With the rapid development of computer technology, society has entered the era of network economy. The existence of the Internet has transformed the traditional business model, narrowing the time and space, and e-commerce has emerged as a new concept of the digital society. It greatly reduces the cost of traditional logistics procedures, expanding customer base, etc., making information technology and digital networks the backbone of traditional industries. According to experts' estimates, by 2004, the value of online goods and services trade will reach 2.5 trillion US dollars. The CA (Certificate Authority), digital certificate, applies the public key system in cryptography to an open Internet, and proposes a new concept of PKI technology and application. By providing a secure authentication structure and digital certificates, Provides strong security support for network communications and electronic transactions. Banks are an indispensable part of online commerce. The China Financial Certification Center (CFCA), led by the People's Bank of China and jointly established by 12 commercial banks, is a fair and authoritative safety certification body recognized by the financial industry. Its goal is to provide certification services for various certification needs of the financial industry, including e-commerce, online banking, payment systems and management information systems. The initial construction will meet the needs of e-commerce, while at the same time taking into account the needs of online banking. Its establishment has great pioneering significance and cannot be ignored for promoting the development of China's e-commerce industry and promoting the development of the network security industry.
At present, public key certificates are an important means and tool to ensure the security of e-commerce transaction data. Public key certificate, also known as electronic certificate, digital certificate. It provides a public key system (asymmetric cryptosystem)-based certificate for each user participating in e-commerce activities such as online transactions and online payment through a fair, authoritative and credible certification center to realize online data transmission. The undeniability of authenticity, privacy, integrity and behavior. The certificate issued by the Financial Certification Center, in addition to the characteristics of the network ID card of the general certificate, in view of the financial characteristics of the CFCA certificate application review process and the special financial implications within the certificate domain, the certificate issued by the financial CA can also be associated with the bank background. The system works closely to support various business application modes of commercial banks. CFCA can issue SET certificates based on bank card services, and can also issue enterprise certificates (NSET certificates) for B2B services, personal certificates, etc., to support payment systems, office and Management information system and other applications. Since the signing on August 30, 1999, under the cooperation of the Financial CA Leading Group and various commercial banks, the Financial Certification Center has adopted business applications, certificate policies (CPS) and rules, and system security. The function construction is the leading direction. After the demand analysis, system design and detailed design, development and testing, after more than half a year of project implementation, the current project construction is nearing completion. The financial certification center SET and NSET are respectively in 1 The first batch of experimental certificates were issued at the end of March and the end of March, indicating that the system already has a certification center. Basic functions. The Financial Certification Center will be put into trial operation in the near future. The annual number of certificates issued in the first phase of the project is 250,000. With the rapid development of e-commerce, the construction of the second phase is imminent, and the annual certification will be expanded to 100. From 10,000 to 2 million, the system will support multiple encryption algorithms and consider using smart cards for development applications.
The financial certification system is mainly composed of three parts: CA Center, Commercial Bank RA (Registration Audit System) system and user terminal. The structure is shown in the following figure.
The CA Center consists of two systems, SET and NSET. Its system structure has the following parts:
First, WEB server: accept the user's online registration application, and transfer the online application to the commercial bank RA system to provide HTTP service.
Second, the directory server: store a list of certificates, provide online certificate status query, can respond to certificate retrieval requirements quickly and efficiently.
Third, CA server: According to the registration audit information uploaded by the RA system, respond to the user's certificate request, generate and issue a certificate in real time, and support user certificate download. Provide certificate and key management services during the certificate life cycle.
The commercial bank RA structure is divided into three parts: the head office, the city branch and the business acceptance point. The existing financial CA system RA mode supports users to apply face-to-face in the bank.
I. Business acceptance point: accept the face-to-face application of the user, upload the registration application information to the RA system of the city branch, and provide the user real-time acceptance point certificate download service. Submit the certificate download authentication code to the user.
Second, the branch RA system: accept the uploaded user application information, review the user's certificate application according to the bank back-end business database, and upload the audit result to the head office RA server.
