A secure account-based mobile payment protocol

In this paper, we propose a secure account-based payment protocol which is suitable for wireless networks. The proposed protocol employs symmetric-key operations which require lower computation at all engaging parties than existing payment protocols. The proposed protocol also satisfies transaction security properties provided by public-key based payment protocols such as SET and iKP. The formal analysis illustrates that our protocol achieves the goals of payment protocols. Moreover, the credit-card information is not required to be sent during transactions which results in a security enhancement of the system.

[1]  Lisa M. Marvel,et al.  Authentication for low power systems , 2001, 2001 MILCOM Proceedings Communications for Network-Centric Operations: Creating the Information Force (Cat. No.01CH37277).

[2]  Supakorn Kungpisdan,et al.  Practical Reasoning about Accountability in Electronic Commerce Protocols , 2001, ICISC.

[3]  Bala Srinivasan,et al.  Accountability logic for mobile payment protocols , 2004, International Conference on Information Technology: Coding and Computing, 2004. Proceedings. ITCC 2004..

[4]  Hugo Krawczyk,et al.  Design, implementation, and deployment of the iKP secure electronic payment system , 2000, IEEE Journal on Selected Areas in Communications.

[5]  Supakorn Kungpisdan,et al.  A practical framework for mobile set payment , 2003 .

[6]  Colin Boyd,et al.  Elliptic Curve Based Password Authenticated Key Exchange Protocols , 2001, ACISP.

[7]  Stelvio Cimato Design of an Authentication Protocol for Gsm Javacards , 2001, ICISC.

[8]  Vijay T. Ahuja Secure commerce on the Internet , 1996 .

[9]  Günther Horn,et al.  Authentication and Payment in Future Mobile Systems , 1998, J. Comput. Secur..

[10]  Els Van Herreweghen Non-repudiation in SET: Open Issues , 2000, Financial Cryptography.

[11]  Paul Douglas,et al.  Proceedings International Conference on Information Technology: Coding and Computing , 2002, Proceedings. International Conference on Information Technology: Coding and Computing.