發(fā)布時間：2019-06-08 09:17

【摘要】：近距離無線通訊技術(shù)(NFC)是由射頻識別技術(shù)(RFID)和互連技術(shù)整合演化而來,該技術(shù)作為一種短距離、高頻率的通訊技術(shù)能夠很好的適用于電子票券、小額支付以及門禁控制等功能,從而廣泛的應(yīng)用于金融行業(yè)、交通傳輸、路禁管制等領(lǐng)域。然而,雖然該技術(shù)正在當(dāng)前時代逐漸地普及使用,但所面對的安全問題、隱私問題卻一直制約著NFC技術(shù)進(jìn)一步的推廣,從而一套有效的NFC安全認(rèn)證方案亟待被提出。因此,本文針對NFC技術(shù)和移動電子票券系統(tǒng)所面臨的安全問題以及實(shí)用性問題,尤其是對于安全需求較高的火車票、飛機(jī)票等場景,提出了一套電子票券NFC安全支付及驗(yàn)證系統(tǒng),并從電子票券的NFC支付方案、離線電子票券安全驗(yàn)證方案以及電子票券的設(shè)計三個方面來進(jìn)行闡述。本文的主要的工作詳細(xì)如下闡述:(1)針對移動電子票券系統(tǒng)購票環(huán)節(jié)中所遇到的安全問題,提出了一種電子票券NFC支付方案。該方案采用了對稱加密等技術(shù)并引入了一定時間內(nèi)交易票券的次數(shù)作為參數(shù),不僅能夠很好的解決NFC和電子購票所面臨的安全與隱私問題,而且能夠在一定程度上抑制“秒殺退票”惡意票券交易行為的出現(xiàn)。此外,購票環(huán)節(jié)中采用NFC支付方式,充分利用其讀取速度快、近場安全性的特性,十分適用于火車票、飛機(jī)票等人流量大、安全需求較高的場景。通過引入S.Kungpisdan等人所提出的會話密鑰的離線生成與分發(fā)技術(shù)提供更高級別的安全性能,具有一定的輕量性優(yōu)勢。(2)針對移動電子票券系統(tǒng)驗(yàn)票環(huán)節(jié)中所遇到的問題,提出了一種離線的電子票券驗(yàn)證方案。該方案一方面使用會話密鑰的離線生成與分發(fā)技術(shù),離線生成一組會話密鑰,使得方案能夠很好地解決NFC的安全問題,同時實(shí)現(xiàn)票券有效性的認(rèn)證。另一方面引入了IC序列號參數(shù)解決“票券克隆”問題。此外,驗(yàn)票環(huán)節(jié)中采用離線的認(rèn)證方式,很大程度上提升了識別、認(rèn)證效率,帶來良好的用戶體驗(yàn)。(3)針對移動電子票券本身的安全問題,設(shè)計了一種電子票券方案�？紤]到該場景下對于電子票較高的安全性需求,將電子票券信息分為兩部分,內(nèi)容部分由對稱密鑰加密,安全部分進(jìn)行哈希計算,確保了電子票券的不可否認(rèn)、不可重用、非匿名等安全特性,從而更好地促進(jìn)了移動電子票券系統(tǒng)的廣泛應(yīng)用。
[Abstract]:Close range wireless communication technology (NFC) is evolved from the integration of radio frequency identification technology (RFID) and interconnection technology. as a short distance and high frequency communication technology, this technology can be well applied to electronic tickets. Micropayment and access control functions, so it is widely used in financial industry, traffic transmission, road control and other fields. However, although this technology is gradually popularized in the current era, the security problems and privacy issues have been restricting the further promotion of NFC technology, so an effective NFC security authentication scheme needs to be put forward urgently. Therefore, this paper aims at the security problems and practical problems faced by NFC technology and mobile electronic ticket system, especially for train tickets and air tickets with high security demand. This paper puts forward a set of NFC secure payment and verification system for electronic tickets, and expounds the NFC payment scheme of electronic tickets, the security verification scheme of offline electronic tickets and the design of electronic tickets. The main work of this paper is described in detail as follows: (1) in view of the security problems encountered in the purchase of tickets in the mobile electronic ticket system, a NFC payment scheme for electronic tickets is proposed. The scheme adopts symmetric encryption and introduces the number of tickets traded in a certain period of time as parameters, which can not only solve the security and privacy problems faced by NFC and electronic ticket purchase. And to a certain extent, it can inhibit the emergence of malicious ticket trading. In addition, the NFC payment method is used in the ticket purchase link, which makes full use of the characteristics of fast reading speed and near-field security, which is very suitable for the scene of large flow of train tickets, air tickets and so on, and the high security demand. By introducing the off-line generation and distribution technology of session key proposed by S.Kungpisdan et al., it provides a higher level of security performance and has certain lightweight advantages. (2) aiming at the problems encountered in the ticketing link of mobile electronic ticket system, An offline electronic ticket verification scheme is proposed. On the one hand, the off-line generation and distribution technology of session key is used to generate a set of session keys offline, which makes the scheme solve the security problem of NFC and realize the authentication of ticket validity. On the other hand, the IC serial number parameter is introduced to solve the problem of ticket cloning. In addition, the offline authentication method is used in the ticketing link, which greatly improves the identification, authentication efficiency and brings a good user experience. (3) aiming at the security problem of the mobile electronic ticket itself, an electronic ticket scheme is designed. Considering the high security requirement of electronic ticket in this scene, the information of electronic ticket is divided into two parts, the content part is encrypted by symmetric key, and the security part is hashed, which ensures the undeniable and non-reuse of electronic ticket. Non-anonymous and other security features, which better promote the wide application of mobile electronic ticket system.
【學(xué)位授予單位】：西安電子科技大學(xué)
【學(xué)位級別】：碩士
【學(xué)位授予年份】：2015
【分類號】：TN918.4

