
2017年第9期2363-2368,共6页
Computer Engineering and Design
基金
国家自然科学基金项目(61572144)
广东省自然科学基金项目(2014A030313517)
广东省科技计划基金项目(2016B090918125
2015B010128014)
关键词
近场通信
安全支付
半离线支付
匿名性
CoSE架构
near field communication
security payments
hemi-offline payments protocol
anonymity
cloud of secure ele-ments