Smart Card Industry News
Problems and Solutions of smart card technology in e-commerce applications exist
时间:【2013-8-1】 共阅【】次 【打印此页】【返回
   Problems and Solutions of smart card technology in e-commerce
                                 applications exist


Security issues smart card technology in e-commerce applications that exist are mainly: ① information between the smart card and the interface device easily be stolen; ② flow between smart card and the interface device information can be intercepted analysis, which can be copied or insert false signal; ③ analog smart card (or counterfeit smart cards); love interest ④ analog smart card interface devices that interface device can not determine the legal or simulation of smart cards; ⑤ replacement of smart cards in the transaction; ⑥ use during the authorization process the smart card is legitimate, but before the transaction data is written to be replaced with another card. Therefore, the presence of the card transaction data is written in a replacement problem; ⑦ date of the credit card balance is updated to modify control; ⑧ to enter the current date when the use of credit cards, the card determines whether it is for the first time that day, that is, whether the balance should be effective entry is updated to the maximum authorized by the balance, if you modify the date control balance update (date last used), and ahead of it, the day after the date of the input interface device mistaken for the first day of withdrawal, so will effectively balance updates to the highest authorized balance, so the use of stolen cards advisable to set the maximum amount authorized, the danger lies (in the bank proposed a new blacklist before) can be repeated many times cheating; cheating ⑨ store employees; ① interface device data written to the card is incorrect, or the employee will deal privately written two transactions. 
For security protection, and can take the following measures: ① the legality of the cardholder, the card and the device connected to each other VI test; after ② important data encrypted transmission; ③ security zone settings on the card and the interface device, in the safe zone a logic circuit contains unreadable or external storage area for any unwanted irregularities operation. Automatically disables further action cards; ④ require the staff to clarify their respective responsibilities, and strict compliance; ⑤ Setting pay list (blacklist). 
Smart card technology as a modern society personalized IT, in addition to using the traditional encryption algorithms and a variety of security measures to ensure the security of the card outside. More and more biometric technology will gradually be adopted, especially in those areas for sensitive data, such as financial, military, social security, public security departments. Simple, safe, and efficient information security certification will become the future trend of development.

收缩