Abstract : We devise a payment protocol that can be securely used on mobile devices, even infected by malicious applications. Our protocol only requires a light use of Secure Elements, which significantly simplify certification procedures and protocol maintenance. It is also fully compatible with the EMV SDA protocol and allows off-line payments for the users.
We provide a formal model and full security proofs of our protocol using the TAMARIN prover.
Type de document :
Communication dans un congrès
2nd IEEE European Symposium on Security and Privacy (EuroSP'17), Apr 2017, Paris, France
https://hal.inria.fr/hal-01408584
Contributeur : Véronique Cortier
<>
Soumis le : lundi 5 décembre 2016 - 10:37:50
Dernière modification le : jeudi 11 janvier 2018 - 06:27:43
Document(s) archivé(s) le : mardi 21 mars 2017 - 05:28:59
Véronique Cortier, Alicia Filipiak, Saïd Gharout, Jacques Traoré. Designing and proving an EMV-compliant payment protocol for mobile devices. 2nd IEEE European Symposium on Security and Privacy (EuroSP'17), Apr 2017, Paris, France. 〈hal-01408584〉