作　　者： (柳毅）; (葛辉赟）;

机构地区： 广东工业大学计算机学院,广东广州510006

出　　处： 《计算机工程与设计》 2017年第9期2363-2368,共6页

摘　　要： 基于CoSE(cloud of secure elements)概念,提出一个NFC安全支付协议。根据CoSE架构部署一个可信云支付平台,使用虚拟SE替代硬件安全模块,所有交易项都由云支付平台完成;商户的POS终端充当消费者和云支付平台的通信桥梁,消费者的NFC设备和商户的POS终端通过射频场连接,消费者NFC设备不需要数据网络即可完成支付流程;交易过程中通过对交易双方身份信息与随机数进行hash运算,实现正常交易匿名性。通过安全性分析及实验验证了该协议的正确性和安全性。 Based on the concept of cloud of secure elements （CoSE） , a NFC secure payment protocol was proposed According to the CoSE architecture, a trusted cloud payment platform that used virtual SEs instead of hardware security modules was de-ployed, all transactions were completed through the cloud payment platform. Merchant＇s POS terminal was taken as a commu-nication bridge between customer and cloud payment platform, customer＇s NFC device and merchant＇s POS terminal were con-nected through radio frequency field, and customer^ s NFC devices could complete the payment process without data network. In the process of transaction, the identity information of two parties and a random number were operated using hash arithmetic to realize the anonymity of the normal transaction. Through security analysis and experiments？ the correctness and security of the presented protocol was demonstrated

关 键 词： 近场通信 安全支付 半离线支付 匿名性 架构