A key-based mutual authentication framework for mobile contactless payment system using authentication server

Brij B. Gupta; Shaifali Narayan

doi:10.4018/JOEUC.20210301.oa1

A key-based mutual authentication framework for mobile contactless payment system using authentication server

Brij B. Gupta^*, Shaifali Narayan

^*Corresponding author for this work

School of Computing

Research output: Contribution to journal › Article › peer-review

8 Citations (Scopus)

88 Downloads (Pure)

Abstract

This paper presents a framework for mutual authentication between a user device and a point of sale (POS) machine using magnetic secure transmission (MST) to prevent the wormhole attack in Samsung pay. The primary attribute of this method is authenticating the POS terminals by an authentication server to bind the generated token to a single POS machine. To secure the system from eavesdropping attack, the data transmitted between the user device and the machine is encrypted by using the Elgamal encryption method. The keys used in the method are dynamic in nature. Furthermore, comparison and security analysis are presented with previously proposed systems.

Original language	English
Pages (from-to)	1-16
Number of pages	16
Journal	Journal of Organizational and End User Computing
Volume	33
Issue number	2
DOIs	https://doi.org/10.4018/JOEUC.20210301.oa1
Publication status	Published - 1 Mar 2021

Bibliographical note

Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.

Keywords

Authentication
Contactless Payment
Magnetic Secure Transmission
Samsung Pay
Wormhole Attack
Contactless payment
Wormhole attack
Magnetic secure transmission
Samsung pay

Access to Document

10.4018/JOEUC.20210301.oa1

Publisher version (open access)Final published version, 545 KBLicence: CC BY

Cite this

@article{aec579b839e943ff99964b80bd873ab4,

title = "A key-based mutual authentication framework for mobile contactless payment system using authentication server",

abstract = "This paper presents a framework for mutual authentication between a user device and a point of sale (POS) machine using magnetic secure transmission (MST) to prevent the wormhole attack in Samsung pay. The primary attribute of this method is authenticating the POS terminals by an authentication server to bind the generated token to a single POS machine. To secure the system from eavesdropping attack, the data transmitted between the user device and the machine is encrypted by using the Elgamal encryption method. The keys used in the method are dynamic in nature. Furthermore, comparison and security analysis are presented with previously proposed systems.",

keywords = "Authentication, Contactless Payment, Magnetic Secure Transmission, Samsung Pay, Wormhole Attack, Contactless payment, Wormhole attack, Magnetic secure transmission, Samsung pay",

author = "Gupta, {Brij B.} and Shaifali Narayan",

note = "Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.",

year = "2021",

month = mar,

day = "1",

doi = "10.4018/JOEUC.20210301.oa1",

language = "English",

volume = "33",

pages = "1--16",

journal = "Journal of Organizational and End User Computing",

issn = "1546-2234",

publisher = "IGI Publishing",

number = "2",

}

TY - JOUR

T1 - A key-based mutual authentication framework for mobile contactless payment system using authentication server

AU - Gupta, Brij B.

AU - Narayan, Shaifali

N1 - Version archived for private and non-commercial use with the permission of the author/s and according to publisher conditions. For further rights please contact the publisher.

PY - 2021/3/1

Y1 - 2021/3/1

N2 - This paper presents a framework for mutual authentication between a user device and a point of sale (POS) machine using magnetic secure transmission (MST) to prevent the wormhole attack in Samsung pay. The primary attribute of this method is authenticating the POS terminals by an authentication server to bind the generated token to a single POS machine. To secure the system from eavesdropping attack, the data transmitted between the user device and the machine is encrypted by using the Elgamal encryption method. The keys used in the method are dynamic in nature. Furthermore, comparison and security analysis are presented with previously proposed systems.

AB - This paper presents a framework for mutual authentication between a user device and a point of sale (POS) machine using magnetic secure transmission (MST) to prevent the wormhole attack in Samsung pay. The primary attribute of this method is authenticating the POS terminals by an authentication server to bind the generated token to a single POS machine. To secure the system from eavesdropping attack, the data transmitted between the user device and the machine is encrypted by using the Elgamal encryption method. The keys used in the method are dynamic in nature. Furthermore, comparison and security analysis are presented with previously proposed systems.

KW - Authentication

KW - Contactless Payment

KW - Magnetic Secure Transmission

KW - Samsung Pay

KW - Wormhole Attack

KW - Contactless payment

KW - Wormhole attack

KW - Magnetic secure transmission

KW - Samsung pay

UR - http://www.scopus.com/inward/record.url?scp=85098635699&partnerID=8YFLogxK

U2 - 10.4018/JOEUC.20210301.oa1

DO - 10.4018/JOEUC.20210301.oa1

M3 - Article

SN - 1546-2234

VL - 33

SP - 1

EP - 16

JO - Journal of Organizational and End User Computing

JF - Journal of Organizational and End User Computing

IS - 2

ER -

A key-based mutual authentication framework for mobile contactless payment system using authentication server

Abstract

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this