A Key-Based Mutual Authentication Framework for Mobile Contactless Payment System Using Authentication Server

Brij B. Gupta, Shaifali Narayan

Source Title: Journal of Organizational and End User Computing (JOEUC)33(2)

ISSN: 1546-2234|EISSN: 1546-5012|EISBN13: 9781799859055|DOI: 10.4018/JOEUC.20210301.oa1

MLA

Gupta, Brij B., and Shaifali Narayan. "A Key-Based Mutual Authentication Framework for Mobile Contactless Payment System Using Authentication Server." JOEUC vol.33, no.2 2021: pp.1-16. http://doi.org/10.4018/JOEUC.20210301.oa1

APA

Gupta, B. B. & Narayan, S. (2021). A Key-Based Mutual Authentication Framework for Mobile Contactless Payment System Using Authentication Server. Journal of Organizational and End User Computing (JOEUC), 33(2), 1-16. http://doi.org/10.4018/JOEUC.20210301.oa1

Chicago

Gupta, Brij B., and Shaifali Narayan. "A Key-Based Mutual Authentication Framework for Mobile Contactless Payment System Using Authentication Server," Journal of Organizational and End User Computing (JOEUC) 33, no.2: 1-16. http://doi.org/10.4018/JOEUC.20210301.oa1

Export Reference

Favorite Full-Issue Download

View Full Text HTML

View Full Text PDF

Abstract

This paper presents a framework for mutual authentication between a user device and a point of sale (POS) machine using magnetic secure transmission (MST) to prevent the wormhole attack in Samsung pay. The primary attribute of this method is authenticating the POS terminals by an authentication server to bind the generated token to a single POS machine. To secure the system from eavesdropping attack, the data transmitted between the user device and the machine is encrypted by using the Elgamal encryption method. The keys used in the method are dynamic in nature. Furthermore, comparison and security analysis are presented with previously proposed systems.