本文關(guān)鍵詞： 國密算法 移動(dòng)支付 對(duì)稱加密 信息安全 流程分析　出處：《鄭州大學(xué)》2017年碩士論文　論文類型：學(xué)位論文

【摘要】：移動(dòng)通信與計(jì)算機(jī)網(wǎng)絡(luò)技術(shù)的快速發(fā)展,推動(dòng)了電子商務(wù)逐漸走向成熟,移動(dòng)支付作為一種便捷的支付方式,在人們?nèi)粘Ｉ钪姓紦?jù)的地位日益重要。而與此同時(shí),支付安全事件頻繁發(fā)生,也在時(shí)刻為人們敲響警鐘,如何保護(hù)用戶個(gè)人隱私數(shù)據(jù)在網(wǎng)絡(luò)上安全傳輸,避免用戶資金受損,已經(jīng)成為制約移動(dòng)支付產(chǎn)業(yè)進(jìn)一步發(fā)展的重要因素。為了提高移動(dòng)支付安全性,避免安全事件發(fā)生,支付平臺(tái)往往會(huì)在敏感信息傳輸時(shí),增加數(shù)字加密措施。密碼技術(shù)是確保信息安全傳輸?shù)闹饕椒?探索密碼技術(shù)在移動(dòng)支付的應(yīng)用及改進(jìn)有著重要意義。本文通過了解移動(dòng)支付及數(shù)字加密技術(shù)基礎(chǔ),分析現(xiàn)有支付流程,并研究支付數(shù)據(jù)交互過程,指出目前現(xiàn)有支付流程中潛在的安全隱患,隨后,通過進(jìn)一步分析,選取并使用對(duì)稱加密算法,提出了一種新的基于SM4分組密碼算法的移動(dòng)支付加密方案。在該方案中,我們采用了軟硬件結(jié)合的方式,其中,硬件主要負(fù)責(zé)密鑰等關(guān)鍵數(shù)據(jù)的生成、存儲(chǔ)及更新,而軟件則主要負(fù)責(zé)數(shù)據(jù)的發(fā)送及接受。該方法通過利用初始密鑰與隨機(jī)密鑰種子結(jié)合的方法,動(dòng)態(tài)生成密鑰,解決了對(duì)稱加密算法在網(wǎng)絡(luò)通信過程中的密鑰安全傳輸問題。經(jīng)過分析,我們所提出的方案具有很好的風(fēng)險(xiǎn)抵抗能力,相對(duì)于常用加密方案,能夠更好地抵抗例如中間人攻擊、病毒入侵等常用攻擊手段,能夠有效保護(hù)用戶隱私,防止遭到入侵者竊聽甚至信息篡改,從而更好地保障用戶資金安全,維護(hù)移動(dòng)支付安全環(huán)境。為進(jìn)一步驗(yàn)證該方案的有效性,本文通過設(shè)計(jì)并實(shí)現(xiàn)一個(gè)基于SM4算法的移動(dòng)支付轉(zhuǎn)賬系統(tǒng),模擬并完成了整個(gè)支付流程,經(jīng)過實(shí)驗(yàn)分析可知,SM4算法在該系統(tǒng)中,不僅具有良好的安全冗余度,而且在速度方面也表現(xiàn)卓越,能夠很好滿足移動(dòng)支付系統(tǒng)對(duì)安全及性能的需求。本文提出的基于國密算法SM4的移動(dòng)支付加密方案,能有效保障移動(dòng)支付產(chǎn)業(yè)鏈中各參與者之間的通信安全,將進(jìn)一步推動(dòng)安全支付產(chǎn)業(yè)發(fā)展。
[Abstract]:With the rapid development of mobile communication and computer network technology, electronic commerce is becoming more and more mature. As a convenient payment method, mobile payment plays an increasingly important role in people's daily life. Payment security incidents occur frequently, and they also sound alarm bells for people at all times. How to protect the user's personal privacy data from the safe transmission on the network and avoid the damage of the user's funds, In order to improve the security of mobile payment and avoid security incidents, payment platforms often transmit sensitive information. Adding digital encryption measures. Cryptography is the main method to ensure the secure transmission of information. It is of great significance to explore the application and improvement of cryptography in mobile payment. This paper analyzes the current payment process, studies the process of payment data interaction, points out the potential security risks in the current payment process, and then, through further analysis, selects and uses symmetric encryption algorithm. This paper presents a new mobile payment encryption scheme based on SM4 block cipher algorithm. In this scheme, we adopt the combination of hardware and software, in which the hardware is mainly responsible for the generation, storage and update of key data such as keys. The software is mainly responsible for sending and receiving the data. The method dynamically generates the key by combining the initial key with the random key seed. The problem of key secure transmission in the process of network communication is solved. The analysis shows that the proposed scheme has a good risk resistance, and it can resist the attack of middleman better than the common encryption scheme. Common attack means, such as virus intrusion, can effectively protect the privacy of users and prevent them from wiretapping or even tampering with information by intruders, thus better protecting the security of users' funds. In order to further verify the effectiveness of the scheme, this paper designs and implements a mobile payment transfer system based on SM4 algorithm, and simulates and completes the whole payment process. Through the experimental analysis, we can see that the SM4 algorithm not only has good security redundancy in this system, but also has excellent performance in speed. This paper proposes a mobile payment encryption scheme based on SM4 algorithm, which can effectively guarantee the communication security among the participants in the mobile payment industry chain. Will further promote the development of safe payment industry.
【學(xué)位授予單位】：鄭州大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2017
【分類號(hào)】：F713.36;F831.2;TP309

