基于相互认证和3DES加密的智能卡远程支付系统认证方案

针对现有基于智能卡支付系统的安全方案存在密码暴露、信息泄露和身份认证等问题，提出一种新的基于相互认证和3DES加密的智能卡远程支付系统认证方案。分析基于二次剩余的支付认证方案的不足，在注册、登录、身份认证和密码更改阶段对其进行改进，避免密码暴露攻击，提高密码更改阶段的安全性，同时结合3DES加密算法对支付信息进行加密处理。性能分析表明，该方案能有效抵御多种攻击，且用户能够自由地修改密码，同时可对用户信息进行匿名保护。与现有智能卡支付认证方案相比，该方案提高了支付系统的安全性能且具有较小的计算复杂度。

An authentication scheme for smart card remote payment system based on mutual authentication and information encryption

For the issues that the existing smart card remote payment system security scheme existing password exposure, information leakage and authentication, this paper proposed an authentication scheme for smart card remote payment system based on mutual authentication and information encryption. It has analysed the defects of existing payment authentication scheme based on quadratic residue and improved those defects in registration, login, identity authentication and password change phase, to avoid attack of cryptographic exposure and improve the safety of password change phase. At the same time, it combined with 3DES encryption algorithm to encrypt the payment information. The performance analysis shows that the scheme can resist many kinds of attacks effectively, and allow the users to change their passwords freely, meanwhile, providing anonymous protection of user information. Compared with the existing smart card authentication scheme, this scheme has improved the security performance of card remote payment system and has a smaller computational complexity.