摘要
针对传统的密码认证服务技术、密钥传输分析技术等安全手段,在现有网络用户量激增、信道带宽等资源受限情况下,使用、管理变得更加复杂等问题,文中结合移动及网页等多种应用场景,同时考虑到支付系统的实际应用环境,使用身份加密技术设计了一种具有强安全性的网络支付系统。该系统将现有的密钥交换功能、数据加密传输功能、数字签名生成功能以及数据解密功能等集成在一起,这样不仅提高了网络支付系统的安全性能,同时也降低了数据传输过程中的加解密耗时,能够有效防止重复发送密文攻击、重复消费攻击、窃听等手段的入侵。在某医院环境中部署了此网络支付系统进行测试,测试结果表明,该网络支付系统在人流量较大的情况下仍能够正常工作,且具有较强的安全性。
For the traditional security methods such as password authentication service technology and key transmission level analysis technology,the use and management become extremely complicated when the existing network users are experiencing a rapid increase in resources and channel bandwidth,etc.,combined with mobile and web pages.The application scenario,taking into account the actual application environment of the payment system,uses the identity encryption technology to design a network payment system with strong security.The system will encrypt the existing key exchange function and data.The combination of the digital signature generation function and the data decryption function not only improves the security performance of the network payment system,but also reduces the time of encryption and decryption in the data transmission process,and can effectively prevent repeated transmission of ciphertext attacks and repeated consumption attacks.Eavesdropping means a crime of equal means.At the same time,the network payment system is deployed in a certain hospital for testing.The test results show that the network payment system can work normally under the condition of large traffic,and has strong security.
作者
牛娅敏
NIU Ya-min(The First Affiliated Hospital of Hebei North University,Zhangjiakou 075000,China)
出处
《电子设计工程》
2020年第5期116-120,共5页
Electronic Design Engineering
基金
张家口市科学技术研究与发展计划项目(1821135I)。
关键词
身份认证
身份加密技术
网络支付系统
电子支付
identity authentication
identity encryption technology
network payment system
electronic payment