| NFC(Near Field Communication) is integrated by the interconnect technology and radio frequency identification(RFID) technology, which is a short-range and high frequency communication technology. Because the technology supports access control, micro-payment, electronic ticket and other functions, NFC will be widely used in transportation, finance, road control and other field. When it is widely available, the security and privacy issues in NFC are gradually attracted people’s attention. We must design an effective NFC secure authentication scheme which meets certain safety standard. Therefore, regarding the security issues of NFC and practical problems of the mobile e-ticket system, especially train tickets, air tickets and other scenarios which have higher security requirement, we propose an electronic ticket system of NFC secure payment and validation. From electronic ticket payment scheme based on NFC, offline electronic ticket secure validation scheme and electronic ticket design to elaborate the system. The main work as follows:(1) For secure ticketing problems faced by mobile electronic ticket system, new electronic ticket secure payment scheme based on NFC is proposed. The scheme uses symmetric encryption technique and introduce the number of ticket transaction during a certain period of time. Not only can the scheme solve security and privacy problems faced by NFC and e-ticketing, but it also inhibits the emergence of the "pay ticket quickly" malicious ticket transaction behavior. In addition, making full use of reading speed and near-field security of NFC to pay ticket, it is very suitable for train tickets, airline tickets and other scenarios which have higher human traffic and security requirement. The scheme introduce offline session key generation and distribution technology proposed by S.Kungpisdan et.al to provide a higher level of secure performance and lightweight advantage.(2) For ticket validation problems faced by mobile electronic ticket system, new electronic ticket validation scheme offline is proposed. The scheme uses the offline session key generation and distribution technology which generates a set of session key offline to make the scheme solve NFC security problems and achieve ticket validation securely.On the other hand, the scheme introduce the IC serial number to solve the "ticket clone" problem. Futhermore, offline ticket validation scheme can largely enhance the efficiency of identifing and authenticating ticket to bring good user experience.(3) For mobile secure e-ticket problems faced by electronic ticket system, new electronic ticket design is proposed. Considering higher security requirement for electronic ticket in the scenario, the main e-ticket information is divided into two part. Content part is encrypted by the symmetric key, and secure part use hash function. The scheme ensures that the electronic ticket has non-repudiation, non-reusable, non-anonymous and other security feature. So scheme proposed can promote the widespread use of mobile electronic ticket system. |
PDF Full Text Request