基于STRIDE和模糊综合评价法的移动支付系统风险评估

doi:10.3969/j.issn.1671-1122.2020.02.007

信息网络安全 ›› 2020, Vol. 20 ›› Issue (2): 49-56.doi: 10.3969/j.issn.1671-1122.2020.02.007

基于STRIDE和模糊综合评价法的移动支付系统风险评估

刘永磊^1,²(), 金志刚¹, 郝琨², 张伟龙³

1.天津大学电气自动化与信息工程学院,天津 300072
2.天津城建大学计算机与信息工程学院,天津 300384
3.河北交通职业技术学院质量管理中心,石家庄 050035

收稿日期:2019-08-15 出版日期:2020-02-10 发布日期:2020-05-11
作者简介:
作者简介：刘永磊（1983—）,男,天津,副教授,博士,主要研究方向为无线网络安全;金志刚（1972—）,男,上海,教授,博士,主要研究方向为网络安全;郝琨（1979—）,女,内蒙古,副教授,博士,主要研究方向为网络编码;张伟龙（1981—）,男,河北,副教授,硕士,主要研究方向为近端无线网络通信技术。
基金资助:
国家自然科学基金[51361130152];天津市科技特派员项目[18JCTPJC60500]

Risk Assessment of Mobile Payment System Based on STRIDE and Fuzzy Comprehensive Evaluation

LIU Yonglei^1,²(), JIN Zhigang¹, HAO KUN², ZHANG Weilong³

1. School of Electrical and Information Engineering, Tianjin University, Tianjin 300072, China
2. School of Computer and Information Engineering, Tianjin Chengjian University, Tianjin 300384, China
3. Quality Management Center, Hebei Jiaotong Vocational and Technical College, Shijiazhuang 050035, China

Received:2019-08-15 Online:2020-02-10 Published:2020-05-11

摘要/Abstract

摘要：

随着移动通信技术的发展和智能手机的普及,移动支付日益普遍。然而无线网络的安全弱点、移动设备的系统漏洞、账号盗用等问题都加剧了移动支付的安全问题。文章从移动支付交易流程入手,分析了移动支付系统的安全威胁,并提出一种风险评估方法,使交易双方可对交易过程进行安全评级从而进行安全决策。该方法使用STRIDE威胁模型建立指标体系,使用模糊综合评价法对交易进行风险评估,并建立了基于可信网络连接的威胁缓解模型,根据评估结果对移动支付交易进行安全性增强,在评估中使用量化指标并达到了交易级细粒度的风险评估。文章最后使用典型应用场景案例验证和分析了该风险评估方法的有效性。

关键词: 移动支付, 风险评估, 模糊综合评价法

Abstract:

With the development of mobile communication technology and the popularity of smart phones, mobile payment is becoming more and more popular. However, the security weaknesses of wireless networks, system vulnerabilities in mobile devices, and account hijacking have all contributed to the security of mobile payments. This paper starts with the mobile payment transaction process, analyzes the security threat of mobile payment system, and proposes a risk assessment method, so that both parties can conduct security assessment on the transaction process to make security decisions. The method uses the STRIDE threat model to build an indicator system and uses a fuzzy comprehensive evaluation method to assess the risk of the transaction. A threat mitigation model based on trusted network connection (TNC) is established, and the security of mobile payment system is enhanced according to the evaluation result. Quantitative indicators are used in the assessment and a transaction-level fine-grained risk assessment is achieved. At the end of this paper, the risk assessment method is validated and analyzed by using two typical application scenarios.

Key words: mobile payment, risk assessment, fuzzy comprehensive evaluation

中图分类号:

TP309

刘永磊, 金志刚, 郝琨, 张伟龙. 基于STRIDE和模糊综合评价法的移动支付系统风险评估[J]. 信息网络安全, 2020, 20(2): 49-56.

LIU Yonglei, JIN Zhigang, HAO KUN, ZHANG Weilong. Risk Assessment of Mobile Payment System Based on STRIDE and Fuzzy Comprehensive Evaluation[J]. Netinfo Security, 2020, 20(2): 49-56.

