Skip to Main content Skip to Navigation
Conference papers

Security Enhancements in EMV Protocol for NFC Mobile Payment

Nour El Madhoun 1 Guy Pujolle 1
1 Phare
LIP6 - Laboratoire d'Informatique de Paris 6
Abstract : Today, by integrating Near Field Communication (NFC) technology in smartphones, bank cards and payment terminals, a purchase transaction can be executed immediately without any physical contact, without entering a PIN code or a signature. Europay Mastercard Visa (EMV) is the standard dedicated for securing contactless-NFC payment transactions. However, it does not ensure two main security proprieties: (1) the authentication of the payment terminal to the client’s payment device, (2) the confidentiality of personal banking data. In this paper, we first of all detail EMV standard and its security vulnerabilities. Then, we propose a solution that enhances the EMV protocol by adding a new security layer aiming to solve EMV weaknesses. We formally check the correctness of the proposal using a security verification tool called Scyther.
Document type :
Conference papers
Complete list of metadatas

Cited literature [13 references]  Display  Hide  Download

https://hal.archives-ouvertes.fr/hal-01340315
Contributor : Nour El Madhoun <>
Submitted on : Thursday, June 30, 2016 - 6:58:19 PM
Last modification on : Sunday, September 22, 2019 - 2:12:01 PM
Document(s) archivé(s) le : Saturday, October 1, 2016 - 12:44:37 PM

File

PID4336321.pdf
Files produced by the author(s)

Identifiers

  • HAL Id : hal-01340315, version 1

Citation

Nour El Madhoun, Guy Pujolle. Security Enhancements in EMV Protocol for NFC Mobile Payment. The 15th IEEE International Conference on Trust, Security and Privacy in Computing and Communications (IEEE TrustCom-16), Aug 2016, Tianjin, China. ⟨hal-01340315⟩

Share

Metrics

Record views

427

Files downloads

1146