| EMV96的潜在缺陷和改进意见 |
| |
| 引用本文: | 沈炜,陈纯. EMV96的潜在缺陷和改进意见[J]. 电子学报, 2002, 30(5): 731-733 |
| |
| 作者姓名: | 沈炜 陈纯 |
| |
| 作者单位: | 1.浙江大学计算机系,浙江杭州 310027;2.浙江大学信雅达计算机信息安全研究中心,浙江杭州 310027 |
| |
| 摘 要: | EMV96是Europay、MasterCard、Visa提出的目前具有代表性的IC卡交易规范.相当多的IC卡交易系统和规范都建立EMV96的基础之上.本文系统地分析了EMV96的交易协议中的安全机制,得出EMV96用以实现应用的一些重要安全性假设;进一步分析表明:EMV96的一些假设使得EMV96不能很好地满足交易的四个条件,在不改变交易流程的前提下,针对EMV96的潜在缺陷,提出相应的改进意见.
|
| 关 键 词: | EMV96 IC卡 支付协议 |
| 文章编号: | 0372-2112(2002)05-0731-03 |
| 收稿时间: | 2001-06-04 |
Some Potential Defects in EMV96 and Improvement Advice |
| |
| SHEN Wei,CHEN Chun. Some Potential Defects in EMV96 and Improvement Advice[J]. Acta Electronica Sinica, 2002, 30(5): 731-733 |
| |
| Authors: | SHEN Wei CHEN Chun |
| |
| Affiliation: | 1.Department of Computer,Zhejiang University,Hangzhou,Zhejiang 310027,China; 2.Computer Information Security Center of Xinyada,Zhejiang University,Hangzhou,Zhejiang 310027,China |
| |
| Abstract: | EMV96 is a representative IC card payment specification presented by Europay,MasterCard and Visa.Many IC card payment schemes are implemented based on it.In this paper,we analyze the security mechanism of payment protocols of EMV96 and put forward some assumptions based on which EMV96 sets up its payment application.Further analysis shows that EMV96 can't satisfy secure payment based on those assumptions.Finally,we present our improvement advice without modifying the flow of application. |
| |
| Keywords: | EMV96 IC card payment protocol |
| 本文献已被 CNKI 维普 万方数据 等数据库收录! |
| 点击此处可从《电子学报》浏览原始摘要信息 |
|
点击此处可从《电子学报》下载全文 |
|
