Abstract
How to simultaneously achieve security robustness and maintain the usage convenience of mobile payments within insecure public communication networks is a crucial topic for intelligent mobile device manufacturers, telecommunication companies, and mobile users. In this paper, we introduce a secure transaction scheme with certificateless cryptographic primitives for mobile payments. The proposed scheme takes advantage of the merits of Android Pay and a refined certificateless signature cryptosystem to simultaneously deliver transaction security and achieve payment efficiency in practice. With a formally defined adversary model and security analysis, the proposed scheme is proven to be both accurate and secure via random oracle model. It provides strong transaction robustness and communication security to mobile users during online payment transactions. On the other hand, the performance evaluation shows the practicability of our proposed transaction scheme, as the total computation cost is acceptable for a common Internet of Things (IoT)-based testbed.
Original language | English |
---|---|
Pages (from-to) | 2027-2038 |
Number of pages | 12 |
Journal | IEEE Systems Journal |
Volume | 12 |
Issue number | 2 |
DOIs | |
State | Published - Jun 2018 |
Keywords
- Certificateless cryptosystem
- electronic commence
- mobile payment
- security