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 周筱荃;;移動(dòng)支付,你準(zhǔn)備好了嗎?[J];IT時(shí)代周刊;2003年12期

2 葉惠;全球移動(dòng)支付分析與展望[J];通訊世界;2004年06期

3 傅冬;為移動(dòng)支付吶喊[J];電子商務(wù)世界;2004年08期

4 唐綺薇;;移動(dòng)支付的多種運(yùn)營模式[J];數(shù)字通信世界;2005年12期

5 ;后金融時(shí)代的移動(dòng)支付[J];數(shù)據(jù)通信;2006年04期

6 肖曉;;移動(dòng)支付，，無處不在的魅力[J];上海信息化;2007年07期

7 翟丹妮;;我國移動(dòng)支付運(yùn)營模式的分析[J];中國新通信;2007年22期

8 宋穎;;移動(dòng)支付之綜述篇 全球移動(dòng)支付發(fā)展現(xiàn)狀[J];通信世界;2008年01期

9 師群昌;帥青紅;;移動(dòng)支付及其在中國發(fā)展探析[J];電子商務(wù);2009年02期

10 陳琛;;移動(dòng)支付小步前行“摸石頭”的階段[J];通信世界;2009年22期

相關(guān)會(huì)議論文 前8條

1 秦成德;;現(xiàn)場移動(dòng)支付的技術(shù)選擇[A];經(jīng)濟(jì)發(fā)展與管理創(chuàng)新--全國經(jīng)濟(jì)管理院校工業(yè)技術(shù)學(xué)研究會(huì)第十屆學(xué)術(shù)年會(huì)論文集[C];2010年

2 張志華;索煒;;移動(dòng)支付現(xiàn)場應(yīng)用遠(yuǎn)程支付賬戶的幾種方案[A];2011年通信與信息技術(shù)新進(jìn)展——第八屆中國通信學(xué)會(huì)學(xué)術(shù)年會(huì)論文集[C];2011年

3 邱翔;;我國近場移動(dòng)支付技術(shù)標(biāo)準(zhǔn)的確立發(fā)展分析[A];兩化融合與物聯(lián)網(wǎng)發(fā)展學(xué)術(shù)研討會(huì)論文集[C];2010年

4 高叢;;移動(dòng)支付與金融中介是競爭還是合作?[A];通信發(fā)展戰(zhàn)略與管理創(chuàng)新學(xué)術(shù)研討會(huì)論文集[C];2006年

5 尤昊;鄭會(huì)頌;;我國移動(dòng)支付企業(yè)的運(yùn)營效率及其影響因素研究[A];社會(huì)經(jīng)濟(jì)發(fā)展轉(zhuǎn)型與系統(tǒng)工程——中國系統(tǒng)工程學(xué)會(huì)第17屆學(xué)術(shù)年會(huì)論文集[C];2012年

6 胡s

本文編號(hào)：1496086