Cargando…

EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication

In 2014, Yang proposed a method to enhance the current EMV credit card protocol (EPMAR). However, the protocol ignores the exceeding of a credit quota caused by multiple offline transactions, with the result that the amount spent can exceed the risk control scope. In this paper, we proposed an EMV-c...

Descripción completa

Detalles Bibliográficos
Autores principales: Luo, Jia-Ning, Yang, Ming-Hour
Formato: Online Artículo Texto
Lenguaje:English
Publicado: MDPI 2019
Materias:
Acceso en línea:https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6864807/
https://www.ncbi.nlm.nih.gov/pubmed/31652797
http://dx.doi.org/10.3390/s19214611
_version_ 1783471965775855616
author Luo, Jia-Ning
Yang, Ming-Hour
author_facet Luo, Jia-Ning
Yang, Ming-Hour
author_sort Luo, Jia-Ning
collection PubMed
description In 2014, Yang proposed a method to enhance the current EMV credit card protocol (EPMAR). However, the protocol ignores the exceeding of a credit quota caused by multiple offline transactions, with the result that the amount spent can exceed the risk control scope. In this paper, we proposed an EMV-compatible offline mobile payment protocol with mutual authentication (EOPMA) to enhance EPMAR. In EOPMA, we use the reverse hash chain technique to guarantee the payment, which solves the problem of credit quotas getting exceeded because of multiple offline payments. During a transaction, in addition to payment for merchandise, an offline authorization certificate for the transaction is sent to the merchant. The merchant can verify the correctness of the transaction in real time. Our protocol is compatible with the EMV standard, which is applicable to the retail environment of numerous merchants and effectively, making EMV transactions more secure and reliable. We use numerical analysis to examine the security and performance of the protocols. We formally check the correctness of EOPMA by using the Gong–Needham–Yahalom logic.
format Online
Article
Text
id pubmed-6864807
institution National Center for Biotechnology Information
language English
publishDate 2019
publisher MDPI
record_format MEDLINE/PubMed
spelling pubmed-68648072019-12-06 EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication Luo, Jia-Ning Yang, Ming-Hour Sensors (Basel) Article In 2014, Yang proposed a method to enhance the current EMV credit card protocol (EPMAR). However, the protocol ignores the exceeding of a credit quota caused by multiple offline transactions, with the result that the amount spent can exceed the risk control scope. In this paper, we proposed an EMV-compatible offline mobile payment protocol with mutual authentication (EOPMA) to enhance EPMAR. In EOPMA, we use the reverse hash chain technique to guarantee the payment, which solves the problem of credit quotas getting exceeded because of multiple offline payments. During a transaction, in addition to payment for merchandise, an offline authorization certificate for the transaction is sent to the merchant. The merchant can verify the correctness of the transaction in real time. Our protocol is compatible with the EMV standard, which is applicable to the retail environment of numerous merchants and effectively, making EMV transactions more secure and reliable. We use numerical analysis to examine the security and performance of the protocols. We formally check the correctness of EOPMA by using the Gong–Needham–Yahalom logic. MDPI 2019-10-23 /pmc/articles/PMC6864807/ /pubmed/31652797 http://dx.doi.org/10.3390/s19214611 Text en © 2019 by the authors. Licensee MDPI, Basel, Switzerland. This article is an open access article distributed under the terms and conditions of the Creative Commons Attribution (CC BY) license (http://creativecommons.org/licenses/by/4.0/).
spellingShingle Article
Luo, Jia-Ning
Yang, Ming-Hour
EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication
title EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication
title_full EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication
title_fullStr EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication
title_full_unstemmed EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication
title_short EMV-Compatible Offline Mobile Payment Protocol with Mutual Authentication
title_sort emv-compatible offline mobile payment protocol with mutual authentication
topic Article
url https://www.ncbi.nlm.nih.gov/pmc/articles/PMC6864807/
https://www.ncbi.nlm.nih.gov/pubmed/31652797
http://dx.doi.org/10.3390/s19214611
work_keys_str_mv AT luojianing emvcompatibleofflinemobilepaymentprotocolwithmutualauthentication
AT yangminghour emvcompatibleofflinemobilepaymentprotocolwithmutualauthentication