| The internet-banking is one of the core activities of the electronic commerce. Because it is one kind of network application, its all contents are transferred in the network in the form of digital signal. There are lots of hidden security troubles which brought by internet free opening during the application of internet banking. The investigation indicats that the information security is the key problem of the internet-banking development. In recent years, people pay more attention to the information transmission security but neglect the security of the internet-banking client. The heavy loss is created to the user.In this paper, the digital signature environment of the internet-banking client is researched. A trusted digital signature model based on the trusted terminal device is proposed, which settles the problems of forgery attack and hijack attack.Firstly, the rationale of the digital signature and the internet-banking application based on the digital signature technology are introduced. As the digital signature law is the guidance of the signature implementation, so the international digital signature is researched. According to the law, the security requirement of the SCA(Signature Creation Application) and SSCD(Secure Signature Creation Device) is analyzed. SCA and SSCD are the main parts of the signature creation system. And the digital signature environment of the internet-banking is analyzed in detail.Secondly, based on the foundation in above, a safe signature environment scheme based on "the physical transaction authentication"is proposed. The safe signature scheme is composed of the authentication protocol based on the Diffie-Hellman protocol and trusted signature model based on the third device. And the authentication protocol is analyzed by the BAN logic. At last, a realization scheme of the trusted terminal device TUSBKey is given based on the improvement of the USBKey. The trusted-signature scheme settles the problems of the forgery attack and hijack attack. |
PDF Full Text Request