Analysis and Improvement on a Mobile Payment Protocol with Outsourced Verification in Cloud Service
- 37 Downloads
Mobile wallet is a very convenient means of mobile payment to allow the clients to conduct the payment via their mobile devices. To reduce the computation burden of resourcesconstraint mobile devices, a few mobile wallet protocols with outsourced verification in cloud computing were proposed. But in some of the protocols, there exist the risk of a colluding attack of the customer and the untrusted cloud server. In this paper, we propose an improved protocol, in which the payment information is protected by Hash function and random number. The malicious customer and cloud server cannot change the payment information to conduct a collusion forgery attack to defraud the merchant. The security analysis indicates that the proposed improved protocol can enhance the security in terms of correctness, unforgeability and traceability without increasing the computational burden.
Key wordsmobile payment cloud service digital signature security bilinear map
CLC numberTP 309
Unable to display preview. Download preview PDF.
- Kang B Y, Wang J Q, Shao D Y. Certificateless public auditing with privacy preserving for cloud-assisted wireless body area networks [J]. Mobile Information Systems, 2017, 2017: 2925465.Google Scholar
- Al-Riyami S, Paterson K. Certificateless public key cryptography [C]// Advances in Cryptology-ASIACRYPT 2003, Proceedings of the 9th International Conference on the Theory and Application of Cryptology and Information Security. Berlin: Springer-Verlag, 2003: 452–473.Google Scholar
- Cao S, Lang X, Liu X, et al. Probably secure and efficient certificateless aggregate signature [J]. Netinfo Security, 2019, 19(1): 42–50(Ch).Google Scholar
- Chen Y M, Cheng X G, Wang S, et al. Research on certificateless group signature scheme based on bilinear pairings [J]. Netinfo Security, 2017, 17( 3): 53–58(Ch).Google Scholar
- Kang B Y, Wang J Q, Shao D Y. Attack on privacy-preserving public auditing schemes for cloud storage [J]. Mathematical Problems in Engineering, 2017, 2017: 8062182.Google Scholar
- Kang B Y, Wang M, Jing D Y. An off-line payment scheme for digital content via subliminal channel [J]. Journal of Information Science and Engineering, 2018, 34: 171–192.Google Scholar