OTA系统中的安全机制研究

发布时间：2018-04-09 09:07

本文选题：OTA　切入点：安全机制　出处：《湖南大学》2011年硕士论文

【摘要】：随着STK(SIM TOOL KIT，用户识别应用发展工具，通俗理解是手机SIM卡上的菜单)应用的普及，移动娱乐应用倍受关注。越来越多对于互动和动态服务的呼唤使得OTA(Over the—Air，空中下载)技术应运而生。OTA技术的产生，使得用户只要进行简单操作，就可以按照个人喜好把网络所提供的各种服务应用下载到自己的SIM(Subscriber Identity Module，用户身份识别模块)卡中，实时获取最新品牌及服务信息，并根据自己的意愿定制具体服务．而且还可以动态设置手机上的网络参数：服务提供商则无需在发卡前将所有的服务预先固定地存人卡中．一旦有新服务的开发或更新，在卡片存储空间允许的范围内，这些新的服务就可以被下载或更新到现有的SIM卡中，当用户不再需要某项服务时，也可以从卡中随时删除此项服务；对于运营商而言，OTA系统使其能够与用户保持密切的联系，及时了解用户需求，提升品牌管理和个性化服务。本文首先从移动战略业务手机钱包谈起，对手机钱包业务涉及四个方面的安全技术进行了简单介绍，分别为SIM卡、商户终端、手机终端、应用管理系统。其次，本文重点对应用管理系统中OTA系统平台的安全技术进行了研究。分析了OTA系统的关键技术：即双向身份认证的技术，对其工作原理、工作流程进行了研究和分析，发现了OTA服务器和SIM卡交易或数据传输中，信息有可能被篡改和泄露的风险，针对这个问题本文提出了基于OTA技术的多级动态密钥的身份认证方案。该方案主要是在OTA服务器和SIM卡端建立一套的完整的密钥机制，结合不同的业务处理，分别使用相应的密钥，同时在会话过程中还使用了会话密钥，来保障数据完整性、防篡改、安全性。最后，，本文将基于OTA技术的多级动态密钥的身份认证方案应用移动电子商务手机钱包开通、取消、锁定、解锁等业务流程上，进行综合分析发现基于OTA技术的多级动态密钥的身份认证方案的移动电子商务手机钱包可以保证用户业务使用的安全性、完整性、便利性。
[Abstract]:With the popularity of STK(SIM TOOL kit, the development tool of user identification application, popular understanding is the menu on the mobile phone SIM card, mobile entertainment application has attracted much attention.More and more calls for interactive and dynamic services have led to the emergence of OTA(Over the-Air (aerial download) technology, which allows users to simply operate.It can download all kinds of service applications provided by the network to its own SIM(Subscriber Identity module (user identification module) card according to personal preference, obtain the latest brand and service information in real time, and customize the specific service according to one's own will.Moreover, the network parameters on the mobile phone can be dynamically set: the service provider does not need to store all the services in the card in advance before issuing the card.Once new services are developed or updated, these new services can be downloaded or updated to an existing SIM card to the extent permitted by card storage space, when the user no longer needs a service,This service can also be removed from the card at any time; for operators, the OTA system enables them to maintain close contact with users, understand customer needs in a timely manner, and enhance brand management and personalized services.This paper starts with mobile strategic business mobile wallet, and introduces four aspects of mobile wallet security technology, namely, SIM card, merchant terminal, mobile terminal and application management system.Secondly, this paper focuses on the security technology of OTA platform in the application management system.This paper analyzes the key technology of OTA system, that is, bidirectional identity authentication technology. The working principle and workflow are studied and analyzed. It is found that the information may be tampered with and leaked in the transaction or data transmission between OTA server and SIM card.In order to solve this problem, this paper proposes a multi-level dynamic key authentication scheme based on OTA technology.This scheme mainly establishes a set of complete key mechanism in OTA server and SIM card terminal, combines different business processing, uses the corresponding key separately, at the same time also uses the session key in the conversation process, to safeguard the data integrity.Tamper proof, security.Finally, this paper applies the multi-level dynamic key authentication scheme based on OTA technology to open, cancel, lock, unlock and other business processes of mobile e-commerce mobile phone wallet.It is found that the mobile electronic commerce mobile phone wallet based on OTA technology can ensure the security, integrity and convenience of the user service.
【学位授予单位】：湖南大学
【学位级别】：硕士
【学位授予年份】：2011
【分类号】：TN919.5;TP315

【参考文献】