Title: Formally verified TSM centric privacy preserving NFC mobile payment framework and protocol

Authors: Kavitha Ammayappan

Addresses: Samsung Research and Development Institute, Bangalore, 560037, India

Abstract: Near field communication is on the verge of broad adoption worldwide. The combination of NFC and smart mobile devices are making the way of life more easier for millennials. Sensitive consumer information can be predicted using data aggregation and predictive data mining approaches on any profit-oriented open e-commerce business models which may potentially cause a privacy breach. In mobile payment, which is a popular e-commerce sub domain application, consumers' sensitive information potentially sits on retailers' server over which consumer has no control but hackers can exploit. This paper presents a new TSM centric privacy preserving framework and a protocol for NFC-based proximity payments. It prevents consumer data from ever touching a merchant's server where the majority of data breaches occur. The correctness of proposed privacy preserving NFC payment protocol is ensured here via formal modelling and verification using Proverif.

Keywords: privacy preservation; privacy protection; NFC proximity payment; near field communication; identity-based cryptography; formal modelling; formal verification; Proverif; m-payment; mobile payment; TSM; trusted service manager.

DOI: 10.1504/IJICS.2016.078126

International Journal of Information and Computer Security, 2016 Vol.8 No.2, pp.181 - 204

Received: 11 Jun 2015
Accepted: 17 Dec 2015
Published online: 03 Aug 2016 *

Full-text access for editors Full-text access for subscribers Purchase this article Comment on this article