Skip to Main content Skip to Navigation
Conference papers

For Small Merchants: A Secure Smartphone-Based Architecture to Process and Accept NFC Payments

Abstract : EMV is the international protocol implemented to secure the communication between a client's payment device and a PoS during a contact or an NFC purchase transaction. It guarantees several important security properties such as authentication, authorization and integrity. However, researchers, in various studies, have analyzed this protocol and have shown that it is vulnerable to several kinds of attacks. In this paper, we propose an innovative security protocol that solves the EMV vulnerabilities in the context of a new NFC payment architecture. The latter is designed in this work and is especially destined for small merchants, allowing to replace the use of a mobile PoS by an NFC smartphone: we suggest, for a small merchant, to take advantage of his NFC smartphone for use as an NFC reader, and then, directly as a PoS to accept NFC purchases from client payment devices. We check the accuracy of our proposal using the Scyther security tool.
Complete list of metadatas

https://hal.sorbonne-universite.fr/hal-01788528
Contributor : Nour El Madhoun <>
Submitted on : Wednesday, May 9, 2018 - 10:39:40 AM
Last modification on : Friday, December 13, 2019 - 11:50:03 AM

Identifiers

Citation

Nour El Madhoun, Emmanuel Bertin, Guy Pujolle. For Small Merchants: A Secure Smartphone-Based Architecture to Process and Accept NFC Payments. 2018 17th IEEE International Conference On Trust, Security And Privacy In Computing And Communications / 12th IEEE International Conference On Big Data Science And Engineering (TrustCom/BigDataSE), Aug 2018, New York, United States. pp.403-411, ⟨10.1109/TrustCom/BigDataSE.2018.00067⟩. ⟨hal-01788528⟩

Share

Metrics

Record views

322