Authors: Kavitha Ammayappan
Addresses: Samsung Research and Development Institute, Bangalore, 560037, India
Abstract: Near field communication is on the verge of broad adoption worldwide. The combination of NFC and smart mobile devices are making the way of life more easier for millennials. Sensitive consumer information can be predicted using data aggregation and predictive data mining approaches on any profit-oriented open e-commerce business models which may potentially cause a privacy breach. In mobile payment, which is a popular e-commerce sub domain application, consumers' sensitive information potentially sits on retailers' server over which consumer has no control but hackers can exploit. This paper presents a new TSM centric privacy preserving framework and a protocol for NFC-based proximity payments. It prevents consumer data from ever touching a merchant's server where the majority of data breaches occur. The correctness of proposed privacy preserving NFC payment protocol is ensured here via formal modelling and verification using Proverif.
Keywords: privacy preservation; privacy protection; NFC proximity payment; near field communication; identity-based cryptography; formal modelling; formal verification; Proverif; m-payment; mobile payment; TSM; trusted service manager.
International Journal of Information and Computer Security, 2016 Vol.8 No.2, pp.181 - 204
Available online: 29 Jul 2016 *Full-text access for editors Access for subscribers Purchase this article Comment on this article