Third, the head office RA server: accept the uploaded core results, store and forward to the CA center, and pass the certificate authentication reference code (for evidence collection) generated by the CA center.
The client is also a part of the financial authentication system. The user accesses the CA center by using a browser, and downloads a certificate service tool provided by the financial certification center, such as an electronic wallet, to generate a signature key pair on the user's PC, and submits the certificate request to the CA center. After the signature, the generated certificate is transmitted to the user and stored in the user terminal, and the certificate used by the CA center is used to receive the certificate management service provided by the CA center (this service can be transparent to the user).
The main function of the financial certification system is to provide certificate services and management for users. it includes:
1. Certificate generation and issuance: Users or enterprises can apply for different types and levels of certificates at the bank acceptance point or online for various e-commerce activities, or other network information security transmission purposes, such as: secure E-mail, office management System, etc.
Second, certificate and key update: Provide online update service for keys and certificates. When the user certificate is about to expire, the CA Center can update the client certificate online according to the customized security policy.
Third, the certificate status query: When the user is conducting online transactions or other online business activities, the encryption key provided by the CA center to be installed in the certificate manager zz of the user end.
4. When the user cannot obtain his or her own certificate due to forgotten password or machine failure, the CA Center can restore the user's encryption key and certificate online according to certain procedures.
V. Information Service: Introduce the dynamics of e-commerce at home and abroad, and provide information inquiry and help services for the financial CA system.
6. Certificate application service: Provide relevant interfaces for CA center certificate management and formulate relevant standards.
Security has always been a key issue in the development of e-commerce. In large-scale network systems such as banks, securities, and government offices, encryption devices such as encryption cards and encryption machines are often used to implement security services such as data encryption and digital signature, so that data is confidential, complete, and undeniable. Due to the emergence of new forms of consumption such as online shopping and online payment, the personal PC side also proposed the need for encryption and digital signature. Considering the cost of hardware encryption cards, the economic endurance of individual users, and the ease of operation and maintenance, smart IC cards show broad application prospects in the low-end encryption market. In China, although the application and development of smart cards in the financial industry is only a few years in history, with the in-depth implementation of the gold card project and the continuous improvement of technology, the application of smart cards in the financial industry, from simple magnetic stripe cards, memory Cards, encryption IC cards to CPU cards, from bank transfer business such as consumer transfer, cash access, collection and payment, to online banking based on security control, have achieved comprehensive development and progress. The rapid advancement of information technology has promoted the development of financial services. At the same time, the development of financial services has also placed new demands on IC card technology based on the semiconductor industry. The financial certification system that meets the requirements of e-commerce online payment and service online banking will combine the requirements for secure storage, convenience and ease of use of digital e-Certs with the superior features of smart cards. Its functional requirements are concentrated in the following areas:
First, security needs. The private key of the user's e-Cert is usually stored on the hard disk by the certificate management server on the PC in a certain encryption mode, and is backed up by a floppy disk. The user private key is confidential data with high security requirements. Due to the security limitations of the certificate manager, if an illegal user obtains a login password or cracks the private key in the user certificate file by other means, the user can be impersonated for online business activities. And security management is an important function of COS for smart cartoons. All users need to have strict authorization for data access in the smart card, and the protection is controlled by hardware logic. The card is small and light, so that users can easily save it offline when not in use, and use high security identity when using. Therefore, for data with high sensitivity such as user key, a high-security smart card is an ideal carrier.
Second, mobile storage requirements. With the rapid development of e-commerce in China, more and more users are not restricted by time and space. Mobile office requires users to handle official business and conduct online transactions at different work locations. The compact and easy-to-carry smart card is undoubtedly the best choice for online transactions that are not restricted by geographical restrictions and are not restricted by the office environment and security factors. No matter where the user is, on a PC with a card reader driver, the user can use a smart card with his own certificate and key. "One card is in hand and travels through Shenzhou.
