Review of KIISC (정보보호학회지)

Korea Institute of Information Security and Cryptology (한국정보보호학회)
권호 표지

안전한 모바일 쿠폰 프로세스 스킴에 관한 연구

  • Park, Hyun-A (University of Arizona, Eller College of Management, Artificial Intelligence Lab.) ;
  • Park, Jae-Hyun (Case Western Reserve University, Weatherhead School of Management, Department of Information System)
  • Published : 2010.12.31
Download PDF
⟨ Previous Next ⟩

Abstract

전자 쿠폰(e-쿠폰)의 패턴이 모바일 쿠폰(m-쿠폰)으로 그 주류를 형성해 나가면서 모바일 쿠폰 보안 시스템에 관한 연구와 운영이 필요하게 되였다. 하지만 지금까지 e-쿠폰의 보안 시스템에 관한 연구도 드물 뿐만 아니라 m-쿠폰의 보안에 관한 연구는 극히 드물며, 설령 있다 하더라도 청산(clearing) 단계에 대한 보안 프로토콜은 설계하지 않았었다. 그렇지만 쿠폰의 위조(forgery)나 이중사용(double spending) 뿐만 아니라 도/소매업자 및 청산소(clearing house) 에 의한 청산 단계조작(clearing manipulation)에 의해서도 기업측에 엄청난 손실을 가할 수 있다. 본 논문에서는 청산 단계를 포함한 공식화된 모바일 쿠폰 프로세싱에 대한 보안 프로토콜을 우리나라 현실 상황을 고려하여 설계하고, 보안요구사항을 모바일 쿠폰 서비스/무선 환경/소형 단말기 측면으로 나누어 분석하고, 효율적으로 상태 관리 용이함을 분석하였다.

Keywords

Acknowledgement

Grant : 대학 IT연구센터 육성.지원사업

Supported by : 정보통신산업진흥원

References

  1. 송재일, "패밀리 레스토랑의 판매촉진 수단으로서 쿠폰 분석 : 인터넷을 통해 제공되는 쿠폰을 중심으로", 관광연구논총, 12(0), pp. 145-162, 2000
  2. R. Anand, M. Kumar and A. Jhingran, "Distributing E-Coupon on the Internet", Proceedings of the 9th Annual Conference of the Internet Society (INET'99), 1999.
  3. J. Andrews and A. Bhappu, "A Propositional Research Framework for the Conceptual and Technological Adoption of Digital Coupons in the US", Proceedings of the 43rd Hawaii International Conference on System Sciences, pp.1-9, 2010
  4. S. Banerjee and S. Yancey, "Enhancing mobile coupon redemption in fast food campaigns", Journal of Research in Interactive Marketing Vol. 4 No.2, pp. 97-110,2010 https://doi.org/10.1108/17505931011051650
  5. F. Bao, "A Scheme of Digital Ticket for Personal Trusted Device", Proceedings of the 15th IEEE International Symposium on Personal, Indoor and Mobile Radio Communications (PIMRC 2004), Vol. 4, pp. 3065-3069, 2004.
  6. C. Blundo, S. Cimato, and A. D. Bonis, "A Lightweight Protocol for the Generation and Distribution of Secure Ecoupons", Proceedings of the 11th international conference on World Wide Web, pp. 542 - 552, 2002
  7. C. Blundo, S. Cimato, and A. D. Bonis, " Secure E-Coupons", Electronic Commerce Research, 5, pp. 117 - 139, 2005 https://doi.org/10.1023/B:ELEC.0000045976.24984.48
  8. C. C. Chang, C. C. Wu, I. C. Lin, "A Secure E-coupon System for Mobile Users", lJCSNS International Journal of Computer Science and Network Security, VOL.6 No.1, January 2006
  9. C. C. Chang and Y. F. Chang, "Schemes for Digital Gift Certificates with Low Computation Complexity," 2005.
  10. C. C. Chang, Y. F. Chang and J. S. Lee, "Mobile Payment for Off-line Vender Machines," International Journal of Computer Science and Network Security, pp. 119-126, Sept. 2005
  11. S. Chari, P. Kermani, S. Smith, and L. Tassiulas, "Security Issues in M-Commerce: A Usage-Based Taxonomy", E-Commerce Agents, LNAI 2033, pp. 264-282, 2001 https://doi.org/10.1007/3-540-45370-9_16
  12. C. I. Fan, W. K. Chen and Y. S. Yeh, "Date Attachable Electronic Cash," Computer Communications, Vol. 23, Issue: 4, pp. 425-428, Feb. 2000. https://doi.org/10.1016/S0140-3664(99)00189-9
  13. K. Fujimura, H. Kuno, M. Terada, K. Matsuyama, Y. Mizuno, and J. Sekine, "Digital-Ticket-Controlled DigitalTicket Circulation," Proceedings of the 8th USENIX Security Symposium, Washington D.C., USA, pp. 229-238, Aug. 1999.
  14. K. Fujimura and Y. Nakajima, "General-Purpose Digital Ticket Framework," Proceedings of the 3rd USENIX Workshop on Electronic Commerce, Boston, Massachusetts, USA, pp. 177-186, Aug 1998
  15. R. Garg, P. Mittal, V. Agarwal, "An Architecture for Secure Generation and Verification of Electronic Coupons", Proceedings of the General Track: 2002 USENIX Annual Technical Conference, pp. 51 - 63, 2002
  16. N. C. Juul and N. Jorgensen, "Security Issues in Mobile Commerce Using WAP" , 15th Bled Electronic Commerce Conference, pp. 444-462, 2002
  17. A. Lysyanskaya, R. L. Rivest, A. Sahai, and S. Wolf, "Pseudonym systems", SAC'99, LNCS 1758 pp. 184-199,2000
  18. H. A. Park, J. T. Choi, J.I. Lim, and D. H. Lee, "The study on personal information protection from the mobile environments", KIISC, 2007. 8
  19. H. A. Park, J. W. Hong, J. H. Park, J. Zhan, and D. H. Lee, "Combined Authentication based Multi-Level Access Control in Mobile Application for DailyLifeService", IEEE Transactions on Mobile Computing, 9(6), pp. 824-837, 2010.6. https://doi.org/10.1109/TMC.2010.30
  20. V. Patil and R.K. Shyamasundar, "e-coupons: An Efficient, Secure and Delegable Micro-Payment System", Information Systems Frontiers 7: 4/5, pp. 371-389, 2005 https://doi.org/10.1007/s10796-005-4809-1
  21. T. Shojima, Y. Ikkai and N. Komoda, "A Method for Mediator Identification Using Queued History of Encrypted User Information in an Incentive Attached Peer to Peer Electronic Coupon System", Proceedings of the 2004 IEEE International Conference on System, Man and Cybernetics, pp. 1086-1091, 2004.
  22. GS1 Mobile Com., "Mobile Commerce:opportunities and challenges", White Paper, February 2008
  23. MMA(mobile marketing association), "Introduction to Mobile Coupons", 2007
  24. ScanAps, "New direction is needed for electronic coupon clearing", a white paper from ScanAps, 2007
  25. http://www.pharosgps.com/products/proddetail.asp?prod=001_PTL137_8.00&cat=147, 2010