PBOC金融应用植入NFC手机的若干关键问题研究
发布时间:2018-08-24 16:25
【摘要】:NFC技术是一种新兴的近距离无线通讯技术,基于NFC协议栈而开发的全终端模式NFC手机在传统智能手机中集成了NFC控制器、XFC天线和安全模块(SE),使得其具备了与传统非接触式金融IC卡相似的硬件功能。另一方面IC卡之所以具备金融功能是由于在IC卡的芯片内植入了金融应用,该应用按照人民银行颁布的PBOC标准开发,加载了金融应用的IC卡可以实现在国内的金融终端上进行联机和脱机的金融支付。很显然,直接将金融应用植入到全终端NFC手机的SE芯片中便可以使手机具备金融IC卡同样的支付功能,同时结合手机智能终端的优势,可以创造出更为便捷的金融支付工具,具有极大的商业价值。然而由于下面两个问题直接影响了具备金融功能的全终端NFC手机的商用,因此对其进行研究既有理论意义也有实际商用价值。 1.传统金融IC卡的生产过程是集中式工厂化的,其金融应用植入IC卡芯片的过程是在一个相对独立且安全网络环境中进行,而全终端NFC手机的商业运作模式导致了金融应用植入SE芯片的过程是由客户主导并通过广域网完成的,这对原有的安全制卡体系造成了很大的冲击,必须引入新方法和新技术来应对。 2.手机模式的金融IC卡会造成充值过程的差错概率明显增加,这使得传统差错处理的潜在问题凸显,如果没有一套更为合理的差错处理方法会造成具备金融功能的NFC手机的推广困难。 本文着重研究这两个方面的问题。主要的工作概括如下: 1.针对传统SCP02协议簇定义的密钥分散模型的不足,提出了具备终端排它性的芯片主控密钥分散模型,可以更为有效的避免来自链路层的各类攻击。 2.提出了低链路相关性的通讯方法,该方法通过改造APDU指令,使得收发的APDU指令自身具备保证数据机密性和完整性的能力,降低了对传输链路通讯安全的依靠。 3.提出了安全的金融个人化模型,该模型中的带发卡行授权验证的个人化解决方案可以实现客户主动式的通过广域网进行的金融应用植入手机的过程,同时可以保障植入过程中数据的安全性。 4.提出了一套统一解决圈存差错的方案,该方案不破坏金融标准中定义的交易流程,只需要对原有金融应用进行少量改动就可以解决充值差错带来的争议问题,同时如果对金融终端进行相应的改造还可以实现充值差错的自动处理,具备易于实现,可分步实施的优点。 以上的工作和成果在实际项目中得到了有效性和可靠性的验证,并实现了小批量的市场推广。 最后为了进一步展现植入了金融应用的全终端NFC手机的商业价值,本文给出了一个通过对全终端NFC手机内的金融支付环境的动态管理,实现其内置金融应用的多模式展现,从而虚拟出借贷合一银行卡的方案,该方案巧妙地利用了NFC手机的硬件架构优势,提供了更为人性化、便利化的金融产品。
[Abstract]:NFC technology is a new kind of close range wireless communication technology. The all-terminal mode NFC mobile phone based on NFC protocol stack is integrated with NFC controller and security module (SE), in the traditional smart phone so that it has similar hardware functions as the traditional contactless financial IC card. On the other hand, the IC card has financial function because of the financial application embedded in the IC card chip, which is developed according to the PBOC standard issued by the people's Bank of China. IC card loaded with financial application can realize online and offline financial payment on domestic financial terminal. Obviously, directly embedding the financial application into the SE chip of a full-terminal NFC mobile phone can enable the mobile phone to have the same payment function as the financial IC card. At the same time, combining the advantages of the mobile phone smart terminal, we can create a more convenient financial payment tool. Of great commercial value. However, the following two problems directly affect the commercial use of full-terminal NFC mobile phones with financial functions, so the research on them has both theoretical and practical commercial value. 1. The production process of traditional financial IC card is centralized and the process of its financial application implanted in IC card chip is carried out in a relatively independent and secure network environment. And the commercial operation mode of the whole terminal NFC mobile phone leads to the process of inserting SE chip into the financial application, which is completed by the customer and through the WAN, which has a great impact on the original security business card printing system. New methods and technologies must be introduced to deal with. 2. The financial IC card of the mobile phone mode will cause the error probability of the recharge process to increase obviously, which makes the potential problem of the traditional error processing prominent. Without a more reasonable set of error-handling methods, it would be difficult to popularize NFC phones with financial capabilities. This paper focuses on these two aspects. The main work is summarized as follows: 1. Aiming at the deficiency of the key dispersion model defined by the traditional SCP02 protocol cluster, a chip master key dispersion model with terminal exclusivity is proposed, which can avoid all kinds of attacks from the link layer more effectively. 2. In this paper, a communication method of low link correlation is proposed. By modifying the APDU instruction, the received and sent APDU instructions have the ability to guarantee the data confidentiality and integrity, thus reducing the reliance on the security of transmission link communication. A secure financial personalization model is proposed, in which the personalized solution with card issuing bank authorization verification can realize the process of mobile phone implanting into the financial application through WAN. At the same time can ensure the implantation of data security. 4. In this paper, a unified scheme is proposed to solve circular deposit errors. This scheme does not destroy the transaction flow as defined in financial standards, and it can solve the controversial problems caused by recharging errors only by making a few changes to the original financial applications. At the same time, if the financial terminal is reformed, it can also realize the automatic processing of the recharge error, which has the advantages of easy to realize and can be implemented step by step. The above work and results have been verified in the actual project, and the small batch marketing has been realized. Finally, in order to further demonstrate the commercial value of the full terminal NFC mobile phone embedded in the financial application, this paper presents a multi-mode display of the built-in financial application through the dynamic management of the financial payment environment in the full terminal NFC mobile phone. The scheme makes use of the advantage of hardware architecture of NFC mobile phone and provides more humanized and convenient financial products.