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 ;Radware APSolute應(yīng)用安全解決方案[J];信息安全與通信保密;2006年02期

2 吳金龍;計算機(jī)網(wǎng)絡(luò)對等安全通信技術(shù)的研究[J];華僑大學(xué)學(xué)報(自然科學(xué)版);2000年04期

3 ;安全產(chǎn)品 電信行業(yè)技術(shù)領(lǐng)先獎[J];每周電腦報;2004年20期

4 王芬,趙梗明;嵌入式網(wǎng)絡(luò)接入的安全通信機(jī)制研究[J];單片機(jī)與嵌入式系統(tǒng)應(yīng)用;2005年09期

5 盧佐華;;正解網(wǎng)絡(luò)在安全體系架構(gòu)中的位置[J];計算機(jī)安全;2006年03期

6 成典勤;;集群分布式安全探討[J];現(xiàn)代計算機(jī);2006年03期

7 邱俊源;張躍;;異步消息驅(qū)動安全通信模塊的設(shè)計與實(shí)現(xiàn)[J];計算機(jī)工程與設(shè)計;2011年08期

8 向敏;劉福強(qiáng);;有關(guān)計算機(jī)網(wǎng)絡(luò)對等安全通信技術(shù)的研究[J];信息安全與技術(shù);2013年01期

9 莫琨;;智慧旅游的安全威脅與對策探討[J];旅游縱覽(下半月);2013年02期

10 林琪,盧昱;處方信息的安全通信[J];指揮技術(shù)學(xué)院學(xué)報;2001年01期

相關(guān)會議論文 前10條

1 鄭重;李少華;劉亞斌;李敬東;;安全通信中的抗重播機(jī)制的研究與實(shí)現(xiàn)[A];第十八次全國計算機(jī)安全學(xué)術(shù)交流會論文集[C];2003年

2 于秀蘭;丁曉誠;李影;英春;劉東;周彬;魏冰;;電信行業(yè)數(shù)據(jù)業(yè)務(wù)中Web Service的安全[A];中國通信學(xué)會信息通信網(wǎng)絡(luò)技術(shù)委員會2003年年會論文集[C];2003年

3 朱紅儒;焦文娟;齊e，

本文編號：2495175