图/表 7

图1

图2

图3

表1

表2

图4

图5

参考文献 20

[1]	SUN Jing, CHI Ting, Law R.Investigating the Adoption of Apparel M-commerce in the US Market[J]. International Journal of Clothing Science and Technology, 2019, 31(4): 544-563.
[2]	CHUN S H.E-Commerce Liability and Security Breaches in Mobile Payment for e-Business Sustainability[J]. Sustainability, 2019, 11(3): 715
[3]	AGHILI S F, MALA H, Security Analysis of An Ultra-lightweight RFID Authentication Protocol for M-commerce[J]. International Journal of Communication Systems, 2019, 32(3): 37-38
[4]	YANG Wenbo, LI Juanru, ZHANG Yuanyuan, et al. Security Analysis of Third-party in App Payment in Mobile Applications[EB/OL]. , 2019-4-15.
[5]	OBAID M, BAYRAM Z, SALEH M. Instant Secure Mobile Payment Scheme[EB/OL]. , 2019-4-15.
[6]	SONG Bo, YAN Wei, ZHANG Tianjiao.Cross-border E-commerce Commodity Risk Assessment Using Text Mining and Fuzzy Rule-based reasoning[J]. Advanced Engineering Informatics, 2019, 40(5): 69-80.
[7]	ZHANG Xinmin, ZHAO Xumin, WU Na.Credit Risk Assessment Model for Cross-border E-commerce in a BP Neural Network Based on PSO-GA[J]. Agro Food Industry Hi-Tech, 2017, 28(1): 411-414.
[8]	ZHUANG Zhengyun, LIN Changching, CHEN Chihyung, et al. Rank-Based Comparative Research Flow Benchmarking the Effectiveness of AHP-GTMA on Aiding Decisions of Shredder Selection by Reference to AHP-TOPSIS[EB/OL]. , 2019-4-15.
[9]	ZHANG Yajuan, DENG Xinyang, WEI Daijun, et al.Assessment of E-Commerce Security Using AHP and Evidential Reasoning[J]. Expert Systems with Applications, 2012, 39(3): 3611-3623.
[10]	KAROUI Kamel.Security Novel Risk Assessment Framework Based on Reversible Metrics: A Case Study of DDoS Attacks on An E-commerce Web Server[J]. International Journal of Network Management, 2016, 26(6): 553-578.
[11]	DAI Yue, VIKEN G, JOO E, et al.Risk Assessment in E-commerce: How Sellers’ Photos, Reputation Scores, and the Stake of Atransaction in Fluence Buyers’ Purchase Behavior and Information Processing[J]. Computers in Human Behavior, 2018, 84(5): 342-351.
[12]	ADAM Shostack.Threat Modeling Designing for Security[M]. Beijng: China Machine Press, 2015.
	亚当·斯塔克.威胁建模设计和交付更安全的软件[M].北京:机械工业出版社,2015.
[13]	Trusted Computing Group. TCG Guidance for TPM 2.0 Mobile Implementations[EB/OL]. , 2019-4-15.
[14]	Cloud Security Alliance. The Treacherous 12-Top Threats to Cloud Computing[EB/OL]. , 2019-4-15.
[15]	XU Junfeng, WU Shizhong, ZHANG Li.Survey on Attack and Defense Technologies of Android Software Security[J]. Transactions of Beijing Institute of Technology, 2017, 37(2): 163-167.
	徐君锋,吴世忠,张利. Android软件安全攻防对抗技术及发展[J]. 北京理工大学学报,2017,37(2):163-167.
[16]	BARROWCLOUGH J P, ASIF R. Securing Cloud Hypervisors: A Survey of the Threats, Vulnerabilities, and Countermeasures[EB/OL]. , 2019-4-15.
[17]	JU Pinghua, HUANG Guangquan, XIAO Liming, et al.Optimization Method of Assembly Sequence Based on Multi-objective Fuzzy Comprehensive Evaluation[J]. Journal of Harbin Institute of Technology, 2018, 50(7): 154-163.
	鞠萍华,黄广全,肖莉明,等.多目标模糊综合评价的装配序列优选方法[J]. 哈尔滨工业大学学报,2018,50(7):154-163.
[18]	WANG Shuang, LI Zhiping, XIN Qian, et al.Overall Safety Assessment of Fuzzy Comprehensive Evaluation Method[J]. Modern Electronics Technique, 2019, 42(11): 82-86.
	王双,李志平,辛倩,等.模糊综合评价法的整体安全评估[J]. 现代电子技术,2019,42(11):82-86.
[19]	Trusted Computing Group. TCG Trusted Network Communications TNC Architecture for Interoperability Specification Version 2.0[EB/OL]. , 2019-4-15.
[20]	ZHAO Bo, XIANG Cheng, ZHANG Huanguo.A Trusted Network Connect Protocol for Resisting Man-in-the-Middle Attack[J]. Chinese Journal of Computers, 2019, 42(5): 1137-1148.
	赵波,向程,张焕国.一种抵御中间人攻击的可信网络连接协议[J]. 计算机学报,2019,42(5):1137-1148.