Third, anti-counterfeiting requirements. The CPU card's encryption/decryption function and random number generation function are used to customize the function of the CPU card COS. By developing the user certificate manager software interface with the financial authentication system, the function requirements of the small encryption card can be achieved. The user key is generated in the card and stored in the card. The password application of the certificate server is implemented by a smart card: key generation, digital signature, certificate verification, and encryption/decryption. It can truly realize that the user key does not leave the card, cannot steal the user key, and spoof the user identity. Even if the card is copied, the key information in the legitimate user card cannot be copied, and the real anti-counterfeiting function is provided.
Due to the special needs of the financial certification system smart card application, according to the characteristics of the financial certification system software, combined with the actual needs of e-commerce applications, the following indicators are the key factors for the use and development of smart cards:
1. High security. Card data has a higher level of security. The smart card needs to complete the function of the small encryption card, so the smart card has both high security storage requirements and high encryption and decryption functions.
2, speed. The promotion and application of e-commerce is closely related to the speed of online transactions. The use of smart cards for digital signatures and data addition/de-binding is too slow, which restricts the user's enthusiasm for using the card and affects the transaction effect.
3. High reliability. Since the data stored in the smart card is the user's core secret and cannot be copied, if the data is damaged, the user needs to perform certificate and key update. It is an important part of the financial certification system smart card to ensure the integrity and availability of the data in the card and ensure the use of a considerable amount of data.
4. Policies and laws and regulations. The smart card used by the financial certification system shall comply with the IC card usage specifications of the People's Bank of China. At the same time, since the security of the IC card has a certain relationship with the chip COS and the manufacturer, the independent copyright IC card chip and operating system will become the preferred target. The card encryption algorithm should be authenticated and approved by relevant national authorities.
5. System scalability. With the development of e-commerce activities, in addition to certificate and key storage, the use of smart cards can also add various data such as transaction data, capital information and other storage functions, and develop related applications. Therefore, the loading of COS should adapt to the ever-changing business needs, and can provide users with a system that can be reduced, with good scalability.
It can be foreseen that the combination of smart card technology and application of security certification will greatly promote the development of e-commerce and accelerate the pace of informationization in society. Under the unified regulation of the National Gold Card Project Leading Group, with the strong cooperation of commercial banks, the financial certification system will provide a unified and standard certificate management IC card interface as soon as possible, so that cards produced by different manufacturers can be applied. The standardized security configuration of personal terminals promotes the rapid development of China's e-commerce and Internet businesses.
Many individuals nowadays try to find different ways on how to keep up with their fitness regimen. There are plenty of exercise machines in the market and one of them is the treadmill. These running machines come in two categories: motorized, which are powered by electricity; and manual, which are dependent on the users pedal power.
While motorized systems usually get all the attention, there are plenty of manual ones that can offer fitness individuals a chance to work out without spending a lot of money. So, for those who are interested in purchasing one of these manual exercise machines, we have compiled a list of 5 manual systems that easily stand out from the other running machines in the same category.
This excellent treadmill measures 1240mm long, 480mm wide and 1130mm high and features a heavy-duty steel frame that weighs about 23.5Kgs. It can also accommodate a variety of user weights with a maximum of 80Kgs.
The 1000mm long belt offers a comfortable walking space that is suitable for all user heights and is driven by dual-weighted flywheels which offers not only smoothness in motion, but also quietness of movement, thus enabling you to watch TV or listen to music without being distracted by noisy sounds. The belt also features a textured, non-slip surface to help you walk with ease.
Due to its foldable features, it is highly suitable for those living with minimal room space. This manual machine is equipped with a multi-function console that gives you a visual feedback on your distance, speed, time and calories. The warranty is standard with 1 year warranty for whole machine.
CON: 2 AA batteries are also needed to work the console.
Manual Treadmill,Walking Treadmill,Manual Treadmill For Home Use,Self Propelled Treadmill
Ningbo Kangruida Sports Equipment Co.,Ltd , http://www.kreedatreadmill.com