【摘要】：NFC移動支付是一種新型的支付手段,受到很多用戶和服務提供商的青睞。NFC移動支付其主要方式是用手機來模擬智能卡,傳統(tǒng)的手機卡模擬是基于安全芯片(Secure Element,SE)的卡模擬,但是由于供應商之間的惡意競爭和SE移動支付技術的封閉性,使得手機卡模擬技術發(fā)展的非常緩慢,因此NFC移動支付也跟著受到了很大程度上的限制。主機卡模擬(Host Card Emulation,HCE)是近年來推出的新興技術,目的在于降低NFC手機支付技術的門檻,其打破了傳統(tǒng)的使用安全元素進行NFC卡模擬的局限性,尤其是在Android的4.4系統(tǒng)版本之后增加了HCE作為系統(tǒng)的一個服務,這樣大大促進了NFC移動支付的發(fā)展。HCE技術安全元素完全由軟件實現(xiàn),它雖然脫離了對硬件安全元素的依賴,但是無論軟件如何實現(xiàn),還是無法達到硬件級別的安全性。因此,安全性問題是HCE技術發(fā)展所面臨的最大難題。本文對HCE技術進行了系統(tǒng)的研究,取得了如下的研究成果:1.對NFC移動支付進行了研究。首先是對NFC移動支付的原理進行了研究,分析目前常見的三種傳統(tǒng)卡模擬方式和工作原理,對每種卡模擬的優(yōu)勢和缺點進行了詳細的了解,接著對HCE技術進行了說明,并指出了HCE技術相對與傳統(tǒng)的卡模擬技術的優(yōu)勢。2.對HCE技術的安全性進行了分析,指出了其依賴于手機操作系統(tǒng)存在的安全威脅,并提出了幾種增強HCE安全性的解決方案。通過對幾種不同的解決方案進行對比,提出了遠端SE的HCE應用模型。該模型將敏感信息的存儲和處理從本地轉移到遠端服務器中來完成,然后移動設備使用網(wǎng)絡與遠端服務器進行交互,這樣大大增加了HCE的安全性。此外,對遠端SE的HCE應用模型的業(yè)務流程進行說明,提出了三個不同的應用場景,并對三個不同的應用場景的模型進行了說明。3.根據(jù)遠端SE的HCE應用模型,設計了一種遠程刷卡系統(tǒng)。首先對系統(tǒng)的架構進行了設計。整個系統(tǒng)有若干模塊組成,模塊功能在設計方案里進行了詳細描述。在此基礎之上,提出客戶端和服務端的設計方案,設計了身份認證協(xié)議和安全交易協(xié)議。身份認證協(xié)議用來保證客戶端和服務端之間的認證安全。安全交易協(xié)議用來保護客戶端和服務端交互的數(shù)據(jù)安全。4.采用Android操作系統(tǒng)作為HCE的運行平臺,使用Java對遠程刷卡系統(tǒng)進行了實現(xiàn),并對實現(xiàn)的系統(tǒng)進行了測試,結果表明系統(tǒng)工作正常,完成了遠程刷卡的預期目標,證明了遠程刷卡系統(tǒng)的可行性和有效性。
[Abstract]:NFC mobile payment is a new payment method, which is favored by many users and service providers. The main way of NFC mobile payment is to use mobile phone to simulate smart card. Traditional mobile card simulation is based on security chip (Secure Element, SE) card simulation, but due to the malicious competition among suppliers and the closure of SE mobile payment technology, the development of mobile card simulation technology is very slow, so NFC mobile payment is also restricted to a large extent. Host card simulation (Host Card Emulation,HCE) is a new technology introduced in recent years, which aims at lowering the threshold of NFC mobile phone payment technology, and breaks the limitation of traditional NFC card simulation using security elements. Especially after the 4.4 system version of Android, HCE was added as a service of the system, which greatly promoted the development of NFC mobile payment. The security element of HCE technology is completely realized by software, although it is independent of the dependence on hardware security elements. However, no matter how the software is implemented, the hardware level of security can not be achieved. Therefore, the security problem is the biggest problem faced by the development of HCE technology. In this paper, the HCE technology has been systematically studied, and the following research results have been obtained: 1. NFC mobile payment is studied. First of all, the principle of NFC mobile payment is studied, and three common traditional card simulation methods and working principles are analyzed. The advantages and disadvantages of each card simulation are understood in detail, and then the HCE technology is explained. The advantages of HCE technology compared with traditional card simulation technology are pointed out. 2. This paper analyzes the security of HCE technology, points out the security threats that depend on the mobile phone operating system, and puts forward several solutions to enhance the security of HCE. By comparing several different solutions, a HCE application model of remote SE is proposed. The model transfers the storage and processing of sensitive information from the local to the remote server, and then the mobile device uses the network to interact with the remote server, which greatly increases the security of the HCE. In addition, the business process of the HCE application model of remote SE is explained, three different application scenarios are proposed, and the models of three different application scenarios are explained. 3. According to the HCE application model of remote SE, a remote credit card printing system is designed. Firstly, the architecture of the system is designed. The whole system has several modules, the module function is described in detail in the design scheme. On this basis, the design scheme of client and server is proposed, and the identity authentication protocol and secure transaction protocol are designed. Authentication protocols are used to secure authentication between client and server. Secure transaction protocol is used to protect the data security of client and server interaction. 4. The Android operating system is used as the running platform of HCE, and the remote credit card system is realized with Java, and the system is tested. The results show that the system works well and achieves the expected goal of remote credit card. The feasibility and effectiveness of remote credit card printing system are proved.
【學位授予單位】：西安電子科技大學
【學位級別】：碩士
【學位授予年份】：2014
【分類號】：TN929.53

