摘要
针对在线支付系统存在的安全隐患,提出了一种基于WPKI体系结构的解决方案,设计并实现了一套加油站在线支付系统。该系统采用SSL协议、数字签名以及数字证书实现支付过程中的身份认证,保证了信息的完整性,其中CA利用OpenSSL库进行开发。系统采用三层Web体系结构模式,表现层采用MVC设计模式完成,业务层采用JDK动态代理封装事务,持久层采用DAO设计模式完成。实验结果表明,基于WPKI体系结构的在线支付系统实现了支付过程中的保密性、真实性、完整性及不可否认性。
Aimed at the security problems that exist in the online payment system,a solution based on WPKI is proposed,and then a gas station on-line payment system is designed and implemented.The SSL protocol,digital signature and digital certificate are used in the system to realize user authentication and ensure the integrity of information.CA is developed using OpenSSL library.The system is three-tier web application architecture,using MVC design pattern in the web layer,dynamic proxy of JDK in the logic layer,and DAO design pattern in the persistence layer.The conclusion is drawn that the online payment system based on WPKI realizes the data privacy,authenticity,integrality and non-repudiation in on-line payment process.
出处
《计算机工程与设计》
CSCD
北大核心
2010年第24期5168-5171,5199,共5页
Computer Engineering and Design
基金
国家自然科学基金项目(60973136)
科技部国际科技合作与交流专项基金项目(2008DFA12140)
吉林省科技发展计划基金项目(20070708)
欧盟合作基金项目(155776-EM-1-2009-1-IT-ERAMUNDUS-ECW-L12)
关键词
在线支付
无线公钥基础设施
认证中心
数字证书
设计模式
online payment
wireless public key infrastructure
certificate authority
digital certificate
design pattern
