【摘要】：NFC移動(dòng)支付是一種新型的支付手段,受到很多用戶和服務(wù)提供商的青睞。NFC移動(dòng)支付其主要方式是用手機(jī)來(lái)模擬智能卡,傳統(tǒng)的手機(jī)卡模擬是基于安全芯片(Secure Element,SE)的卡模擬,但是由于供應(yīng)商之間的惡意競(jìng)爭(zhēng)和SE移動(dòng)支付技術(shù)的封閉性,使得手機(jī)卡模擬技術(shù)發(fā)展的非常緩慢,因此NFC移動(dòng)支付也跟著受到了很大程度上的限制。主機(jī)卡模擬(Host Card Emulation,HCE)是近年來(lái)推出的新興技術(shù),目的在于降低NFC手機(jī)支付技術(shù)的門檻,其打破了傳統(tǒng)的使用安全元素進(jìn)行NFC卡模擬的局限性,尤其是在Android的4.4系統(tǒng)版本之后增加了HCE作為系統(tǒng)的一個(gè)服務(wù),這樣大大促進(jìn)了NFC移動(dòng)支付的發(fā)展。HCE技術(shù)安全元素完全由軟件實(shí)現(xiàn),它雖然脫離了對(duì)硬件安全元素的依賴,但是無(wú)論軟件如何實(shí)現(xiàn),還是無(wú)法達(dá)到硬件級(jí)別的安全性。因此,安全性問(wèn)題是HCE技術(shù)發(fā)展所面臨的最大難題。本文對(duì)HCE技術(shù)進(jìn)行了系統(tǒng)的研究,取得了如下的研究成果:1.對(duì)NFC移動(dòng)支付進(jìn)行了研究。首先是對(duì)NFC移動(dòng)支付的原理進(jìn)行了研究,分析目前常見(jiàn)的三種傳統(tǒng)卡模擬方式和工作原理,對(duì)每種卡模擬的優(yōu)勢(shì)和缺點(diǎn)進(jìn)行了詳細(xì)的了解,接著對(duì)HCE技術(shù)進(jìn)行了說(shuō)明,并指出了HCE技術(shù)相對(duì)與傳統(tǒng)的卡模擬技術(shù)的優(yōu)勢(shì)。2.對(duì)HCE技術(shù)的安全性進(jìn)行了分析,指出了其依賴于手機(jī)操作系統(tǒng)存在的安全威脅,并提出了幾種增強(qiáng)HCE安全性的解決方案。通過(guò)對(duì)幾種不同的解決方案進(jìn)行對(duì)比,提出了遠(yuǎn)端SE的HCE應(yīng)用模型。該模型將敏感信息的存儲(chǔ)和處理從本地轉(zhuǎn)移到遠(yuǎn)端服務(wù)器中來(lái)完成,然后移動(dòng)設(shè)備使用網(wǎng)絡(luò)與遠(yuǎn)端服務(wù)器進(jìn)行交互,這樣大大增加了HCE的安全性。此外,對(duì)遠(yuǎn)端SE的HCE應(yīng)用模型的業(yè)務(wù)流程進(jìn)行說(shuō)明,提出了三個(gè)不同的應(yīng)用場(chǎng)景,并對(duì)三個(gè)不同的應(yīng)用場(chǎng)景的模型進(jìn)行了說(shuō)明。3.根據(jù)遠(yuǎn)端SE的HCE應(yīng)用模型,設(shè)計(jì)了一種遠(yuǎn)程刷卡系統(tǒng)。首先對(duì)系統(tǒng)的架構(gòu)進(jìn)行了設(shè)計(jì)。整個(gè)系統(tǒng)有若干模塊組成,模塊功能在設(shè)計(jì)方案里進(jìn)行了詳細(xì)描述。在此基礎(chǔ)之上,提出客戶端和服務(wù)端的設(shè)計(jì)方案,設(shè)計(jì)了身份認(rèn)證協(xié)議和安全交易協(xié)議。身份認(rèn)證協(xié)議用來(lái)保證客戶端和服務(wù)端之間的認(rèn)證安全。安全交易協(xié)議用來(lái)保護(hù)客戶端和服務(wù)端交互的數(shù)據(jù)安全。4.采用Android操作系統(tǒng)作為HCE的運(yùn)行平臺(tái),使用Java對(duì)遠(yuǎn)程刷卡系統(tǒng)進(jìn)行了實(shí)現(xiàn),并對(duì)實(shí)現(xiàn)的系統(tǒng)進(jìn)行了測(cè)試,結(jié)果表明系統(tǒng)工作正常,完成了遠(yuǎn)程刷卡的預(yù)期目標(biāo),證明了遠(yuǎn)程刷卡系統(tǒng)的可行性和有效性。
[Abstract]:NFC mobile payment is a new payment method, which is favored by many users and service providers. The main way of NFC mobile payment is to use mobile phone to simulate smart card. Traditional mobile card simulation is based on security chip (Secure Element, SE) card simulation, but due to the malicious competition among suppliers and the closure of SE mobile payment technology, the development of mobile card simulation technology is very slow, so NFC mobile payment is also restricted to a large extent. Host card simulation (Host Card Emulation,HCE) is a new technology introduced in recent years, which aims at lowering the threshold of NFC mobile phone payment technology, and breaks the limitation of traditional NFC card simulation using security elements. Especially after the 4.4 system version of Android, HCE was added as a service of the system, which greatly promoted the development of NFC mobile payment. The security element of HCE technology is completely realized by software, although it is independent of the dependence on hardware security elements. However, no matter how the software is implemented, the hardware level of security can not be achieved. Therefore, the security problem is the biggest problem faced by the development of HCE technology. In this paper, the HCE technology has been systematically studied, and the following research results have been obtained: 1. NFC mobile payment is studied. First of all, the principle of NFC mobile payment is studied, and three common traditional card simulation methods and working principles are analyzed. The advantages and disadvantages of each card simulation are understood in detail, and then the HCE technology is explained. The advantages of HCE technology compared with traditional card simulation technology are pointed out. 2. This paper analyzes the security of HCE technology, points out the security threats that depend on the mobile phone operating system, and puts forward several solutions to enhance the security of HCE. By comparing several different solutions, a HCE application model of remote SE is proposed. The model transfers the storage and processing of sensitive information from the local to the remote server, and then the mobile device uses the network to interact with the remote server, which greatly increases the security of the HCE. In addition, the business process of the HCE application model of remote SE is explained, three different application scenarios are proposed, and the models of three different application scenarios are explained. 3. According to the HCE application model of remote SE, a remote credit card printing system is designed. Firstly, the architecture of the system is designed. The whole system has several modules, the module function is described in detail in the design scheme. On this basis, the design scheme of client and server is proposed, and the identity authentication protocol and secure transaction protocol are designed. Authentication protocols are used to secure authentication between client and server. Secure transaction protocol is used to protect the data security of client and server interaction. 4. The Android operating system is used as the running platform of HCE, and the remote credit card system is realized with Java, and the system is tested. The results show that the system works well and achieves the expected goal of remote credit card. The feasibility and effectiveness of remote credit card printing system are proved.
【學(xué)位授予單位】：西安電子科技大學(xué)
【學(xué)位級(jí)別】：碩士
【學(xué)位授予年份】：2014
【分類號(hào)】：TN929.53

