摘要
为解决金融领域银企直连场景中上云企业无法使用传统安全硬件的问题,基于GB/T 35275—2017《信息安全技术SM2密码算法加密签名消息语法规范》等SM系列密码算法国家标准,结合密钥分散和协同签名技术,提出了无需硬件安全设备的银企直连方案,以软件的形态为交易提供真实性、机密性、完整性的保护,实现了轻量化、低成本的银企直连。
In order to solve the problem in financial field that cloud-based enterprises cannot use traditional security hardware in the bank-enterprise interconnection scenario,this paper proposes a bank-enterprise interconnection scheme without hardware security devices based on the SM series cryptographic algorithm national standards such as GB/T 35275—2017"Information security technology-SM2 cryptographic algorithm encrypted signature message syntax specification",combined with key distribution and collaborative signature technology.It provides authenticity,confidentiality and integrity protection for transactions in the form of software,achieving lightweight and low-cost bankenterprise interconnection.
出处
《信息技术与标准化》
2024年第S01期31-33,99,共4页
Information Technology & Standardization
关键词
网络安全
标准应用
密钥分散
协同签名
金融安全交易
银企直连
network security
standard application
key distribution
collaborative signature
finance secure transactions
bank-enterprise interconnection