【学位授予单位】:复旦大学
【学位级别】:硕士
【学位授予年份】:2012
【分类号】:TN929.53;F830.49
本文编号:2201367
[Abstract]:NFC technology is a new kind of close range wireless communication technology. The all-terminal mode NFC mobile phone based on NFC protocol stack is integrated with NFC controller and security module (SE), in the traditional smart phone so that it has similar hardware functions as the traditional contactless financial IC card. On the other hand, the IC card has financial function because of the financial application embedded in the IC card chip, which is developed according to the PBOC standard issued by the people's Bank of China. IC card loaded with financial application can realize online and offline financial payment on domestic financial terminal. Obviously, directly embedding the financial application into the SE chip of a full-terminal NFC mobile phone can enable the mobile phone to have the same payment function as the financial IC card. At the same time, combining the advantages of the mobile phone smart terminal, we can create a more convenient financial payment tool. Of great commercial value. However, the following two problems directly affect the commercial use of full-terminal NFC mobile phones with financial functions, so the research on them has both theoretical and practical commercial value. 1. The production process of traditional financial IC card is centralized and the process of its financial application implanted in IC card chip is carried out in a relatively independent and secure network environment. And the commercial operation mode of the whole terminal NFC mobile phone leads to the process of inserting SE chip into the financial application, which is completed by the customer and through the WAN, which has a great impact on the original security business card printing system. New methods and technologies must be introduced to deal with. 2. The financial IC card of the mobile phone mode will cause the error probability of the recharge process to increase obviously, which makes the potential problem of the traditional error processing prominent. Without a more reasonable set of error-handling methods, it would be difficult to popularize NFC phones with financial capabilities. This paper focuses on these two aspects. The main work is summarized as follows: 1. Aiming at the deficiency of the key dispersion model defined by the traditional SCP02 protocol cluster, a chip master key dispersion model with terminal exclusivity is proposed, which can avoid all kinds of attacks from the link layer more effectively. 2. In this paper, a communication method of low link correlation is proposed. By modifying the APDU instruction, the received and sent APDU instructions have the ability to guarantee the data confidentiality and integrity, thus reducing the reliance on the security of transmission link communication. A secure financial personalization model is proposed, in which the personalized solution with card issuing bank authorization verification can realize the process of mobile phone implanting into the financial application through WAN. At the same time can ensure the implantation of data security. 4. In this paper, a unified scheme is proposed to solve circular deposit errors. This scheme does not destroy the transaction flow as defined in financial standards, and it can solve the controversial problems caused by recharging errors only by making a few changes to the original financial applications. At the same time, if the financial terminal is reformed, it can also realize the automatic processing of the recharge error, which has the advantages of easy to realize and can be implemented step by step. The above work and results have been verified in the actual project, and the small batch marketing has been realized. Finally, in order to further demonstrate the commercial value of the full terminal NFC mobile phone embedded in the financial application, this paper presents a multi-mode display of the built-in financial application through the dynamic management of the financial payment environment in the full terminal NFC mobile phone. The scheme makes use of the advantage of hardware architecture of NFC mobile phone and provides more humanized and convenient financial products.
【学位授予单位】:复旦大学
【学位级别】:硕士
【学位授予年份】:2012
【分类号】:TN929.53;F830.49
【参考文献】
相关期刊论文 前7条
1 蔡逆水;;基于RFID专用读写模块和IC卡的手机支付新方案的研究[J];电信科学;2006年10期
2 程庭,张明慧,石国营;一种基于DES和RSA算法的数据加密方案及实现[J];河南教育学院学报(自然科学版);2003年02期
3 马建辉,王志玮,王国忠;二级密钥体系在加密密码设备上的应用方案[J];金卡工程;2005年10期
4 李星艺,栾达,陈章龙;IC卡的操作系统-COS[J];计算机工程;1998年01期
5 董威;杨义先;;一种跨行业多应用智能卡系统模型及实现[J];计算机工程;2007年08期
6 陈勇;金融IC卡的密钥管理[J];中国信用卡;2000年10期
7 王宇伟;张辉;;基于手机的NFC应用研究[J];中国无线电;2007年06期
相关硕士学位论文 前8条
1 李小朋;基于NFC技术的电子钱包系统设计与安全性研究[D];北京邮电大学;2007年
2 付志娟;IC卡的信息安全性研究[D];兰州理工大学;2008年
3 申玮;NFC移动支付运营模式研究[D];北京邮电大学;2008年
4 张旭;基于JavaCard的智能存储卡多行业应用研究[D];北京邮电大学;2008年
5 李翅;基于JavaCard和NFC技术的手机钱包关键技术研究[D];湖南师范大学;2009年
6 和浩;基于Java Card的金融多应用IC卡原型系统设计与实现[D];华中科技大学;2008年
7 叶晓丽;基于NFC技术的移动支付系统的硬件设计研究[D];苏州大学;2009年
8 陈春光;基于非接触支付市场分析的电信与金融产业融合研究[D];北京邮电大学;2010年
,本文编号:2201367
本文链接:https://www.wllwen.com/guanlilunwen/huobilw/2201367.html
