A Third-party Mobile Payment Encryption Model Based On NTRU-PKI

With the rapid development of mobile Internet and the popularity of intelligent terminal,the mobile payment becomes a more and more popular payment. Mobile payment is getting a hot field of cyber crime. On the other hand, under the challenge of the rapid development of quantum computing, the traditional encryption algorithms including RSA and ECC are getting weaker. Besides,the improving performance of computer also leads to the public key encryption algorithm applied to mobile terminal of low security level unsafe.To solve the above problem, this paper introduces the NTRU algorithm as a research basis. Combing the advantages in speed and the property of against quantum computing, NTRU is widely regarded as the most promising public encryption algorithm which can take in place of ECC. However, two shortcomings are needed to overcome. The first one is encryption error and the second one is that NTRU is still lack of an effective signature algorithm. In this paper, the former two shortcomings is explored and the two improvement algorithms,NTRU-M and NTRU-MPS, are prompted accordingly.Then NTRU-M and NTRU-MPS are applied into wireless public key infrastructure,and a mobile payment is designed based on NTRU-WPKI digital certificate. Analysis of experimental results shows that the speed of mobile payment basing NTRU-WPKI is much faster than WPKI. Furthermore,the mobile payment basing NTRU-WPKI can effectively resist the quantum attacks and meet the requirements of rapid certification, but it greatly increases the key size.The contribution of this paper lies in:1.We put forward the NTRU parameter constraints to overcome the decryption failure by strict mathematical calculation, which can ensure correct decryption and maximum strength against brute force attack.and the evolution algotirhm is called NTRU-M. The experimental results show that the parameter constraints have little impact on the performance of the algorithm.2.The signature algorithm is designed to meet the mobile payment repudiation. The traditional signature inluding RSA and ECC algorithm in lower efficiency and NSS-class signature algorithms designed in NTRU lattice in leak of private information are not suitable for mobile payment.In order to improve probability of generating valid NTRUMLS signature, increasing the value of the parameter q and setting requirement of valid signature to check the candidate signature are applied.Experiment results show that the improved scheme can increase the probability and speed of generating a valid signature without leak of private information.3.Applying NTRU-M algorithm and NTRU-MPS algorithm into WPKI,we put forward NTRU-WPKI which is suitable for mobile payment.4.At last, a mobile payment encryption scheme is proposed based on NTRU-WPKI digital certificates, application of AES algorithm and hash chain technology.Innovation of this paper lies in:1. Focusing on mobile payment features, in order to realize fast authentication, the hash chain is adopted.2.NTRU-M public key encryption algorithm and the NTRU-MPS signature algorithm are first applied into WPKI, basing on NTRU-WPKI digital certificate, and design a mobile payment model which is resistance to quantum computation and in high efficiency of the encryption.