Formal analysis of card-based payment systems in mobile devices
Data(s) |
2006
|
---|---|
Resumo |
To provide card holder authentication while they are conducting an electronic transaction using mobile devices, VISA and MasterCard independently proposed two electronic payment protocols: Visa 3D Secure and MasterCard Secure Code. The protocols use pre-registered passwords to provide card holder authentication and Secure Socket Layer/ Transport Layer Security (SSL/TLS) for data confidentiality over wired networks and Wireless Transport Layer Security (WTLS) between a wireless device and a Wireless Application Protocol (WAP) gateway. The paper presents our analysis of security properties in the proposed protocols using formal method tools: Casper and FDR2. We also highlight issues concerning payment security in the proposed protocols. |
Identificador | |
Publicador |
Australian Computer Society published in association with the ACM Digital LIbrary |
Relação |
http://crpit.com/Vol54.html Pasupathinathan, Vijayakrishnan, Pieprzyk, Josef, Wang, Huaxiong, & Cho, Joo Yeon (2006) Formal analysis of card-based payment systems in mobile devices. In ACSW Frontiers 2006 : Proceedings of the Fourth Australasian Symposium on Grid Computing and e-Research (AusGrid 2006) and the Fourth Australasian Information Security Workshop (Network Security) (AISW 2006), Australian Computer Society published in association with the ACM Digital LIbrary, Hobart, Tasmania, Australia, pp. 213-220. |
Fonte |
School of Electrical Engineering & Computer Science; Science & Engineering Faculty |
Tipo |
Conference Paper |