指标	名称	威胁	示例说明
1	信誉	T	恶意刷评价
2	交易数据安全	T、I	窃取隐私数据、数据丢失
3	通信安全	S、T、R、I、D、E	4G、Wi-Fi安全
4	移动设备安全	S、T、R、I、E	手机病毒、非法接口、恶意APP
5	云服务器安全	T、I、E	虚拟化安全、认证和接入安全
6	移动支付协议安全	S、T、R、I	认证漏洞、公平性问题、信任危机
7	拒绝服务攻击	D	资源耗尽攻击、分布式DoS
8	系统漏洞	S、T、R、I、D、E	操作系统内核、类库、应用程序漏洞
9	APT攻击	I、E	长期隐蔽攻击
10	身份认证安全	S、T、R、I、D、E	账号窃取

安全等级	区间	定义	离散值T
危险	(0,1)	面临严重安全危险	0
低	[1,2)	面临较高安全风险	1
中	[2,3)	面临中等安全风险	2
较高	[3,4)	面临较低安全风险	3
高	[4,5)	面临低安全风险	4

基于STRIDE和模糊综合评价法的移动支付系统风险评估

Risk Assessment of Mobile Payment System Based on STRIDE and Fuzzy Comprehensive Evaluation

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

图/表 7

参考文献 20

相关文章 15

编辑推荐

Metrics

本文评价

[1]	王庆, 屠晨阳, shenjiahui@iie.ac.cn. 侧信道攻击通用框架设计及应用[J]. 信息网络安全, 2017, 17(5): 57-62.
[2]	董晓宁, 赵华容, 李殿伟, 王甲生. 基于模糊证据理论的信息系统安全风险评估研究[J]. 信息网络安全, 2017, 17(5): 69-73.
[3]	梁智强, 林丹生. 基于电力系统的信息安全风险评估机制研究[J]. 信息网络安全, 2017, 17(4): 86-90.
[4]	刘永磊, 金志刚, 高天迎. 移动支付系统安全性研究综述[J]. 信息网络安全, 2017, 17(2): 1-5.
[5]	李涛, 张驰. 基于信息安全等保标准的网络安全风险模型研究[J]. 信息网络安全, 2016, 16(9): 177-183.
[6]	树雅倩, 付安民, 黄振涛. 基于云平台的移动支付类恶意软件检测系统的设计与实现[J]. 信息网络安全, 2016, 16(1): 59-63.
[7]	滕希龙, 曲海鹏. 基于区间值直觉模糊集相似性的信息安全风险评估方法研究[J]. 信息网络安全, 2015, 15(5): 62-68.
[8]	文伟平, 郭荣华, 孟正, 柏皛. 信息安全风险评估关键技术研究与实现[J]. 信息网络安全, 2015, 15(2): 7-8.
[9]	何鹏程, 方勇. 一种基于Web日志和网站参数的入侵检测和风险评估模型的研究[J]. 信息网络安全, 2015, 15(1): 61-65.
[10]	王星河，余洋，夏春和. 面向网络协同防御的动态风险评估模型[J]. 信息网络安全, 2014, 14(9): 39-43.
[11]	章恒，禄凯. 构建云计算环境的安全检查与评估指标体系[J]. 信息网络安全, 2014, 14(9): 115-119.
[12]	王红凯，王志强，龚小刚. 移动互联网安全问题及防护措施探讨[J]. 信息网络安全, 2014, 14(9): 207-210.
[13]	. 基于 BP 神经网络的铁路互联网售票系统信息安全评估方法[J]. , 2014, 14(7): 81-.
[14]	. 基于层次分析涉密信息系统风险评估[J]. , 2014, 14(3): 80-.
[15]	李增鹏;马春光;李迎涛. 基于层次分析涉密信息系统风险评估[J]. , 2014, 14(3): 0-0.