摘要:针对手机支付安全问题,通过介绍手机的现场支付和远场支付业务,分析了手机终端、无线网络、支付平台所面临的安全威胁,提出了解决手机支付安全问题的安全框架。该安全框架通过综合应用密码技术、访问控制、安全协议、安全审计等4种安全技术手段和手机终端安全管理策略、通信传输安全管理策略、支付平台安全管理策略等3种安全管理策略为保障手机支付的安全提供了一种解决方案。%For the mobile payment security, the mobile field payment and far-field payment service is introduced, the security threat which mobile terminals, wireless network, payment platform faced is analyzed, the security framework which can solve the problem of mobile payment is proposed. The security framework provides a solution for protecting the security of mobile payment by comprehensive application of four security technology methods, such as cryptographic technique, access control, security protocol, security audit, and three security management policy, such as mobile terminals security management policy, communication networks security management policy, payment platform security management policy.