Security Enhanced EMV-Based Mobile Payment Protocol
Near field communication has enabled customers to put their credit cards into a smartphone and use the phone for credit card transaction. But EMV contactless payment allows unauthorized readers to access credit cards. Besides, in offline transaction, a merchant’s reader cannot verify whether a card...
Saved in:
| Main Author: | |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
Wiley
2014-01-01
|
| Series: | The Scientific World Journal |
| Online Access: | http://dx.doi.org/10.1155/2014/864571 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
| _version_ | 1849410268618031104 |
|---|---|
| author | Ming-Hour Yang |
| author_facet | Ming-Hour Yang |
| author_sort | Ming-Hour Yang |
| collection | DOAJ |
| description | Near field communication has enabled customers to put their credit cards into a smartphone and use the phone for credit card transaction. But EMV contactless payment allows unauthorized readers to access credit cards. Besides, in offline transaction, a merchant’s reader cannot verify whether a card has been revoked. Therefore, we propose an EMV-compatible payment protocol to mitigate the transaction risk. And our modifications to the EMV standard are transparent to merchants and users. We also encrypt the communications between a card and a reader to prevent eavesdropping on sensitive data. The protocol is able to resist impersonation attacks and to avoid the security threats in EMV. In offline transactions, our scheme requires a user to apply for a temporary offline certificate in advance. With the certificate, banks no longer need to lower customer’s credits for risk control, and users can have online-equivalent credits in offline transactions. |
| format | Article |
| id | doaj-art-7829dcb59e584ebd873fc79ae026bf45 |
| institution | Kabale University |
| issn | 2356-6140 1537-744X |
| language | English |
| publishDate | 2014-01-01 |
| publisher | Wiley |
| record_format | Article |
| series | The Scientific World Journal |
| spelling | doaj-art-7829dcb59e584ebd873fc79ae026bf452025-08-20T03:35:11ZengWileyThe Scientific World Journal2356-61401537-744X2014-01-01201410.1155/2014/864571864571Security Enhanced EMV-Based Mobile Payment ProtocolMing-Hour Yang0Department of Information & Computer Engineering, Chung Yuan Christian University, 200 Chung Pei Road, Chung Li, Taoyuan County 32023, TaiwanNear field communication has enabled customers to put their credit cards into a smartphone and use the phone for credit card transaction. But EMV contactless payment allows unauthorized readers to access credit cards. Besides, in offline transaction, a merchant’s reader cannot verify whether a card has been revoked. Therefore, we propose an EMV-compatible payment protocol to mitigate the transaction risk. And our modifications to the EMV standard are transparent to merchants and users. We also encrypt the communications between a card and a reader to prevent eavesdropping on sensitive data. The protocol is able to resist impersonation attacks and to avoid the security threats in EMV. In offline transactions, our scheme requires a user to apply for a temporary offline certificate in advance. With the certificate, banks no longer need to lower customer’s credits for risk control, and users can have online-equivalent credits in offline transactions.http://dx.doi.org/10.1155/2014/864571 |
| spellingShingle | Ming-Hour Yang Security Enhanced EMV-Based Mobile Payment Protocol The Scientific World Journal |
| title | Security Enhanced EMV-Based Mobile Payment Protocol |
| title_full | Security Enhanced EMV-Based Mobile Payment Protocol |
| title_fullStr | Security Enhanced EMV-Based Mobile Payment Protocol |
| title_full_unstemmed | Security Enhanced EMV-Based Mobile Payment Protocol |
| title_short | Security Enhanced EMV-Based Mobile Payment Protocol |
| title_sort | security enhanced emv based mobile payment protocol |
| url | http://dx.doi.org/10.1155/2014/864571 |
| work_keys_str_mv | AT minghouryang securityenhancedemvbasedmobilepaymentprotocol |