中文摘要：

针对电子商务中信用卡交易的安全性问题,提出一种基于生物特征识别和一次性口令的电子商务安全交易方案。根据用户交易的敏感度,分别采用2种方案。第一种方案中,采用安全套接层（SSL）协议和指纹特征相结合。第二种方案中,采用虹膜特征和一次性口令相结合,持卡人使用USB身份锁存储虹膜信息,并计算虚拟函数。另外,都通过Hash函数对生物特征进行运算,利用发卡方的公钥加密支付信息,利用商家的公钥对订单信息进行加密。发卡方通过特征的比对来进行身份认证。通过分析表明,该方案能够有效保护交易安全性。

英文摘要：

For the issues that the security problem of the credit card transaction in electronic commerce, an e-commerce security transaction scheme based on biometrics and one-time password is proposed. This paper proposed two schemes according to the sensitivity of the user transactions. In the first scheme, the secure sockets layer （SSL） protocol and fingerprint feature are combined. In the second scheme, the iris feature and one-time password are combined. The cardholder uses USB to store the iris information, and calculates the virtual function. In addition, the Hash function is used to calculate the biological characteristics, the issuerˊs public key is used to encryption payment information, and the businessˊs public key is used to encrypt the order information. Finally, the card issuer performs the identity authentication by feature comparison. The analysis shows that the proposed scheme can effectively protect the transaction security.