| With the development of wireless communication technology and mobile Internet technology,especially the popularity of smart phones,mobile payment has gradually become one of the main payment methods.Among them,mobile payment using non-contact NFC technology has been widely used in public travel,retail and other industries because of its short communication distance,higher security and more convenience.However,there are still some security threats in the current NFCbased mobile payment,and the existence of these security threats has seriously restricted the development of NFC mobile payment.Therefore,ensuring data security and identity authentication in the NFC mobile payment process has become an urgent issue.Based on the basic working principle of NFC technology and the payment process of NFC mobile payment,this paper points out the security threats in NFC mobile payment.These security threats mainly include eavesdropping,message tampering,man-in-the-middle attacks,replay attacks,and transaction repudiation.In order to deal with these security threats and ensure the security of data and authentication integrity in the NFC mobile payment process,the paper presents a series of security technologies and analyzes the feasibility of each type of them.Aiming at the online transaction mode of NFC mobile payment,combined with the existing security technology,a complete public key private key encryption system and online authentication scheme with random number added are proposed.Through analyzing the security and identity authentication of the data in the system and the resistance to replay attacks,verify the feasibility and security of the scheme.And the paper also points out the potential threats and deficiencies of the security scheme.In response to these threats and deficiencies,the paper proposes an improved scheme based on AES and ECC hybrid encryption algorithm,HMAC hash message identity authentication code and other security technologies.The improved scheme encrypts the transaction data through the AES encryption algorithm,and then encrypts and manages the AES key by the ECC algorithm.The identity of the participant is confirmed by the HMAC hash message identity authentication code.Compared with the online scheme,both the security and the reliability of the system have been greatly improved.The paper also proposes a complete offline authentication scheme for the offline mode in NFC mobile payment and the anonymized security technology of group signature.The user obtains anonymized pseudonym and group member permissions by registration and generates a group public and private key.In the recharge and payment phase,the customer uses the pseudonym as its own identity,and encrypts and transmits the data through the group public key and the private key,and authenticates the identity of both parties by verifying the group signature information.According to the security technology and authentication scheme proposed in the thesis,the paper presents the NFC mobile payment model,the payment process model of online transaction mode and offline transaction mode,and carries out verification experiments.The results prove the security technology and authentication scheme proposed in the paper are all feasible. |
PDF Full Text Request