摘要
移动支付是近年来新兴的一种便利快捷的支付手段,并迅速占有相当的支付市场份额.移动支付按支付距离分为近程支付和远程支付两种,本文研究的是第三方支付在近程支付常采用的一种方案.该方案以二维码信息技术为媒介,实现近程支付到远程支付的转换,最终完成支付.但由于所采用二维码本身的局限性,依托其作为第三方支付手段的过程中便出现了相关的安全威胁,其中最典型的是钓鱼威胁.本文详细分析了其可能存在的安全威胁,并采用特殊加密方法和第三方认证方法对这一问题进行处理,且对解决方法进行可行性分析,最后利用形式化验证的方法验证其安全性.
Mobile payment is emerging in recent years which is a convenient and fast payment method,and it occupies a fairly share of the payment market in the reason of the characteristics. According to the distance mobile payment can be divided into short-range and long-range payment,and this paper studies the scheme of short-range payment used in the third-party payment. This scheme uses the information technology of two-dimension code as carrier to realize the transformation from short-range payment to long-range,finally it complete the payment. But due to the limitation of the two-dimension code used in the mobile payment,the scheme said above has to face the relevant security threats,and one of the most typical threats is the phishing threat. This paper analyzes the possible security threats,and takes private encryption and the third certification to solve it,and makes an analysis of the feasibility,and verifies its safety by formal verification methods.
出处
《天津理工大学学报》
2014年第3期15-20,共6页
Journal of Tianjin University of Technology
关键词
移动支付
二维码
支付转换
安全性
mobile payment
two-dimension code
payment transformation
security