A Private and Efficient Mobile Payment Protocol

  • Changjie Wang
  • Ho-fung Leung
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3802)

Abstract

Many secure electronic payment protocols have been proposed, most of which are based on public key cryptograph. These protocols, however, are not suitable for mobile network due to the limitations of mobile environments, such as limited computation capability of mobile devices, limited bandwidth, etc. In this paper, we propose a private and efficient payment protocol for mobile network, which only involves symmetric key algorithm, such as symmetric encryption, hash function and keyed hash function. All these operations can be implemented on mobile devices feasibly. The proposed protocol also achieves completely privacy protection of buyers, which is one of the important requirements in mobile commerce. First, the identity of the buyer is protected from the merchant. Second, the transaction privacy of the buyer, such as what the buyer buys, and whom the buyer buys from, are also protected from any other parties and financial institutions. By giving a security analysis, we show that our protocol satisfies all security requirements in electronic payment.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. 1.
    Bellare, M., Garay, J., Hauser, R., Herzberg, A., Steiner, M., Tsudik, G., Van Herreweghen, E., Waidner, M.: Design,Implementation, and Deployment of the iKP Secure Electronic Payment system. IEEE Journal of Selected Areas in Communications 18, 611–627 (2000)CrossRefGoogle Scholar
  2. 2.
    Kungpisdan, S., Srinivasan, B., Phu Dung, L.: A Practical Framework for Mobile SET Payment. In: Proceedings of 2003 International E-Society Conference, pp. 321–328 (2003)Google Scholar
  3. 3.
    Huang, Z., Chen, K.F.: Electronic Payment in Mobile Environment. In: Proceedings of the 13th Internatinal Workshop on DEXA, pp. 413–417 (2002)Google Scholar
  4. 4.
    Kungpisdan, S., Srinivasan, B., Phu Dung, L.: A Secure Account-Based Mobile Payment Protocol. In: Proceedings of International Conference on Information Technology: Cod-ing and Computing, pp. 321–328 (2004)Google Scholar
  5. 5.
    Hu, Z.Y., Liu, Y.W., Hu, X., Li, J.H.: Anonymous Micropayments Authentication (AMA) in Mobile Data Network. In: Proceedings of IEEE INFOCOM 2004, pp. 46–53 (2004)Google Scholar
  6. 6.
    Fourati, A., Ayed, H.K.B., Benzekri, A.: A SET Based Approach to Secure the Payment in Mobile Commerce. In: Proceedings of 27th IEEE Conference on Local Computer Networks, pp. 136–137 (2002)Google Scholar
  7. 7.
    Kohl, J., Neuman, C.: The Kerberos Network Authentication Service (V5). RFC 1510 (1993)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • Changjie Wang
    • 1
  • Ho-fung Leung
    • 1
  1. 1.Department of Computer Science and EngineeringThe Chinese University of Hong KongHong KongChina

Personalised recommendations