A cloud-based secure authentication protocol for contactless-NFC payment

Madhoun, Nour El; Guenane, Fouad Amine; Pujolle, Guy

doi:10.1109/cloudnet.2015.7335332

Cited by 16 publications

(34 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Furthermore, few of them have focused smart card-based secure protocol [44], [61], [62]. However, this study needs to improve the proposed solution towards developing a prototype as well as illustrate its efficiency in real time application.…”

Section: Resultsmentioning

confidence: 99%

See 1 more Smart Citation

A Review of Secure Authentication based e-Payment Protocol

Ratnakanth¹

2017

ijacsa

View full text Add to dashboard Cite

Abstract-The growth of e-commerce platform is increasing rapidly and possesses a higher level of hazard compared to standard applications as well as it requires a more prominent level of safety.Additionally, the transaction and their data about clients are enormously sensitive, security production and privacy is exceptionally crucial. Consequently, the confirmation is generally vital towards security necessities as well as prevents the data from stolen and unauthorized person over the transaction of e-payment. At the same time, privacy strategies are essential to address the client data security. Because of this, the data protection and security ought to be viewed as a central part of ebusiness framework plan. Particularly enormous consideration is given to cash exchanges assurance. In the past decades, various methods were created to permit secure cash transaction using epayment frameworks. This study will review and discuss the epayment scheme. It uses various encryption algorithms and methods to accomplish data integrity, privacy, non-repudiation and authentication.

show abstract

Section: Resultsmentioning

confidence: 99%

“…Madhoun et al [44]brought out a novel security protocol for payments and transactions through NFC which resolved the security vulnerabilities which were identified in the EMV protocol. This is based on cloud infrastructure to ascertain the authenticity of payment terminals and offer confirmation to smartphones.…”

Section: Studies Related To Smart Cardmentioning

confidence: 99%

A Review of Secure Authentication based e-Payment Protocol

Ratnakanth¹

2017

ijacsa

View full text Add to dashboard Cite

show abstract

“…In fact, authors did not take into consideration the advantage of an NFC smartphone having both Wi-Fi and 4G interfaces that may be useful for direct communication with the server: the NFC smartphone connects firstly using NFC radio waves to the payment terminal, the latter then communicates with the server. In our previous studies [8] and [14], we have designed security protocols for NFC payment systems based on asymmetric key cryptography and allowing to overcome EMV security weaknesses in EMV card authentication phase. They ensure: mutual authentication, non-repudiation, confidentiality and integrity of banking data.…”

Section: Related Literaturementioning

confidence: 99%

“…The proposal [14] is intended to secure NFC mobile payment transactions between NFC smartphones and payment terminals. It is executed in the offline mode where the payment terminal is not connected to the issuing bank and is responsible for the execution of the security procedure authenticating an NFC smartphone.…”

Section: Related Literaturementioning

confidence: 99%

“…The research work [8], [13] and [14], are different from the classical EMV card authentication phase (online or offline): because they implement new security architectures by using new security elements for each actor as: multiple electronics certificates and signatures in [8] and [14], symmetric keys in [13], etc. However, these large differences are too expensive although they theoretically participate in solving EMV vulnerabilities.…”

Section: Related Literaturementioning

confidence: 99%

See 1 more Smart Citation

Security Enhancements in EMV Protocol for NFC Mobile Payment

Madhoun

Pujolle

2016

2016 IEEE Trustcom/BigDataSE/Ispa

Self Cite

View full text Add to dashboard Cite

Today, by integrating Near Field Communication (NFC) technology in smartphones, bank cards and payment terminals, a purchase transaction can be executed immediately without any physical contact, without entering a PIN code or a signature. Europay Mastercard Visa (EMV) is the standard dedicated for securing contactless-NFC payment transactions. However, it does not ensure two main security proprieties: (1) the authentication of the payment terminal to the client's payment device, (2) the confidentiality of personal banking data. In this paper, we first of all detail EMV standard and its security vulnerabilities. Then, we propose a solution that enhances the EMV protocol by adding a new security layer aiming to solve EMV weaknesses. We formally check the correctness of the proposal using a security verification tool called Scyther.

show abstract

A lightweight and secure NFC‐base mobile payment protocol ensuring fair exchange based on a hybrid encryption algorithm with formal verification

Thammarat

Kurutach

2019

Int J Communication

View full text Add to dashboard Cite

SummaryDuring the past few years, many near‐field communication (NFC) mobile payment protocols have been widely used and received more and more attentions. This could be an essential factor for the growth of the world economy and leads to the improvement of the quality of life for human beings. The NFC mobile payment is one prominent approach in allowing m‐commerce to conduct a sales transaction. However, fair exchange and information security are significant concerns in creating trust among the parties participating in the transaction. Many NFC mobile payment protocols have been introduced by researchers. But, most of them still lack some crucial properties of information security and fair exchange, and this can be an obstacle to their uses. In this article, we propose an NFC mobile payment protocol that possesses comprehensive properties of both information security and fair exchange for sales transaction processing. The protocol employs both symmetric and asymmetric encryptions, hash function, and the technique of offline session key generation, in order to improve the security while maintaining the lightweight property. The fairness analysis shows that the proposed protocol is more competent and effective than others. It can resolve any dispute in case one party misbehaves. Finally, the proposed protocol's security has been successfully verified using both Burrows, Abadi and Needham (BAN logic) and the Scyther tool.

show abstract

A cloud-based secure authentication protocol for contactless-NFC payment

Cited by 16 publications

References 4 publications

A Review of Secure Authentication based e-Payment Protocol

A Review of Secure Authentication based e-Payment Protocol

Security Enhancements in EMV Protocol for NFC Mobile Payment

A lightweight and secure NFC‐base mobile payment protocol ensuring fair exchange based on a hybrid encryption algorithm with formal verification

Contact Info

Product

Resources

About