A secure and optimized mobile payment framework with formal verification

Authors:
Shaik Shakeel Ahamad;V. N. Sastry;Siba K. Udgata
Affiliations:
University of Hyderabad, Gachibowli, Hyderabad;IDRBT, Castle Hills, Masab Tank, Hyderabad;DCIS, University of Hyderabad, Gachibowli, Hyderabad
Venue:
Proceedings of the First International Conference on Security of Internet of Things
Year:
2012

Citing 8
Cited 0

A Secure Account-Based Mobile Payment Protocol

ITCC '04 Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 2 - Volume 2
Accountability Logic for Mobile Payment Protocols

ITCC '04 Proceedings of the International Conference on Information Technology: Coding and Computing (ITCC'04) Volume 2 - Volume 2
EC-PAY: An Efficient and Secure ECC-Based Wireless Local Payment Scheme

ICITA '05 Proceedings of the Third International Conference on Information Technology and Applications (ICITA'05) Volume 2 - Volume 02
Formal analysis of card-based payment systems in mobile devices

ACSW Frontiers '06 Proceedings of the 2006 Australasian workshops on Grid computing and e-research - Volume 54
Understanding the intruder through attacks on cryptographic protocols

Proceedings of the 44th annual Southeast regional conference
A new mobile payment system with formal verification

International Journal of Internet Technology and Secured Transactions
The AVISPA tool for the automated validation of internet security protocols and applications

CAV'05 Proceedings of the 17th international conference on Computer Aided Verification
Mobile payment: A journey through existing procedures and standardization initiatives

IEEE Communications Surveys & Tutorials

Quantified Score

Hi-index	0.00

Visualization

Abstract

In this paper we propose a Secure and Optimized Mobile Payment Framework based on Universal Integrated Circuit Card (UICC) (a) which summarizes a mobile payment in relation to several different participants, (b) a procedure of personalizing UICC by the client c) a procedure of provisioning and personalization (Mutual Authentication, Key Agreement Protocol & a procedure for ensuring non repudiation without adopting WPKI) of Mobile Payments Application (which is on UICC) by the Bank d) a mobile payment protocol is proposed between the personalized Mobile Payment Application on UICC and the Bank Server which ensures all the security properties. All the proposed protocols have been successfully verified using AVISPA and Scyther Tools.