A Proposed NFC Payment Application

Pourghomi, Pardis; Saeed, Muhammad Qasim; Ghinea, Gheorghiţă

doi:10.14569/ijacsa.2013.040824

Cited by 18 publications

(16 citation statements)

References 6 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Some mobile transaction mechanisms [19]- [21] have proposed eliminating the requirement of a shared secret between the shop and mobile network operator (MNO). Although the shop has no link with the MNO, a message digitally signed by the MNO is considered authentic and its contents are trusted by the shop.…”

Section: Related Workmentioning

confidence: 99%

See 1 more Smart Citation

Mobile Payment Based on Transaction Certificate Using Cloud Self-Proxy Server

Sung

Kong

Youn

2017

ETRI J

View full text Add to dashboard Cite

Recently, mobile phones have been recognized as the most convenient type of mobile payment device. However, they have some security problems; therefore, mobile devices cannot be used for unauthorized transactions using anonymous data by unauthenticated users in a cloud environment. This paper suggests a mobile payment system that uses a certificate mode in which a user receives a paperless receipt of a product purchase in a cloud environment. To address mobile payment system security, we propose the transaction certificate mode (TCM), which supports mutual authentication and key management for transaction parties. TCM provides a software token, the transaction certificate token (TCT), which interacts with a cloud self-proxy server (CSPS). The CSPS shares key management with the TCT and provides simple data authentication without complex encryption. The proposed self-creating protocol supports TCM, which can interactively communicate with the transaction parties without accessing a user's personal information. Therefore, the system can support verification for anonymous data and transaction parties and provides user-based mobile payments with a paperless receipt.

show abstract

Section: Related Workmentioning

confidence: 99%

“…To address these issues, transaction protocols were based on the NFC cloud wallet model [20], [23]- [25], NFC payment application [21], and the scheme for secure cloud-based NFC transactions [19]. However, these systems have an insufficient architecture and protocol for cloud-based NFC payment applications.…”

Section: Related Workmentioning

confidence: 99%

Mobile Payment Based on Transaction Certificate Using Cloud Self-Proxy Server

Sung

Kong

Youn

2017

ETRI J

View full text Add to dashboard Cite

show abstract

“…As the user may wish to add more applications to his NFC phone, this issue brings a limitation for existing solution because each SE supports certain storage capacity [14]. The other issue with the SE is that companies have to meet the requirements of organisations such as Europay, MasterCard and Visa (EMV) [15] to provide high level security in order to store cards data.…”

Section: Cloud-based Nfc Solutionmentioning

confidence: 99%

“…This model [1][13] [14] introduced the idea of using cloud computing to manage NFC payment applications which result in flexible and secure management, personalization and ownership of the applications. This architecture provides easy management of multiple users and delivers personalized contents to each user.…”

Section: Nfc Cloud Wallet Modelmentioning

confidence: 99%

Trusted integration of cloud-based NFC transaction players

Pourghomi

Saeed

Ghinea

2013

2013 9th International Conference on Information Assurance and Security (IAS)

Self Cite

View full text Add to dashboard Cite

Abstract-Near Field Communication (NFC) is a short range wireless technology that provides contactless transmission of data between devices. With an NFC enabled device, users can exchange information from one device to another, make payments and use their NFC enabled device as their identity. As the main payment ecosystem players such as service providers and secure element issuers have crucial roles in a multi-application mobile environment similar to NFC, managing such an environment has become very challenging. One of the technologies that can be used to ensure secure NFC transaction is cloud computing which offers wide range of advantages compare to the use of a Secure Element (SE) as a single entity in an NFC enabled phone. This approach provides a comprehensive leadership of the cloud provider towards managing and controlling customer's information where it allows the SE which is stored within an NFC phone to deal with authentication mechanisms rather than storing and managing sensitive transaction information. This paper discusses the NFC cloud Wallet model which has been proposed by us previously [1] and introduces a different insight that defines a new integrated framework based on a trusted relationship between the vendor and the Mobile Network Operator (MNO). We then carry out an analysis of such a relationship to investigate different possibilities that arise from this approach.

show abstract

“…However, tokenisation is considered as a newly introduced paradigm which has not yet satisfied its surroundin g security risk issues. In [7,8,9,10], the SIM secure element approach recommends though an MNO-centred model, where the network operator is in charge of provisioning and managing the SE OTA. In contrast, embedded SE has always been an interest to handset manufacturers, where they can take a bigger role as the SE is embedded in the handset and not in the SIM; subsequently, there is not much expected from MNOs in this scenario.…”

Section: Introductionmentioning

confidence: 99%