基于SET协议的电子钱包设计与实现-智能与分布计算实验室

基于SET协议的电子钱包设计与实现

姓名	李开
论文答辩日期	2002.05.10
论文提交日期	2004.08.18
论文级别	硕士
中文题名	基于SET协议的电子钱包设计与实现
英文题名	The Design and Realization of the E-wallet Based on SET Protocol
导师1	卢正鼎
导师2
中文关键词	电子商务;SET协议;电子钱包;信息安全
英文关键词	The Design and Realization of the E-wallet Based on SET Protocol
中文文摘	The on-line payment is one of the key technologies of the e-commerce. Because of its security being especially significant, the on-line payment gains much attention and widely research in academe at all times. The SET Secure Electronic Transaction protocol is developed as a method to secure payment card transactions over open networks and published as an open specification for the industry. It combines powerful encryption and manifold security mechanisms to ensure transmission confidentiality and data integrity and non-repudiation in the course of paying. The design and development for the E-wallet based on SET is studied to provide the function of supervising leechdom trade on Internet for the project?? The System of Supervising Leechdom Information on Internet, which has been consigned to us by the State Bureau of Leechdom Administration. The subject includes multiplicate technologies such as communication, computer network, information security and so on. As a kind of facility for the cardholder to defray expense on line, the E-wallet must proffer securities including transmission confidentiality, data integrity and non-repudiation, and provide interoperability with merchant software and CA software, and materialize better practicability. In the research on security, this article solves the security problem to software itself using digital signature technology, solves the problem of user access in security using one-way hashing arithmetic, and realizes the security of data transmission and data access using manifold cryptography and certificates and authentication. In the research on interoperability, it defines the content of SET mess- ages according to the Abstract Syntax Notation (ASN.1) standard, and encodes messages using the Distinguished Encoding Rules (DER), permits entities to communicate with each other in “real-time” with small time delays or in non “real-time” with large time delays, uses the Public Key Cryptography Standards (PKCS) for representing the cryptographic parameters and message encapsulation to promote interoperability and the ability to upgrade. In the research on practicability, it provides a convenient way for the E-wallet software distribution, installation and maintenance. It conserves the business information, so that the proof could be provided to settle the commerce dissension. It provides the function for data backup and restore, which strengthens the reliability, and meets users’ expectation to transfer the dealings data from one computer to another.
英文文摘	在线支付是电子商务的核心技术之一。由于它的安全性具有特别重要的意义，在线支付技术一直受到学术界的高度重视和广泛研究。安全电子交易协议（SET）提出了一种在开放网络环境下用支付卡进行在线交易的安全方法，并作为工业标准公开发布。它结合了强大的加密功能和多种安全机制，能保证支付过程中数据传输的机密性、完整性和不可否认性。基于SET协议的电子钱包设计与开发，是国家药品监督管理局委托我们开发的“网上药品信息监管系统”中为实现网上药品交易的监督而预先研究的内容。本课题综合了通信、计算机网络和信息安全等多种技术。电子钱包作为持卡人进行在线支付的工具，既要满足支付过程中数据传输的机密性、完整性和不可否认性等安全性能，又要考虑与商家和证书授权当局（CA）系统之间的可互操作性，同时还须具有较强的实用性。在电子钱包安全性方面的研究中，用数字签名技术解决了软件自身安全性的问题，用单向散列法解决了用户安全管理问题，用多种密码技术和数字证书与身份验证技术实现了数据传输和数据存储的安全性。在可互操作性研究方面，按照第一抽象语法表示法（Abstract Syntax Notation 1，ASN.1）和特异编码规则（Distinguished Encod ing Rules，DER）对SET消息的字段进行定义和对消息进行编码，允许采取实时和非实时交替的方式进行通信，加密处理时按照公钥加密标准（Public Key Cryptography Standards，PKCS）来封装有关加密操作参数和信息。在实用性研究方面，为软件的分发、安装和维护提供了简便方法；对交易信息进行了保存，以便在发生贸易纠纷时有证可查；能够备份和恢复用户数据，一方面增强了系统的可靠性，另一方面满足了用户对交易可移植性的要求。