Abstract : We devise a payment protocol that can be securely used on mobile devices, even infected by malicious applications. Our protocol only requires a light use of Secure Elements, which significantly simplify certification procedures and protocol maintenance. It is also fully compatible with the EMV SDA protocol and allows off-line payments for the users.
We provide a formal model and full security proofs of our protocol using the TAMARIN prover.
https://hal.inria.fr/hal-01408584
Contributor : Véronique Cortier
<>
Submitted on : Monday, December 5, 2016 - 10:37:50 AM
Last modification on : Tuesday, December 18, 2018 - 4:38:25 PM
Long-term archiving on : Tuesday, March 21, 2017 - 5:28:59 AM
Véronique Cortier, Alicia Filipiak, Saïd Gharout, Jacques Traoré. Designing and proving an EMV-compliant payment protocol for mobile devices. 2nd IEEE European Symposium on Security and Privacy (EuroSP'17), Apr 2017, Paris, France. ⟨hal-01408584⟩
