关键词: 面向服务架构, Web服务, 网上支付, 安全体系, π-演算

Abstract: To improve the security of Internet payment system, the service-oriented loosely-coupled security architecture was proposed. Based on Service-Oriented Architecture (SOA), integrating the enterprise service bus and other security services such as Public Key Infrastructure (PKI), security token, encryption, signature, authentication and access control, etc., the Internet payment security was enhanced. Furthermore, the USBKey two-factor authentication service model based on π-calculus was also proposed. A formal method was used to verify the process of the fine-grained services combining with coarse-grained service. The design was incorporated into Internet payment system in commercial bank. Application results showed that it was effective and convenient.

Key words: service-oriented architecture, Web services, Internet payment, security architecture, π-calculus