【相似文獻】

相關期刊論文 前10條

1 葉惠;全球移動支付分析與展望[J];通訊世界;2004年06期

2 傅冬;為移動支付吶喊[J];電子商務世界;2004年08期

3 唐綺薇;;移動支付的多種運營模式[J];數(shù)字通信世界;2005年12期

4 ;后金融時代的移動支付[J];數(shù)據(jù)通信;2006年04期

5 肖曉;;移動支付，，無處不在的魅力[J];上海信息化;2007年07期

6 翟丹妮;;我國移動支付運營模式的分析[J];中國新通信;2007年22期

7 宋穎;;移動支付之綜述篇 全球移動支付發(fā)展現(xiàn)狀[J];通信世界;2008年01期

8 師群昌;帥青紅;;移動支付及其在中國發(fā)展探析[J];電子商務;2009年02期

9 陳琛;;移動支付小步前行“摸石頭”的階段[J];通信世界;2009年22期

10 陳琛;;湖南:移動支付的星星之火[J];通信世界;2009年22期

相關會議論文 前9條

1 秦成德;;現(xiàn)場移動支付的技術選擇[A];經(jīng)濟發(fā)展與管理創(chuàng)新--全國經(jīng)濟管理院校工業(yè)技術學研究會第十屆學術年會論文集[C];2010年

2 張志華;索煒;;移動支付現(xiàn)場應用遠程支付賬戶的幾種方案[A];2011年通信與信息技術新進展——第八屆中國通信學會學術年會論文集[C];2011年

3 邱翔;;我國近場移動支付技術標準的確立發(fā)展分析[A];兩化融合與物聯(lián)網(wǎng)發(fā)展學術研討會論文集[C];2010年

4 高叢;;移動支付與金融中介是競爭還是合作?[A];通信發(fā)展戰(zhàn)略與管理創(chuàng)新學術研討會論文集[C];2006年

5 尤昊;鄭會頌;;我國移動支付企業(yè)的運營效率及其影響因素研究[A];社會經(jīng)濟發(fā)展轉型與系統(tǒng)工程——中國系統(tǒng)工程學會第17屆學術年會論文集[C];2012年

6 胡s

本文編號：2327897