A Secure Transaction Scheme with Certificateless Cryptographic Primitives for IoT-Based Mobile Payments

Kuo Hui Yeh*

*Corresponding author for this work

Research output: Contribution to journalArticlepeer-review

54 Scopus citations

Abstract

How to simultaneously achieve security robustness and maintain the usage convenience of mobile payments within insecure public communication networks is a crucial topic for intelligent mobile device manufacturers, telecommunication companies, and mobile users. In this paper, we introduce a secure transaction scheme with certificateless cryptographic primitives for mobile payments. The proposed scheme takes advantage of the merits of Android Pay and a refined certificateless signature cryptosystem to simultaneously deliver transaction security and achieve payment efficiency in practice. With a formally defined adversary model and security analysis, the proposed scheme is proven to be both accurate and secure via random oracle model. It provides strong transaction robustness and communication security to mobile users during online payment transactions. On the other hand, the performance evaluation shows the practicability of our proposed transaction scheme, as the total computation cost is acceptable for a common Internet of Things (IoT)-based testbed.

Original languageEnglish
Pages (from-to)2027-2038
Number of pages12
JournalIEEE Systems Journal
Volume12
Issue number2
DOIs
StatePublished - Jun 2018

Keywords

  • Certificateless cryptosystem
  • electronic commence
  • mobile payment
  • security

Fingerprint

Dive into the research topics of 'A Secure Transaction Scheme with Certificateless Cryptographic Primitives for IoT-Based Mobile Payments'. Together they form a unique fingerprint.

Cite this