| With the development of the society, the traditional bank server has been changed. ATM is used as a necessary tool to improve bank's work efficiency. Bank card access authentication is the vital concern question in the using of bank card.The traditional bank card access authentication is still using the way of "Card numbers + Passwords", but the passwords are fixed. Illegal users can get your passwords by peeping, scouting or other illegal methods, and they are able to obtain all of the available information. In order to improve the disadvantage of the traditional access authentication system, this paper design a dynamic passwords access authentication system based on challenge/response authentication principle. We choose mobile phone as the client server to store card numbers and original passwords. And then the Cipher Plaintext and The Cipher Key will be composed of card numbers, original passwords and six bits random numbers which is got from ATM. Transformed by the newest (AES) Rijndael, we can get a 128 bits code. After transformed by Hash the eight bits constringent cryptograph as entry passwords can be got. Because the random numbers are different in times, we can get the different passwords. Using the different passwords we can realize the dynamic passwords access authentication. In this way, the security of bank card access authentication system is improved.There are five parts in this paper. First of all, the paper introduces the kinds and characteristics of access authentication system; In the second part, this paper narrates the design of bank card access authentication system; In the third part, we introduce the U.S senior encryption (AES) Rijndael, and we compare with other encryptions to show the value of the Rijndael in this system. Then we list the analysis result of feasibility. This paper illuminates the design of client server which is based on mobile phone and J2ME in the fourth part; Finally, the paper explains the software realization of ATM. |
PDF Full Text Request