【相似文獻(xiàn)】

相關(guān)期刊論文 前10條

1 葉惠;全球移動(dòng)支付分析與展望[J];通訊世界;2004年06期

2 傅冬;為移動(dòng)支付吶喊[J];電子商務(wù)世界;2004年08期

3 唐綺薇;;移動(dòng)支付的多種運(yùn)營(yíng)模式[J];數(shù)字通信世界;2005年12期

4 ;后金融時(shí)代的移動(dòng)支付[J];數(shù)據(jù)通信;2006年04期

5 肖曉;;移動(dòng)支付，，無(wú)處不在的魅力[J];上海信息化;2007年07期

6 翟丹妮;;我國(guó)移動(dòng)支付運(yùn)營(yíng)模式的分析[J];中國(guó)新通信;2007年22期

7 宋穎;;移動(dòng)支付之綜述篇 全球移動(dòng)支付發(fā)展現(xiàn)狀[J];通信世界;2008年01期

8 師群昌;帥青紅;;移動(dòng)支付及其在中國(guó)發(fā)展探析[J];電子商務(wù);2009年02期

9 陳琛;;移動(dòng)支付小步前行“摸石頭”的階段[J];通信世界;2009年22期

10 陳琛;;湖南:移動(dòng)支付的星星之火[J];通信世界;2009年22期

相關(guān)會(huì)議論文 前9條

1 秦成德;;現(xiàn)場(chǎng)移動(dòng)支付的技術(shù)選擇[A];經(jīng)濟(jì)發(fā)展與管理創(chuàng)新--全國(guó)經(jīng)濟(jì)管理院校工業(yè)技術(shù)學(xué)研究會(huì)第十屆學(xué)術(shù)年會(huì)論文集[C];2010年

2 張志華;索煒;;移動(dòng)支付現(xiàn)場(chǎng)應(yīng)用遠(yuǎn)程支付賬戶的幾種方案[A];2011年通信與信息技術(shù)新進(jìn)展——第八屆中國(guó)通信學(xué)會(huì)學(xué)術(shù)年會(huì)論文集[C];2011年

3 邱翔;;我國(guó)近場(chǎng)移動(dòng)支付技術(shù)標(biāo)準(zhǔn)的確立發(fā)展分析[A];兩化融合與物聯(lián)網(wǎng)發(fā)展學(xué)術(shù)研討會(huì)論文集[C];2010年

4 高叢;;移動(dòng)支付與金融中介是競(jìng)爭(zhēng)還是合作?[A];通信發(fā)展戰(zhàn)略與管理創(chuàng)新學(xué)術(shù)研討會(huì)論文集[C];2006年

5 尤昊;鄭會(huì)頌;;我國(guó)移動(dòng)支付企業(yè)的運(yùn)營(yíng)效率及其影響因素研究[A];社會(huì)經(jīng)濟(jì)發(fā)展轉(zhuǎn)型與系統(tǒng)工程——中國(guó)系統(tǒng)工程學(xué)會(huì)第17屆學(xué)術(shù)年會(huì)論文集[C];2012年

6 胡s

本文編號(hào)：2327897