Abstract: The simplified SET purchase protocol is analyzed using a formal analysis method called the approach of the running-mode analysis. Byanalyzing the protocol, six different types of attack are found, of which four types of attack are first found. An in-depth analysis and classify is also made to find the leaks of the protocol. Finally, some improvements are made to avoid these attacks effectively, which improve the security of the protocol.

Key words: SET purchase protocol; Running-mode analysis; Formal analysis

摘要： 使用运行模式法对SET 支付协议的简化版本即Lu-Smolka 协议进行了形式化分析，找到了6 种不同的攻击形式，其中4 种是新发现的攻击，通过对这6 种攻击形式的深入分析和分类，发现了原协议中存在的漏洞，最后对该协议进行了改进，从而有效避免了以上6 种攻击，提高了协议的安全性。

关键词: SET 支付协议；运行模式分析法；形式化分析