摘要
SET是一个用于信用卡在线支付的安全规范,其交易模型由持卡人、商家、收单行、发卡行等各方组成。持卡人的个人信息(如卡号、密码、订单信息)可能被有关的参与方记录、收集、分析和滥用,因此对持卡人的隐私保护是十分重要的。本文分析了SET对持卡人隐私保护的不足,并提出了SET的改进方案,减少了个人隐私被泄露的风险。
SET is a security paradigm for on-time credit payments whose transaction model is composed of cardholder,merchant,acquirer,issuer,etc.Cardholders' personal information (e.g.credit number,password,order information) could be recorded,gathered,analyzed and misused by related parties. Therefore it is an important issue to protect cardholers' privacy. The paper first analyzes the shortage of privacy protection on the original SET protocol,and then proposes a revision of SET protocol which reduces the risk of disclosing privacy information.
出处
《计算机应用》
CSCD
北大核心
2004年第5期50-52,共3页
journal of Computer Applications
