计算机工程与应用 ›› 2011, Vol. 47 ›› Issue (12): 65-68.

• 网络、通信、安全 • 上一篇    下一篇


陈 楠,朱建明   

  1. 中央财经大学 信息学院,北京 100081
  • 收稿日期:1900-01-01 修回日期:1900-01-01 出版日期:2011-04-21 发布日期:2011-04-21

Analysis and design of trusted online banking authentication protocol

CHEN Nan,ZHU Jianming


  1. School of Information,Central University of Finance and Economics,Beijing 100081,China
  • Received:1900-01-01 Revised:1900-01-01 Online:2011-04-21 Published:2011-04-21

摘要: 随着电子支付的普及,安全问题成为了影响其发展的关键问题之一。可信计算平台、PKI认证系统都是保证安全的有效机制。在分析这两种安全机制的基础上,提出了一种结合可信平台和PKI认证系统的网上银行认证协议,通过可信平台模块TPM保证了参与方的计算平台可信性,使用PKI系统和智能卡对银行、持卡人、读卡器进行了身份认证,完成了认证过程,达到安全可信的认证目的。

关键词: 可信计算, 公钥基础设施(PKI), 认证协议, 网上银行

Abstract: With the popularization of e-payment,security has become one of the key problems for the development of e-payment.Trusted computing platform and PKI authentication system are both effective mechanisms to ensure security.This paper presents the two mechanisms and proposes an authentication protocol for online banking combining the two mechanisms.For the purpose of security and trust this protocol uses TPM to guarantee the trustworthiness of all parts’ computing platforms,uses PKI system and smartcard to authenticate the identities of bank,customer,card reader.

Key words: trusted computing, Public Key Infrastructure(PKI), authentication protocol, online banking