计算机工程与应用
計算機工程與應用
계산궤공정여응용
COMPUTER ENGINEERING AND APPLICATIONS
2010年
11期
14-17
,共4页
复合型安全协议%安全属性%认证性%非否认性%公平性
複閤型安全協議%安全屬性%認證性%非否認性%公平性
복합형안전협의%안전속성%인증성%비부인성%공평성
compound security protocol%security property%authentication%non-repudiation%fairness
针对典型电子商务安全协议存在的安全目标单一,不能满足日益增加的安全需求等问题,提出了一种能够满足多种安全属性的复合型电子商务安全协议,该协议包含认证子协议和支付子协议两部分.认证子协议基于令牌概念实现了高效认证及协商会话密钥.改进匿名电子现金支付协议,提出了支付子协议,引入电子证书证明交易主体的身份,确保协议非否认性的实现;借助可信方传递付款收据,避免交易主体不诚实所导致的公平性缺失;引入m传输方式传送电子货币和付款收据,确保实现可追究性与公平性,进一步增强协议的鲁棒性.
針對典型電子商務安全協議存在的安全目標單一,不能滿足日益增加的安全需求等問題,提齣瞭一種能夠滿足多種安全屬性的複閤型電子商務安全協議,該協議包含認證子協議和支付子協議兩部分.認證子協議基于令牌概唸實現瞭高效認證及協商會話密鑰.改進匿名電子現金支付協議,提齣瞭支付子協議,引入電子證書證明交易主體的身份,確保協議非否認性的實現;藉助可信方傳遞付款收據,避免交易主體不誠實所導緻的公平性缺失;引入m傳輸方式傳送電子貨幣和付款收據,確保實現可追究性與公平性,進一步增彊協議的魯棒性.
침대전형전자상무안전협의존재적안전목표단일,불능만족일익증가적안전수구등문제,제출료일충능구만족다충안전속성적복합형전자상무안전협의,해협의포함인증자협의화지부자협의량부분.인증자협의기우령패개념실현료고효인증급협상회화밀약.개진닉명전자현금지부협의,제출료지부자협의,인입전자증서증명교역주체적신빈,학보협의비부인성적실현;차조가신방전체부관수거,피면교역주체불성실소도치적공평성결실;인입m전수방식전송전자화폐화부관수거,학보실현가추구성여공평성,진일보증강협의적로봉성.
In response on the existing problems of the electronic commerce protocols,e.g.security goal is single,increasing security requires are not been satisfied.The paper proposes a compound security protocol,which has general security properties required by e-commerce protocols.The new protocol includes authentication sub-protocol and payment sub-protocol.The authentication sub-protocol can authenticate identities of important entity in the foremost time,as well as session keys used for transaction are negotiated efficiently.The payment sub-protocol is designed by improving the anonymous e-cash payment protocol.To realize its non-repudiation, certificates are used to prove the identities of the transaction entities.To avoid unfairness arisen by the dishonest transaction entities, the transmission of payment receipt is achieved by the trusted party .The proposed protocol uses FTP to transmit electronic cashes and payment receipts,which ensures achievement of accountability and fairness,and enhances the robustness of the protocol.