Article

Free access

Formal analysis of card-based payment systems in mobile devices

Authors:

Vijayakrishnan Pasupathinathan,

Josef Pieprzyk,

Huaxiong Wang,

Joo Yeon ChoAuthors Info & Claims

ACSW Frontiers '06: Proceedings of the 2006 Australasian workshops on Grid computing and e-research - Volume 54

Pages 213 - 220

Published: 01 January 2006 Publication History

PDF eReader

Abstract

To provide card holder authentication while they are conducting an electronic transaction using mobile devices, VISA and MasterCard independently proposed two electronic payment protocols: Visa 3D Secure and MasterCard Secure Code. The protocols use pre-registered passwords to provide card holder authentication and Secure Socket Layer/ Transport Layer Security (SSL/TLS) for data confidentiality over wired networks and Wireless Transport Layer Security (WTLS) between a wireless device and a Wireless Application Protocol (WAP) gateway. The paper presents our analysis of security properties in the proposed protocols using formal method tools: Casper and FDR2. We also highlight issues concerning payment security in the proposed protocols.

References

[1]

C.A.R Hoare (1985), Communicating Sequential Processes , Prentice Hall International.

Digital Library

Google Scholar

[2]

Netscape Communications (), SSL 3.0 specification, http://wp.netscape.com/eng/ssl3/.

Google Scholar

[3]

Formal Systems (Europe) Ltd (), Failuers-Divergence Refinement, FDR 2 User Manual, http://www.fsel.com/.

Google Scholar

[4]

Gavin Lowe (1999 ), Casper - A compiler for the analysis of security protocols, User Manual and Tutorial, Ver1.3

Google Scholar

[5]

MasterCard (1999), Master Card Secure code - Merchat implementation guide, www.mastercardonline.com.

Google Scholar

[6]

MasterCard & VISA (), SET Secure Electronic transaction protocol, Book 1,2 and 3, www.setco.org.

Google Scholar

[7]

VISA(2002), 3D Secure protocol specification - Core functions, international.visa.com/fb/main.jsp.

Google Scholar

[8]

VISA (2002), 3D Secure system overview, international.visa.com/fb/main.jsp.

Google Scholar

[9]

VISA (2003), 3-D Secure protocol specification - Extensions for Mobile Internet Devices, international.visa.com/fb/main.jsp.

Google Scholar

Cited By

View all

Ahamad SSastry VUdgata SChandrasekhar RTanenbaum ARangan P(2012)A secure and optimized mobile payment framework with formal verificationProceedings of the First International Conference on Security of Internet of Things10.1145/2490428.2490432(27-35)Online publication date: 17-Aug-2012
https://dl.acm.org/doi/10.1145/2490428.2490432
Kumar SRabara SMartin JSohn SUm KKo FKwack KLee JKou GNakamura KFong AMa PChen LHwang SCho KKawata S(2009)MPCSProceedings of the 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human10.1145/1655925.1656029(571-579)Online publication date: 24-Nov-2009
https://dl.acm.org/doi/10.1145/1655925.1656029

Index Terms

Recommendations

Mobile Payment based on RFID-SIM Card
CIT '10: Proceedings of the 2010 10th IEEE International Conference on Computer and Information Technology

A mobile payment solution, called SIMpass is presented in this paper, SIMpass is a contactless technology solution based on RFID-SIM implemented with Dual-interface SIM card. Moreover, the SIMpass technology scheme is described in this paper. Compare ...
A secure NFC mobile payment protocol based on biometrics with formal verification

In this paper, we propose a secure NFC mobile payment protocol based on biometrics SNMPBs using wireless public key infrastructure WPKI and universal integrated circuit card UICC. Electronic signatures generated in this protocol are considered qualified ...
Payment card forensic analysis

While one would not even consider them alike, payment cards are one of the most valuable and widely used embedded systems. Payment card systems are probably the most attacked and counterfeited. In fact, even though the use of smart cards have introduced ...

Comments

Information & Contributors

Information

Published In

ACSW Frontiers '06: Proceedings of the 2006 Australasian workshops on Grid computing and e-research - Volume 54

January 2006

230 pages

ISBN:1920682368

Publisher

Australian Computer Society, Inc.

Australia

Publication History

Published: 01 January 2006

Author Tags

Qualifiers

Article

Conference

ACSW Frontiers '06

ACSW Frontiers '06: Grid computing and e-research

January 16 - 19, 2006

Tasmania, Hobart, Australia

Acceptance Rates

Overall Acceptance Rate 204 of 424 submissions, 48%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

2
Total Citations
View Citations
1,349
Total Downloads

Downloads (Last 12 months)70
Downloads (Last 6 weeks)29

Reflects downloads up to 11 Aug 2024

Other Metrics

View Author Metrics

Citations

Cited By

View all

Ahamad SSastry VUdgata SChandrasekhar RTanenbaum ARangan P(2012)A secure and optimized mobile payment framework with formal verificationProceedings of the First International Conference on Security of Internet of Things10.1145/2490428.2490432(27-35)Online publication date: 17-Aug-2012
https://dl.acm.org/doi/10.1145/2490428.2490432
Kumar SRabara SMartin JSohn SUm KKo FKwack KLee JKou GNakamura KFong AMa PChen LHwang SCho KKawata S(2009)MPCSProceedings of the 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human10.1145/1655925.1656029(571-579)Online publication date: 24-Nov-2009
https://dl.acm.org/doi/10.1145/1655925.1656029

View Options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Get Access

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Abstract

References

Cited By

Index Terms

Recommendations

Mobile Payment based on RFID-SIM Card

A secure NFC mobile payment protocol based on biometrics with formal verification

Payment card forensic analysis

Comments

Information

Published In

Publisher

Publication History

Author Tags

Qualifiers

Conference

Acceptance Rates

Contributors

Other Metrics

Bibliometrics

Article Metrics

Other Metrics

Citations

Cited By

View options

PDF

eReader

Get Access

Login options

Full Access

Figures

Other

Share

Share this Publication link

Share on social media

Affiliations