NFC安全认证方案的研究
发布时间:2019-06-08 09:17
【摘要】:近距离无线通讯技术(NFC)是由射频识别技术(RFID)和互连技术整合演化而来,该技术作为一种短距离、高频率的通讯技术能够很好的适用于电子票券、小额支付以及门禁控制等功能,从而广泛的应用于金融行业、交通传输、路禁管制等领域。然而,虽然该技术正在当前时代逐渐地普及使用,但所面对的安全问题、隐私问题却一直制约着NFC技术进一步的推广,从而一套有效的NFC安全认证方案亟待被提出。因此,本文针对NFC技术和移动电子票券系统所面临的安全问题以及实用性问题,尤其是对于安全需求较高的火车票、飞机票等场景,提出了一套电子票券NFC安全支付及验证系统,并从电子票券的NFC支付方案、离线电子票券安全验证方案以及电子票券的设计三个方面来进行阐述。本文的主要的工作详细如下阐述:(1)针对移动电子票券系统购票环节中所遇到的安全问题,提出了一种电子票券NFC支付方案。该方案采用了对称加密等技术并引入了一定时间内交易票券的次数作为参数,不仅能够很好的解决NFC和电子购票所面临的安全与隐私问题,而且能够在一定程度上抑制“秒杀退票”恶意票券交易行为的出现。此外,购票环节中采用NFC支付方式,充分利用其读取速度快、近场安全性的特性,十分适用于火车票、飞机票等人流量大、安全需求较高的场景。通过引入S.Kungpisdan等人所提出的会话密钥的离线生成与分发技术提供更高级别的安全性能,具有一定的轻量性优势。(2)针对移动电子票券系统验票环节中所遇到的问题,提出了一种离线的电子票券验证方案。该方案一方面使用会话密钥的离线生成与分发技术,离线生成一组会话密钥,使得方案能够很好地解决NFC的安全问题,同时实现票券有效性的认证。另一方面引入了IC序列号参数解决“票券克隆”问题。此外,验票环节中采用离线的认证方式,很大程度上提升了识别、认证效率,带来良好的用户体验。(3)针对移动电子票券本身的安全问题,设计了一种电子票券方案。考虑到该场景下对于电子票较高的安全性需求,将电子票券信息分为两部分,内容部分由对称密钥加密,安全部分进行哈希计算,确保了电子票券的不可否认、不可重用、非匿名等安全特性,从而更好地促进了移动电子票券系统的广泛应用。
[Abstract]:Close range wireless communication technology (NFC) is evolved from the integration of radio frequency identification technology (RFID) and interconnection technology. as a short distance and high frequency communication technology, this technology can be well applied to electronic tickets. Micropayment and access control functions, so it is widely used in financial industry, traffic transmission, road control and other fields. However, although this technology is gradually popularized in the current era, the security problems and privacy issues have been restricting the further promotion of NFC technology, so an effective NFC security authentication scheme needs to be put forward urgently. Therefore, this paper aims at the security problems and practical problems faced by NFC technology and mobile electronic ticket system, especially for train tickets and air tickets with high security demand. This paper puts forward a set of NFC secure payment and verification system for electronic tickets, and expounds the NFC payment scheme of electronic tickets, the security verification scheme of offline electronic tickets and the design of electronic tickets. The main work of this paper is described in detail as follows: (1) in view of the security problems encountered in the purchase of tickets in the mobile electronic ticket system, a NFC payment scheme for electronic tickets is proposed. The scheme adopts symmetric encryption and introduces the number of tickets traded in a certain period of time as parameters, which can not only solve the security and privacy problems faced by NFC and electronic ticket purchase. And to a certain extent, it can inhibit the emergence of malicious ticket trading. In addition, the NFC payment method is used in the ticket purchase link, which makes full use of the characteristics of fast reading speed and near-field security, which is very suitable for the scene of large flow of train tickets, air tickets and so on, and the high security demand. By introducing the off-line generation and distribution technology of session key proposed by S.Kungpisdan et al., it provides a higher level of security performance and has certain lightweight advantages. (2) aiming at the problems encountered in the ticketing link of mobile electronic ticket system, An offline electronic ticket verification scheme is proposed. On the one hand, the off-line generation and distribution technology of session key is used to generate a set of session keys offline, which makes the scheme solve the security problem of NFC and realize the authentication of ticket validity. On the other hand, the IC serial number parameter is introduced to solve the problem of ticket cloning. In addition, the offline authentication method is used in the ticketing link, which greatly improves the identification, authentication efficiency and brings a good user experience. (3) aiming at the security problem of the mobile electronic ticket itself, an electronic ticket scheme is designed. Considering the high security requirement of electronic ticket in this scene, the information of electronic ticket is divided into two parts, the content part is encrypted by symmetric key, and the security part is hashed, which ensures the undeniable and non-reuse of electronic ticket. Non-anonymous and other security features, which better promote the wide application of mobile electronic ticket system.
