Difference between revisions of "Publications/el-madhoun.22.aina"
From LRDE
| Line 3: | Line 3: | ||
| date = 2022-01-01 |
| date = 2022-01-01 |
||
| authors = Nour El Madhoun, Emmanuel Bertin, Mohamad Badra, Guy Pujolle |
| authors = Nour El Madhoun, Emmanuel Bertin, Mohamad Badra, Guy Pujolle |
||
| − | | booktitle = |
+ | | booktitle = 36th International Conference on Advanced Information Networking and Applications (AINA) |
| title = New Security Protocols for Offline Point-of-Sale Machines |
| title = New Security Protocols for Offline Point-of-Sale Machines |
||
| abstract = EMV (Europay MasterCard Visa) is the protocol implemented to secure the communication, between a client's payment device and a Point-of-Sale machine, during a contact or an NFC (Near Field Communication) purchase transaction. In several studies, researchers have analyzed the operation of this protocol in order to verify its safety: unfortunatelythey have identified two security vulnerabilities that lead to multiple attacks and dangerous risks threatening both clients and merchants. In this paper, we are interested in proposing new security solutions that aim to overcome the two dangerous EMV vulnerabilities. Our solutions address the case of Point-of-Sale machines that do not have access to the banking network and are therefore in the "offline" connectivity mode. We verify the accuracy of our proposals by using the Scyther security verification tool. |
| abstract = EMV (Europay MasterCard Visa) is the protocol implemented to secure the communication, between a client's payment device and a Point-of-Sale machine, during a contact or an NFC (Near Field Communication) purchase transaction. In several studies, researchers have analyzed the operation of this protocol in order to verify its safety: unfortunatelythey have identified two security vulnerabilities that lead to multiple attacks and dangerous risks threatening both clients and merchants. In this paper, we are interested in proposing new security solutions that aim to overcome the two dangerous EMV vulnerabilities. Our solutions address the case of Point-of-Sale machines that do not have access to the banking network and are therefore in the "offline" connectivity mode. We verify the accuracy of our proposals by using the Scyther security verification tool. |
||
| Line 14: | Line 14: | ||
| bibtex = |
| bibtex = |
||
@InProceedings<nowiki>{</nowiki> el-madhoun.22.aina, |
@InProceedings<nowiki>{</nowiki> el-madhoun.22.aina, |
||
| − | author = <nowiki>{</nowiki>El Madhoun |
+ | author = <nowiki>{</nowiki>Nour El Madhoun and Emmanuel Bertin and Mohamad Badra and |
| − | + | Guy Pujolle<nowiki>}</nowiki>, |
|
| − | booktitle = <nowiki>{</nowiki> |
+ | booktitle = <nowiki>{</nowiki>36th International Conference on Advanced Information |
| − | Networking and Applications (AINA |
+ | Networking and Applications (AINA)<nowiki>}</nowiki>, |
title = <nowiki>{</nowiki>New Security Protocols for Offline Point-of-Sale |
title = <nowiki>{</nowiki>New Security Protocols for Offline Point-of-Sale |
||
Machines<nowiki>}</nowiki>, |
Machines<nowiki>}</nowiki>, |
||
Latest revision as of 10:30, 15 December 2022
- Authors
- Nour El Madhoun, Emmanuel Bertin, Mohamad Badra, Guy Pujolle
- Where
- 36th International Conference on Advanced Information Networking and Applications (AINA)
- Type
- inproceedings
- Publisher
- Springer
- Date
- 2022-01-01
Abstract
EMV (Europay MasterCard Visa) is the protocol implemented to secure the communication, between a client's payment device and a Point-of-Sale machine, during a contact or an NFC (Near Field Communication) purchase transaction. In several studies, researchers have analyzed the operation of this protocol in order to verify its safety: unfortunatelythey have identified two security vulnerabilities that lead to multiple attacks and dangerous risks threatening both clients and merchants. In this paper, we are interested in proposing new security solutions that aim to overcome the two dangerous EMV vulnerabilities. Our solutions address the case of Point-of-Sale machines that do not have access to the banking network and are therefore in the "offline" connectivity mode. We verify the accuracy of our proposals by using the Scyther security verification tool.
Bibtex (lrde.bib)
@InProceedings{ el-madhoun.22.aina,
author = {Nour El Madhoun and Emmanuel Bertin and Mohamad Badra and
Guy Pujolle},
booktitle = {36th International Conference on Advanced Information
Networking and Applications (AINA)},
title = {New Security Protocols for Offline Point-of-Sale
Machines},
year = {2022},
abstract = {EMV (Europay MasterCard Visa) is the protocol implemented
to secure the communication, between a client's payment
device and a Point-of-Sale machine, during a contact or an
NFC (Near Field Communication) purchase transaction. In
several studies, researchers have analyzed the operation of
this protocol in order to verify its safety: unfortunately,
they have identified two security vulnerabilities that lead
to multiple attacks and dangerous risks threatening both
clients and merchants. In this paper, we are interested in
proposing new security solutions that aim to overcome the
two dangerous EMV vulnerabilities. Our solutions address
the case of Point-of-Sale machines that do not have access
to the banking network and are therefore in the "offline"
connectivity mode. We verify the accuracy of our proposals
by using the Scyther security verification tool.},
publisher = {Springer},
series = {Lecture Notes in Networks and Systems},
volume = {450},
doi = {10.1007/978-3-030-99587-4_38}
}