| With the socio-economic development and rapid spread of bank card, a wide range of bank cards are being known and used. Bank card brings us lots of convenience, but the security risk can not be ignored.At present, the bank card access authentication is based on static password authentication technology, because of the password is fixed, the same password is inputted each time, some lawbreakers can get information of bank card by miniature camera and decoder, so they have the opportunity to steal the personal savings. In order to improve the security of bank card access authentication system, in this paper, a bank card access authentication system based on dynamic password is proposed. In this system, mobile is used as a client platform, ATM server-side and mobile client have the same encryption algorithm, the plaintext and the key are composed of card number, password and 6-bit random number which is provided by ATM machine. Encrypted by the U.S. Advanced Encryption Standard (AES), the output is 128-bit code. After the code is transformed by the hash function,6-bit dynamic password can be got. Then, the dynamic password replace the static password which is used to login in banking system.The experimental analysis indicates that the repetition rate of dynamic password base on the encryption algorithm which is proposed in this paper is very low, and the probability of two different random numbers corresponding to the same dynamic password is 1.01*10-6. As random number is different each time, One-time password is realized and the security of bank card access authentication system is improved. Meanwhile, in order to prevent safety problem when mobile is lost, four security designs are proposed to protect the safety of mobile client in this paper. |
PDF Full Text Request