【学位授予单位】:西安电子科技大学
【学位级别】:硕士
【学位授予年份】:2015
【分类号】:TN918.4
[Abstract]:Close range wireless communication technology (NFC) is evolved from the integration of radio frequency identification technology (RFID) and interconnection technology. as a short distance and high frequency communication technology, this technology can be well applied to electronic tickets. Micropayment and access control functions, so it is widely used in financial industry, traffic transmission, road control and other fields. However, although this technology is gradually popularized in the current era, the security problems and privacy issues have been restricting the further promotion of NFC technology, so an effective NFC security authentication scheme needs to be put forward urgently. Therefore, this paper aims at the security problems and practical problems faced by NFC technology and mobile electronic ticket system, especially for train tickets and air tickets with high security demand. This paper puts forward a set of NFC secure payment and verification system for electronic tickets, and expounds the NFC payment scheme of electronic tickets, the security verification scheme of offline electronic tickets and the design of electronic tickets. The main work of this paper is described in detail as follows: (1) in view of the security problems encountered in the purchase of tickets in the mobile electronic ticket system, a NFC payment scheme for electronic tickets is proposed. The scheme adopts symmetric encryption and introduces the number of tickets traded in a certain period of time as parameters, which can not only solve the security and privacy problems faced by NFC and electronic ticket purchase. And to a certain extent, it can inhibit the emergence of malicious ticket trading. In addition, the NFC payment method is used in the ticket purchase link, which makes full use of the characteristics of fast reading speed and near-field security, which is very suitable for the scene of large flow of train tickets, air tickets and so on, and the high security demand. By introducing the off-line generation and distribution technology of session key proposed by S.Kungpisdan et al., it provides a higher level of security performance and has certain lightweight advantages. (2) aiming at the problems encountered in the ticketing link of mobile electronic ticket system, An offline electronic ticket verification scheme is proposed. On the one hand, the off-line generation and distribution technology of session key is used to generate a set of session keys offline, which makes the scheme solve the security problem of NFC and realize the authentication of ticket validity. On the other hand, the IC serial number parameter is introduced to solve the problem of ticket cloning. In addition, the offline authentication method is used in the ticketing link, which greatly improves the identification, authentication efficiency and brings a good user experience. (3) aiming at the security problem of the mobile electronic ticket itself, an electronic ticket scheme is designed. Considering the high security requirement of electronic ticket in this scene, the information of electronic ticket is divided into two parts, the content part is encrypted by symmetric key, and the security part is hashed, which ensures the undeniable and non-reuse of electronic ticket. Non-anonymous and other security features, which better promote the wide application of mobile electronic ticket system.
【学位授予单位】:西安电子科技大学
【学位级别】:硕士
【学位授予年份】:2015
【分类号】:TN918.4
【相似文献】
相关期刊论文 前10条
1 ;Radware APSolute应用安全解决方案[J];信息安全与通信保密;2006年02期
2 吴金龙;计算机网络对等安全通信技术的研究[J];华侨大学学报(自然科学版);2000年04期
3 ;安全产品 电信行业技术领先奖[J];每周电脑报;2004年20期
4 王芬,赵梗明;嵌入式网络接入的安全通信机制研究[J];单片机与嵌入式系统应用;2005年09期
5 卢佐华;;正解网络在安全体系架构中的位置[J];计算机安全;2006年03期
6 成典勤;;集群分布式安全探讨[J];现代计算机;2006年03期
7 邱俊源;张跃;;异步消息驱动安全通信模块的设计与实现[J];计算机工程与设计;2011年08期
8 向敏;刘福强;;有关计算机网络对等安全通信技术的研究[J];信息安全与技术;2013年01期
9 莫琨;;智慧旅游的安全威胁与对策探讨[J];旅游纵览(下半月);2013年02期
10 林琪,卢昱;处方信息的安全通信[J];指挥技术学院学报;2001年01期
相关会议论文 前10条
1 郑重;李少华;刘亚斌;李敬东;;安全通信中的抗重播机制的研究与实现[A];第十八次全国计算机安全学术交流会论文集[C];2003年
2 于秀兰;丁晓诚;李影;英春;刘东;周彬;魏冰;;电信行业数据业务中Web Service的安全[A];中国通信学会信息通信网络技术委员会2003年年会论文集[C];2003年
3 朱红儒;焦文娟;齐e,
本文编号:2495175
本文链接:https://www.wllwen.com/kejilunwen/wltx/2495175.html
