Security Enhancements in EMV Protocol for NFC Mobile Payment

Nour El Madhoun 1 Guy Pujolle 1
1 Phare
LIP6 - Laboratoire d'Informatique de Paris 6
Abstract : Today, by integrating Near Field Communication (NFC) technology in smartphones, bank cards and payment terminals, a purchase transaction can be executed immediately without any physical contact, without entering a PIN code or a signature. Europay Mastercard Visa (EMV) is the standard dedicated for securing contactless-NFC payment transactions. However, it does not ensure two main security proprieties: (1) the authentication of the payment terminal to the client’s payment device, (2) the confidentiality of personal banking data. In this paper, we first of all detail EMV standard and its security vulnerabilities. Then, we propose a solution that enhances the EMV protocol by adding a new security layer aiming to solve EMV weaknesses. We formally check the correctness of the proposal using a security verification tool called Scyther.
Type de document :
Communication dans un congrès
The 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-16), Aug 2016, Tianjin, China
Liste complète des métadonnées

Littérature citée [13 références]  Voir  Masquer  Télécharger

https://hal.archives-ouvertes.fr/hal-01340315
Contributeur : Nour El Madhoun <>
Soumis le : jeudi 30 juin 2016 - 18:58:19
Dernière modification le : jeudi 21 mars 2019 - 14:42:01
Document(s) archivé(s) le : samedi 1 octobre 2016 - 12:44:37

Fichier

PID4336321.pdf
Fichiers produits par l'(les) auteur(s)

Identifiants

  • HAL Id : hal-01340315, version 1

Citation

Nour El Madhoun, Guy Pujolle. Security Enhancements in EMV Protocol for NFC Mobile Payment. The 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-16), Aug 2016, Tianjin, China. 〈hal-01340315〉

Partager

Métriques

Consultations de la notice

352

Téléchargements de fichiers

504